strongswan.git
2015-03-09 Martin Willitkm: Use the inbound flag do determine peer role in...
2015-03-09 Martin WilliRevert "child-sa: Remove the obsolete update logic"
2015-03-09 Martin WilliRevert "ha: Always install the CHILD_SAs with the inbou...
2015-03-09 Tobias Brunnertkm: Disable RFC 7427 signature authentication
2015-03-09 Tobias Brunnerikev2: Move code in pubkey authenticator's build()...
2015-03-09 Tobias Brunnerikev2: Try all eligible signature schemes
2015-03-09 Tobias Brunnerfiles: Add simple plugin to load files from file:/...
2015-03-09 Tobias Brunnerdaemon: Remove scheduled jobs before unloading plugins
2015-03-09 Tobias Brunnerscheduler: Add method to remove all scheduled jobs
2015-03-09 Tobias Brunnerplugin-loader: Increase log level for warning about...
2015-03-09 Tobias Brunnertls-peer: Make sure to use the right trusted public...
2015-03-09 Tobias Brunnerpkcs11: Convert RFC 3279 ECDSA signatures when verifying
2015-03-09 Tobias Brunnerpkcs11: Properly encode RFC 3279 ECDSA signatures
2015-03-09 Tobias Brunnerpkcs11: Properly encode EC_POINTs created on a token
2015-03-09 Tobias Brunnerpkcs11: Properly handle EC_POINTs returned as ASN.1...
2015-03-08 Andreas SteffenUpdated products in imv database
2015-03-08 Andreas Steffenattest: output trusted flag and device description
2015-03-08 Andreas SteffenMake access requestor IP address available to TNC server
2015-03-06 Tobias Brunnertesting: Update modified updown scripts to the latest...
2015-03-06 Tobias BrunnerRemove obsolete _updown_espmark script
2015-03-06 Tobias Brunner_updown: Remove obsolete stuff from default script
2015-03-06 Tobias Brunnerikev1: Set protocol ID and SPIs in INITIAL-CONTACT...
2015-03-06 Tobias Brunnerx509: Use subjectKeyIdentifier provided by issuer cert...
2015-03-06 Tobias Brunnerkernel-pfkey: Add option to set receive buffer size...
2015-03-04 Andreas Steffenuse SHA512 for moon's BLISS signature
2015-03-04 Tobias BrunnerMerge branch 'ikev2-signature-authentication'
2015-03-04 Tobias BrunnerNEWS: Introduce RFC 7427 signature authentication
2015-03-04 Tobias Brunnerman: Add documentation about IKEv2 signature schemes
2015-03-04 Tobias Brunnertesting: Test classic public key authentication in...
2015-03-04 Tobias Brunnertesting: Disable signature authentication on dave in...
2015-03-04 Tobias Brunnerikev2: Try all RSA signature schemes if none is configured
2015-03-04 Tobias Brunnerikev2: Consider signature schemes in rightauth when...
2015-03-04 Tobias Brunnertkm: Implement hash algorithm storage methods of keymat...
2015-03-04 Tobias Brunnerkeymat: Use hash algorithm set
2015-03-04 Tobias Brunnerhash-algorithm-set: Add class to manage a set of hash...
2015-03-04 Tobias Brunnerikev2: Add an option to disable constraints against...
2015-03-04 Tobias Brunnerstroke: Enable BLISS-based public key constraints
2015-03-04 Tobias Brunnercredential-manager: Store BLISS key strength in auth...
2015-03-04 Tobias Brunnerauth-cfg: Add BLISS key strength constraint
2015-03-04 Tobias Brunnertesting: Don't check for exact IKEv2 fragment size
2015-03-04 Tobias Brunnertesting: Update test conditions because signature schem...
2015-03-04 Tobias Brunnertesting: Add ikev2/rw-sig-auth scenario
2015-03-04 Tobias Brunnertesting: Add ikev2/net2net-cert-sha2 scenario
2015-03-04 Tobias Brunnerikev2: Fall back to SHA-1 signatures for RSA
2015-03-04 Tobias Brunnerikev2: Select a signature scheme appropriate for the...
2015-03-04 Tobias Brunnerpublic-key: Add helper to determine acceptable signatur...
2015-03-04 Tobias Brunnerikev2: Log the actual signature scheme used for RFC...
2015-03-04 Tobias Brunnerikev2: Store signature scheme used to verify peer in...
2015-03-04 Tobias Brunnerikev2: Add a global option to disable RFC 7427 signatur...
