strongswan.git
2011-01-07 Andreas Steffencompute memory requirement for PEM-encoding correctly
2011-01-05 Martin WilliAdded delta CRL NEWS
2011-01-05 Martin WilliAdded constraints plugin NEWS
2011-01-05 Martin WilliAdded conftest NEWS
2011-01-05 Martin WilliAdded NEWS about INITIAL_CONTACT support
2011-01-05 Martin WilliDestroy existing IKE_SAs with same identities when...
2011-01-05 Martin WilliSend INITIAL_CONTACT for the first IKE_SA if it has...
2011-01-05 Martin WilliMigrated ike_sa_manager_t to INIT/METHOD macros, some...
2011-01-05 Martin WilliAdded option to use a different key when rebuilding...
2011-01-05 Martin WilliDo not print empty DN identities as invalid
2011-01-05 Martin WilliAdded support for empty subjects DNs to pki --issue
2011-01-05 Martin WilliAdded support for OCSP responder URIs to conftest
2011-01-05 Martin WilliAdded support for delta CRL checking to revocation...
2011-01-05 Martin WilliUse incremented serial of base CRL when signing delta CRL
2011-01-05 Martin WilliShow base CRL of delta CRLs in listcrls
2011-01-05 Martin WilliVerify trustchain for each candidate certificate only...
2011-01-05 Martin WilliProvide CRLs received in CERT payloads to trustchain...
2011-01-05 Martin WilliAdded an AUTH_HELPER for revocation certificates
2011-01-05 Martin WilliAdded support for CDPs to conftest
2011-01-05 Martin WilliAdded CDP support to mem_cred
2011-01-05 Martin WilliCheck for issuer only if we actually got a CRL
2011-01-05 Martin WilliUpdated conftest README
2011-01-05 Martin WilliAdded support for custom file loggers, loglevel settings
2011-01-05 Martin WilliCheck inhibitAnyPolicy in constraints plugin
2011-01-05 Martin WilliSlightly renamed different policyConstraints to disting...
2011-01-05 Martin WilliAdded inhibitAnyPolicy constraint support to pki tool
2011-01-05 Martin WilliAdded support for inhibitAnyPolicy constraint to x509...
2011-01-05 Martin WilliUse a generic getter for all numerical X.509 constraints
2011-01-05 Martin WilliCheck inhibitPolicyMapping in constraints plugin
2011-01-05 Martin WilliCheck requireExplicitPolicy in constraints plugin
2011-01-05 Martin WilliInclude subject cert to temporary auth info before...
2011-01-05 Martin WilliFail silently when trying to convert IPv6 address to...
2011-01-05 Martin WilliPass an additional anchor flag to validate() hook if...
2011-01-05 Martin WilliAlways pass auth info to validate(), use pathlen to...
2011-01-05 Martin WilliMerge test config into suite config, instead of having...
2011-01-05 Martin WilliAdded support for delta CRLs to pki tool
2011-01-05 Martin WilliAdded support for delta CRLs to x509 plugin
2011-01-05 Martin WilliMoved CRL distribution point building to an exportable...
2011-01-05 Martin WilliSimplified format of x509 CRL URI parsing/enumerator
2011-01-05 Martin WilliFail on critical extensions in openssl CRLs
2011-01-05 Martin WilliRespect enforce_critical setting in x509 plugin CRLs
2011-01-05 Martin WilliParse CRL extensions in a switch statement
2011-01-05 Martin WilliRespect policy mappings in certificatePolicy validation
2011-01-05 Martin WilliAdded a cert_policy option to conftest configurations
2011-01-05 Martin WilliValidate simple certificatePolicy inheritance
2011-01-05 Martin WilliAdded a certificate policy OID auth_cfg constraint
2011-01-05 Martin WilliAdded policyConstraints support to pki tool
2011-01-05 Martin WilliAdded support for policyConstraints to x509 plugin
2011-01-05 Martin WilliSlightly renamed X509_NO_PATH_LEN_CONSTRAINT to use...
