strongswan.git
12 years agoadded addr2strongline script which helps to resolve leaking symbols in libstrongswan
Martin Willi [Thu, 11 Oct 2007 13:40:52 +0000 (13:40 -0000)]
added addr2strongline script which helps to resolve leaking symbols in libstrongswan

12 years agocall get_keysize with const rsa_private_key_t*
Andreas Steffen [Thu, 11 Oct 2007 11:36:37 +0000 (11:36 -0000)]
call get_keysize with const rsa_private_key_t*

12 years agocosmetics
Andreas Steffen [Thu, 11 Oct 2007 11:26:20 +0000 (11:26 -0000)]
cosmetics

12 years agorenamed eme_pkcs1_decrypt() to pkcs1_decrypt()
Andreas Steffen [Thu, 11 Oct 2007 11:25:52 +0000 (11:25 -0000)]
renamed eme_pkcs1_decrypt() to pkcs1_decrypt()

12 years agocorrected brief
Andreas Steffen [Mon, 8 Oct 2007 21:25:44 +0000 (21:25 -0000)]
corrected brief

12 years agocosmetics
Andreas Steffen [Mon, 8 Oct 2007 21:21:21 +0000 (21:21 -0000)]
cosmetics

12 years agoadded RCSID
Andreas Steffen [Mon, 8 Oct 2007 20:18:34 +0000 (20:18 -0000)]
added RCSID

12 years agoadded RCSID
Andreas Steffen [Mon, 8 Oct 2007 20:15:30 +0000 (20:15 -0000)]
added RCSID

12 years agoadded RCSID
Andreas Steffen [Mon, 8 Oct 2007 20:12:25 +0000 (20:12 -0000)]
added RCSID

12 years agoadded RCSID
Andreas Steffen [Mon, 8 Oct 2007 20:09:57 +0000 (20:09 -0000)]
added RCSID

12 years agoadded RCSID
Andreas Steffen [Mon, 8 Oct 2007 20:03:02 +0000 (20:03 -0000)]
added RCSID

12 years agoadded RCSID
Andreas Steffen [Mon, 8 Oct 2007 19:59:18 +0000 (19:59 -0000)]
added RCSID

12 years agoadded RCSID
Andreas Steffen [Mon, 8 Oct 2007 19:57:54 +0000 (19:57 -0000)]
added RCSID

12 years agoadded RCSID
Andreas Steffen [Mon, 8 Oct 2007 19:57:37 +0000 (19:57 -0000)]
added RCSID

12 years agoadded RCSID
Andreas Steffen [Mon, 8 Oct 2007 19:52:55 +0000 (19:52 -0000)]
added RCSID

12 years agoadded RCSID
Andreas Steffen [Mon, 8 Oct 2007 19:49:56 +0000 (19:49 -0000)]
added RCSID

12 years agoadded RCSID
Andreas Steffen [Mon, 8 Oct 2007 19:47:03 +0000 (19:47 -0000)]
added RCSID

12 years agoincrease debug level from 1 to 2
Andreas Steffen [Mon, 8 Oct 2007 19:36:42 +0000 (19:36 -0000)]
increase debug level from 1 to 2

12 years agocompleted pkcs7 parsing methods
Andreas Steffen [Sun, 7 Oct 2007 22:11:42 +0000 (22:11 -0000)]
completed pkcs7 parsing methods

12 years agoadded eme_pkcs1_decrypt() method
Andreas Steffen [Sun, 7 Oct 2007 21:43:24 +0000 (21:43 -0000)]
added eme_pkcs1_decrypt() method

12 years agoadded error message in case of incorrect padding
Andreas Steffen [Sun, 7 Oct 2007 21:42:38 +0000 (21:42 -0000)]
added error message in case of incorrect padding

12 years agoadded RCSID
Andreas Steffen [Sun, 7 Oct 2007 21:41:37 +0000 (21:41 -0000)]
added RCSID

