aboutsummaryrefslogtreecommitdiffstats
Commit message (Expand)AuthorAgeFilesLines
* Version bump to 5.5.2dr15.5.2dr1Andreas Steffen2016-10-303-3/+10
* Fixed in-place update of cached base and delta CRLsAndreas Steffen2016-10-301-4/+4
* Newer CRLs replace older versions of the CRL in the cacheAndreas Steffen2016-10-261-0/+39
* connmark: Add CAP_NET_RAW to capabilities keep listTim Kent2016-10-251-0/+6
* Version bump to 5.5.15.5.1Andreas Steffen2016-10-204-3/+13
* nm: Enable IKE fragmentationTobias Brunner2016-10-201-1/+1
* Version bump to 5.5.1rc25.5.1rc2Andreas Steffen2016-10-182-3/+3
* testing: Renewed expired certificatesAndreas Steffen2016-10-1813-140/+221
* added XOF dependencies of bliss and ntru pluginsAndreas Steffen2016-10-182-4/+26
* testing: enable MACsec in guest kernelAndreas Steffen2016-10-181-1/+1
* configure: Reorder mgf1 in list of crypto pluginsTobias Brunner2016-10-181-1/+1
* newhope: Fix Doxygen group nameTobias Brunner2016-10-141-1/+1
* libnttfft: Fix Doxygen groupTobias Brunner2016-10-141-1/+3
* Fixed some typos, courtesy of codespellTobias Brunner2016-10-142-3/+3
* newhope: Properly release allocated arrays if RNG can't be createdTobias Brunner2016-10-141-8/+8
* nm: Add D-Bus policy to the distributionTobias Brunner2016-10-141-0/+2
* nm: Version bump to 1.4.1Tobias Brunner2016-10-142-1/+6
* kernel-netlink: Fix get_route() interface determinationChristophe Gouault2016-10-121-2/+2
* Version bump to 5.5.1rc15.5.1rc1Andreas Steffen2016-10-114-4/+2491
* Merge branch 'cache-crls'Andreas Steffen2016-10-1126-32/+342
|\
| * Save both base and delta CRLs to diskAndreas Steffen2016-10-118-11/+73
| * vici: strongswan.conf cache_crls = yes saves fetched CRLs to diskAndreas Steffen2016-10-1120-6/+213
| * mem-cred: Support storing a delta CRL together with its baseTobias Brunner2016-10-111-8/+30
| * revocation: Cache valid CRL also if certificate is revokedTobias Brunner2016-10-111-10/+25
| * pki: Don't remove zero bytes in CRL serials anymoreTobias Brunner2016-10-111-6/+7
| * pki: Use serial of base CRL for delta CRLsTobias Brunner2016-10-111-1/+4
|/
* openssl: Fix AES-GCM with BoringSSLTobias Brunner2016-10-111-3/+3
* android: Identifiers for SHA2-base RSA signature schemes got renamedTobias Brunner2016-10-111-4/+4
* android: MGF1 implementation was moved to a pluginTobias Brunner2016-10-111-2/+1
* ldap: Fix crash in case of empty LDAP response for CRL fetchYannick CANN2016-10-061-2/+1
* libimcv: Add Debian 8.6 to databaseTobias Brunner2016-10-051-0/+18
* task-manager: Only trigger retransmit cleared alert if there was at least one...Tobias Brunner2016-10-052-2/+2
* Merge branch 'proposal-checks'Tobias Brunner2016-10-054-43/+201
|\
| * unit-tests: Enable optional logging in libcharon unit testsTobias Brunner2016-10-051-0/+17
| * unit-tests: Add more tests for proposal creationTobias Brunner2016-10-051-8/+62
| * proposal: Correctly add AES-GMAC for AH proposalsTobias Brunner2016-10-051-0/+41
| * proposal: Enforce separate proposals for AEAD and classic encryption algorithmsTobias Brunner2016-10-051-16/+22
| * proposal: Make sure there is a PRF defined in IKE proposalsTobias Brunner2016-10-051-14/+34
| * proposal: Make DH groups mandatory in IKE proposals parsed from stringsTobias Brunner2016-10-052-21/+40
| * ikev2: Respond with NO_PROPOSAL_CHOSEN if proposal without DH group was selectedTobias Brunner2016-10-051-0/+1
|/
* testing: Remove ikev2/default-keys scenarioTobias Brunner2016-10-0510-156/+0
* kernel-netlink: Consider RTA_SRC when looking for a source addressTobias Brunner2016-10-051-52/+134
* Merge branch 'priv-key-any'Tobias Brunner2016-10-0525-63/+301
|\
| * swanctl: Add 'private' directory/section to load any type of private keyTobias Brunner2016-10-054-5/+26
| * pki: Add generic 'priv' key type that loads any type of private keyTobias Brunner2016-10-0512-28/+59
| * openssl: Add a generic private key loaderTobias Brunner2016-10-057-18/+129
| * pkcs1: Support building of KEY_ANY private keysTobias Brunner2016-10-052-5/+73
| * pki: Drop -priv suffix to specify private key typesTobias Brunner2016-10-054-16/+23
|/
* ikev2: Only add NAT-D notifies to DPDs as initiatorTobias Brunner2016-10-041-8/+15
* pkcs11: Look for the CKA_ID of the cert if it doesn't match the subjectKeyIdRaphael Geissert2016-10-041-4/+152
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-14 18:01:38 +0000