strongswan.git
10 years agoupdated Doxyfile
Martin Willi [Tue, 24 Mar 2009 17:43:01 +0000 (17:43 -0000)]
updated Doxyfile
properly close all doxygen groups
fixed remaining doxygen warnings

10 years agoset the default of plutostart/charonstart according to ./configure options
Martin Willi [Tue, 24 Mar 2009 15:02:12 +0000 (15:02 -0000)]
set the default of plutostart/charonstart according to ./configure options

10 years agoreintegrated eap-radius branch into trunk
Martin Willi [Tue, 24 Mar 2009 10:24:58 +0000 (10:24 -0000)]
reintegrated eap-radius branch into trunk

10 years agoversion bump to 4.2.14
Andreas Steffen [Sun, 22 Mar 2009 14:37:03 +0000 (14:37 -0000)]
version bump to 4.2.14

10 years agofixed parsing of ASN.1 algorithmIdentifier objects 4.2.13
Andreas Steffen [Fri, 20 Mar 2009 19:34:31 +0000 (19:34 -0000)]
fixed parsing of ASN.1 algorithmIdentifier objects

10 years agofixed NetworkManager applet debian dependencies
Martin Willi [Fri, 20 Mar 2009 08:33:02 +0000 (08:33 -0000)]
fixed NetworkManager applet debian dependencies

10 years agoadded NEWS
Martin Willi [Thu, 19 Mar 2009 12:25:15 +0000 (12:25 -0000)]
added NEWS

10 years agonew debian packages for NetworkManager 7.1
Martin Willi [Thu, 19 Mar 2009 10:20:28 +0000 (10:20 -0000)]
new debian packages for NetworkManager 7.1

10 years agorespect port in create_dns/create_from_string when passing %any
Martin Willi [Thu, 19 Mar 2009 09:16:03 +0000 (09:16 -0000)]
respect port in create_dns/create_from_string when passing %any

10 years agoprint IPv6 %any hosts as %any6
Martin Willi [Thu, 19 Mar 2009 09:04:20 +0000 (09:04 -0000)]
print IPv6 %any hosts as %any6

10 years agofixed compiler warning
Martin Willi [Thu, 19 Mar 2009 08:54:39 +0000 (08:54 -0000)]
fixed compiler warning

10 years agoported nm plugin and gnome applet to NetworkManager 7.1
Martin Willi [Wed, 18 Mar 2009 19:48:06 +0000 (19:48 -0000)]
ported nm plugin and gnome applet to NetworkManager 7.1

10 years agofallback to family specific %any(6) if kernel lookup fails
Martin Willi [Mon, 16 Mar 2009 14:23:36 +0000 (14:23 -0000)]
fallback to family specific %any(6) if kernel lookup fails

10 years agothe parameters field in an ASN.1 algorithmIdentifier is optional
Andreas Steffen [Fri, 13 Mar 2009 20:22:24 +0000 (20:22 -0000)]
the parameters field in an ASN.1 algorithmIdentifier is optional

10 years agoworkaround for algorithmIdentifiers with missing parameters field
Andreas Steffen [Fri, 13 Mar 2009 07:54:29 +0000 (07:54 -0000)]
workaround for algorithmIdentifiers with missing parameters field

10 years agofixing DES ECB decryption
Tobias Brunner [Thu, 12 Mar 2009 18:38:13 +0000 (18:38 -0000)]
fixing DES ECB decryption

10 years agoprintf hooks refactored to increase portability (i.e. support for platforms without...
Tobias Brunner [Thu, 12 Mar 2009 18:07:32 +0000 (18:07 -0000)]
printf hooks refactored to increase portability (i.e. support for platforms without glibc-compatible customizable printf - the Vstr string library is currently required on such platforms).

