| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | Use child_updown hook in updown plugin, fixes doubled invocation of down script | Martin Willi | 2010-02-03 | 1 | -47/+17 |
| * | Some whitespace and code cleanups concerning the mediation extension. | Tobias Brunner | 2010-02-02 | 1 | -4/+1 |
| * | Added a ipsec.conf "inactivity" option to configure inactivity timeout for CH... | Martin Willi | 2010-01-27 | 1 | -1/+2 |
| * | Made inactivity_timeout a per CHILD_SA config option | Martin Willi | 2010-01-27 | 6 | -7/+7 |
| * | Support RADIUS messages up to 4096 bytes, RADIUS EAP-Message fragmentation | Martin Willi | 2010-01-19 | 3 | -9/+22 |
| * | Support TLS client authentication Extended Key Usage in x509 generation | Martin Willi | 2010-01-14 | 1 | -2/+3 |
| * | EAP-MSCHAPv2 is indeed mutual, but is prone to MITM dictionary attacks | Martin Willi | 2010-01-07 | 1 | -1/+1 |
| * | make error message about missing MD4 hasher more explicit | Andreas Steffen | 2009-12-30 | 1 | -1/+1 |
| * | Adapted the load_tester kernel-interface to the changes introduced in 6ec949e02. | Tobias Brunner | 2009-12-23 | 1 | -2/+3 |
| * | Whitespace cleanup. | Tobias Brunner | 2009-12-23 | 2 | -33/+33 |
| * | Using the thread wrapper in charon, libstrongswan and their plugins. | Tobias Brunner | 2009-12-23 | 11 | -40/+52 |
| * | Separated the public interfaces of the threading primitives. | Tobias Brunner | 2009-12-23 | 17 | -17/+17 |
| * | Moved mutex.c to a separate folder in order to cleanly wrap other threading p... | Tobias Brunner | 2009-12-23 | 17 | -17/+17 |
| * | verify RFC3779 IP address blocks along X.509 certificate trust chain | Andreas Steffen | 2009-12-23 | 1 | -8/+33 |
| * | fixed updown plugin for mixed IPv4/IPv6 tunnels | Andreas Steffen | 2009-12-17 | 1 | -2/+8 |
| * | Fixed BEET mode by installing SAs with negotiated address in traffic selector | Martin Willi | 2009-12-17 | 3 | -10/+24 |
| * | provide attributes from SQL database | Andreas Steffen | 2009-12-16 | 2 | -0/+12 |
| * | Install v6 routes via outgoing interface for now | Martin Willi | 2009-12-14 | 1 | -18/+7 |
| * | some code optimizations | Andreas Steffen | 2009-12-09 | 1 | -34/+37 |
| * | Support "_" and "-" variants of NetworkManager pkg-config packages | Martin Willi | 2009-12-08 | 1 | -1/+4 |
| * | Remove generated config.h.in from source tree | Martin Willi | 2009-12-08 | 2 | -116/+1 |
| * | The attribute manager was moved from daemon_t to libstrongswan. | Tobias Brunner | 2009-12-07 | 1 | -4/+4 |
| * | Do not install invalid 0.0.0.0 DNS servers | Martin Willi | 2009-12-01 | 1 | -9/+14 |
| * | Verify EAP-SIM/AKA AT_MAC before processing any attributes | Martin Willi | 2009-11-30 | 4 | -36/+24 |
| * | SIM/AKA/Request/Reauthentication AT_MAC does not include NONCE_S, only the re... | Martin Willi | 2009-11-30 | 4 | -6/+4 |
| * | Use transport mode ESP SA if IPcomp is used, IPcomp already applies outer IP ... | Martin Willi | 2009-11-26 | 1 | -3/+11 |
| * | Use full algorithm name for SHA384/512 HMACs | Martin Willi | 2009-11-26 | 1 | -2/+2 |
| * | Support the Linux specific SHA256 96 bit truncation HMAC via "sha256_96" keyword | Martin Willi | 2009-11-26 | 1 | -1/+1 |
| * | Install SHA256_128 auth algorithm with specified 128 bit truncation | Martin Willi | 2009-11-26 | 1 | -1/+25 |
| * | Added support for IPv6 source route installation | Martin Willi | 2009-11-26 | 2 | -17/+44 |
| * | put identities in single quotes | Andreas Steffen | 2009-11-25 | 1 | -2/+2 |
| * | Use status_t return value for get_quintuplet() dummy implementations | Martin Willi | 2009-11-20 | 3 | -3/+3 |
| * | attr plugin supports any custom attribute type having a v4/v6 IP under the ch... | Martin Willi | 2009-11-17 | 1 | -4/+82 |
| * | Give plugins more control of which configuration attributes to request, and p... | Martin Willi | 2009-11-17 | 4 | -5/+108 |
| * | Build libsimaka with libtool, as we require a PIC-enabled version | Martin Willi | 2009-11-12 | 2 | -2/+2 |
| * | Support variable RES length in AKA quintuplets | Martin Willi | 2009-11-12 | 12 | -22/+28 |
| * | Ported pseudonym/reauth functionality to EAP-AKA | Martin Willi | 2009-11-12 | 4 | -66/+564 |
| * | Passing other as NULL should not always result in a match if me matches | Martin Willi | 2009-11-12 | 1 | -2/+2 |
| * | Use new identity constructor in EAP-SIM | Martin Willi | 2009-11-12 | 2 | -42/+18 |
| * | Moved card/provider enumeration to SIM manager, providing wrapped functions f... | Martin Willi | 2009-11-12 | 4 | -266/+24 |
| * | Added option to disable identity requests completely (old behavior) | Martin Willi | 2009-11-12 | 2 | -13/+17 |
| * | Fixed replacing existing reauthentication data | Martin Willi | 2009-11-12 | 1 | -6/+6 |
| * | Initiate full authentication if reauthentication identity is unknown | Martin Willi | 2009-11-12 | 1 | -1/+6 |
| * | Moved reauth/pseudonym functionality from eap-sim-file to separate plugins, u... | Martin Willi | 2009-11-12 | 16 | -375/+1199 |
| * | eap-sim-file plugin supports volatile in-memory storage of fast reauthenticat... | Martin Willi | 2009-11-12 | 2 | -25/+199 |
| * | Initial support for fast reauthentication in EAP-SIM | Martin Willi | 2009-11-12 | 2 | -31/+422 |
| * | EAP-SIM/AKA crypto helper supports key derivation for fast reauthentication | Martin Willi | 2009-11-12 | 2 | -4/+8 |
| * | Fallback to permanent identity request if pseudonym mapping failed | Martin Willi | 2009-11-12 | 2 | -63/+119 |
| * | Query triplet/quintuplet functions with permanent identity only, | Martin Willi | 2009-11-12 | 4 | -79/+61 |
| * | eap-sim-file plugin can store pseudonym information volatile in memory | Martin Willi | 2009-11-12 | 4 | -5/+225 |
