aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Expand)AuthorAgeFilesLines
...
* pki: Don't remove zero bytes in CRL serials anymoreTobias Brunner2016-10-111-6/+7
* pki: Use serial of base CRL for delta CRLsTobias Brunner2016-10-111-1/+4
* openssl: Fix AES-GCM with BoringSSLTobias Brunner2016-10-111-3/+3
* android: Identifiers for SHA2-base RSA signature schemes got renamedTobias Brunner2016-10-111-4/+4
* android: MGF1 implementation was moved to a pluginTobias Brunner2016-10-111-2/+1
* ldap: Fix crash in case of empty LDAP response for CRL fetchYannick CANN2016-10-061-2/+1
* libimcv: Add Debian 8.6 to databaseTobias Brunner2016-10-051-0/+18
* task-manager: Only trigger retransmit cleared alert if there was at least one...Tobias Brunner2016-10-052-2/+2
* unit-tests: Enable optional logging in libcharon unit testsTobias Brunner2016-10-051-0/+17
* unit-tests: Add more tests for proposal creationTobias Brunner2016-10-051-8/+62
* proposal: Correctly add AES-GMAC for AH proposalsTobias Brunner2016-10-051-0/+41
* proposal: Enforce separate proposals for AEAD and classic encryption algorithmsTobias Brunner2016-10-051-16/+22
* proposal: Make sure there is a PRF defined in IKE proposalsTobias Brunner2016-10-051-14/+34
* proposal: Make DH groups mandatory in IKE proposals parsed from stringsTobias Brunner2016-10-052-21/+40
* ikev2: Respond with NO_PROPOSAL_CHOSEN if proposal without DH group was selectedTobias Brunner2016-10-051-0/+1
* kernel-netlink: Consider RTA_SRC when looking for a source addressTobias Brunner2016-10-051-52/+134
* swanctl: Add 'private' directory/section to load any type of private keyTobias Brunner2016-10-054-5/+26
* pki: Add generic 'priv' key type that loads any type of private keyTobias Brunner2016-10-0512-28/+59
* openssl: Add a generic private key loaderTobias Brunner2016-10-057-18/+129
* pkcs1: Support building of KEY_ANY private keysTobias Brunner2016-10-052-5/+73
* pki: Drop -priv suffix to specify private key typesTobias Brunner2016-10-054-16/+23
* ikev2: Only add NAT-D notifies to DPDs as initiatorTobias Brunner2016-10-041-8/+15
* pkcs11: Look for the CKA_ID of the cert if it doesn't match the subjectKeyIdRaphael Geissert2016-10-041-4/+152
* nm: Make global CA directory configurableTobias Brunner2016-10-041-1/+2
* ikev1: Activate task to delete the IKE_SA in state IKE_REKEYINGTobias Brunner2016-10-041-0/+8
* ikev1: Delete Quick Mode SAs before the ISAKMP SATobias Brunner2016-10-041-2/+2
* ikev1: Send DELETE for rekeyed IKE_SAsTobias Brunner2016-10-041-9/+5
* starter: Install an empty ipsec.secrets fileTobias Brunner2016-10-042-1/+3
* starter: Don't generate a key/certificate if ipsec.secrets does not existTobias Brunner2016-10-042-70/+0
* watcher: Avoid allocations due to enumeratorsTobias Brunner2016-10-041-37/+83
* vici: Enable IKE fragmentation by defaultTobias Brunner2016-10-042-4/+4
* starter: Enable IKE fragmentation by defaultTobias Brunner2016-10-041-0/+1
* ike: Set default IKE fragment size to 1280Tobias Brunner2016-10-041-1/+1
* ikev2: Send derived CHILD_SA keys to the busTobias Brunner2016-10-041-26/+43
* ikev2: Send derived IKE_SA keys to busTobias Brunner2016-10-041-26/+30
* ikev1: Send derived CHILD_SA keys to the busTobias Brunner2016-10-041-14/+26
* ikev1: Send derived IKE_SA keys to busTobias Brunner2016-10-041-14/+11
* bus: Add new hooks for derived IKE_SA and CHILD_SA keysTobias Brunner2016-10-043-11/+131
* nm: Remove dummy TUN deviceTobias Brunner2016-10-041-36/+0
* nm: Fix comment in service file in /etc/NetworkManager/VPNTobias Brunner2016-10-041-1/+1
* nm: Remove generated service file in `make clean`Tobias Brunner2016-10-041-1/+1
* nm: Don't add generated AppStream metadata to tarballTobias Brunner2016-10-041-1/+0
* bus: Fix maximum log levels when mixing log/vlog implementing loggersTobias Brunner2016-09-301-12/+20
* kernel-netlink: Pass zero mark to kernel if mask is setTobias Brunner2016-09-301-2/+2
* kernel-netlink: Support configuring XFRM policy hashing thresholdsTobias Brunner2016-09-301-0/+107
* include: Update xfrm.h to Linux v4.3Martin Willi2016-09-301-0/+22
* child-sa: Only install outbound FWD policies if explicitly configuredTobias Brunner2016-09-281-14/+27
* vici: Make installation of outbound FWD policies configurableTobias Brunner2016-09-282-25/+36
* child-cfg: Add setting that controls whether outbound FWD policies are installedTobias Brunner2016-09-282-0/+24
* kernel-netlink: Update cached reqid when updating policiesTobias Brunner2016-09-281-0/+2
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-13 02:14:38 +0000