10 years agomemleak fixed when reading smartcard secrets
Tobias Brunner [Thu, 12 Mar 2009 15:12:11 +0000 (15:12 -0000)]
memleak fixed when reading smartcard secrets

10 years agoadded ikev1/dpd-restart scenario
Andreas Steffen [Tue, 10 Mar 2009 21:48:37 +0000 (21:48 -0000)]
added ikev1/dpd-restart scenario

10 years agobug fixes in 4.2.13
Andreas Steffen [Tue, 10 Mar 2009 21:47:52 +0000 (21:47 -0000)]
bug fixes in 4.2.13

10 years agofixed a use-after-free bug in dpd_timeout()
Andreas Steffen [Tue, 10 Mar 2009 21:13:18 +0000 (21:13 -0000)]
fixed a use-after-free bug in dpd_timeout()

10 years agoadded updated mconsole-exec patch for 2.6.28
Martin Willi [Thu, 5 Mar 2009 14:32:15 +0000 (14:32 -0000)]
added updated mconsole-exec patch for 2.6.28

10 years agoadded ikev2/ip-two-pools-mixed scenario
Andreas Steffen [Tue, 3 Mar 2009 17:10:52 +0000 (17:10 -0000)]
added ikev2/ip-two-pools-mixed scenario

10 years agocorrected scenario descriptions
Andreas Steffen [Tue, 3 Mar 2009 17:09:13 +0000 (17:09 -0000)]
corrected scenario descriptions

10 years agofixed format string argument error, resulting in crash
Martin Willi [Tue, 3 Mar 2009 14:56:17 +0000 (14:56 -0000)]
fixed format string argument error, resulting in crash
fixed memleak if pool not found

10 years agostop searching other pools if lease successfully released
Martin Willi [Tue, 3 Mar 2009 14:43:53 +0000 (14:43 -0000)]
stop searching other pools if lease successfully released

10 years agoipsec statusall <conn> also filters address pools
Andreas Steffen [Tue, 3 Mar 2009 10:30:59 +0000 (10:30 -0000)]
ipsec statusall <conn> also filters address pools

10 years agofixed MSCHAPv2 password lookup when used with NetworkManager
Martin Willi [Tue, 24 Feb 2009 13:39:50 +0000 (13:39 -0000)]
fixed MSCHAPv2 password lookup when used with NetworkManager

10 years agoadded EAP-Identity package
Martin Willi [Tue, 24 Feb 2009 11:50:24 +0000 (11:50 -0000)]
added EAP-Identity package

10 years agoupdated debian packages to 4.2.12, supporting EAP-MSCHAPv2
Martin Willi [Mon, 23 Feb 2009 16:33:17 +0000 (16:33 -0000)]
updated debian packages to 4.2.12, supporting EAP-MSCHAPv2

10 years agoversion bump to 4.2.13
Andreas Steffen [Sat, 21 Feb 2009 17:53:10 +0000 (17:53 -0000)]
version bump to 4.2.13

10 years agochanges in 4.2.12 4.2.12
Andreas Steffen [Fri, 20 Feb 2009 19:52:14 +0000 (19:52 -0000)]
changes in 4.2.12

10 years agoadded eap=mschapv2 to ipsec.conf.5
Andreas Steffen [Thu, 19 Feb 2009 22:12:04 +0000 (22:12 -0000)]
added eap=mschapv2 to ipsec.conf.5

10 years agoadded ikev2/rw-eap-mschapv2 scenario
Andreas Steffen [Thu, 19 Feb 2009 22:02:28 +0000 (22:02 -0000)]
added ikev2/rw-eap-mschapv2 scenario

10 years agofixed some memleaks in mschapv2 plugin
Tobias Brunner [Thu, 19 Feb 2009 14:32:13 +0000 (14:32 -0000)]
fixed some memleaks in mschapv2 plugin

10 years agoECB mode added to the DES plugin
Tobias Brunner [Thu, 19 Feb 2009 14:29:25 +0000 (14:29 -0000)]
ECB mode added to the DES plugin

10 years agodes ecb enum value changed, ignores set for md4 plugin
Tobias Brunner [Thu, 19 Feb 2009 13:46:08 +0000 (13:46 -0000)]
des ecb enum value changed, ignores set for md4 plugin

10 years agoadded Id svn:keyword
Andreas Steffen [Thu, 19 Feb 2009 10:16:45 +0000 (10:16 -0000)]
added Id svn:keyword

10 years agosupport of MD4 hash
Andreas Steffen [Thu, 19 Feb 2009 10:06:58 +0000 (10:06 -0000)]
support of MD4 hash

10 years agocorrected typo
Andreas Steffen [Thu, 19 Feb 2009 09:54:31 +0000 (09:54 -0000)]
corrected typo

10 years agoadding plugin for EAP-MS-CHAPv2
Tobias Brunner [Wed, 18 Feb 2009 19:57:15 +0000 (19:57 -0000)]
adding plugin for EAP-MS-CHAPv2

