aboutsummaryrefslogtreecommitdiffstats
Commit message (Expand)AuthorAgeFilesLines
...
* ikev2: Don't adopt any CHILD_SA during make-before-break reauthenticationMartin Willi2015-03-041-1/+2
* unit-tests: Base attributes get adopted by seg-env/seg-contractTobias Brunner2015-03-031-4/+4
* seg-env: Destroy base attribute if segmentation is not possibleTobias Brunner2015-03-031-0/+1
* Merge branch 'eap-constraints'Martin Willi2015-03-0314-2/+100
|\
| * NEWS: Introduce EAP constraints support for EAP-(T)TLSMartin Willi2015-03-031-0/+5
| * man: Describe trust chain constraints configuration for EAP methodsMartin Willi2015-03-031-1/+3
| * stroke: Support public key constraints for EAP methodsMartin Willi2015-03-031-1/+8
| * eap-ttls: Support EAP auth information getter in EAP-TTLSMartin Willi2015-03-031-0/+7
| * eap-tls: Support EAP auth information getter in EAP-TLSMartin Willi2015-03-031-0/+7
| * libtls: Add getters for TLS handshake authentication detailsMartin Willi2015-03-037-0/+49
| * libtls: Merge trustchain auth verification details done during TLS handhsakeMartin Willi2015-03-032-0/+2
| * ikev2: Merge EAP client authentication details if EAP methods provides themMartin Willi2015-03-031-0/+7
| * eap: Add an optional authentication details getter to the EAP method interfaceMartin Willi2015-03-031-0/+12
|/
* Merge branch 'stroke-purge-on-reread'Martin Willi2015-03-036-120/+306
|\
| * ipsec: Update rereadcacerts/aacerts command description in manpageMartin Willi2015-03-031-6/+9
| * stroke: Serve ca section CA certificates directly, not over central CA setMartin Willi2015-03-033-5/+85
| * mem-cred: Add a method to unify certificate references, without adding itMartin Willi2015-03-032-0/+31
| * stroke: Purge existing CA/AA certificates during rereadMartin Willi2015-03-031-0/+4
| * stroke: Use separate credential sets for CA/AA certificatesMartin Willi2015-03-031-3/+21
| * stroke: Refactor load_certdir functionMartin Willi2015-03-031-108/+158
|/
* vici: Don't use a default rand_time larger than half of rekey/reauth_timeMartin Willi2015-03-031-3/+11
* vici: If a IKE reauth_time is configured, disable the default rekey_timeMartin Willi2015-03-032-2/+19
* ikev2: Schedule a timeout for the delete message following passive IKE rekeyingMartin Willi2015-03-031-0/+6
* kernel-netlink: Respect kernel routing priorities for IKE routesMartin Willi2015-03-031-2/+15
* enum: Extend printf hook to print flagsThomas Egerer2015-03-033-8/+286
* unit-tests: Don't fail host_create_from_dns() test if IPv6 not supportedMartin Willi2015-03-021-4/+10
* bliss: Add generated Huffman codes to the repositoryTobias Brunner2015-03-025-14/+860
* Fixed a memory leak in the attribute segmentation codeAndreas Steffen2015-02-273-4/+4
* vici: Support ruby gem out-of-tree buildsMartin Willi2015-02-271-1/+3
* ha: Always install the CHILD_SAs with the inbound flag set to FALSEMartin Willi2015-02-271-2/+2
* Updated Ubuntu 14.04 kernel versionAndreas Steffen2015-02-271-1/+1
* Fixed compiler warningsAndreas Steffen2015-02-271-2/+3
* travis: Disable unwind backtraces regardless of LEAK_DETECTIVE optionMartin Willi2015-02-261-3/+1
* Version bump to 5.3.0dr1Andreas Steffen2015-02-262-1/+4
* Allow SHA256 and SHA384 data hash for BLISS signatures.Andreas Steffen2015-02-2617-42/+133
* unit-tests: Completed BLISS testsAndreas Steffen2015-02-256-16/+668
* Check for null pointer before applying memwipe()Andreas Steffen2015-02-251-4/+10
* Implemented improved BLISS-B signature algorithmAndreas Steffen2015-02-2513-47/+359
* host-resolver: Do not cancel threads waiting for new queries during cleanupMartin Willi2015-02-241-6/+8
* host-resolver: Disable resolver thread cancellation by defaultMartin Willi2015-02-241-0/+3
* unit-tests: Add host_create_from_dns() test cases resolving "localhost"Martin Willi2015-02-241-0/+42
* travis: Disable forecast/connmark plugins in monolithic buildsMartin Willi2015-02-241-0/+4
* plugin-loader: Do not unload libraries during dlclose(), if supportedMartin Willi2015-02-241-1/+9
* unit-tests: Accept numerical protocol/port numbers in traffic selector testsMartin Willi2015-02-231-11/+16
* forecast: Explicitly cast sockaddr to fix compiler warningTobias Brunner2015-02-231-1/+1
* configure: Use pkg-config to detect libiptc used by connmark/forecastTobias Brunner2015-02-233-4/+10
* openssl: Return the proper IV length for OpenSSL cryptersTobias Brunner2015-02-231-1/+1
* Merge branch 'forecast'Martin Willi2015-02-2024-0/+1673
|\
| * NEWS: Introduce forecast multicast/broadcast forwarding pluginMartin Willi2015-02-201-0/+7
| * testing: Add a forecast test caseMartin Willi2015-02-2011-0/+152
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-12 09:27:36 +0000