strongswan.git
13 years agoupdated NetworkManager applet copyright
Martin Willi [Wed, 25 Mar 2009 12:03:29 +0000 (12:03 -0000)]
updated NetworkManager applet copyright

13 years agouse compact radiusd.conf
Andreas Steffen [Wed, 25 Mar 2009 10:12:30 +0000 (10:12 -0000)]
use compact radiusd.conf

13 years agorenamed scenarios
Andreas Steffen [Wed, 25 Mar 2009 09:38:35 +0000 (09:38 -0000)]
renamed scenarios

13 years agoadded ikev2/rw-eap-md5-id-radius scenario
Andreas Steffen [Wed, 25 Mar 2009 09:34:27 +0000 (09:34 -0000)]
added ikev2/rw-eap-md5-id-radius scenario

13 years agoadded ikev2/rw-eap-md5-radius scenario
Andreas Steffen [Wed, 25 Mar 2009 09:00:46 +0000 (09:00 -0000)]
added ikev2/rw-eap-md5-radius scenario

13 years agoslightly adapted ikev2/rw-eap-md5-rsa scenario
Andreas Steffen [Wed, 25 Mar 2009 08:00:51 +0000 (08:00 -0000)]
slightly adapted ikev2/rw-eap-md5-rsa scenario

13 years agoadded a NEWS file
Martin Willi [Wed, 25 Mar 2009 07:49:11 +0000 (07:49 -0000)]
added a NEWS file
release NetworkManager-strongswan-1.1.0

13 years agoenable eap-radius plugin in uml scenarios
Andreas Steffen [Wed, 25 Mar 2009 07:26:53 +0000 (07:26 -0000)]
enable eap-radius plugin in uml scenarios

13 years agodistinct distinguished names in research and sales CAs
Andreas Steffen [Tue, 24 Mar 2009 21:20:17 +0000 (21:20 -0000)]
distinct distinguished names in research and sales CAs

13 years agoupdated Doxyfile
Martin Willi [Tue, 24 Mar 2009 17:43:01 +0000 (17:43 -0000)]
updated Doxyfile
properly close all doxygen groups
fixed remaining doxygen warnings

13 years agoset the default of plutostart/charonstart according to ./configure options
Martin Willi [Tue, 24 Mar 2009 15:02:12 +0000 (15:02 -0000)]
set the default of plutostart/charonstart according to ./configure options

13 years agoreintegrated eap-radius branch into trunk
Martin Willi [Tue, 24 Mar 2009 10:24:58 +0000 (10:24 -0000)]
reintegrated eap-radius branch into trunk

13 years agoversion bump to 4.2.14
Andreas Steffen [Sun, 22 Mar 2009 14:37:03 +0000 (14:37 -0000)]
version bump to 4.2.14

13 years agofixed parsing of ASN.1 algorithmIdentifier objects 4.2.13
Andreas Steffen [Fri, 20 Mar 2009 19:34:31 +0000 (19:34 -0000)]
fixed parsing of ASN.1 algorithmIdentifier objects

13 years agofixed NetworkManager applet debian dependencies
Martin Willi [Fri, 20 Mar 2009 08:33:02 +0000 (08:33 -0000)]
fixed NetworkManager applet debian dependencies

13 years agoadded NEWS
Martin Willi [Thu, 19 Mar 2009 12:25:15 +0000 (12:25 -0000)]
added NEWS

13 years agonew debian packages for NetworkManager 7.1
Martin Willi [Thu, 19 Mar 2009 10:20:28 +0000 (10:20 -0000)]
new debian packages for NetworkManager 7.1

13 years agorespect port in create_dns/create_from_string when passing %any
Martin Willi [Thu, 19 Mar 2009 09:16:03 +0000 (09:16 -0000)]
respect port in create_dns/create_from_string when passing %any

13 years agoprint IPv6 %any hosts as %any6
Martin Willi [Thu, 19 Mar 2009 09:04:20 +0000 (09:04 -0000)]
print IPv6 %any hosts as %any6

13 years agofixed compiler warning
Martin Willi [Thu, 19 Mar 2009 08:54:39 +0000 (08:54 -0000)]
fixed compiler warning