10 years agoforce unique connections for mediation connections
Tobias Brunner [Wed, 18 Feb 2009 19:48:11 +0000 (19:48 -0000)]
force unique connections for mediation connections

10 years agoadding enum elements for MD4 and DES (ECB)
Tobias Brunner [Wed, 18 Feb 2009 19:45:46 +0000 (19:45 -0000)]
adding enum elements for MD4 and DES (ECB)

10 years agoadding MD4 and DES (ECB) to openssl plugin
Tobias Brunner [Wed, 18 Feb 2009 19:41:33 +0000 (19:41 -0000)]
adding MD4 and DES (ECB) to openssl plugin

10 years agoalways encode EAP usernames as ID_KEY_ID
Martin Willi [Wed, 18 Feb 2009 15:03:33 +0000 (15:03 -0000)]
always encode EAP usernames as ID_KEY_ID

10 years agoremoved unused extract_last_token() and the required memrchr implementation
Martin Willi [Wed, 18 Feb 2009 09:45:54 +0000 (09:45 -0000)]
removed unused extract_last_token() and the required memrchr implementation

10 years agodo not operate on strongswan-padlock on non-x86
Martin Willi [Tue, 17 Feb 2009 18:30:02 +0000 (18:30 -0000)]
do not operate on strongswan-padlock on non-x86

10 years agotypo
Tobias Brunner [Tue, 17 Feb 2009 17:14:15 +0000 (17:14 -0000)]
typo

10 years agoadded missing kernel-netlink plugin
Martin Willi [Tue, 17 Feb 2009 09:38:42 +0000 (09:38 -0000)]
added missing kernel-netlink plugin

10 years agofixed build on non-i386 architectures
Martin Willi [Tue, 17 Feb 2009 09:34:52 +0000 (09:34 -0000)]
fixed build on non-i386 architectures

10 years agobuild strongswan-padlock on i386 only
Martin Willi [Mon, 16 Feb 2009 16:49:43 +0000 (16:49 -0000)]
build strongswan-padlock on i386 only

10 years agouse separate distribution tarballs for NetworkManager applet
Martin Willi [Mon, 16 Feb 2009 16:11:16 +0000 (16:11 -0000)]
use separate distribution tarballs for NetworkManager applet

10 years agouse a slightly adopted package versioning scheme
Martin Willi [Mon, 16 Feb 2009 16:05:30 +0000 (16:05 -0000)]
use a slightly adopted package versioning scheme
  NM applet uses strongSwan independent versions

10 years agoadded Makefile to build ubuntu PPA source packages
Martin Willi [Mon, 16 Feb 2009 16:03:09 +0000 (16:03 -0000)]
added Makefile to build ubuntu PPA source packages

10 years agoinitial version of new modular strongswan debian packages
Martin Willi [Mon, 16 Feb 2009 12:48:35 +0000 (12:48 -0000)]
initial version of new modular strongswan debian packages
  "strongswan" metapackage adds similar functionality as old debian packages
  "network-manager-strongswan" depends on required strongSwan packages

10 years agoconfiguration of NBNS server assignment via strongswan.conf
Andreas Steffen [Fri, 13 Feb 2009 11:57:50 +0000 (11:57 -0000)]
configuration of NBNS server assignment via strongswan.conf

10 years agouse internal host venus as dns2
Andreas Steffen [Thu, 12 Feb 2009 09:18:42 +0000 (09:18 -0000)]
use internal host venus as dns2

10 years agoconfiguration of DNS server assignment via strongswan.conf
Andreas Steffen [Thu, 12 Feb 2009 09:02:15 +0000 (09:02 -0000)]
configuration of DNS server assignment via strongswan.conf

10 years ago[4859] caused crash when handling the %config case
Andreas Steffen [Wed, 11 Feb 2009 22:39:35 +0000 (22:39 -0000)]
[4859] caused crash when handling the %config case

10 years agocorrected syntax
Andreas Steffen [Wed, 11 Feb 2009 16:45:14 +0000 (16:45 -0000)]
corrected syntax

10 years agothis debug statement has only two arguments
Andreas Steffen [Wed, 11 Feb 2009 16:41:37 +0000 (16:41 -0000)]
this debug statement has only two arguments

10 years agofixed a 64-bit issue with time_t printf hooks
Andreas Steffen [Wed, 11 Feb 2009 16:37:16 +0000 (16:37 -0000)]
fixed a 64-bit issue with time_t printf hooks