2011-01-05 Martin WilliAdded policyMappings support to pki tool
2011-01-05 Martin WilliAdded policyMappings support to x509 plugin
2011-01-05 Martin WilliAdded policyMappings OID identifier
2011-01-05 Martin WilliAdded certificatePolicy options to pki tool
2011-01-05 Martin WilliAdded certificatePolicy support to x509 plugin
2011-01-05 Martin WilliAdded a null-safe strdup variant
2011-01-05 Martin WilliFail when parsing unsupported critical extensions in...
2011-01-05 Martin WilliAdded CertificatePolicy OID identifier
2011-01-05 Martin WilliAdded command line tool for OID to DER conversion function
2011-01-05 Martin WilliAdded conversion functions between string OIDs and...
2011-01-05 Martin WilliDo not parse certificates with invalid version in opens...
2011-01-05 Martin WilliImplemented NameConstraint matching in constraints...
2011-01-05 Martin Willipki --issue/self support permitted/excluded NameConstraints
2011-01-05 Martin Willipki --print prints NameConstraints
2011-01-05 Martin WilliAdded support for generating NameConstraints in x509...
2011-01-05 Martin WilliAdded support for parsing NameConstraints in x509 plugin
2011-01-05 Martin WilliAdded name constraint enumerator to x509 interface
2011-01-05 Martin WilliMigrated x509_cert_t to INIT/METHOD macros
2011-01-05 Martin WilliMoved X509 pathlen constraint checking to constraints...
2011-01-05 Martin WilliAdded plugin stub for advanced X509 constraint checking
2011-01-05 Martin WilliAdded a hook to reset ESP sequence numbers
2011-01-05 Martin WilliAccept a suffix to differentiate x509, crl, ecdsa and...
2011-01-05 Martin WilliUse strncaseeq instead of strncasecmp
2011-01-05 Martin WilliAdded a strncaseeq variant to the string comparison...
2011-01-05 Martin WilliAdded tfc_padding option, changes signature to master...
2011-01-05 Martin WilliCRL/OCSP validation stores trustchain information in...
2011-01-05 Martin WilliKey strength checking stores all key sizes in auth_cfg...
2011-01-05 Martin WilliInstall "ipsec" script with tools or conftest
2011-01-05 Martin WilliUse subject, not issuer, of CRL issuing certificate
2011-01-05 Martin WilliCRLSign keyUsage or CA basicConstraint are sufficient...
2011-01-05 Martin WilliParse and encode crlSign keyUsage flag in x509 plugin
2011-01-05 Martin Willipki tool shows and builds crlSign keyUsage
2011-01-05 Martin WilliAdded a flag for X509 CRLSign keyUsage
2011-01-05 Martin WilliRemove x509_flag_names, flags do not work with ENUM()
2011-01-05 Martin WilliUse certificate CRLIssuer information to look up cacche...
2011-01-05 Martin WilliAdded --crlissuer option to pki --issue
2011-01-05 Martin WilliAdded support for CRL Issuers to x509 and OpenSSL plugins
2011-01-05 Martin WilliGenerate payload to rebuild_auth, works with injected...
2011-01-05 Martin WilliMove rebuild_auth functionality to a standalone hook
2011-01-05 Martin WilliAdded key strength constraints support to conftest
2011-01-05 Martin WilliAdded key strength constraints for RSA or ECDSA trustchains
2011-01-05 Martin WilliImplemented hook to log traffic selectors
2011-01-05 Martin WilliThe set_reserved() hook rebuilds AUTH if it mangles...
2011-01-05 Martin WilliInclude the used reserved bytes from ID payloads in...
2011-01-05 Martin WilliMigrated psk/pubkey_authenticators to INIT/METHOD macros
2011-01-05 Martin WilliExtended set_reserved hook to mangle sa_payload substru...
2011-01-05 Martin WilliAdded substructure enumerators to sa_payload, proposal_...
2011-01-05 Martin WilliMoved check if packet already encoded to ike_sa, avoids...
2011-01-05 Martin WilliThe set_ike_version hook supports version flag mangling
2011-01-05 Martin WilliAdded a message method to set the "higher version suppo...
2011-01-05 Martin WilliImplemented hook to toggle initiator flag in IKE header
next