index
:
tteras/strongswan
master
tteras
tteras-release
tteras' strongSwan tree
gitolite
about
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
Commit message (
Expand
)
Author
Age
Files
Lines
*
Version bump to 5.5.2dr6
5.5.2dr6
Andreas Steffen
2017-03-03
3
-3
/
+5
*
Add keyid of smartcard or TPM private key as an argument to pki --req
Andreas Steffen
2017-03-02
1
-2
/
+15
*
testing: load-testconfig script loads config from source dir
Tobias Brunner
2017-03-02
2
-67
/
+109
*
libipsec: Enforce a minimum of 256 for SPIs
Tobias Brunner
2017-03-02
1
-3
/
+4
*
libipsec: Fix min/max SPI
Tobias Brunner
2017-03-02
1
-2
/
+2
*
controller: Don't listen for CHILD_SA state changes when terminating IKE_SAs
Tobias Brunner
2017-03-02
1
-1
/
+0
*
kernel: Make range of SPIs for IPsec SAs configurable
Tobias Brunner
2017-03-02
5
-8
/
+46
*
settings: Add support for hex integers (0x prefix) via get_int()
Tobias Brunner
2017-03-02
1
-1
/
+6
*
libipsec: Log a packet's ports and protocol in case of a policy mismatch
Tobias Brunner
2017-03-02
1
-5
/
+7
*
host: Don't log port if it is zero
Tobias Brunner
2017-03-02
2
-6
/
+6
*
libipsec: Match IPsec policies against ports of processed packets
Tobias Brunner
2017-03-02
1
-1
/
+21
*
NEWS: Mention the new addrblock features
Martin Willi
2017-03-02
1
-0
/
+6
*
addrblock: Use dynamic TS narrowing instead of rejecting the whole CHILD_SA
Martin Willi
2017-03-02
1
-43
/
+28
*
addrblock: Support an optional non-strict mode accepting certs without addrblock
Martin Willi
2017-03-02
3
-3
/
+20
*
child-cfg: Always apply hosts to traffic selectors if proposing transport mode
Tobias Brunner
2017-02-27
1
-14
/
+19
*
traffic-selector: Allow calling set_address() for any traffic selector
Tobias Brunner
2017-02-27
3
-48
/
+63
*
Merge branch 'pki-addrblock'
Martin Willi
2017-02-27
9
-4
/
+218
|
\
|
*
pki: Add a note about constructing RFC 3779 compliant certificates to manpage
Martin Willi
2017-02-27
2
-0
/
+6
|
*
pki: Support an --addrblock option for issued certificates
Martin Willi
2017-02-27
2
-1
/
+22
|
*
pki: Support an --addrblock option for self-signed certificates
Martin Willi
2017-02-27
2
-0
/
+23
|
*
pki: Add a helper function parse traffic selectors from CIDR subnets or ranges
Martin Willi
2017-02-27
2
-0
/
+31
|
*
x509: Do not mark generated addrblock extension as critical
Martin Willi
2017-02-27
1
-2
/
+1
|
*
x509: Support encoding the RFC 3779 addrblock extension
Martin Willi
2017-02-27
1
-3
/
+134
|
*
builder: Define a builder part for X.509 RFC 3779 address blocks
Martin Willi
2017-02-27
2
-0
/
+3
|
/
*
plugin-loader: Fix hashing of registered plugin features
Tobias Brunner
2017-02-24
1
-1
/
+1
*
Version bump to 5.5.2dr5
5.5.2dr5
Andreas Steffen
2017-02-23
3
-4
/
+2528
*
Use of TPM 2.0 private keys for signatures via tpm plugin
Andreas Steffen
2017-02-22
10
-9
/
+468
*
Implement signatures with private keys bound to TPM 2.0
Andreas Steffen
2017-02-21
3
-8
/
+215
*
android: New release after fixing potential ANR issue
Tobias Brunner
2017-02-20
1
-2
/
+2
*
android: Send network change events from a separate thread via JNI
Tobias Brunner
2017-02-17
2
-4
/
+68
*
ikev1: Respond to DPDs for rekeyed IKE_SAs
Tobias Brunner
2017-02-17
2
-0
/
+10
*
ike-sa: Optionally try to migrate to the best path on routing priority changes
Martin Willi
2017-02-17
2
-1
/
+33
*
ikev2: Ignore roam events without MOBIKE but static local address
Tobias Brunner
2017-02-17
1
-0
/
+10
*
ike-cfg: Add helper function to determine if a given IP address was configured
Tobias Brunner
2017-02-17
2
-2
/
+46
*
Merge branch 'vici-updates'
Tobias Brunner
2017-02-16
39
-327
/
+1968
|
\
|
*
NEWS: VICI updates
Tobias Brunner
2017-02-16
1
-1
/
+15
|
*
vici: Only log messages if there actually is a listener
Tobias Brunner
2017-02-16
1
-0
/
+7
|
*
vici: Let has_event_listeners() actually check if clients are registered
Tobias Brunner
2017-02-16
1
-2
/
+4
|
*
vici: Add support for mediation extension
Tobias Brunner
2017-02-16
2
-1
/
+109
|
*
peer-cfg: Store mediated_by as name and not peer-cfg reference
Tobias Brunner
2017-02-16
6
-68
/
+95
|
*
vici: Include uniqueness policy in list-conns
Tobias Brunner
2017-02-16
1
-0
/
+2
|
*
swanctl: Add --rekey command
Tobias Brunner
2017-02-16
4
-1
/
+130
|
*
vici: Add command to initiate SA rekeying
Tobias Brunner
2017-02-16
2
-2
/
+118
|
*
vici: Use unique names for CHILD_SAs in the list-sas command
Tobias Brunner
2017-02-16
3
-4
/
+10
|
*
swanctl: Allow specifying pubkeys directly via 0x/0s prefix
Tobias Brunner
2017-02-16
1
-28
/
+38
|
*
vici: Add support to load CA certificates from tokens and paths in authority ...
Tobias Brunner
2017-02-16
3
-21
/
+130
|
*
vici: Add support to load certificates from file paths
Tobias Brunner
2017-02-16
2
-13
/
+68
|
*
vici: Add support to load certificates from tokens
Tobias Brunner
2017-02-16
2
-12
/
+163
|
*
swanctl: Add `token` secrets for keys on tokens/smartcards
Tobias Brunner
2017-02-16
2
-0
/
+106
|
*
vici: Add command to load a private key from a token
Tobias Brunner
2017-02-16
2
-3
/
+117
[next]