aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Expand)AuthorAgeFilesLines
...
| * | Implement SASL authentication in PT-TLS clientMartin Willi2013-02-281-11/+191
| * | Implement SASL authentication in PT-TLS serverMartin Willi2013-02-281-5/+236
| * | Define PT-TLS SASL result codesMartin Willi2013-02-281-0/+11
| * | Define an interface for SASL mechanisms and provide a static factoryMartin Willi2013-02-283-1/+193
| * | Pass a client identity to pt_tls_client, usable for TLS or SASL authenticationMartin Willi2013-02-282-7/+21
| * | Don't close underlying file descriptor before destroying a tls_socketMartin Willi2013-02-281-1/+4
* | | As Quick Mode initiator, select a subset of the proposed and the returned TSMartin Willi2013-03-071-4/+11
* | | added some otherNames OIDsAndreas Steffen2013-03-061-0/+6
* | | Fix some apidoc in mem_pool.hMartin Willi2013-03-061-3/+3
* | | instead of cloning use extract_buf() methodAndreas Steffen2013-03-0434-35/+35
* | | Don't invoke addr2line if dladdr() did not yield a filenameMartin Willi2013-03-041-1/+1
* | | When receiving critical signals, additionally log backtraces to syslog/filesMartin Willi2013-03-041-0/+1
* | | backtrace_t.log() takes a NULL file pointer to log to registered dbg() hookMartin Willi2013-03-042-33/+71
* | | Don't use color escapes when printing backtraces to a non-TTY fileMartin Willi2013-03-041-11/+20
* | | Add a utility function to resolve TTY color escape codes dynamicallyMartin Willi2013-03-042-0/+103
* | | make TNC Access Requestor ID available to IMVsAndreas Steffen2013-03-039-42/+130
* | | added getpwuid_r and initgroups to whitelistAndreas Steffen2013-03-031-0/+2
* | | third parameter was not copiedAndreas Steffen2013-03-021-1/+1
* | | Fixed Doxygen comments after scanning complete src directoryTobias Brunner2013-03-0296-183/+221
* | | Removed backend for old Android frontend patchTobias Brunner2013-03-0212-923/+82
* | | added ERX_SUPPORTED IKEv2 NotifyAndreas Steffen2013-03-022-7/+11
* | | added some new TCG IF-M message subtypes and attributesAndreas Steffen2013-03-024-4/+36
* | | android: Mitigate race condition on reauthenticationTobias Brunner2013-03-011-0/+4
* | | openssl: The EVP GCM interface requires at least OpenSSL 1.0.1Tobias Brunner2013-03-012-0/+8
* | | Merge branch 'multi-eap'Martin Willi2013-03-012-28/+50
|\ \ \
| * | | Apply a mutual EAP auth_cfg not before the EAP method completesMartin Willi2013-02-262-1/+18
| * | | Be a little more verbose why a peer_cfg is inacceptableMartin Willi2013-02-261-8/+16
| * | | Refactor auth_cfg applying to a common functionMartin Willi2013-02-261-20/+17
| |/ /
* | | Merge branch 'multi-cert'Martin Willi2013-03-013-27/+109
|\ \ \
| * | | After merging the used trustchain with config, move used certificate to frontMartin Willi2013-01-181-0/+24
| * | | Try to build a trustchain for all configured certificates before enforcing oneMartin Willi2013-01-181-1/+29
| * | | Load multiple comma seperarated certificates in the leftcert optionMartin Willi2013-01-181-15/+32
| * | | Make AUTH_RULE_SUBJECT cert multi-valuedMartin Willi2013-01-181-11/+24
* | | | Merge branch 'systime'Martin Willi2013-03-018-10/+521
|\ \ \ \
| * | | | systime-fix disables certificate lifetime validation if system time not syncedMartin Willi2013-02-194-0/+326
| * | | | Add a stub for systime-fix, a plugin handling certificate lifetimes gracefullyMartin Willi2013-02-194-0/+126
| * | | | Add a cert_validator hook allowing plugins to provide custom lifetime checkingMartin Willi2013-02-192-10/+64
| * | | | Make cert_validator_t.validate optional to implementMartin Willi2013-02-192-0/+5
| | |_|/ | |/| |
* | | | Merge branch 'ikev1-rekeying'Martin Willi2013-03-012-0/+25
|\ \ \ \
| * | | | After IKEv1 reauthentication, reinstall VIP routes after migrating CHILD_SAsMartin Willi2013-02-201-0/+4
| * | | | When detecting a duplicate IKEv1 SA, adopt children, as it might be a rekeyingMartin Willi2013-02-201-0/+21
* | | | | Merge branch 'vip-shunts'Martin Willi2013-03-012-15/+19
|\ \ \ \ \
| * | | | | Install a route for shunt policiesMartin Willi2013-02-201-5/+13
| * | | | | Include local address for Unity Split-Exclude shunt policiesMartin Willi2013-02-201-10/+5
| |/ / / /
* | | | | Merge branch 'opaque-ports'Martin Willi2013-03-0118-118/+191
|\ \ \ \ \
| * | | | | Don't reject OPAQUE ports while verifying traffic selector substructureMartin Willi2013-02-211-1/+5
| * | | | | Optionally support port ranges in leftprotoportMartin Willi2013-02-211-4/+20
| * | | | | Support %opaque keyword in leftprotoport for "opaque" portsMartin Willi2013-02-211-0/+5
| * | | | | Pass complete port range over stroke interface for more flexibilityMartin Willi2013-02-217-24/+21
| * | | | | Use a complete port range in traffic_selector_create_from_{subnet,cidr}Martin Willi2013-02-2111-36/+46
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-14 13:18:44 +0000