| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| ... | |
| | | |
|
| | |
| |
| |
| | |
In particular because of leak-detective.
|
| | |
| |
| |
| |
| |
| | |
Some of these are pretty broad, so maybe an alternative option is to
not use the soup plugin in the openssl-ikev2/rw-suite-b* scenarios. But
the plugin is not tested anywhere else so lets go with this for now.
|
| | |
| |
| |
| |
| | |
The soup plugin is already used in the openssl-ikev2/rw-suite-b*
scenarios.
|
| | | |
|
| | | |
|
| | | |
|
| | | |
|
| | | |
|
| | | |
|
| | | |
|
| | | |
|
| | | |
|
| | | |
|
| |/ |
|
| | |
|
| |
|
|
| |
That's required due to a bug in MinGW 3.1.0 that's shipped with trusty.
|
| |
|
|
| |
Fixes: 4e8f5a189cce ("travis: Add apidoc check")
|
| |
|
|
| |
They build fine on Ubuntu 14.04.
|
| |\
| |
| |
| |
| | |
Removes the code and helper files related to the unused and unmaintained
Maemo port.
|
| | | |
|
| | | |
|
| |/ |
|
| | |
|
| | |
|
| |\ |
|
| |/
|
|
|
|
|
|
|
|
| |
When fresh CRLs are released with a high update frequency (e.g.
every 24 hours) or OCSP is used then the certificate cache gets
quickly filled with stale CRLs or OCSP responses. The new VICI
flush-certs command allows to flush e.g. cached CRLs or OCSP
responses only. Without the type argument all kind of certificates
(e.g. also received end entity and intermediate CA certificates)
are purged.
|
| |
|
|
|
|
|
| |
We wrap the auth-cfg object and its contents, so there is no need to get
an additional reference for the enumerated certificate.
Fixes a44bb9345f04 ("merged multi-auth branch back into trunk")
|
| |
|
|
|
|
|
|
|
| |
This might be helpful to get the complete picture of the installed
rules. `-c` is currently not used as the counters that are added in
front of every rule make the output quite hard to read and the counters
are already provided in the accompanying `iptables -v -L` output.
Fixes #2111.
|
| |
|
|
|
|
| |
This is useful in scenarios that e.g. use NAT and/or marks.
References #2111.
|
| | |
|
| |
|
|
|
|
|
|
|
| |
Some tasks might get removed immediately once the IKE_SA_INIT response has
been handled even if there were notifies that require a restart of the
IKE_SA (e.g. COOKIE or INVALID_KE_PAYLOAD). Such a task is ike_vendor,
which caused vendor IDs not to get sent in a retry. This change ensures
all required tasks are queued after the reset, which some callers did
already anyway.
|
| |
|
|
| |
This might be useful for custom implementations of keymat_t.
|
| |
|
|
|
| |
This requires at least Ubuntu 14.04 (the Doxygen version in 12.04 has some
issues with our Doxyfile and prints lots of warnings).
|
| | |
|
| | |
|
| |\
| |
| |
| |
| |
| |
| | |
Provides fixes and changes for compatibility with current NM releases.
Closes strongswan/strongswan#15.
Fixes #797.
|
| | |
| |
| |
| | |
This seems to be required by newer versions.
|
| | |
| |
| |
| |
| |
| | |
This updates the auth dialog so that passwords are properly retrieved
(e.g. for the nm-applet). It also adds support for external UI mode and
properly handles secret flags.
|
| | | |
|
| | |
| |
| |
| | |
We already have this restriction in the auth-dialog.
|
| | |
| |
| |
| |
| |
| | |
This is probably a good idea to do to signal there's significant changes in
dependencies to the distro package maintainers with libnm port and associated
changes.
|
| | |
| |
| |
| | |
It's been released years ago; we depend on newer stuff than that now.
|
| | |
| |
| |
| |
| |
| |
| |
| | |
libgnomeui is long deprecated.
There's one functional difference: the choice to save the passwords is gone.
The password flags and saved password should be set in the preferences dialog,
but this commit does not fix that.
|
| | |
| |
| |
| |
| | |
Hiding and showing the items is not ideal, since it leaves the spacing
in place and the layout gets really messy.
|
| | |
| |
| |
| |
| |
| |
| |
| |
| | |
It was only possible to set the password from the authentication dialog,
which is not ideal; as it requires a connection attempt.
This adds an input entry along with a primary icon from libnma/libnm-gtk
which allows selecting the backend and flags for the password (system, session
agent, always ask or empty).
|
| | | |
|
| | |
| |
| |
| |
| | |
libnm replaces libnm-glib. This will make sense with port to libnm and is done
to reduce line noise in that commit.
|
| |/
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
They're both the same now. We'll port the new one to libnm in follow-up commits.
NetworkManager 1.2 (which is currently versioned as 1.1.0) is going to bring
some new ABI while still supporting the old one. There's new VPN service and
UI plugin APIs in libnm.
There's one difficulty though -- the connection editor 1.2 will be linked
against libnm and a new libnma library it will provide (as opposed to
libnm-glib and libnm-gtk), thus will be incapable of loading of property
plugins that are linked with the old libraries (due to glib type system
limitations).
However, we must not break support for other connection editors (GNOME control
center, older versions of nm-connection-editor, etc.) therefore we need
to build two versions of the property plugin. NetworkManager 1.2's libnm will
provide a shim that makes it easy.
|
| |\
| |
| |
| |
| |
| |
| | |
Provides several fixes and cleanups for the NM build (does not include
fixes for recent NM versions).
Closes strongswan/strongswan#39.
|
