index
:
tteras/strongswan
master
tteras
tteras-release
tteras' strongSwan tree
gitolite
about
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
src
/
libcharon
Commit message (
Expand
)
Author
Age
Files
Lines
*
unit-tests: Rename targets for libstrongswan and kernel-netlink
Thomas Egerer
2017-11-09
1
-5
/
+5
*
ikev2: Use helpers to build signature auth data
Tobias Brunner
2017-11-08
1
-40
/
+4
*
ikev2: Enumerate RSA/PSS schemes and use them if enabled
Tobias Brunner
2017-11-08
1
-7
/
+11
*
ikev2: Support signing with RSASSA-PSS via RFC 7427 signature auth
Tobias Brunner
2017-11-08
1
-6
/
+21
*
ikev2: Verify RSASSA-PSS signatures via RFC 7427 signature auth
Tobias Brunner
2017-11-08
1
-19
/
+34
*
keymat_v2: Pass/receive signature schemes as signature_param_t objects
Tobias Brunner
2017-11-08
2
-28
/
+58
*
auth-cfg: Store signature schemes as signature_params_t objects
Tobias Brunner
2017-11-08
2
-18
/
+23
*
certificate: Return signature scheme and parameters from issued_by() method
Tobias Brunner
2017-11-08
1
-0
/
+1
*
private-key: Add optional parameters argument to sign() method
Tobias Brunner
2017-11-08
2
-3
/
+3
*
public-key: Add optional parameters argument to verify() method
Tobias Brunner
2017-11-08
2
-2
/
+2
*
ikev2: Don't use SHA-1 for RFC 7427 signature authentication
Tobias Brunner
2017-11-08
1
-3
/
+1
*
proposal: Remove MODP-1024 from default IKE proposal
Tobias Brunner
2017-11-08
1
-2
/
+2
*
proposal: Remove MD5 from default IKE proposal
Tobias Brunner
2017-11-08
1
-2
/
+5
*
proposal: Remove deprecated algorithms from default ESP and AH proposals
Tobias Brunner
2017-11-08
1
-4
/
+0
*
kernel-pfkey: Support anti-replay windows > 2k
Tobias Brunner
2017-11-08
1
-1
/
+14
*
kernel-pfkey: Don't include keys in SADB_UPDATE message to update IPs on FreeBSD
Tobias Brunner
2017-11-08
1
-0
/
+3
*
vici: Add 'get|reset-counters' commands
Tobias Brunner
2017-11-08
4
-1
/
+191
*
counters: Move IKE event counter collection from stroke to a separate plugin
Tobias Brunner
2017-11-08
12
-387
/
+856
*
systime-fix: Add timeout option to stop waiting for valid system time
Tobias Brunner
2017-11-08
1
-10
/
+42
*
shunt-mananger: Make outbound FWD shunt policies optional
Tobias Brunner
2017-11-02
1
-6
/
+15
*
ike: Do not send initial contact only for UNIQUE_NEVER
Thomas Egerer
2017-11-02
2
-3
/
+1
*
vici: Make setting mark on inbound SA configurable
Tobias Brunner
2017-11-02
1
-7
/
+19
*
child-cfg: Optionally set mark on inbound SA
Tobias Brunner
2017-11-02
2
-2
/
+20
*
eap-radius: Optionally send Class attributes in RADIUS accounting messages
Tobias Brunner
2017-11-02
3
-21
/
+83
*
ikev2: Abort make-before-break reauth if we don't find children to recreate
Tobias Brunner
2017-11-02
1
-1
/
+19
*
libcharon: Added Cisco FlexVPN Supported VID
Andreas Steffen
2017-10-27
1
-0
/
+2
*
kernel-netlink: Add strings for newer XFRM attribute types
Tobias Brunner
2017-10-06
1
-1
/
+6
*
kernel-pfroute: Delay call to if_indextoname(3) when handling RTM_IFINFO
Tobias Brunner
2017-09-26
1
-0
/
+5
*
controller: Consider any IKE_SA destruction as success when terminating
Tobias Brunner
2017-09-25
1
-4
/
+1
*
dhcp: Fix warning regarding unaligned pointer value due to packed struct
Tobias Brunner
2017-09-18
1
-1
/
+1
*
dhcp: Don't use signed char for DHCP options
Tobias Brunner
2017-09-18
1
-1
/
+1
*
child-create: Don't consider a DH group mismatch as failure as responder
Tobias Brunner
2017-09-18
1
-1
/
+0
*
child-delete: Only let SAs expire naturally if they not already did
Tobias Brunner
2017-09-15
1
-1
/
+1
*
ike: Reset local SPI if retrying to connect in state IKE_CONNECTING
Tobias Brunner
2017-09-04
3
-11
/
+19
*
ike-sa-manager: Add method to change the initiator SPI of an IKE_SA
Tobias Brunner
2017-09-04
2
-4
/
+99
*
ike-init: Fail if DH group in KE payload does not match proposed group
Tobias Brunner
2017-09-04
1
-1
/
+5
*
ike-cfg: Fix memory leak when checking for configured address
Tobias Brunner
2017-08-29
1
-0
/
+1
*
kernel-netlink: Set usable state whenever an interface appears
Tobias Brunner
2017-08-23
1
-2
/
+2
*
Fixed some typos, courtesy of codespell
Tobias Brunner
2017-08-07
5
-8
/
+8
*
kernel-netlink: Wipe buffer used to read Netlink messages
Tobias Brunner
2017-08-07
1
-2
/
+12
*
child-sa: Allow requesting different unique marks for in/out
Eyal Birger
2017-08-07
1
-6
/
+23
*
trap-manager: Don't require that remote is resolvable during installation
Tobias Brunner
2017-08-07
1
-10
/
+49
*
child-create: Don't log CHILD_SA initiation until we know the unique ID
Tobias Brunner
2017-08-07
1
-11
/
+13
*
child-rekey: Add CHILD_SA name and unique ID to collision log messages
Tobias Brunner
2017-08-07
1
-8
/
+13
*
child-sa: Suppress CHILD_SA state changes if there is no change
Tobias Brunner
2017-08-07
1
-6
/
+9
*
child-rekey: Don't install outbound SA in case of lost collisions
Tobias Brunner
2017-08-07
4
-46
/
+123
*
bus: Don't trigger child_updown() for rekeyed CHILD_SAs
Tobias Brunner
2017-08-07
1
-1
/
+4
*
child-sa: Install outbound SA immediately if kernel supports SPIs on policies
Tobias Brunner
2017-08-07
3
-26
/
+47
*
child-sa: Use flags to track installation of outbound SA and policies separately
Tobias Brunner
2017-08-07
3
-29
/
+46
*
kernel-netlink: Set SPI on outbound policy
Tobias Brunner
2017-08-07
1
-4
/
+10
[next]