index
:
tteras/strongswan
master
tteras
tteras-release
tteras' strongSwan tree
gitolite
about
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
src
Commit message (
Expand
)
Author
Age
Files
Lines
*
child-delete: Delay the removal of the inbound SA of rekeyed CHILD_SAs
Tobias Brunner
2017-05-23
3
-128
/
+412
*
delete-child-sa-job: Add new constructor that takes the unique ID of a CHILD_SA
Tobias Brunner
2017-05-23
2
-13
/
+69
*
child-sa: Remove state to track installation of half the SA again
Tobias Brunner
2017-05-23
6
-62
/
+47
*
unit-tests: Overload helper macro to check for outbound SA state
Tobias Brunner
2017-05-23
1
-2
/
+30
*
child-sa: Expose state of the outbound SA
Tobias Brunner
2017-05-23
2
-17
/
+61
*
child-sa: Add method to remove the outbound SA and policies
Tobias Brunner
2017-05-23
2
-5
/
+78
*
child-sa: Keep track whether the outbound SA has been installed or not
Tobias Brunner
2017-05-23
1
-8
/
+13
*
child-delete: Track flags per individual CHILD_SA
Tobias Brunner
2017-05-23
1
-47
/
+78
*
ikev2: Delay installation of outbound SAs during rekeying on the responder
Tobias Brunner
2017-05-23
4
-30
/
+124
*
child-sa: Add log message for CHILD_SA state changes
Tobias Brunner
2017-05-23
1
-0
/
+4
*
child-sa: Add method to associate rekeyed CHILD_SAs with their replacement
Tobias Brunner
2017-05-23
2
-0
/
+35
*
child-sa: Add methods that allow partial installation of CHILD_SA
Tobias Brunner
2017-05-23
2
-5
/
+144
*
child-sa: Add new state to track installation of only the inbound SA
Tobias Brunner
2017-05-23
2
-1
/
+7
*
child-sa: Change API used to set/install policies
Tobias Brunner
2017-05-23
6
-79
/
+119
*
child-sa: Split in- and outbound policy de-/installation
Tobias Brunner
2017-05-23
1
-62
/
+127
*
child-create: Trigger NARROW_RESPONDER_POST hook before installing SAs
Tobias Brunner
2017-05-23
1
-25
/
+21
*
tnc-ifmap: Null-terminate buffer to make sscanf()-calls safe
Tobias Brunner
2017-05-23
1
-4
/
+5
*
libimcv: Make sure the first argument to sscanf() is null-terminated
Tobias Brunner
2017-05-23
2
-2
/
+6
*
asn1: Make sure the first argument to sscanf() is null-terminated
Tobias Brunner
2017-05-23
1
-7
/
+9
*
x509: Fix leak when parsing CDPs if an invalid one follows valid ones
Tobias Brunner
2017-05-23
1
-2
/
+2
*
pem: Ensure a value before checking Proc-Type in PEM header
Tobias Brunner
2017-05-23
1
-1
/
+1
*
chunk: Correctly parse Base64 text where four = follow in a row
Tobias Brunner
2017-05-23
1
-1
/
+1
*
plugin-loader: Disable some logging output when building fuzz targets
Tobias Brunner
2017-05-23
1
-4
/
+19
*
x509: Manually print CRL/OCSP URIs when fuzzing
Tobias Brunner
2017-05-23
1
-8
/
+25
*
processor: Move priority threads assignment to set_threads()
Tobias Brunner
2017-05-23
1
-4
/
+9
*
Add plugin constructor registration for all libraries that provide plugins
Tobias Brunner
2017-05-23
8
-0
/
+64
*
plugin-constructors: Add script to generate constructor registration
Tobias Brunner
2017-05-23
2
-0
/
+61
*
plugin-loader: Add facility to register plugin constructors
Tobias Brunner
2017-05-23
2
-3
/
+69
*
library: Add compile option to disable memwipe() check
Tobias Brunner
2017-05-23
1
-0
/
+6
*
pem: Don't read beyond line ends
Tobias Brunner
2017-05-23
1
-2
/
+2
*
x509: Fix leak if there is an empty CDP
Tobias Brunner
2017-05-23
1
-1
/
+7
*
x509: Fix leak if a certificate contains multiple authorityKeyIdentifiers
Tobias Brunner
2017-05-23
1
-0
/
+1
*
kernel-netlink: Use total retransmit timeout as acquire timeout
Tobias Brunner
2017-05-23
2
-13
/
+23
*
task-manager: Add helper function to calculate the total retransmit timeout
Tobias Brunner
2017-05-23
2
-1
/
+42
*
ike: Use optional jitter to calculate retransmission timeouts
Tobias Brunner
2017-05-23
3
-5
/
+57
*
kernel-netlink: Try to add new inbound SA if update fails
Thomas Egerer
2017-05-23
1
-3
/
+12
*
kernel-pfkey: Update SA addresses if supported by the kernel
Tobias Brunner
2017-05-23
1
-21
/
+16
*
kernel-pfkey: Use new encap flag on Mac OS X when updating SAs
Tobias Brunner
2017-05-23
1
-1
/
+1
*
receiver: Restrict init limit to half-open SAs as responder
Thomas Egerer
2017-05-23
1
-4
/
+2
*
kernel-netlink: Update hardware offload attribute when SAs are updated
Tobias Brunner
2017-05-23
1
-11
/
+37
*
kernel-netlink: Base SA update on correct message in multi-message response
Tobias Brunner
2017-05-23
1
-7
/
+7
*
vici: Make hardware offload configurable
Tobias Brunner
2017-05-23
2
-0
/
+15
*
child-sa: Optionally enable hardware offload for CHILD_SAs
Tobias Brunner
2017-05-23
1
-0
/
+1
*
child-cfg: Add flag to enable hardware offload
Tobias Brunner
2017-05-23
1
-0
/
+3
*
child-cfg: Use flags for boolean options
Tobias Brunner
2017-05-23
12
-153
/
+129
*
kernel-netlink: Enable hardware offloading if configured for an SA
Tobias Brunner
2017-05-23
1
-0
/
+25
*
kernel-ipsec: Add flag to enable hardware offloading for an IPsec SA
Tobias Brunner
2017-05-23
1
-0
/
+2
*
include: Update xfrm.h to include hardware offloading extensions
Tobias Brunner
2017-05-23
1
-1
/
+10
*
kernel-netlink: Directly handle Netlink messages if thread pool is empty
Tobias Brunner
2017-05-23
1
-1
/
+2
*
socket-default: Add an option to force the sending interface via IP_PKTINFO
Martin Willi
2017-05-23
1
-7
/
+48
[next]