aboutsummaryrefslogtreecommitdiffstats
Commit message (Expand)AuthorAgeFilesLines
* IPv6 fragment and http access are not needed in PSK scenarioAndreas Steffen2010-02-054-21/+1
* hash-and-url avoids IP fragmentation, cert and crl fetch based on IPv6Andreas Steffen2010-02-057-12/+21
* Increased the buffer for netlink responses.Tobias Brunner2010-02-051-0/+1
* IPv6 frag netfilter rule not needed anymoreAndreas Steffen2010-02-052-6/+0
* hash-and-url avoids IP fragmentation, cert and crl fetch based on IPv6Andreas Steffen2010-02-057-6/+21
* initialize variables to avoid compiler warningAndreas Steffen2010-02-051-2/+2
* Use destination address of ppp interfaces as nexthop in starters default rout...Martin Willi2010-02-051-6/+25
* init_fetch() changed to fetch_initialize()Andreas Steffen2010-02-051-1/+1
* use static IPsec policy netfilter rules in MOBIKE scenariosAndreas Steffen2010-02-0417-12/+273
* remove any charon.pid files remaining at the end of each scenarioAndreas Steffen2010-02-041-0/+11
* IPSEC_ROUTING_TABLE is now called routing_tableAndreas Steffen2010-02-031-1/+1
* differentiate between executed and displayed iptables commandsAndreas Steffen2010-02-031-5/+13
* Use child_updown hook in updown plugin, fixes doubled invocation of down scriptMartin Willi2010-02-031-47/+17
* added ikev2/inactivity-timeout scenarioAndreas Steffen2010-02-039-0/+99
* renamed init_fetch() to fetch_initialize()Andreas Steffen2010-02-022-2/+2
* Some whitespace and code cleanups concerning the mediation extension.Tobias Brunner2010-02-023-12/+10
* Join pluto's fetching thread instead of detaching it in order to avoid that t...Tobias Brunner2010-02-023-6/+26
* corrected captionsAndreas Steffen2010-02-011-2/+2
* warn if loaded local certificate is invalidAndreas Steffen2010-02-011-3/+5
* Updated NEWS about per-connection inactivity timeoutMartin Willi2010-01-271-3/+3
* Added a ipsec.conf "inactivity" option to configure inactivity timeout for CH...Martin Willi2010-01-279-27/+39
* Made inactivity_timeout a per CHILD_SA config optionMartin Willi2010-01-279-16/+41
* Refactored EAP payload, avoid unaligned word accessMartin Willi2010-01-211-103/+68
* Added a METHOD2() macro that implements a method for two different interfacesMartin Willi2010-01-211-1/+11
* Support RADIUS messages up to 4096 bytes, RADIUS EAP-Message fragmentationMartin Willi2010-01-193-9/+22
* Support TLS client authentication Extended Key Usage in x509 generationMartin Willi2010-01-146-21/+38
* Block the signals before the call to sigwait.Tobias Brunner2010-01-121-0/+1
* Support for closing CHILD/IKE_SA if a CHILD_SA is inactive.Martin Willi2010-01-125-0/+234
* Added strongswan.conf options to configure retransmission timeoutsMartin Willi2010-01-112-5/+28
* Added a "double" getter to libstrongswan settingsMartin Willi2010-01-112-0/+35
* Cast unaligned memcpy() args to char*, avoids over-optimization on ARMMartin Willi2010-01-111-4/+10
* added ikev2/rw-eap-sim-only-radius scenarioAndreas Steffen2010-01-1124-0/+465
* log EAP-only authentication proposalAndreas Steffen2010-01-111-3/+5
* send strongSwan Vendor ID in ikev2/alg-sha256-96 scenarioAndreas Steffen2010-01-113-0/+4
* pluto and charon are using the same strongSwan Vendor IDAndreas Steffen2010-01-111-1/+1
* Added NEWS about mutual EAP-only authenticationMartin Willi2010-01-071-0/+6
* EAP-MSCHAPv2 is indeed mutual, but is prone to MITM dictionary attacksMartin Willi2010-01-071-1/+1
* Support EAP-only authentication for mutual and key deriving EAP methodsMartin Willi2010-01-075-31/+96
* Indicate and dected support for EAP-only authenticationMartin Willi2010-01-072-7/+28
* Added NEWS for the new Vendor ID requirement for private use allocationsMartin Willi2010-01-071-1/+7
* Match to private use algorithms only if we know we are talking to strongSwanMartin Willi2010-01-078-22/+41
* Interpret private use BEET mode notify only if we know we are talking to stro...Martin Willi2010-01-071-1/+9
* Add an option to send a vendor ID, allows us to properly support private exte...Martin Willi2010-01-079-8/+205
* added some recent new attributes registered with IANAAndreas Steffen2010-01-072-3/+9
* ipsec pki --self|issue supports --pathlen option setting a path length constr...Andreas Steffen2009-12-315-5/+35
* make error message about missing MD4 hasher more explicitAndreas Steffen2009-12-301-1/+1
* differentiate EAP method initialization errorsAndreas Steffen2009-12-301-12/+18
* removed charon-specific load statement in pluto scenarioAndreas Steffen2009-12-262-10/+0
* Pluto's fetcher thread is now created via libstrongswan.Tobias Brunner2009-12-261-4/+11
* added RFC 3779 CAAndreas Steffen2009-12-2518-0/+409
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-08 00:14:32 +0000