aboutsummaryrefslogtreecommitdiffstats
Commit message (Expand)AuthorAgeFilesLines
* Fixed two BLISS key type identifier stringsAndreas Steffen2015-03-161-2/+2
* charon-systemd: Add missing semicolonMartin Willi2015-03-161-1/+1
* osx: Include eap-gtc plugin in build instructionsMartin Willi2015-03-161-1/+1
* Added availability of TNC AR IP address to IMVs to NEWS5.3.0dr1Andreas Steffen2015-03-151-0/+4
* Create TPM TBOOT Measurement groupAndreas Steffen2015-03-151-0/+18
* vici: Use %u to print stats returned by mallinfo(3)Tobias Brunner2015-03-131-4/+4
* stroke: Use %u to print stats returned by mallinfo(3)Tobias Brunner2015-03-131-1/+1
* charon-systemd: Add support to configure user and group via strongswan.confTobias Brunner2015-03-131-6/+19
* eap-radius: Increase Acct-Session-ID string bufferMartin Willi2015-03-131-1/+1
* testing: Remove obsolete leftnexthop option from configsTobias Brunner2015-03-126-6/+0
* ikev2: Don't set old IKE_SA to REKEYING state during make-before-break reauthMartin Willi2015-03-111-1/+0
* ha: Destroy synced IKE_SA if no configuration is found during updateMartin Willi2015-03-101-0/+3
* ikev1: Don't handle DPD timeout job if IKE_SA got passiveMartin Willi2015-03-101-0/+6
* testing: Don't check for exact IKEv1 fragment sizeMartin Willi2015-03-101-2/+2
* testing: Fix active/passive role description in ha/both-active test caseMartin Willi2015-03-101-2/+2
* libipsec: Pass separate inbound/update flags to the IPsec SA managerMartin Willi2015-03-094-6/+10
* kernel-interface: Add a separate "update" flag to add_sa()Martin Willi2015-03-0910-17/+19
* tkm: Use the inbound flag do determine peer role in CHILD_SA exchangeMartin Willi2015-03-091-5/+1
* Revert "child-sa: Remove the obsolete update logic"Martin Willi2015-03-091-1/+6
* Revert "ha: Always install the CHILD_SAs with the inbound flag set to FALSE"Martin Willi2015-03-091-2/+2
* tkm: Disable RFC 7427 signature authenticationTobias Brunner2015-03-091-0/+4
* ikev2: Move code in pubkey authenticator's build() method into separate funct...Tobias Brunner2015-03-091-85/+123
* ikev2: Try all eligible signature schemesTobias Brunner2015-03-091-34/+71
* files: Add simple plugin to load files from file:// URIsTobias Brunner2015-03-097-1/+305
* daemon: Remove scheduled jobs before unloading pluginsTobias Brunner2015-03-091-1/+2
* scheduler: Add method to remove all scheduled jobsTobias Brunner2015-03-092-5/+21
* plugin-loader: Increase log level for warning about plugin features that fail...Tobias Brunner2015-03-091-3/+3
* tls-peer: Make sure to use the right trusted public key for peerTobias Brunner2015-03-091-4/+8
* pkcs11: Convert RFC 3279 ECDSA signatures when verifyingTobias Brunner2015-03-091-4/+33
* pkcs11: Properly encode RFC 3279 ECDSA signaturesTobias Brunner2015-03-091-2/+19
* pkcs11: Properly encode EC_POINTs created on a tokenTobias Brunner2015-03-091-5/+8
* pkcs11: Properly handle EC_POINTs returned as ASN.1 octet stringTobias Brunner2015-03-091-1/+43
* Updated products in imv databaseAndreas Steffen2015-03-081-0/+137
* attest: output trusted flag and device descriptionAndreas Steffen2015-03-081-8/+10
* Make access requestor IP address available to TNC serverAndreas Steffen2015-03-0824-244/+550
* testing: Update modified updown scripts to the latest templateTobias Brunner2015-03-0614-2589/+993
* Remove obsolete _updown_espmark scriptTobias Brunner2015-03-064-441/+1
* _updown: Remove obsolete stuff from default scriptTobias Brunner2015-03-061-192/+7
* ikev1: Set protocol ID and SPIs in INITIAL-CONTACT notification payloadsTobias Brunner2015-03-061-2/+13
* x509: Use subjectKeyIdentifier provided by issuer cert when checking CRL issuerTobias Brunner2015-03-061-18/+15
* kernel-pfkey: Add option to set receive buffer size of event socketTobias Brunner2015-03-063-0/+21
* use SHA512 for moon's BLISS signatureAndreas Steffen2015-03-042-2/+3
* Merge branch 'ikev2-signature-authentication'Tobias Brunner2015-03-0484-191/+1411
|\
| * NEWS: Introduce RFC 7427 signature authenticationTobias Brunner2015-03-041-0/+13
| * man: Add documentation about IKEv2 signature schemesTobias Brunner2015-03-041-0/+15
| * testing: Test classic public key authentication in ikev2/net2net-cert scenarioTobias Brunner2015-03-042-0/+2
| * testing: Disable signature authentication on dave in openssl-ikev2/ecdsa-cert...Tobias Brunner2015-03-042-2/+3
| * ikev2: Try all RSA signature schemes if none is configuredTobias Brunner2015-03-041-4/+19
| * ikev2: Consider signature schemes in rightauth when sending hash algorithmsTobias Brunner2015-03-041-14/+54
| * tkm: Implement hash algorithm storage methods of keymat_v2_t interfaceTobias Brunner2015-03-041-0/+29
generated by cgit v1.2.3 (git 2.25.1) at 2025-02-24 20:06:36 +0000