2015-03-04 Tobias Brunnerikev2: Remove private AUTH_BLISS method
2015-03-04 Tobias Brunnerikev2: Handle RFC 7427 signature authentication in...
2015-03-04 Tobias Brunnerhasher: Add helper to determine hash algorithm from...
2015-03-04 Tobias Brunnerpublic-key: Add helper to map signature schemes to...
2015-03-04 Tobias Brunnerpublic-key: Add helper to determine key type from signa...
2015-03-04 Tobias Brunnerikev2: Enable signature authentication by transmitting...
2015-03-04 Tobias Brunnerkeymat: Add facility to store supported hash algorithms
2015-03-04 Tobias Brunnerhasher: Add filter function for algorithms permitted...
2015-03-04 Tobias Brunnerhasher: Redefine hash algorithms to match values define...
2015-03-04 Tobias Brunnerikev2: Add SIGNATURE_HASH_ALGORITHMS notify payload
2015-03-04 Tobias Brunnerikev2: Add new authentication method defined by RFC...
2015-03-04 Tobias Brunnerikev2: Only accept initial messages in specific states
2015-03-04 Tobias Brunnerike-sa-manager: Make sure the message ID of initial...
2015-03-04 Tobias Brunnerikev2: Don't destroy the SA if an IKE_SA_INIT with...
2015-03-04 Martin Williikev2: Don't adopt any CHILD_SA during make-before...
2015-03-03 Tobias Brunnerunit-tests: Base attributes get adopted by seg-env...
2015-03-03 Tobias Brunnerseg-env: Destroy base attribute if segmentation is...
2015-03-03 Martin WilliMerge branch 'eap-constraints'
2015-03-03 Martin WilliNEWS: Introduce EAP constraints support for EAP-(T)TLS
2015-03-03 Martin Williman: Describe trust chain constraints configuration...
2015-03-03 Martin Willistroke: Support public key constraints for EAP methods
2015-03-03 Martin Willieap-ttls: Support EAP auth information getter in EAP...
2015-03-03 Martin Willieap-tls: Support EAP auth information getter in EAP-TLS
2015-03-03 Martin Willilibtls: Add getters for TLS handshake authentication...
2015-03-03 Martin Willilibtls: Merge trustchain auth verification details...
2015-03-03 Martin Williikev2: Merge EAP client authentication details if EAP...
2015-03-03 Martin Willieap: Add an optional authentication details getter...
2015-03-03 Martin WilliMerge branch 'stroke-purge-on-reread'
2015-03-03 Martin Williipsec: Update rereadcacerts/aacerts command description...
2015-03-03 Martin Willistroke: Serve ca section CA certificates directly,...
2015-03-03 Martin Willimem-cred: Add a method to unify certificate references...
2015-03-03 Martin Willistroke: Purge existing CA/AA certificates during reread
2015-03-03 Martin Willistroke: Use separate credential sets for CA/AA certificates
2015-03-03 Martin Willistroke: Refactor load_certdir function
2015-03-03 Martin Willivici: Don't use a default rand_time larger than half...
2015-03-03 Martin Willivici: If a IKE reauth_time is configured, disable the...
2015-03-03 Martin Williikev2: Schedule a timeout for the delete message follow...
2015-03-03 Martin Willikernel-netlink: Respect kernel routing priorities for...
2015-03-03 Thomas Egererenum: Extend printf hook to print flags
2015-03-02 Martin Williunit-tests: Don't fail host_create_from_dns() test...
2015-03-02 Tobias Brunnerbliss: Add generated Huffman codes to the repository
2015-02-27 Andreas SteffenFixed a memory leak in the attribute segmentation code
2015-02-27 Martin Willivici: Support ruby gem out-of-tree builds
2015-02-27 Martin Williha: Always install the CHILD_SAs with the inbound flag...
2015-02-27 Andreas SteffenUpdated Ubuntu 14.04 kernel version
2015-02-27 Andreas SteffenFixed compiler warnings
2015-02-26 Martin Willitravis: Disable unwind backtraces regardless of LEAK_DE...
2015-02-26 Andreas SteffenVersion bump to 5.3.0dr1
2015-02-26 Andreas SteffenAllow SHA256 and SHA384 data hash for BLISS signatures.
2015-02-25 Andreas Steffenunit-tests: Completed BLISS tests
2015-02-25 Andreas SteffenCheck for null pointer before applying memwipe()
next