aboutsummaryrefslogtreecommitdiffstats
Commit message (Expand)AuthorAgeFilesLines
* Version bump to 5.2.2rc15.5.2rc1Andreas Steffen2017-03-212-3/+3
* testing: Updated OCSP certificate for carolAndreas Steffen2017-03-2113-448/+200
* Allow x25519 as an alias of the curve25519 KE algorithmAndreas Steffen2017-03-2084-171/+172
* Reference Edwards-curve signature RFCsAndreas Steffen2017-03-203-17/+19
* The tpm plugin offers random number generationAndreas Steffen2017-03-209-3/+211
* vici: Document how we pronounce the vici protocol and pluginMartin Willi2017-03-201-3/+3
* swanctl: Describe what happens when a FQDN is specified in local|remote_addrsTobias Brunner2017-03-201-0/+6
* man: Describe what happens when a FQDN is specified in left or rightNoel Kuntze2017-03-201-0/+5
* ikev1: First do PSK lookups based on identities then fallback to IPsTobias Brunner2017-03-201-36/+34
* testing: Fix URL for kernel sourcesTobias Brunner2017-03-201-1/+1
* ike-sa-manager: Remove superfluous assignmentThomas Egerer2017-03-161-4/+0
* ike: Log remote IP when deleting half-open IKE_SAsTobias Brunner2017-03-151-1/+2
* coverage: Exclude test suites and /usr from coverage reportTobias Brunner2017-03-151-1/+1
* travis: Create coverage report via codecov.ioTobias Brunner2017-03-153-3/+17
* Version bump to 5.5.2dr75.5.2dr7Andreas Steffen2017-03-062-2/+2
* aikpub2: Removed aikpub2 toolAndreas Steffen2017-03-065-335/+2
* pki: Add key object handle of smartcard or TPM private key as an argument to ...Andreas Steffen2017-03-062-5/+25
* utils: chunk_from_hex() skips optional 0x prefixAndreas Steffen2017-03-062-11/+18
* pki: Edited keyid parameter use in various pki man pages and usage outputsAndreas Steffen2017-03-0612-19/+34
* quick-mode: Correctly prepare NAT-OA payloads as responderTobias Brunner2017-03-061-8/+13
* Version bump to 5.5.2dr65.5.2dr6Andreas Steffen2017-03-033-3/+5
* Add keyid of smartcard or TPM private key as an argument to pki --reqAndreas Steffen2017-03-021-2/+15
* testing: load-testconfig script loads config from source dirTobias Brunner2017-03-022-67/+109
* libipsec: Enforce a minimum of 256 for SPIsTobias Brunner2017-03-021-3/+4
* libipsec: Fix min/max SPITobias Brunner2017-03-021-2/+2
* controller: Don't listen for CHILD_SA state changes when terminating IKE_SAsTobias Brunner2017-03-021-1/+0
* kernel: Make range of SPIs for IPsec SAs configurableTobias Brunner2017-03-025-8/+46
* settings: Add support for hex integers (0x prefix) via get_int()Tobias Brunner2017-03-021-1/+6
* libipsec: Log a packet's ports and protocol in case of a policy mismatchTobias Brunner2017-03-021-5/+7
* host: Don't log port if it is zeroTobias Brunner2017-03-022-6/+6
* libipsec: Match IPsec policies against ports of processed packetsTobias Brunner2017-03-021-1/+21
* NEWS: Mention the new addrblock featuresMartin Willi2017-03-021-0/+6
* addrblock: Use dynamic TS narrowing instead of rejecting the whole CHILD_SAMartin Willi2017-03-021-43/+28
* addrblock: Support an optional non-strict mode accepting certs without addrblockMartin Willi2017-03-023-3/+20
* child-cfg: Always apply hosts to traffic selectors if proposing transport modeTobias Brunner2017-02-271-14/+19
* traffic-selector: Allow calling set_address() for any traffic selectorTobias Brunner2017-02-273-48/+63
* Merge branch 'pki-addrblock'Martin Willi2017-02-279-4/+218
|\
| * pki: Add a note about constructing RFC 3779 compliant certificates to manpageMartin Willi2017-02-272-0/+6
| * pki: Support an --addrblock option for issued certificatesMartin Willi2017-02-272-1/+22
| * pki: Support an --addrblock option for self-signed certificatesMartin Willi2017-02-272-0/+23
| * pki: Add a helper function parse traffic selectors from CIDR subnets or rangesMartin Willi2017-02-272-0/+31
| * x509: Do not mark generated addrblock extension as criticalMartin Willi2017-02-271-2/+1
| * x509: Support encoding the RFC 3779 addrblock extensionMartin Willi2017-02-271-3/+134
| * builder: Define a builder part for X.509 RFC 3779 address blocksMartin Willi2017-02-272-0/+3
|/
* plugin-loader: Fix hashing of registered plugin featuresTobias Brunner2017-02-241-1/+1
* Version bump to 5.5.2dr55.5.2dr5Andreas Steffen2017-02-233-4/+2528
* Use of TPM 2.0 private keys for signatures via tpm pluginAndreas Steffen2017-02-2210-9/+468
* Implement signatures with private keys bound to TPM 2.0Andreas Steffen2017-02-213-8/+215
* android: New release after fixing potential ANR issueTobias Brunner2017-02-201-2/+2
* android: Send network change events from a separate thread via JNITobias Brunner2017-02-172-4/+68
generated by cgit v1.2.3 (git 2.25.1) at 2024-04-28 16:59:07 +0000