aboutsummaryrefslogtreecommitdiffstats
Commit message (Expand)AuthorAgeFilesLines
* conf: Add documentation for new osx-attr optionTobias Brunner2015-08-282-0/+4
* pki: Add new type options to --issue command usage outputTobias Brunner2015-08-271-2/+2
* conf: Fix declaration of default values for imc-hcd optionsTobias Brunner2015-08-271-5/+5
* starter: Remove documentation for starter.load optionTobias Brunner2015-08-271-3/+0
* eap-ttls: Limit maximum length of tunneled EAP packet to EAP-TTLS packetTobias Brunner2015-08-271-1/+8
* trap-manager: Cleanup local address in error casesTobias Brunner2015-08-271-0/+2
* imv-os: Properly free strings for invalid input in pacmanTobias Brunner2015-08-271-0/+11
* ha: Close control FIFO if it is not validTobias Brunner2015-08-271-0/+4
* swanctl: Correctly build man page in out-of-tree builds from the repositoryTobias Brunner2015-08-271-1/+1
* Fixed some typos, courtesy of codespellTobias Brunner2015-08-273-3/+3
* Fix some Doxygen issuesTobias Brunner2015-08-277-8/+11
* unit-tests: Additional test cases to increase coverageTobias Brunner2015-08-272-9/+611
* traffic-selector: Use calc_netbits() in RFC 3779 constructorTobias Brunner2015-08-271-2/+1
* ike: Fix half-open count for initiating SAs when initially checked inTobias Brunner2015-08-271-0/+6
* ike: Only consider number of half-open SAs as responder when deciding whether...Tobias Brunner2015-08-276-19/+45
* Version bump to 5.3.3rc1Andreas Steffen2015-08-251-1/+1
* Added some spaces in swanctl.confAndreas Steffen2015-08-252-8/+8
* vici: Handle closed sockets in the Ruby gemEvan Broder2015-08-241-1/+5
* Merge branch 'starter-kernel-flush'Tobias Brunner2015-08-216-34/+71
|\
| * testing: Let test scenarios fail if IPsec SAs or policies are not removedTobias Brunner2015-08-211-0/+18
| * testing: Flush state and policies before every scenarioTobias Brunner2015-08-211-0/+8
| * starter: Don't flush SAs in the kernelTobias Brunner2015-08-213-14/+0
| * starter: Don't flush policies in the kernelTobias Brunner2015-08-211-1/+0
| * kernel-pfkey: Only flush SAs of types we actually manageTobias Brunner2015-08-211-13/+26
| * kernel-netlink: Only flush SAs of types we actually manageTobias Brunner2015-08-211-6/+19
|/
* Merge branch 'init-limits'Tobias Brunner2015-08-2120-21/+171
|\
| * vici: Optionally check limits when initiating connectionsTobias Brunner2015-08-212-1/+7
| * vici: Add get_bool() convenience getter for VICI messagesTobias Brunner2015-08-213-0/+94
| * controller: Optionally adhere to init limits also when initiating IKE_SAsTobias Brunner2015-08-2115-20/+71
| * ike: Also track initiating IKE_SAs as half-openTobias Brunner2015-08-211-1/+0
|/
* stroke: Allow %any as local addressTobias Brunner2015-08-211-3/+7
* stroke: Add an option to disable side-swapping of configuration optionsTobias Brunner2015-08-212-33/+51
* ikev1: Assign different job priorities for inbound IKEv1 messagesTobias Brunner2015-08-211-2/+12
* testing: Fix typo in p2pnat/behind-same-nat scenarioTobias Brunner2015-08-211-2/+2
* child-rekey: Don't add a REKEY_SA notify if the child-create task is deleting...Tobias Brunner2015-08-211-6/+9
* child-create: Cache proposed IPsec protocolTobias Brunner2015-08-211-10/+13
* child-create: Don't attempt to delete the SA if we don't have all the informa...Tobias Brunner2015-08-211-8/+10
* child-rekey: Remove redundant migrate() call for child-create sub-taskTobias Brunner2015-08-211-2/+1
* child-create: Fix crash when retrying CHILD_SA rekeying due to a DH group mis...Tobias Brunner2015-08-211-0/+1
* auth-cfg: Don't enforce EAP_RADIUSTobias Brunner2015-08-211-1/+2
* testing: Add missing sim_files file to ikev2/rw-eap-sim-radius scenarioTobias Brunner2015-08-211-0/+3
* testing: alice is RADIUS server in the ikev2/rw-eap-sim-radius scenarioTobias Brunner2015-08-211-0/+4
* testing: Print triplets.dat files of clients in EAP-SIM scenariosTobias Brunner2015-08-214-0/+7
* Merge branch 'stroke-ca-sections'Tobias Brunner2015-08-207-168/+446
|\
| * stroke: Change how CA certificates are storedTobias Brunner2015-08-205-58/+285
| * stroke: Combine CA certificate load methodsTobias Brunner2015-08-201-82/+74
| * stroke: Atomically replace CA and AA certificates when reloading themTobias Brunner2015-08-201-34/+45
| * mem-cred: We don't need a write lock when looking for a certificateTobias Brunner2015-08-201-1/+1
| * mem-cred: Add a method to atomically replace all certificatesTobias Brunner2015-08-202-10/+58
|/
* ikev1: Fix handling of overlapping Quick Mode exchangesTobias Brunner2015-08-203-2/+70
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-14 18:36:29 +0000