aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
* set guest-specific kernel parametersMartin Willi2008-10-106-47/+41
| | | | removed memory setting, use mem= instead
* reintegrated two-sim branch providing SIM card plugin APIMartin Willi2008-10-1019-423/+1154
|
* use busybox compatible killMartin Willi2008-10-101-4/+4
|
* fixed MOBIKE roaming if clients address changesMartin Willi2008-10-092-5/+20
|
* faster implementation of addr_in_subnet()Andreas Steffen2008-10-091-13/+14
|
* added proposal parsing of uncommon DH groups 3072/6144Martin Willi2008-10-081-0/+8
|
* ignore routing events for our own routesMartin Willi2008-10-081-0/+6
|
* mobike: try to keep existing source address before switching to anotherMartin Willi2008-10-087-29/+43
|
* implemented ipsec listalgs as a stroke commandAndreas Steffen2008-10-087-21/+81
|
* correct fix that replaces Changeset 4378Andreas Steffen2008-10-081-4/+6
|
* removing fix applied by Changeset 4378Andreas Steffen2008-10-081-4/+2
|
* get_subject() of a CERT_TRUSTED_PUBKEY object returns ID_PUBKEY_INFO_SHA1 ↵Andreas Steffen2008-10-081-1/+1
| | | | hash consistent with the IKEv2 keyid philosophy
* Implemented BUILD_BLOB_ASN1_DER for the CERT_TRUSTED_PUBKEY subtypeAndreas Steffen2008-10-082-4/+24
|
* fixed loop termination criterion in addr_in_subnet(). Thanks go to Wolfgang ↵Andreas Steffen2008-10-071-2/+4
| | | | Steudel, TU Ilmenau
* guest bootup waits for init, not for network stack (fixes 2.6.27 guest kernels)Martin Willi2008-10-071-20/+3
|
* ported mconsole-exec patch to 2.6.27-rc7Martin Willi2008-10-071-0/+335
|
* userland support to process notifies for new NAT mappings detected in UDP ↵Martin Willi2008-10-076-12/+237
| | | | encapsulation
* use MOBIKE enabled DPD if we are NATedMartin Willi2008-10-066-4/+113
| | | | update SAs if we detect changes in NAT mappings
* fixed builder_cancel macro to return NULL on failed buildMartin Willi2008-10-062-1/+15
|
* do not run CHILD_SA delete action if rekeyingMartin Willi2008-10-031-1/+13
|
* added --disable-kernel-netlink configure optionAndreas Steffen2008-10-031-2/+2
|
* use dpd_action also for remotely closed tunnelsMartin Willi2008-10-021-1/+1
|
* also respect the mobike=no setting as responderMartin Willi2008-09-302-4/+15
|
* using signed return value for read()Martin Willi2008-09-301-1/+2
|
* merging renaming of mode_t to ipsec_mode_t back to trunkTobias Brunner2008-09-2515-67/+87
|
* merging modularized kernel interface back to trunkTobias Brunner2008-09-2520-2994/+4293
|
* version bump to 4.2.8Andreas Steffen2008-09-182-1/+3
|
* fixed DH value range testingMartin Willi2008-09-171-1/+1
|
* checking mpz_export return value properlyMartin Willi2008-09-174-8/+32
| | | | fixes a potential DoS attack if a DH value of zero gets processed
* stroke parses and lists AC groupsAndreas Steffen2008-09-174-12/+74
|
* ported NM plugin to upstream NetworkManager changesMartin Willi2008-09-123-22/+55
| | | | | splitted secrets (4031) using uuid in auth-dialog (4053)
* allow multiple DELETE payloads in an informational messageMartin Willi2008-09-111-2/+7
|
* NM plugin supports (encrypted) private key filesMartin Willi2008-09-054-89/+210
|
* time values in strongswan.conf can be optionally specified in days (d), ↵Andreas Steffen2008-09-047-13/+57
| | | | hours (h), minutes (m), or seconds (s)
* fixed some translations/encodingMartin Willi2008-09-041-51/+52
|
* an initial German translation for NM pluginMartin Willi2008-09-043-2/+117
|
* reduced nm verbosityMartin Willi2008-09-041-1/+1
|
* implemented NetworkManager certificate/private key authentication using ↵Martin Willi2008-09-048-161/+447
| | | | ssh-agent
* added a configure option to select charon binaryMartin Willi2008-09-043-2/+10
|
* agent plugin optionally accepts a BUILD_PUBLIC_KEY to select a specific ↵Martin Willi2008-09-041-18/+68
| | | | private key from the agent
* charon.keep_alive = 0 disables the sending of NAT keep alivesAndreas Steffen2008-09-031-1/+1
|
* configure NAT keep alive interval using the charon.keep_alive keyAndreas Steffen2008-09-031-2/+9
|
* typosTobias Brunner2008-09-031-6/+5
|
* handle INFORMATIONAL exchanges with NATD payloads in mobike taskMartin Willi2008-09-021-0/+2
|
* libstrongswan agent plugin to use ssh-agent for RSA signaturesMartin Willi2008-09-026-0/+710
|
* ported openac to credential factory changesMartin Willi2008-09-021-3/+5
|
* refactored credential builderMartin Willi2008-09-0229-367/+428
| | | | | | | | | allow enumeration of matching builders try a second builder if the first one fails builder clones resources internally on demand caller frees added resources on failure and success stricter handling of non-supported build parts
* OIDs used by strongSwanAndreas Steffen2008-09-011-1/+1
|
* use libcap for capability droppingMartin Willi2008-08-295-50/+53
| | | | | optional, must be enabled --with-capabilities=libcap will be extended to support --with-capabilities=libcap2
* streamlined ipsec listalgs outputAndreas Steffen2008-08-291-2/+3
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-16 23:30:05 +0000