aboutsummaryrefslogtreecommitdiffstats
Commit message (Expand)AuthorAgeFilesLines
...
| * proposal: Make DH groups mandatory in IKE proposals parsed from stringsTobias Brunner2016-10-052-21/+40
| * ikev2: Respond with NO_PROPOSAL_CHOSEN if proposal without DH group was selectedTobias Brunner2016-10-051-0/+1
|/
* testing: Remove ikev2/default-keys scenarioTobias Brunner2016-10-0510-156/+0
* kernel-netlink: Consider RTA_SRC when looking for a source addressTobias Brunner2016-10-051-52/+134
* Merge branch 'priv-key-any'Tobias Brunner2016-10-0525-63/+301
|\
| * swanctl: Add 'private' directory/section to load any type of private keyTobias Brunner2016-10-054-5/+26
| * pki: Add generic 'priv' key type that loads any type of private keyTobias Brunner2016-10-0512-28/+59
| * openssl: Add a generic private key loaderTobias Brunner2016-10-057-18/+129
| * pkcs1: Support building of KEY_ANY private keysTobias Brunner2016-10-052-5/+73
| * pki: Drop -priv suffix to specify private key typesTobias Brunner2016-10-054-16/+23
|/
* ikev2: Only add NAT-D notifies to DPDs as initiatorTobias Brunner2016-10-041-8/+15
* pkcs11: Look for the CKA_ID of the cert if it doesn't match the subjectKeyIdRaphael Geissert2016-10-041-4/+152
* nm: Make global CA directory configurableTobias Brunner2016-10-043-1/+6
* Merge branch 'ikev1-rekey-deletion'Tobias Brunner2016-10-042-11/+15
|\
| * ikev1: Activate task to delete the IKE_SA in state IKE_REKEYINGTobias Brunner2016-10-041-0/+8
| * ikev1: Delete Quick Mode SAs before the ISAKMP SATobias Brunner2016-10-041-2/+2
| * ikev1: Send DELETE for rekeyed IKE_SAsTobias Brunner2016-10-041-9/+5
|/
* starter: Install an empty ipsec.secrets fileTobias Brunner2016-10-043-2/+4
* starter: Don't generate a key/certificate if ipsec.secrets does not existTobias Brunner2016-10-042-70/+0
* watcher: Avoid allocations due to enumeratorsTobias Brunner2016-10-041-37/+83
* Merge branch 'enable-fragmentation'Tobias Brunner2016-10-046-13/+16
|\
| * vici: Enable IKE fragmentation by defaultTobias Brunner2016-10-042-4/+4
| * starter: Enable IKE fragmentation by defaultTobias Brunner2016-10-042-4/+6
| * ike: Set default IKE fragment size to 1280Tobias Brunner2016-10-042-5/+6
|/
* Merge commit 'derived-keys'Tobias Brunner2016-10-047-91/+241
|\
| * ikev2: Send derived CHILD_SA keys to the busTobias Brunner2016-10-041-26/+43
| * ikev2: Send derived IKE_SA keys to busTobias Brunner2016-10-041-26/+30
| * ikev1: Send derived CHILD_SA keys to the busTobias Brunner2016-10-041-14/+26
| * ikev1: Send derived IKE_SA keys to busTobias Brunner2016-10-041-14/+11
| * bus: Add new hooks for derived IKE_SA and CHILD_SA keysTobias Brunner2016-10-043-11/+131
|/
* nm: Remove dummy TUN deviceTobias Brunner2016-10-041-36/+0
* nm: Fix comment in service file in /etc/NetworkManager/VPNTobias Brunner2016-10-041-1/+1
* nm: Remove generated service file in `make clean`Tobias Brunner2016-10-041-1/+1
* nm: Don't add generated AppStream metadata to tarballTobias Brunner2016-10-041-1/+0
* bus: Fix maximum log levels when mixing log/vlog implementing loggersTobias Brunner2016-09-301-12/+20
* kernel-netlink: Pass zero mark to kernel if mask is setTobias Brunner2016-09-301-2/+2
* kernel-netlink: Support configuring XFRM policy hashing thresholdsTobias Brunner2016-09-302-0/+136
* include: Update xfrm.h to Linux v4.3Martin Willi2016-09-301-0/+22
* Merge branch 'fwd-out-policies-optional'Tobias Brunner2016-09-286-44/+93
|\
| * child-sa: Only install outbound FWD policies if explicitly configuredTobias Brunner2016-09-281-14/+27
| * testing: Enable outbound FWD policies in swanctl/manual-prio scenarioTobias Brunner2016-09-281-5/+6
| * vici: Make installation of outbound FWD policies configurableTobias Brunner2016-09-282-25/+36
| * child-cfg: Add setting that controls whether outbound FWD policies are installedTobias Brunner2016-09-282-0/+24
|/
* kernel-netlink: Update cached reqid when updating policiesTobias Brunner2016-09-281-0/+2
* testing: Added swanctl/net2net-multicast scenarioAndreas Steffen2016-09-279-0/+166
* testing: Added ikev2/net2net-multicast scenarioAndreas Steffen2016-09-279-0/+125
* travis: Use a more recent OS X imageTobias Brunner2016-09-272-2/+3
* Version bump to 5.5.1dr55.5.1dr5Andreas Steffen2016-09-223-2/+5
* testing: Added swanctl/net2net-sha3-rsa-cert and swanctl/rw-eap-tls-sha3-rsa ...Andreas Steffen2016-09-2246-0/+1139
* gmp: Support of SHA-3 RSA signaturesAndreas Steffen2016-09-2224-167/+274
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-09 20:17:35 +0000