aboutsummaryrefslogtreecommitdiffstats
Commit message (Expand)AuthorAgeFilesLines
* testing: Fix ALLOWED_HOSTS in strongTNC settings.iniTobias Brunner2017-02-162-2/+2
* testing: Fix swanctl/ocsp-disabled scenario after changing the log messagesTobias Brunner2017-02-161-2/+2
* revocation: More accurately describe the flags to disable OCSP/CRL validationTobias Brunner2017-02-152-10/+9
* child-sa: Do not install mark on inbound kernel SAEyal Birger2017-02-141-4/+1
* unit-tests: Allow default test timeout to be configured via compile optionThomas Egerer2017-02-141-0/+2
* tkm: Fix get_auth_octets() signatureTobias Brunner2017-02-131-1/+2
* kernel-netlink: Use RTA_SRC to specify route source in kernel-based lookupsMartin Willi2017-02-131-1/+8
* kernel-netlink: Use kernel-based route lookup if we do not install routesMartin Willi2017-02-131-1/+11
* swanctl: List CHILD_SA marks, if setMartin Willi2017-02-131-0/+18
* vici: Include the Netfilter marks in listed CHILD_SAsMartin Willi2017-02-132-0/+19
* vici: Explicitly set the Python encoding typeMartin Willi2017-02-131-4/+4
* Merge branch 'mid-sync'Tobias Brunner2017-02-0815-7/+1016
|\
| * unit-tests: Add test cases for MID sync exchangesTobias Brunner2017-02-083-0/+537
| * ikev2: Ignore IKEV2_MESSAGE_ID_SYNC notifies if extension is disabledTobias Brunner2017-02-082-10/+37
| * ikev2: Don't increase expected MID after handling MID sync messageTobias Brunner2017-02-082-3/+4
| * ikev2: Don't cache response to MID sync requestTobias Brunner2017-02-081-1/+11
| * ikev2: Accept INFORMATIONAL messages with MID 0 if used to sync MIDsTobias Brunner2017-02-081-3/+42
| * ikev2: Negotiate support for IKE message ID synchronisation during IKE_AUTHTobias Brunner2017-02-082-0/+12
| * ikev2: Add task to handle IKEV2_MESSAGE_ID_SYNC notifies as responderTobias Brunner2017-02-087-0/+343
| * ike: Publish getter for the current message ID on IKE_SATobias Brunner2017-02-082-1/+19
| * ike: Add getter for the current message ID to task managerTobias Brunner2017-02-083-1/+23
|/
* Merge branch 'bypass-lan'Tobias Brunner2017-02-0814-0/+907
|\
| * kernel-pfroute: Implement enumeration of local subnetsTobias Brunner2017-02-081-0/+194
| * bypass-lan: Allow ignoring or only considering subnets of specific interfacesTobias Brunner2017-02-085-6/+102
| * bypass-lan: Configure interface on bypass policyTobias Brunner2017-02-081-1/+6
| * kernel-netlink: Return interface name in local subnet enumeratorTobias Brunner2017-02-081-5/+15
| * kernel-interface: Add interface name to local subnet enumeratorTobias Brunner2017-02-084-4/+10
| * bypass-lan: Add plugin that installs bypass policies for locally attached sub...Tobias Brunner2017-02-087-0/+437
| * kernel-netlink: Implement enumerator for local subnetsTobias Brunner2017-02-081-0/+130
| * kernel-interface: Add method to enumerate locally attached subnetsTobias Brunner2017-02-083-0/+29
|/
* kernel-pfkey: Use the same priority range for trap and regular policiesTobias Brunner2017-02-081-15/+15
* kernel-netlink: Use the same priority range for trap and regular policiesTobias Brunner2017-02-081-14/+14
* kernel-netlink: Fix spacing in log message when policy is unchangedTobias Brunner2017-02-081-1/+1
* ikev1: Factor out IV and QM managementTobias Brunner2017-02-086-261/+500
* keymat: Allow keymat to modify signature scheme(s)Thomas Egerer2017-02-089-20/+52
* forecast: Mark correct port in UDP NAT-T ruleJames Laird-Wah2017-02-081-1/+1
* android: New release after adding translation for Simplified ChineseTobias Brunner2017-02-071-2/+2
* android: Add translation for Simplified ChineseTobias Brunner2017-02-076-4/+180
* settings: Fix purge if order differs from alphabetical orderTobias Brunner2017-02-071-1/+1
* eap-dynamic: Publish the get_auth() method of the wrapped EAP methodTobias Brunner2017-02-071-0/+12
* pkcs11: Fix documentation of load_certs optionTobias Brunner2017-02-061-2/+8
* ike-auth: Don't send INITIAL_CONTACT if remote ID contains wildcardsTobias Brunner2017-02-061-1/+2
* proposal: Copy SPI and proposal number from correct proposal in select()Tobias Brunner2017-02-065-8/+47
* kernel-netlink: Set NODAD flag for virtual IPv6 addressesTobias Brunner2017-02-061-10/+16
* kernel-netlink: Prefer matching label when selecting IPv6 source addressesTobias Brunner2017-02-061-3/+78
* kernel-netlink: Use correct 4 byte alignment for AH with IPv4Tobias Brunner2017-01-251-0/+5
* kernel-netlink: Allow change of Netlink socket receive buffer sizeThomas Egerer2017-01-252-0/+61
* kernel-pfkey: Set state to SADB_SASTATE_MATURE when adding/updating SAsTobias Brunner2017-01-251-0/+2
* kernel-pfroute: Don't set a gateway if it is of a different address family th...Tobias Brunner2017-01-251-1/+2
* libipsec: Add support for AES and Camellia in CCM modeTobias Brunner2017-01-251-3/+16
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-11 04:54:15 +0000