12 years agoreplaced strncmp() == 0 by strneq()
Andreas Steffen [Sun, 7 Oct 2007 13:42:43 +0000 (13:42 -0000)]
replaced strncmp() == 0 by strneq()

12 years agoadded strneq(x,y,len) macro
Andreas Steffen [Sun, 7 Oct 2007 13:35:42 +0000 (13:35 -0000)]
added strneq(x,y,len) macro

12 years agocosmetics
Andreas Steffen [Sun, 7 Oct 2007 09:17:59 +0000 (09:17 -0000)]
cosmetics

12 years agouse RCSID
Andreas Steffen [Sat, 6 Oct 2007 21:39:00 +0000 (21:39 -0000)]
use RCSID

12 years agoactivated Id property
Andreas Steffen [Sat, 6 Oct 2007 21:24:50 +0000 (21:24 -0000)]
activated Id property

12 years agoactivated Id property
Andreas Steffen [Sat, 6 Oct 2007 21:20:18 +0000 (21:20 -0000)]
activated Id property

12 years agoactivated Id property
Andreas Steffen [Sat, 6 Oct 2007 21:19:41 +0000 (21:19 -0000)]
activated Id property

12 years agofixed some typos
Martin Willi [Fri, 5 Oct 2007 09:52:23 +0000 (09:52 -0000)]
fixed some typos

12 years agoremoved recursive mutex and __USE_UNIX98, should fix uClibc build
Martin Willi [Fri, 5 Oct 2007 09:47:55 +0000 (09:47 -0000)]
removed recursive mutex and __USE_UNIX98, should fix uClibc build

12 years agofixed bad cast which resulted in a crash on "ipsec update"
Martin Willi [Fri, 5 Oct 2007 09:13:03 +0000 (09:13 -0000)]
fixed bad cast which resulted in a crash on "ipsec update"

12 years agofixed memory leak
Martin Willi [Thu, 4 Oct 2007 15:20:00 +0000 (15:20 -0000)]
fixed memory leak

12 years agoimplemented an optional DH public value test
Martin Willi [Thu, 4 Oct 2007 15:19:24 +0000 (15:19 -0000)]
implemented an optional DH public value test
some other cleanups, using RFC2631 variable names

12 years agocleanups, fixes and simplification of diffie hellman code
Martin Willi [Thu, 4 Oct 2007 12:08:11 +0000 (12:08 -0000)]
cleanups, fixes and simplification of diffie hellman code

12 years agoimplemented enumerator for linked_list
Martin Willi [Thu, 4 Oct 2007 08:40:20 +0000 (08:40 -0000)]
implemented enumerator for linked_list

12 years agomoved enumerator from libappserv to libstrongswan
Martin Willi [Thu, 4 Oct 2007 08:21:53 +0000 (08:21 -0000)]
moved enumerator from libappserv to libstrongswan

12 years agofixed sqlite_backend compilation to respect changes from [3238]
Martin Willi [Thu, 4 Oct 2007 08:18:42 +0000 (08:18 -0000)]
fixed sqlite_backend compilation to respect changes from [3238]

12 years agoversion bump to 4.1.8
Andreas Steffen [Thu, 4 Oct 2007 06:41:45 +0000 (06:41 -0000)]
version bump to 4.1.8

12 years agoadded Andreas Eigenmann and Joel Stillhart to copyright statement 4.1.7
Andreas Steffen [Wed, 3 Oct 2007 21:48:42 +0000 (21:48 -0000)]
added Andreas Eigenmann and Joel Stillhart to copyright statement

12 years agoexperimental P2P-NAT-T for IKEv2 merged back from branch
Tobias Brunner [Wed, 3 Oct 2007 15:10:41 +0000 (15:10 -0000)]
experimental P2P-NAT-T for IKEv2 merged back from branch

12 years agoproper cleanup on error
Martin Willi [Wed, 3 Oct 2007 15:07:46 +0000 (15:07 -0000)]
proper cleanup on error

12 years agomore libstrongswan-like error handling in optionsfrom
Martin Willi [Wed, 3 Oct 2007 15:02:29 +0000 (15:02 -0000)]
more libstrongswan-like error handling in optionsfrom

