aboutsummaryrefslogtreecommitdiffstats
Commit message (Expand)AuthorAgeFilesLines
...
* android: MGF1 implementation was moved to a pluginTobias Brunner2016-10-111-2/+1
* ldap: Fix crash in case of empty LDAP response for CRL fetchYannick CANN2016-10-061-2/+1
* libimcv: Add Debian 8.6 to databaseTobias Brunner2016-10-051-0/+18
* task-manager: Only trigger retransmit cleared alert if there was at least one...Tobias Brunner2016-10-052-2/+2
* Merge branch 'proposal-checks'Tobias Brunner2016-10-054-43/+201
|\
| * unit-tests: Enable optional logging in libcharon unit testsTobias Brunner2016-10-051-0/+17
| * unit-tests: Add more tests for proposal creationTobias Brunner2016-10-051-8/+62
| * proposal: Correctly add AES-GMAC for AH proposalsTobias Brunner2016-10-051-0/+41
| * proposal: Enforce separate proposals for AEAD and classic encryption algorithmsTobias Brunner2016-10-051-16/+22
| * proposal: Make sure there is a PRF defined in IKE proposalsTobias Brunner2016-10-051-14/+34
| * proposal: Make DH groups mandatory in IKE proposals parsed from stringsTobias Brunner2016-10-052-21/+40
| * ikev2: Respond with NO_PROPOSAL_CHOSEN if proposal without DH group was selectedTobias Brunner2016-10-051-0/+1
|/
* testing: Remove ikev2/default-keys scenarioTobias Brunner2016-10-0510-156/+0
* kernel-netlink: Consider RTA_SRC when looking for a source addressTobias Brunner2016-10-051-52/+134
* Merge branch 'priv-key-any'Tobias Brunner2016-10-0525-63/+301
|\
| * swanctl: Add 'private' directory/section to load any type of private keyTobias Brunner2016-10-054-5/+26
| * pki: Add generic 'priv' key type that loads any type of private keyTobias Brunner2016-10-0512-28/+59
| * openssl: Add a generic private key loaderTobias Brunner2016-10-057-18/+129
| * pkcs1: Support building of KEY_ANY private keysTobias Brunner2016-10-052-5/+73
| * pki: Drop -priv suffix to specify private key typesTobias Brunner2016-10-054-16/+23
|/
* ikev2: Only add NAT-D notifies to DPDs as initiatorTobias Brunner2016-10-041-8/+15
* pkcs11: Look for the CKA_ID of the cert if it doesn't match the subjectKeyIdRaphael Geissert2016-10-041-4/+152
* nm: Make global CA directory configurableTobias Brunner2016-10-043-1/+6
* Merge branch 'ikev1-rekey-deletion'Tobias Brunner2016-10-042-11/+15
|\
| * ikev1: Activate task to delete the IKE_SA in state IKE_REKEYINGTobias Brunner2016-10-041-0/+8
| * ikev1: Delete Quick Mode SAs before the ISAKMP SATobias Brunner2016-10-041-2/+2
| * ikev1: Send DELETE for rekeyed IKE_SAsTobias Brunner2016-10-041-9/+5
|/
* starter: Install an empty ipsec.secrets fileTobias Brunner2016-10-043-2/+4
* starter: Don't generate a key/certificate if ipsec.secrets does not existTobias Brunner2016-10-042-70/+0
* watcher: Avoid allocations due to enumeratorsTobias Brunner2016-10-041-37/+83
* Merge branch 'enable-fragmentation'Tobias Brunner2016-10-046-13/+16
|\
| * vici: Enable IKE fragmentation by defaultTobias Brunner2016-10-042-4/+4
| * starter: Enable IKE fragmentation by defaultTobias Brunner2016-10-042-4/+6
| * ike: Set default IKE fragment size to 1280Tobias Brunner2016-10-042-5/+6
|/
* Merge commit 'derived-keys'Tobias Brunner2016-10-047-91/+241
|\
| * ikev2: Send derived CHILD_SA keys to the busTobias Brunner2016-10-041-26/+43
| * ikev2: Send derived IKE_SA keys to busTobias Brunner2016-10-041-26/+30
| * ikev1: Send derived CHILD_SA keys to the busTobias Brunner2016-10-041-14/+26
| * ikev1: Send derived IKE_SA keys to busTobias Brunner2016-10-041-14/+11
| * bus: Add new hooks for derived IKE_SA and CHILD_SA keysTobias Brunner2016-10-043-11/+131
|/
* nm: Remove dummy TUN deviceTobias Brunner2016-10-041-36/+0
* nm: Fix comment in service file in /etc/NetworkManager/VPNTobias Brunner2016-10-041-1/+1
* nm: Remove generated service file in `make clean`Tobias Brunner2016-10-041-1/+1
* nm: Don't add generated AppStream metadata to tarballTobias Brunner2016-10-041-1/+0
* bus: Fix maximum log levels when mixing log/vlog implementing loggersTobias Brunner2016-09-301-12/+20
* kernel-netlink: Pass zero mark to kernel if mask is setTobias Brunner2016-09-301-2/+2
* kernel-netlink: Support configuring XFRM policy hashing thresholdsTobias Brunner2016-09-302-0/+136
* include: Update xfrm.h to Linux v4.3Martin Willi2016-09-301-0/+22
* Merge branch 'fwd-out-policies-optional'Tobias Brunner2016-09-286-44/+93
|\
| * child-sa: Only install outbound FWD policies if explicitly configuredTobias Brunner2016-09-281-14/+27
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-10 15:04:39 +0000