| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | testing: make curve25519 the default DH group | Andreas Steffen | 2016-11-14 | 1 | -1/+2 |
| | | |||||
| * | testing: Use TLS 1.2 in RADIUS test cases | Tobias Brunner | 2016-06-17 | 1 | -0/+3 |
| | | | | | | | | | | This took a while as in the OpenSSL package shipped with Debian and on which our FIPS-enabled package is based, the function SSL_export_keying_material(), which is used by FreeRADIUS to derive the MSK, did not use the correct digest to calculate the result when TLS 1.2 was used. This caused IKE to fail with "verification of AUTH payload with EAP MSK failed". The fix was only backported to jessie recently. | ||||
| * | configure: Load fetcher plugins after crypto base plugins | Martin Willi | 2014-09-24 | 1 | -1/+1 |
| | | | | | | | | | | | Some fetcher plugins (such as curl) might build upon OpenSSL to implement HTTPS fetching. As we set (and can't unset) threading callbacks in our openssl plugin, we must ensure that OpenSSL functions don't get called after openssl plugin unloading. We achieve that by loading curl and all other fetcher plugins after the base crypto plugins, including openssl. | ||||
| * | removed plutostart parameter | Andreas Steffen | 2012-06-13 | 1 | -1/+0 |
| | | |||||
| * | load nonce plugin | Andreas Steffen | 2012-05-23 | 1 | -1/+1 |
| | | |||||
| * | Run scenarios without xcbc plugin | Andreas Steffen | 2011-10-16 | 1 | -1/+1 |
| | | |||||
| * | optimized FreeRadius scenarios for debug output | Andreas Steffen | 2010-09-02 | 1 | -1/+1 |
| | | |||||
| * | defined aaa_identity | Andreas Steffen | 2010-09-01 | 1 | -0/+2 |
| | | |||||
| * | added ikev2/rw-eap-tls-radius | Andreas Steffen | 2010-08-05 | 2 | -0/+28 |
 |
index : tteras/strongswan | |
| tteras' strongSwan tree | gitolite |
| aboutsummaryrefslogtreecommitdiffstats |