12 years agoadded inbound and outbound arrows to ESP SPIs
Andreas Steffen [Wed, 3 Oct 2007 10:09:40 +0000 (10:09 -0000)]
added inbound and outbound arrows to ESP SPIs

12 years agoreverted changeset [3215], as we need NULL callback to do asynchronous calls
Martin Willi [Wed, 3 Oct 2007 08:10:03 +0000 (08:10 -0000)]
reverted changeset [3215], as we need NULL callback to do asynchronous calls
  added interface_manager_cb_empty function, which calls synchronous but doesn't do anything

12 years agoselection from multiple PSK in ipsec.secrets
Andreas Steffen [Wed, 3 Oct 2007 06:54:52 +0000 (06:54 -0000)]
selection from multiple PSK in ipsec.secrets

12 years agoreformulation
Andreas Steffen [Wed, 3 Oct 2007 06:52:58 +0000 (06:52 -0000)]
reformulation

12 years agoadded missing enumerator implementation
Martin Willi [Wed, 3 Oct 2007 05:29:49 +0000 (05:29 -0000)]
added missing enumerator implementation

12 years agocheck for NAT faking log entry
Andreas Steffen [Tue, 2 Oct 2007 20:35:48 +0000 (20:35 -0000)]
check for NAT faking log entry

12 years agoadded force-udp-encaps scenario
Andreas Steffen [Tue, 2 Oct 2007 20:24:13 +0000 (20:24 -0000)]
added force-udp-encaps scenario

12 years agoadded mobike=no to net2net scenarios
Andreas Steffen [Tue, 2 Oct 2007 19:27:31 +0000 (19:27 -0000)]
added mobike=no to net2net scenarios

12 years agoswitched mobike-nat and mobike-virtual-ip scenarios to a virtual IP of 10.3.0.3
Andreas Steffen [Tue, 2 Oct 2007 19:23:12 +0000 (19:23 -0000)]
switched mobike-nat and mobike-virtual-ip scenarios to a virtual IP of 10.3.0.3

12 years agoversion bump to 4.1.7
Andreas Steffen [Tue, 2 Oct 2007 19:11:03 +0000 (19:11 -0000)]
version bump to 4.1.7

12 years agoactivated the libstrongswan integrity test
Andreas Steffen [Tue, 2 Oct 2007 19:10:24 +0000 (19:10 -0000)]
activated the libstrongswan integrity test

12 years agotypo
Tobias Brunner [Tue, 2 Oct 2007 13:56:58 +0000 (13:56 -0000)]
typo

12 years agodo not attempt to encrypt payloads without crypter or signer (allows to override...
Tobias Brunner [Tue, 2 Oct 2007 13:31:12 +0000 (13:31 -0000)]
do not attempt to encrypt payloads without crypter or signer (allows to override message rules)

12 years agofixed "ipsec statusall" SPI formatting
Martin Willi [Tue, 2 Oct 2007 13:11:23 +0000 (13:11 -0000)]
fixed "ipsec statusall" SPI formatting

12 years agodestruction helper macros
Tobias Brunner [Tue, 2 Oct 2007 12:04:03 +0000 (12:04 -0000)]
destruction helper macros

12 years agofixed sqlite database path
Martin Willi [Tue, 2 Oct 2007 11:55:19 +0000 (11:55 -0000)]
fixed sqlite database path

12 years agoID payload with explicit payload type
Tobias Brunner [Tue, 2 Oct 2007 11:55:10 +0000 (11:55 -0000)]
ID payload with explicit payload type

12 years agoget_first_payload_type for message_t
Tobias Brunner [Tue, 2 Oct 2007 11:42:27 +0000 (11:42 -0000)]
get_first_payload_type for message_t

12 years agoupdated NEWS for 4.1.7
Martin Willi [Tue, 2 Oct 2007 11:36:54 +0000 (11:36 -0000)]
updated NEWS for 4.1.7

