aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* Changed plugin constructors from plugin_create to plugin_name_plugin_create.Tobias Brunner2010-03-0261-67/+92
|
* Removing the plugin constructor declarations from the header files.Tobias Brunner2010-03-0259-295/+0
|
* renewed Authorization Authority certificateAndreas Steffen2010-02-276-45/+72
|
* NEWS about the android pluginMartin Willi2010-02-261-0/+2
|
* NEWS about the dynamic socket implementationMartin Willi2010-02-261-0/+9
|
* Link libstrongswan to the new plugins, tooMartin Willi2010-02-263-0/+3
|
* Add support for dynamic ports in load testerMartin Willi2010-02-261-2/+18
|
* Process ike_vendor task before ike_init, fixes support for private algs in IKEMartin Willi2010-02-262-5/+5
|
* Use message instead of attributes in hookMartin Willi2010-02-264-41/+36
|
* Set UDP encapsulation option on all socketsMartin Willi2010-02-261-5/+4
|
* Fixed starter left-/rightikeport keywordMartin Willi2010-02-262-1/+2
|
* Added locking to dynamic socket listMartin Willi2010-02-261-0/+17
|
* Include ports in ike_cfg equality checkMartin Willi2010-02-261-1/+3
|
* Added an initiator-only socket implementation which binds ports on demandMartin Willi2010-02-267-1/+790
|
* Removed obsolete daemon killMartin Willi2010-02-262-54/+29
|
* Do not kill daemon, just not use pluggable kernel interface if ↵Martin Willi2010-02-266-38/+121
| | | | initialization failed
* Pass sockets to bypass to kernel interface, allowing us to register them ↵Martin Willi2010-02-2611-274/+141
| | | | dynamically
* Migrated kernel_klips_ipsec to METHOD/INIT macrosMartin Willi2010-02-261-98/+60
|
* Migrated kernel_pfkey_ipsec to METHOD/INIT macrosMartin Willi2010-02-261-97/+60
|
* Migrated kernel_netlink_ipsec to METHOD/INIT macrosMartin Willi2010-02-261-93/+59
|
* Migrated kernel_interface wrapper to METHOD/INIT macrosMartin Willi2010-02-261-163/+109
|
* Added left-/rightikeport ipsec.conf options to use custom IKE portsMartin Willi2010-02-2611-3/+23
|
* Use src/dst ports as configured in ike_cfgMartin Willi2010-02-264-16/+41
|
* Store custom IKE src/dst ports on ike_cfgMartin Willi2010-02-269-14/+64
|
* Migrated ike_cfg_t to METHOD/INIT macrosMartin Willi2010-02-261-73/+53
|
* Migrated packet_t to METHOD/INIT macrosMartin Willi2010-02-261-62/+41
|
* Moved socket and socket-raw implementations to pluginsMartin Willi2010-02-2617-177/+743
|
* Force libdl if the android plugin is enabled. AC_SEARCH_LIBS thinks it's not ↵Tobias Brunner2010-02-251-0/+4
| | | | required, but on Android 2.0 it is.
* Link all plugins to libstrongswan.Tobias Brunner2010-02-2556-15/+56
|
* Avoid a race condition that could lead to a segmentation fault.Tobias Brunner2010-02-251-3/+7
| | | | | | | | | | | | Let's assume the callback function of a callback job returns JOB_REQUEUE_FAIR in one call and JOB_REQUEUE_NONE in the next. Before this fix, the thread executing the callback job would requeue the job before unregistering itself. If there was a context switch right after the job got requeued, and if the thread that requeued the job never got resumed until a second thread executed the job and, due to the return value of JOB_REQUEUE_NONE, destroyed it, then when the first thread eventually got resumed and tried to lock the mutex to unregister itself the pointer wouldn't be valid anymore, thus resulting in a segmentation fault.
* Use side-channel secured mpz_powm_sec of libgmp 5, if availableMartin Willi2010-02-184-1/+30
|
* Updated debian package for NetworkManager-strongswan-1.1.2Martin Willi2010-02-181-0/+7
|
* Version bump and NEWS for NetworkManager-strongswan-1.1.2 releaseMartin Willi2010-02-182-1/+8
|
* Updated german translationMartin Willi2010-02-181-57/+104
|
* Tooltips are translatableMartin Willi2010-02-181-9/+9
|
* Newer glade requires explicit vertical vboxesMartin Willi2010-02-181-0/+5
|
* Fixed lost renaimings in android pluginMartin Willi2010-02-181-13/+14
|
* Added Android plugin, currently provides DNS handling on AndroidMartin Willi2010-02-177-0/+413
|
* Invoke missing message() hook for incoming responsesMartin Willi2010-02-171-0/+1
|
* version bump to 4.4.0Andreas Steffen2010-02-152-4/+4
|
* Detect windows hosts to add specific workarounds.Tobias Brunner2010-02-122-0/+7
|
* Adding support for AES GMAC (RFC4543).Tobias Brunner2010-02-1215-103/+911
|
* Do not build own authentication data before we've verified others, we need ↵4.3.6Martin Willi2010-02-091-28/+33
| | | | the other identity in EAP
* hash-and-url avoids IP fragementation, cert and crl fetch based on IPv6Andreas Steffen2010-02-0626-48/+82
|
* generated hash-and-url files for rfc3779 certsAndreas Steffen2010-02-064-0/+0
|
* hash-and-url avoids IP fragementation, cert and crl fetch based on IPv6Andreas Steffen2010-02-066-12/+20
|
* hash-and-url avoids IP fragmentation, cert and crl fetch based on IPv6Andreas Steffen2010-02-056-12/+20
|
* IPv6 fragment and http access are not needed in PSK scenarioAndreas Steffen2010-02-054-21/+1
|
* hash-and-url avoids IP fragmentation, cert and crl fetch based on IPv6Andreas Steffen2010-02-057-12/+21
|
* Increased the buffer for netlink responses.Tobias Brunner2010-02-051-0/+1
| | | | | | | | If an error occurs while manipulating policies in the kernel, the original netlink request gets attached to the response. Prior to Linux 2.6.32 the size in the netlink header of the response was wrong.
generated by cgit v1.2.3 (git 2.25.1) at 2025-07-24 12:12:30 +0000