13 years agoported nm plugin and gnome applet to NetworkManager 7.1
Martin Willi [Wed, 18 Mar 2009 19:48:06 +0000 (19:48 -0000)]
ported nm plugin and gnome applet to NetworkManager 7.1

13 years agofallback to family specific %any(6) if kernel lookup fails
Martin Willi [Mon, 16 Mar 2009 14:23:36 +0000 (14:23 -0000)]
fallback to family specific %any(6) if kernel lookup fails

13 years agothe parameters field in an ASN.1 algorithmIdentifier is optional
Andreas Steffen [Fri, 13 Mar 2009 20:22:24 +0000 (20:22 -0000)]
the parameters field in an ASN.1 algorithmIdentifier is optional

13 years agoworkaround for algorithmIdentifiers with missing parameters field
Andreas Steffen [Fri, 13 Mar 2009 07:54:29 +0000 (07:54 -0000)]
workaround for algorithmIdentifiers with missing parameters field

13 years agofixing DES ECB decryption
Tobias Brunner [Thu, 12 Mar 2009 18:38:13 +0000 (18:38 -0000)]
fixing DES ECB decryption

13 years agoprintf hooks refactored to increase portability (i.e. support for platforms without...
Tobias Brunner [Thu, 12 Mar 2009 18:07:32 +0000 (18:07 -0000)]
printf hooks refactored to increase portability (i.e. support for platforms without glibc-compatible customizable printf - the Vstr string library is currently required on such platforms).

13 years agomemleak fixed when reading smartcard secrets
Tobias Brunner [Thu, 12 Mar 2009 15:12:11 +0000 (15:12 -0000)]
memleak fixed when reading smartcard secrets

13 years agoadded ikev1/dpd-restart scenario
Andreas Steffen [Tue, 10 Mar 2009 21:48:37 +0000 (21:48 -0000)]
added ikev1/dpd-restart scenario

13 years agobug fixes in 4.2.13
Andreas Steffen [Tue, 10 Mar 2009 21:47:52 +0000 (21:47 -0000)]
bug fixes in 4.2.13

13 years agofixed a use-after-free bug in dpd_timeout()
Andreas Steffen [Tue, 10 Mar 2009 21:13:18 +0000 (21:13 -0000)]
fixed a use-after-free bug in dpd_timeout()

13 years agoadded updated mconsole-exec patch for 2.6.28
Martin Willi [Thu, 5 Mar 2009 14:32:15 +0000 (14:32 -0000)]
added updated mconsole-exec patch for 2.6.28

13 years agoadded ikev2/ip-two-pools-mixed scenario
Andreas Steffen [Tue, 3 Mar 2009 17:10:52 +0000 (17:10 -0000)]
added ikev2/ip-two-pools-mixed scenario

13 years agocorrected scenario descriptions
Andreas Steffen [Tue, 3 Mar 2009 17:09:13 +0000 (17:09 -0000)]
corrected scenario descriptions

13 years agofixed format string argument error, resulting in crash
Martin Willi [Tue, 3 Mar 2009 14:56:17 +0000 (14:56 -0000)]
fixed format string argument error, resulting in crash
fixed memleak if pool not found

13 years agostop searching other pools if lease successfully released
Martin Willi [Tue, 3 Mar 2009 14:43:53 +0000 (14:43 -0000)]
stop searching other pools if lease successfully released

13 years agoipsec statusall <conn> also filters address pools
Andreas Steffen [Tue, 3 Mar 2009 10:30:59 +0000 (10:30 -0000)]
ipsec statusall <conn> also filters address pools

13 years agofixed MSCHAPv2 password lookup when used with NetworkManager
Martin Willi [Tue, 24 Feb 2009 13:39:50 +0000 (13:39 -0000)]
fixed MSCHAPv2 password lookup when used with NetworkManager

13 years agoadded EAP-Identity package
Martin Willi [Tue, 24 Feb 2009 11:50:24 +0000 (11:50 -0000)]
added EAP-Identity package

13 years agoupdated debian packages to 4.2.12, supporting EAP-MSCHAPv2
Martin Willi [Mon, 23 Feb 2009 16:33:17 +0000 (16:33 -0000)]
updated debian packages to 4.2.12, supporting EAP-MSCHAPv2

