strongSwan

Today

16:41 strongSwan Revision 209e1027: android: Add disconnect button to dialog if already connected to profile

android: Add disconnect button to dialog if already connected to profile

16:40 strongSwan Revision 8662d2f8: android: Load x509 plugin to generate OCSP requests and parse responses

android: Load x509 plugin to generate OCSP requests and parse responses
BoringSSL does not support OpenSSL's OCSP API.

16:15 strongSwan Revision f0925a5b: android: Add support to POST data via SimpleFetcher

android: Add support to POST data via SimpleFetcher
That's required for OCSP verification.

16:15 strongSwan Revision d6762439: android: Cache CRLs in app directory

android: Cache CRLs in app directory
#2405

16:15 strongSwan Revision 6a1510ba: android: Pass absolute path to the app's data directory via JNI

android: Pass absolute path to the app's data directory via JNI

15:41 strongSwan Issue #2400: Is DPD supposed to detect dead tunnel, or dead IKE instance

> I mean if there is a mistakenly send packet that matches SPD_IN, the SP use_time is updated.
When would that hap...

13:38 strongSwan Issue #2400: Is DPD supposed to detect dead tunnel, or dead IKE instance

> It seems that strongSwan checks ingress traffic with SP use_time, instead of SA use_time.
Correct, because the u...

12:13 strongSwan Bug #2403 (Closed): Charon doesn't detect interface up event of a renamed interface (and charon.i...

Applied to master.

12:10 strongSwan Revision 062a34e7: kernel-netlink: Set usable state whenever an interface appears

kernel-netlink: Set usable state whenever an interface appears
If an interface is renamed we already have an entry (...

12:00 strongSwan Wiki edit: Swanctlconf (#22)

Inbound mark behavior in 5.5.2 documented