| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| ... | |
| * | version bump to 4.4.0 | Andreas Steffen | 2010-02-15 | 2 | -4/+4 |
| * | Detect windows hosts to add specific workarounds. | Tobias Brunner | 2010-02-12 | 2 | -0/+7 |
| * | Adding support for AES GMAC (RFC4543). | Tobias Brunner | 2010-02-12 | 15 | -103/+911 |
| * | Do not build own authentication data before we've verified others, we need th...4.3.6 | Martin Willi | 2010-02-09 | 1 | -28/+33 |
| * | hash-and-url avoids IP fragementation, cert and crl fetch based on IPv6 | Andreas Steffen | 2010-02-06 | 26 | -48/+82 |
| * | generated hash-and-url files for rfc3779 certs | Andreas Steffen | 2010-02-06 | 4 | -0/+0 |
| * | hash-and-url avoids IP fragementation, cert and crl fetch based on IPv6 | Andreas Steffen | 2010-02-06 | 6 | -12/+20 |
| * | hash-and-url avoids IP fragmentation, cert and crl fetch based on IPv6 | Andreas Steffen | 2010-02-05 | 6 | -12/+20 |
| * | IPv6 fragment and http access are not needed in PSK scenario | Andreas Steffen | 2010-02-05 | 4 | -21/+1 |
| * | hash-and-url avoids IP fragmentation, cert and crl fetch based on IPv6 | Andreas Steffen | 2010-02-05 | 7 | -12/+21 |
| * | Increased the buffer for netlink responses. | Tobias Brunner | 2010-02-05 | 1 | -0/+1 |
| * | IPv6 frag netfilter rule not needed anymore | Andreas Steffen | 2010-02-05 | 2 | -6/+0 |
| * | hash-and-url avoids IP fragmentation, cert and crl fetch based on IPv6 | Andreas Steffen | 2010-02-05 | 7 | -6/+21 |
| * | initialize variables to avoid compiler warning | Andreas Steffen | 2010-02-05 | 1 | -2/+2 |
| * | Use destination address of ppp interfaces as nexthop in starters default rout... | Martin Willi | 2010-02-05 | 1 | -6/+25 |
| * | init_fetch() changed to fetch_initialize() | Andreas Steffen | 2010-02-05 | 1 | -1/+1 |
| * | use static IPsec policy netfilter rules in MOBIKE scenarios | Andreas Steffen | 2010-02-04 | 17 | -12/+273 |
| * | remove any charon.pid files remaining at the end of each scenario | Andreas Steffen | 2010-02-04 | 1 | -0/+11 |
| * | IPSEC_ROUTING_TABLE is now called routing_table | Andreas Steffen | 2010-02-03 | 1 | -1/+1 |
| * | differentiate between executed and displayed iptables commands | Andreas Steffen | 2010-02-03 | 1 | -5/+13 |
| * | Use child_updown hook in updown plugin, fixes doubled invocation of down script | Martin Willi | 2010-02-03 | 1 | -47/+17 |
| * | added ikev2/inactivity-timeout scenario | Andreas Steffen | 2010-02-03 | 9 | -0/+99 |
| * | renamed init_fetch() to fetch_initialize() | Andreas Steffen | 2010-02-02 | 2 | -2/+2 |
| * | Some whitespace and code cleanups concerning the mediation extension. | Tobias Brunner | 2010-02-02 | 3 | -12/+10 |
| * | Join pluto's fetching thread instead of detaching it in order to avoid that t... | Tobias Brunner | 2010-02-02 | 3 | -6/+26 |
| * | corrected captions | Andreas Steffen | 2010-02-01 | 1 | -2/+2 |
| * | warn if loaded local certificate is invalid | Andreas Steffen | 2010-02-01 | 1 | -3/+5 |
| * | Updated NEWS about per-connection inactivity timeout | Martin Willi | 2010-01-27 | 1 | -3/+3 |
| * | Added a ipsec.conf "inactivity" option to configure inactivity timeout for CH... | Martin Willi | 2010-01-27 | 9 | -27/+39 |
| * | Made inactivity_timeout a per CHILD_SA config option | Martin Willi | 2010-01-27 | 9 | -16/+41 |
| * | Refactored EAP payload, avoid unaligned word access | Martin Willi | 2010-01-21 | 1 | -103/+68 |
| * | Added a METHOD2() macro that implements a method for two different interfaces | Martin Willi | 2010-01-21 | 1 | -1/+11 |
| * | Support RADIUS messages up to 4096 bytes, RADIUS EAP-Message fragmentation | Martin Willi | 2010-01-19 | 3 | -9/+22 |
| * | Support TLS client authentication Extended Key Usage in x509 generation | Martin Willi | 2010-01-14 | 6 | -21/+38 |
| * | Block the signals before the call to sigwait. | Tobias Brunner | 2010-01-12 | 1 | -0/+1 |
| * | Support for closing CHILD/IKE_SA if a CHILD_SA is inactive. | Martin Willi | 2010-01-12 | 5 | -0/+234 |
| * | Added strongswan.conf options to configure retransmission timeouts | Martin Willi | 2010-01-11 | 2 | -5/+28 |
| * | Added a "double" getter to libstrongswan settings | Martin Willi | 2010-01-11 | 2 | -0/+35 |
| * | Cast unaligned memcpy() args to char*, avoids over-optimization on ARM | Martin Willi | 2010-01-11 | 1 | -4/+10 |
| * | added ikev2/rw-eap-sim-only-radius scenario | Andreas Steffen | 2010-01-11 | 24 | -0/+465 |
| * | log EAP-only authentication proposal | Andreas Steffen | 2010-01-11 | 1 | -3/+5 |
| * | send strongSwan Vendor ID in ikev2/alg-sha256-96 scenario | Andreas Steffen | 2010-01-11 | 3 | -0/+4 |
| * | pluto and charon are using the same strongSwan Vendor ID | Andreas Steffen | 2010-01-11 | 1 | -1/+1 |
| * | Added NEWS about mutual EAP-only authentication | Martin Willi | 2010-01-07 | 1 | -0/+6 |
| * | EAP-MSCHAPv2 is indeed mutual, but is prone to MITM dictionary attacks | Martin Willi | 2010-01-07 | 1 | -1/+1 |
| * | Support EAP-only authentication for mutual and key deriving EAP methods | Martin Willi | 2010-01-07 | 5 | -31/+96 |
| * | Indicate and dected support for EAP-only authentication | Martin Willi | 2010-01-07 | 2 | -7/+28 |
| * | Added NEWS for the new Vendor ID requirement for private use allocations | Martin Willi | 2010-01-07 | 1 | -1/+7 |
| * | Match to private use algorithms only if we know we are talking to strongSwan | Martin Willi | 2010-01-07 | 8 | -22/+41 |
| * | Interpret private use BEET mode notify only if we know we are talking to stro... | Martin Willi | 2010-01-07 | 1 | -1/+9 |