13 years agoversion bump to 4.2.13
Andreas Steffen [Sat, 21 Feb 2009 17:53:10 +0000 (17:53 -0000)]
version bump to 4.2.13

13 years agochanges in 4.2.12 4.2.12
Andreas Steffen [Fri, 20 Feb 2009 19:52:14 +0000 (19:52 -0000)]
changes in 4.2.12

13 years agoadded eap=mschapv2 to ipsec.conf.5
Andreas Steffen [Thu, 19 Feb 2009 22:12:04 +0000 (22:12 -0000)]
added eap=mschapv2 to ipsec.conf.5

13 years agoadded ikev2/rw-eap-mschapv2 scenario
Andreas Steffen [Thu, 19 Feb 2009 22:02:28 +0000 (22:02 -0000)]
added ikev2/rw-eap-mschapv2 scenario

13 years agofixed some memleaks in mschapv2 plugin
Tobias Brunner [Thu, 19 Feb 2009 14:32:13 +0000 (14:32 -0000)]
fixed some memleaks in mschapv2 plugin

13 years agoECB mode added to the DES plugin
Tobias Brunner [Thu, 19 Feb 2009 14:29:25 +0000 (14:29 -0000)]
ECB mode added to the DES plugin

13 years agodes ecb enum value changed, ignores set for md4 plugin
Tobias Brunner [Thu, 19 Feb 2009 13:46:08 +0000 (13:46 -0000)]
des ecb enum value changed, ignores set for md4 plugin

13 years agoadded Id svn:keyword
Andreas Steffen [Thu, 19 Feb 2009 10:16:45 +0000 (10:16 -0000)]
added Id svn:keyword

13 years agosupport of MD4 hash
Andreas Steffen [Thu, 19 Feb 2009 10:06:58 +0000 (10:06 -0000)]
support of MD4 hash

13 years agocorrected typo
Andreas Steffen [Thu, 19 Feb 2009 09:54:31 +0000 (09:54 -0000)]
corrected typo

13 years agoadding plugin for EAP-MS-CHAPv2
Tobias Brunner [Wed, 18 Feb 2009 19:57:15 +0000 (19:57 -0000)]
adding plugin for EAP-MS-CHAPv2

13 years agoforce unique connections for mediation connections
Tobias Brunner [Wed, 18 Feb 2009 19:48:11 +0000 (19:48 -0000)]
force unique connections for mediation connections

13 years agoadding enum elements for MD4 and DES (ECB)
Tobias Brunner [Wed, 18 Feb 2009 19:45:46 +0000 (19:45 -0000)]
adding enum elements for MD4 and DES (ECB)

13 years agoadding MD4 and DES (ECB) to openssl plugin
Tobias Brunner [Wed, 18 Feb 2009 19:41:33 +0000 (19:41 -0000)]
adding MD4 and DES (ECB) to openssl plugin

13 years agoalways encode EAP usernames as ID_KEY_ID
Martin Willi [Wed, 18 Feb 2009 15:03:33 +0000 (15:03 -0000)]
always encode EAP usernames as ID_KEY_ID

13 years agoremoved unused extract_last_token() and the required memrchr implementation
Martin Willi [Wed, 18 Feb 2009 09:45:54 +0000 (09:45 -0000)]
removed unused extract_last_token() and the required memrchr implementation

13 years agodo not operate on strongswan-padlock on non-x86
Martin Willi [Tue, 17 Feb 2009 18:30:02 +0000 (18:30 -0000)]
do not operate on strongswan-padlock on non-x86

13 years agotypo
Tobias Brunner [Tue, 17 Feb 2009 17:14:15 +0000 (17:14 -0000)]
typo

13 years agoadded missing kernel-netlink plugin
Martin Willi [Tue, 17 Feb 2009 09:38:42 +0000 (09:38 -0000)]
added missing kernel-netlink plugin

13 years agofixed build on non-i386 architectures
Martin Willi [Tue, 17 Feb 2009 09:34:52 +0000 (09:34 -0000)]
fixed build on non-i386 architectures

13 years agobuild strongswan-padlock on i386 only
Martin Willi [Mon, 16 Feb 2009 16:49:43 +0000 (16:49 -0000)]
build strongswan-padlock on i386 only