12 years agodummy callback added to interface manager
Tobias Brunner [Tue, 2 Oct 2007 11:33:16 +0000 (11:33 -0000)]
dummy callback added to interface manager

12 years agoadded thread initialization/deinitialization hooks
Martin Willi [Tue, 2 Oct 2007 11:23:14 +0000 (11:23 -0000)]
added thread initialization/deinitialization hooks
moved empty_enumerator to a public implementation

12 years agoremove control sockets on startup, as we don't have privileges on shutdown
Martin Willi [Tue, 2 Oct 2007 11:20:07 +0000 (11:20 -0000)]
remove control sockets on startup, as we don't have privileges on shutdown

12 years agoimproved debugging code for traffic selector processing
Martin Willi [Tue, 2 Oct 2007 07:39:56 +0000 (07:39 -0000)]
improved debugging code for traffic selector processing

12 years agorenamed force_encap to forceencaps (as it is named in openswan)
Martin Willi [Tue, 2 Oct 2007 06:57:58 +0000 (06:57 -0000)]
renamed force_encap to forceencaps (as it is named in openswan)

12 years agofixed path to the local libstrongswan build
Andreas Steffen [Mon, 1 Oct 2007 20:15:28 +0000 (20:15 -0000)]
fixed path to the local libstrongswan build

12 years agomoved force_encap to ike_config, enables responder to enforce udp encapsulation
Martin Willi [Mon, 1 Oct 2007 16:41:34 +0000 (16:41 -0000)]
moved force_encap to ike_config, enables responder to enforce udp encapsulation
fixed bugs in force_encap code

12 years agoremoved accidentally checked in debugging code
Martin Willi [Mon, 1 Oct 2007 12:25:26 +0000 (12:25 -0000)]
removed accidentally checked in debugging code

12 years agoimplemented IKEv2 force_encap connection parameter
Martin Willi [Mon, 1 Oct 2007 12:19:39 +0000 (12:19 -0000)]
implemented IKEv2 force_encap connection parameter
  enforces UDP encapsulation by faking NAT detection payloads
  to hurdle restrictive firewalls

12 years agofixed stuid()/setgid() and error handling
Martin Willi [Mon, 1 Oct 2007 09:07:10 +0000 (09:07 -0000)]
fixed stuid()/setgid() and error handling

12 years agofixed updown script privilige inheritance for pluto, too
Martin Willi [Fri, 28 Sep 2007 09:42:55 +0000 (09:42 -0000)]
fixed updown script privilige inheritance for pluto, too

12 years agoimplemented more aggressive MOBIKE path probing
Martin Willi [Fri, 28 Sep 2007 08:22:37 +0000 (08:22 -0000)]
implemented more aggressive MOBIKE path probing
do not queue more than one MOBIKE task

12 years agofixed CHILD_SA SPI byte order in XML interface
Martin Willi [Fri, 28 Sep 2007 07:05:15 +0000 (07:05 -0000)]
fixed CHILD_SA SPI byte order in XML interface

12 years agochanged inheritable capability set to the permitted one to execute firewall script...
Martin Willi [Fri, 28 Sep 2007 07:04:09 +0000 (07:04 -0000)]
changed inheritable capability set to the permitted one to execute firewall script with CAP_NET_ADMIN

12 years agoimplemented proper argument parsing code
Martin Willi [Fri, 28 Sep 2007 06:43:59 +0000 (06:43 -0000)]
implemented proper argument parsing code

12 years agoremoved colons from session cookie
Martin Willi [Thu, 27 Sep 2007 13:10:10 +0000 (13:10 -0000)]
removed colons from session cookie

12 years agoreduced debbugging level
Martin Willi [Thu, 27 Sep 2007 13:09:50 +0000 (13:09 -0000)]
reduced debbugging level

12 years agomade add_ip()/del_ip() calls synchron (waiting until kernel event received)
Martin Willi [Thu, 27 Sep 2007 12:48:00 +0000 (12:48 -0000)]
made add_ip()/del_ip() calls synchron (waiting until kernel event received)
  this should fix MOBIKE route migration with virtual IPs

