aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
* Do not build own authentication data before we've verified others, we need ↵4.3.6Martin Willi2010-02-091-28/+33
| | | | the other identity in EAP
* Increased the buffer for netlink responses.Tobias Brunner2010-02-051-0/+1
| | | | | | | | If an error occurs while manipulating policies in the kernel, the original netlink request gets attached to the response. Prior to Linux 2.6.32 the size in the netlink header of the response was wrong.
* initialize variables to avoid compiler warningAndreas Steffen2010-02-051-2/+2
|
* Use destination address of ppp interfaces as nexthop in starters default ↵Martin Willi2010-02-051-6/+25
| | | | route lookup
* init_fetch() changed to fetch_initialize()Andreas Steffen2010-02-051-1/+1
|
* Use child_updown hook in updown plugin, fixes doubled invocation of down scriptMartin Willi2010-02-031-47/+17
|
* renamed init_fetch() to fetch_initialize()Andreas Steffen2010-02-022-2/+2
|
* Some whitespace and code cleanups concerning the mediation extension.Tobias Brunner2010-02-023-12/+10
|
* Join pluto's fetching thread instead of detaching it in order to avoid that ↵Tobias Brunner2010-02-023-6/+26
| | | | the leak-detective reports a memleak.
* corrected captionsAndreas Steffen2010-02-011-2/+2
|
* warn if loaded local certificate is invalidAndreas Steffen2010-02-011-3/+5
|
* Added a ipsec.conf "inactivity" option to configure inactivity timeout for ↵Martin Willi2010-01-279-27/+39
| | | | CHILD_SAs
* Made inactivity_timeout a per CHILD_SA config optionMartin Willi2010-01-279-16/+41
|
* Refactored EAP payload, avoid unaligned word accessMartin Willi2010-01-211-103/+68
|
* Added a METHOD2() macro that implements a method for two different interfacesMartin Willi2010-01-211-1/+11
|
* Support RADIUS messages up to 4096 bytes, RADIUS EAP-Message fragmentationMartin Willi2010-01-193-9/+22
|
* Support TLS client authentication Extended Key Usage in x509 generationMartin Willi2010-01-146-21/+38
|
* Block the signals before the call to sigwait.Tobias Brunner2010-01-121-0/+1
|
* Support for closing CHILD/IKE_SA if a CHILD_SA is inactive.Martin Willi2010-01-124-0/+229
|
* Added strongswan.conf options to configure retransmission timeoutsMartin Willi2010-01-112-5/+28
|
* Added a "double" getter to libstrongswan settingsMartin Willi2010-01-112-0/+35
|
* Cast unaligned memcpy() args to char*, avoids over-optimization on ARMMartin Willi2010-01-111-4/+10
| | | | See http://infocenter.arm.com/help/index.jsp?topic=/com.arm.doc.faqs/ka3934.html
* log EAP-only authentication proposalAndreas Steffen2010-01-111-3/+5
|
* pluto and charon are using the same strongSwan Vendor IDAndreas Steffen2010-01-111-1/+1
|
* EAP-MSCHAPv2 is indeed mutual, but is prone to MITM dictionary attacksMartin Willi2010-01-071-1/+1
|
* Support EAP-only authentication for mutual and key deriving EAP methodsMartin Willi2010-01-075-31/+96
|
* Indicate and dected support for EAP-only authenticationMartin Willi2010-01-072-7/+28
|
* Match to private use algorithms only if we know we are talking to strongSwanMartin Willi2010-01-078-22/+41
|
* Interpret private use BEET mode notify only if we know we are talking to ↵Martin Willi2010-01-071-1/+9
| | | | strongSwan
* Add an option to send a vendor ID, allows us to properly support private ↵Martin Willi2010-01-079-8/+205
| | | | extensions
* added some recent new attributes registered with IANAAndreas Steffen2010-01-072-3/+9
|
* ipsec pki --self|issue supports --pathlen option setting a path length ↵Andreas Steffen2009-12-315-5/+35
| | | | constraint
* make error message about missing MD4 hasher more explicitAndreas Steffen2009-12-301-1/+1
|
* differentiate EAP method initialization errorsAndreas Steffen2009-12-301-12/+18
|
* Pluto's fetcher thread is now created via libstrongswan.Tobias Brunner2009-12-261-4/+11
|
* enforce RFC 3779 address constraints on traffic selectorsAndreas Steffen2009-12-251-0/+61
|
* Adapted the load_tester kernel-interface to the changes introduced in 6ec949e02.Tobias Brunner2009-12-231-2/+3
|
* Added some IPv6 tweaks for Android.Tobias Brunner2009-12-231-1/+11
| | | | | Android 1.6 does not yet support the Advanced Sockets API for IPv6 as defined in RFC 3542. Also, in6addr_any is missing.
* Semicolon removed.Tobias Brunner2009-12-231-1/+1
|
* According to the man page (and the header files in Android) prctl takes a ↵Tobias Brunner2009-12-231-1/+2
| | | | total of 5 arguments.
* Added a workaround for the missing pthread_cancel on Android.Tobias Brunner2009-12-231-0/+35
|
* Use pthread_cond_timedwait_monotonic on Android.Tobias Brunner2009-12-232-2/+9
|
* Cache queue locking in credential manager corrected.Tobias Brunner2009-12-231-2/+13
|
* Join worker threads when destroying the processor.Tobias Brunner2009-12-231-10/+24
|
* Callback job refactored and fixed.Tobias Brunner2009-12-232-47/+106
|
* Whitespace cleanup.Tobias Brunner2009-12-233-43/+43
|
* Readding changes that got lost during refactoring/rebasing.Tobias Brunner2009-12-231-4/+17
|
* Using the thread wrapper in charon, libstrongswan and their plugins.Tobias Brunner2009-12-2336-249/+211
|
* Adding an object-oriented wrapper for thread-specific values.Tobias Brunner2009-12-232-0/+146
|
* Adding an object-oriented wrapper for threads.Tobias Brunner2009-12-232-0/+592
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-03 16:19:02 +0000