13 years agouse separate distribution tarballs for NetworkManager applet
Martin Willi [Mon, 16 Feb 2009 16:11:16 +0000 (16:11 -0000)]
use separate distribution tarballs for NetworkManager applet

13 years agouse a slightly adopted package versioning scheme
Martin Willi [Mon, 16 Feb 2009 16:05:30 +0000 (16:05 -0000)]
use a slightly adopted package versioning scheme
  NM applet uses strongSwan independent versions

13 years agoadded Makefile to build ubuntu PPA source packages
Martin Willi [Mon, 16 Feb 2009 16:03:09 +0000 (16:03 -0000)]
added Makefile to build ubuntu PPA source packages

13 years agoinitial version of new modular strongswan debian packages
Martin Willi [Mon, 16 Feb 2009 12:48:35 +0000 (12:48 -0000)]
initial version of new modular strongswan debian packages
  "strongswan" metapackage adds similar functionality as old debian packages
  "network-manager-strongswan" depends on required strongSwan packages

13 years agoconfiguration of NBNS server assignment via strongswan.conf
Andreas Steffen [Fri, 13 Feb 2009 11:57:50 +0000 (11:57 -0000)]
configuration of NBNS server assignment via strongswan.conf

13 years agouse internal host venus as dns2
Andreas Steffen [Thu, 12 Feb 2009 09:18:42 +0000 (09:18 -0000)]
use internal host venus as dns2

13 years agoconfiguration of DNS server assignment via strongswan.conf
Andreas Steffen [Thu, 12 Feb 2009 09:02:15 +0000 (09:02 -0000)]
configuration of DNS server assignment via strongswan.conf

13 years ago[4859] caused crash when handling the %config case
Andreas Steffen [Wed, 11 Feb 2009 22:39:35 +0000 (22:39 -0000)]
[4859] caused crash when handling the %config case

13 years agocorrected syntax
Andreas Steffen [Wed, 11 Feb 2009 16:45:14 +0000 (16:45 -0000)]
corrected syntax

13 years agothis debug statement has only two arguments
Andreas Steffen [Wed, 11 Feb 2009 16:41:37 +0000 (16:41 -0000)]
this debug statement has only two arguments

13 years agofixed a 64-bit issue with time_t printf hooks
Andreas Steffen [Wed, 11 Feb 2009 16:37:16 +0000 (16:37 -0000)]
fixed a 64-bit issue with time_t printf hooks

13 years agochanged [4856] to dynamically choose traffic selector family
Martin Willi [Wed, 11 Feb 2009 13:09:52 +0000 (13:09 -0000)]
changed [4856] to dynamically choose traffic selector family

13 years agorespect family when assigning pool addresses
Martin Willi [Wed, 11 Feb 2009 12:50:04 +0000 (12:50 -0000)]
respect family when assigning pool addresses

13 years agosend proper AUTHENTICATION_FAILED if EAP method is successful, but AUTH mismatches
Martin Willi [Tue, 10 Feb 2009 17:21:44 +0000 (17:21 -0000)]
send proper AUTHENTICATION_FAILED if EAP method is successful, but AUTH mismatches

13 years agofree unneeded retransmission packet when exchange completes
Martin Willi [Mon, 9 Feb 2009 10:45:51 +0000 (10:45 -0000)]
free unneeded retransmission packet when exchange completes

13 years agosupport of dynamic/128 and %any6
Andreas Steffen [Thu, 5 Feb 2009 22:13:48 +0000 (22:13 -0000)]
support of dynamic/128 and %any6

13 years agodisable MOBIKE in load-tester
Andreas Steffen [Thu, 5 Feb 2009 10:10:20 +0000 (10:10 -0000)]
disable MOBIKE in load-tester

13 years agooutput pool name string rather than pool pointer
Andreas Steffen [Wed, 28 Jan 2009 00:37:11 +0000 (00:37 -0000)]
output pool name string rather than pool pointer

13 years agoversion bump to 4.2.12
Andreas Steffen [Wed, 21 Jan 2009 03:14:52 +0000 (03:14 -0000)]
version bump to 4.2.12

13 years agoadded two Microsoft proprietary configuration attribute types 4.2.11
Andreas Steffen [Tue, 20 Jan 2009 22:55:13 +0000 (22:55 -0000)]
added two Microsoft proprietary configuration attribute types