12 years agotypos
Tobias Brunner [Thu, 27 Sep 2007 10:36:03 +0000 (10:36 -0000)]
typos

12 years agoimplemented SHA1 encrypted passwords for manager
Martin Willi [Thu, 27 Sep 2007 07:15:47 +0000 (07:15 -0000)]
implemented SHA1 encrypted passwords for manager

12 years agoadded vsyslog to leak detectives white list
Martin Willi [Thu, 27 Sep 2007 06:40:50 +0000 (06:40 -0000)]
added vsyslog to leak detectives white list
removed debugging hook on openac cleanup

12 years agoupdated TODO
Martin Willi [Wed, 26 Sep 2007 15:08:34 +0000 (15:08 -0000)]
updated TODO

12 years agofixed argument processing bug
Martin Willi [Wed, 26 Sep 2007 15:07:34 +0000 (15:07 -0000)]
fixed argument processing bug

12 years agorefactored strongswan manager
Martin Willi [Wed, 26 Sep 2007 14:02:21 +0000 (14:02 -0000)]
refactored strongswan manager
  removed buggy request parsing code, use ClearSilvers CGI kit instead
fixed CHILD_SA listing in manager (needs better design)
using secure XML communication through unix sockets
removed images with questionable (non-GPL) license

12 years agocleaning up
Andreas Steffen [Tue, 25 Sep 2007 20:13:06 +0000 (20:13 -0000)]
cleaning up

12 years agoupdated openac man page
Andreas Steffen [Tue, 25 Sep 2007 20:11:28 +0000 (20:11 -0000)]
updated openac man page

12 years agoupdated copyright
Andreas Steffen [Tue, 25 Sep 2007 20:10:58 +0000 (20:10 -0000)]
updated copyright

12 years agoignore : separators in hex input
Andreas Steffen [Tue, 25 Sep 2007 20:09:40 +0000 (20:09 -0000)]
ignore : separators in hex input

12 years agofixed bug occuring with multiple queued Quick Modes and NAT Traversal
Andreas Steffen [Tue, 25 Sep 2007 20:07:31 +0000 (20:07 -0000)]
fixed bug occuring with multiple queued Quick Modes and NAT Traversal

12 years agofixed bug occuring with multiple queued Quick Modes and NAT Traversal
Andreas Steffen [Tue, 25 Sep 2007 20:07:04 +0000 (20:07 -0000)]
fixed bug occuring with multiple queued Quick Modes and NAT Traversal

12 years agoimproved MOBIKE roaming between interfaces
Martin Willi [Mon, 24 Sep 2007 12:15:25 +0000 (12:15 -0000)]
improved MOBIKE roaming between interfaces

12 years agocorrect build of the ac signature
Andreas Steffen [Wed, 19 Sep 2007 04:57:45 +0000 (04:57 -0000)]
correct build of the ac signature

12 years agoreplace sizeof(buf) by BUF_LEN
Andreas Steffen [Tue, 18 Sep 2007 22:10:52 +0000 (22:10 -0000)]
replace sizeof(buf) by BUF_LEN

12 years agorecovered lost asn1_init() function
Andreas Steffen [Tue, 18 Sep 2007 21:21:19 +0000 (21:21 -0000)]
recovered lost asn1_init() function

12 years agodeclared timetoasn1()function
Andreas Steffen [Tue, 18 Sep 2007 21:04:55 +0000 (21:04 -0000)]
declared timetoasn1()function

12 years agomoved position of timetoas1n
Andreas Steffen [Tue, 18 Sep 2007 21:04:39 +0000 (21:04 -0000)]
moved position of timetoas1n

12 years agoadded all required includes
Andreas Steffen [Tue, 18 Sep 2007 20:49:05 +0000 (20:49 -0000)]
added all required includes

12 years agofixed to bugs in optionsfrom.c
Andreas Steffen [Tue, 18 Sep 2007 20:35:28 +0000 (20:35 -0000)]
fixed to bugs in optionsfrom.c