aboutsummaryrefslogtreecommitdiffstats
Commit message (Expand)AuthorAgeFilesLines
...
* Merge branch 'mbb-reauth-online-revocation'Tobias Brunner2016-03-1028-14/+477
|\
| * NEWS: Added note on online revocation checks during make-before-break reauthe...Tobias Brunner2016-03-101-0/+9
| * testing: Add ikev2/reauth-mbb-revoked scenarioTobias Brunner2016-03-109-0/+105
| * testing: Generate a CRL that has moon's actual certificate revokedTobias Brunner2016-03-101-0/+3
| * ike-sa: Improve interaction between flush_auth_cfg and delayed revocation checksTobias Brunner2016-03-101-26/+37
| * ikev2: Delay online revocation checks during make-before-break reauthenticationTobias Brunner2016-03-101-0/+5
| * ikev2: Add task that verifies a peer's certificateTobias Brunner2016-03-107-2/+183
| * ikev2: Initiate other tasks after a no-op taskTobias Brunner2016-03-101-1/+1
| * ikev2: Don't do online revocation checks in pubkey authenticator if requestedTobias Brunner2016-03-101-1/+8
| * ike-sa: Add condition to suspend online certificate revocation checks for an ...Tobias Brunner2016-03-101-0/+5
| * ike-sa: Add method to verify certificates in completed authentication roundsTobias Brunner2016-03-102-0/+111
| * auth-cfg: Add a rule to suspend certificate validation constraintsTobias Brunner2016-03-102-0/+18
| * credential-manager: Check cache queue when destroying trusted certificate enu...Tobias Brunner2016-03-101-1/+2
| * credential-manager: Make online revocation checks optional for public key enu...Tobias Brunner2016-03-106-7/+14
|/
* Merge branch 'charon-conf-fallback'Tobias Brunner2016-03-084-2/+61
|\
| * charon-svc: Inherit all settings from the charon sectionTobias Brunner2016-03-081-0/+9
| * charon-systemd: Inherit all settings from the charon sectionTobias Brunner2016-03-081-0/+9
| * library: Add option to register additional namespaces before calling library_...Tobias Brunner2016-03-082-2/+43
|/
* vici: Replace child configs atomicallyTobias Brunner2016-03-081-14/+11
* peer-cfg: Add method to atomically replace child configsTobias Brunner2016-03-082-2/+128
* ike-cfg: Use new method to compare proposal lists in equals()Tobias Brunner2016-03-081-20/+4
* peer-cfg: Use new method to compare linked lists in equals()Tobias Brunner2016-03-081-36/+3
* child-cfg: Add equals() methodTobias Brunner2016-03-082-2/+62
* linked-list: Add method to compare two lists of objects for equalityTobias Brunner2016-03-083-2/+166
* vici: Order auth rounds by optional `round` parameter instead of by position ...Tobias Brunner2016-03-082-40/+74
* ikev1: Send NAT-D payloads after vendor ID payloads in Aggressive Mode messagesTobias Brunner2016-03-071-6/+6
* ike-sa-manager: Log a checkin/failure message for every checkoutThomas Egerer2016-03-071-8/+32
* testing: Added swanctl/mult-auth-rsa-eap-sim-id scenarioAndreas Steffen2016-03-0620-0/+335
* testing: Added swanctl/xauth-rsa scenarioAndreas Steffen2016-03-0611-0/+211
* Display IKE ports with swanctl --list-sasAndreas Steffen2016-03-051-4/+9
* Version bump to 5.4.0rc1Andreas Steffen2016-03-051-1/+1
* testing: attr-sql is a charon plugin5.4.0dr8Andreas Steffen2016-03-0511-42/+10
* testing: Added swanctl/rw-psk-ikev1 scenarioAndreas Steffen2016-03-0511-0/+271
* testing: Include IKE port information in evaltestsAndreas Steffen2016-03-0568-238/+221
* Version bump to 5.4.0dr8Andreas Steffen2016-03-041-1/+1
* ike-sa-manager: Log some additional details like SPIs when checking out SAsTobias Brunner2016-03-041-7/+16
* smp: Correctly return IKE SPIs stored in network orderTobias Brunner2016-03-041-4/+4
* vici: Correctly return IKE SPIs stored in network orderTobias Brunner2016-03-041-2/+4
* stroke: Correctly print IKE SPIs stored in network orderTobias Brunner2016-03-041-2/+4
* byteorder: Simplify htoun64/untoh64 functionsTobias Brunner2016-03-041-27/+0
* byteorder: Always define be64toh/htobe64 macrosTobias Brunner2016-03-041-20/+30
* Merge branch 'ike-sig-contraints'Tobias Brunner2016-03-0412-90/+316
|\
| * NEWS: Add note about IKEv2 signature scheme constraintsTobias Brunner2016-03-041-0/+4
| * swanctl: Document signature scheme constraintsTobias Brunner2016-03-041-1/+30
| * vici: Add support for pubkey constraints with EAP-TLSTobias Brunner2016-03-041-0/+8
| * auth-cfg: Make IKE signature schemes configurableTobias Brunner2016-03-048-46/+203
| * ikev2: Always store signature scheme in auth-cfgTobias Brunner2016-03-041-12/+1
| * ikev2: Diversify signature scheme ruleThomas Egerer2016-03-044-33/+72
|/
* NEWS: Document RFC 5685 supportTobias Brunner2016-03-041-0/+6
* Merge branch 'ike-redirect'Tobias Brunner2016-03-0450-122/+2168
|\
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-09 09:40:05 +0000