13 years agochanges in 4.2.11
Andreas Steffen [Tue, 20 Jan 2009 22:37:58 +0000 (22:37 -0000)]
changes in 4.2.11

13 years agoadded notify message types used by RFC 4739
Andreas Steffen [Mon, 19 Jan 2009 12:32:42 +0000 (12:32 -0000)]
added notify message types used by RFC 4739

13 years agoproper initialization and disposal of keying material
Andreas Steffen [Thu, 15 Jan 2009 01:52:44 +0000 (01:52 -0000)]
proper initialization and disposal of keying material

13 years agoadded pfkey/esp-alg-null scenario
Andreas Steffen [Thu, 15 Jan 2009 00:47:21 +0000 (00:47 -0000)]
added pfkey/esp-alg-null scenario

13 years agoadded ikev2/esp-alg-null scenario
Andreas Steffen [Thu, 15 Jan 2009 00:39:06 +0000 (00:39 -0000)]
added ikev2/esp-alg-null scenario

13 years agofixed ESP NULL encryption
Andreas Steffen [Thu, 15 Jan 2009 00:34:42 +0000 (00:34 -0000)]
fixed ESP NULL encryption

13 years agofixed broken listing of connections in ipsec statusall
Andreas Steffen [Wed, 14 Jan 2009 08:10:16 +0000 (08:10 -0000)]
fixed broken listing of connections in ipsec statusall

13 years agoadded eap=gtc option to ipsec.conf man page
Andreas Steffen [Wed, 14 Jan 2009 03:29:59 +0000 (03:29 -0000)]
added eap=gtc option to ipsec.conf man page

13 years agodisable DPD and sending of cert requests in load-tester
Andreas Steffen [Wed, 14 Jan 2009 00:13:21 +0000 (00:13 -0000)]
disable DPD and sending of cert requests in load-tester

13 years agofixing cross-compilation
Tobias Brunner [Tue, 13 Jan 2009 10:38:16 +0000 (10:38 -0000)]
fixing cross-compilation

13 years agocosmetics
Andreas Steffen [Tue, 13 Jan 2009 06:50:55 +0000 (06:50 -0000)]
cosmetics

13 years agochanged type definition of level from char* to int
Andreas Steffen [Tue, 13 Jan 2009 06:36:31 +0000 (06:36 -0000)]
changed type definition of level from char* to int

13 years agohiding XFRM message names from netlink
Andreas Steffen [Fri, 9 Jan 2009 09:37:13 +0000 (09:37 -0000)]
hiding XFRM message names from netlink

13 years agorenamed chunk
Andreas Steffen [Fri, 9 Jan 2009 08:51:41 +0000 (08:51 -0000)]
renamed chunk

13 years agorefactored DBG3 output of sent XFRM messages
Andreas Steffen [Fri, 9 Jan 2009 08:46:31 +0000 (08:46 -0000)]
refactored DBG3 output of sent XFRM messages

13 years agoDBG3 output of sent XFRM messages
Andreas Steffen [Fri, 9 Jan 2009 08:27:17 +0000 (08:27 -0000)]
DBG3 output of sent XFRM messages

13 years agoadded message for undefined ocsp status #4
Andreas Steffen [Fri, 9 Jan 2009 01:36:13 +0000 (01:36 -0000)]
added message for undefined ocsp status #4

13 years agoadd a compatible memrchr() function if the platform does not support it (e.g. old...
Andreas Steffen [Fri, 9 Jan 2009 01:19:45 +0000 (01:19 -0000)]
add a compatible memrchr() function if the platform does not support it (e.g. old glibc). Patch courtesy to Thomas Jarosch

13 years agothe Linux 2.6.28 uml guest kernel does not need any patches
Andreas Steffen [Fri, 9 Jan 2009 00:28:47 +0000 (00:28 -0000)]
the Linux 2.6.28 uml guest kernel does not need any patches

13 years agotest of ipsec leases command in ikev2/ip-pool and ikev2/ip-two-pools scenarios
Andreas Steffen [Fri, 9 Jan 2009 00:24:54 +0000 (00:24 -0000)]
test of ipsec leases command in ikev2/ip-pool and ikev2/ip-two-pools scenarios