10 years agochanged [4856] to dynamically choose traffic selector family
Martin Willi [Wed, 11 Feb 2009 13:09:52 +0000 (13:09 -0000)]
changed [4856] to dynamically choose traffic selector family

10 years agorespect family when assigning pool addresses
Martin Willi [Wed, 11 Feb 2009 12:50:04 +0000 (12:50 -0000)]
respect family when assigning pool addresses

10 years agosend proper AUTHENTICATION_FAILED if EAP method is successful, but AUTH mismatches
Martin Willi [Tue, 10 Feb 2009 17:21:44 +0000 (17:21 -0000)]
send proper AUTHENTICATION_FAILED if EAP method is successful, but AUTH mismatches

10 years agofree unneeded retransmission packet when exchange completes
Martin Willi [Mon, 9 Feb 2009 10:45:51 +0000 (10:45 -0000)]
free unneeded retransmission packet when exchange completes

10 years agosupport of dynamic/128 and %any6
Andreas Steffen [Thu, 5 Feb 2009 22:13:48 +0000 (22:13 -0000)]
support of dynamic/128 and %any6

10 years agodisable MOBIKE in load-tester
Andreas Steffen [Thu, 5 Feb 2009 10:10:20 +0000 (10:10 -0000)]
disable MOBIKE in load-tester

10 years agooutput pool name string rather than pool pointer
Andreas Steffen [Wed, 28 Jan 2009 00:37:11 +0000 (00:37 -0000)]
output pool name string rather than pool pointer

10 years agoversion bump to 4.2.12
Andreas Steffen [Wed, 21 Jan 2009 03:14:52 +0000 (03:14 -0000)]
version bump to 4.2.12

10 years agoadded two Microsoft proprietary configuration attribute types 4.2.11
Andreas Steffen [Tue, 20 Jan 2009 22:55:13 +0000 (22:55 -0000)]
added two Microsoft proprietary configuration attribute types

10 years agochanges in 4.2.11
Andreas Steffen [Tue, 20 Jan 2009 22:37:58 +0000 (22:37 -0000)]
changes in 4.2.11

10 years agoadded notify message types used by RFC 4739
Andreas Steffen [Mon, 19 Jan 2009 12:32:42 +0000 (12:32 -0000)]
added notify message types used by RFC 4739

10 years agoproper initialization and disposal of keying material
Andreas Steffen [Thu, 15 Jan 2009 01:52:44 +0000 (01:52 -0000)]
proper initialization and disposal of keying material

10 years agoadded pfkey/esp-alg-null scenario
Andreas Steffen [Thu, 15 Jan 2009 00:47:21 +0000 (00:47 -0000)]
added pfkey/esp-alg-null scenario

10 years agoadded ikev2/esp-alg-null scenario
Andreas Steffen [Thu, 15 Jan 2009 00:39:06 +0000 (00:39 -0000)]
added ikev2/esp-alg-null scenario

10 years agofixed ESP NULL encryption
Andreas Steffen [Thu, 15 Jan 2009 00:34:42 +0000 (00:34 -0000)]
fixed ESP NULL encryption

10 years agofixed broken listing of connections in ipsec statusall
Andreas Steffen [Wed, 14 Jan 2009 08:10:16 +0000 (08:10 -0000)]
fixed broken listing of connections in ipsec statusall

10 years agoadded eap=gtc option to ipsec.conf man page
Andreas Steffen [Wed, 14 Jan 2009 03:29:59 +0000 (03:29 -0000)]
added eap=gtc option to ipsec.conf man page

10 years agodisable DPD and sending of cert requests in load-tester
Andreas Steffen [Wed, 14 Jan 2009 00:13:21 +0000 (00:13 -0000)]
disable DPD and sending of cert requests in load-tester

10 years agofixing cross-compilation
Tobias Brunner [Tue, 13 Jan 2009 10:38:16 +0000 (10:38 -0000)]
fixing cross-compilation

10 years agocosmetics
Andreas Steffen [Tue, 13 Jan 2009 06:50:55 +0000 (06:50 -0000)]
cosmetics

10 years agochanged type definition of level from char* to int
Andreas Steffen [Tue, 13 Jan 2009 06:36:31 +0000 (06:36 -0000)]
changed type definition of level from char* to int

10 years agohiding XFRM message names from netlink
Andreas Steffen [Fri, 9 Jan 2009 09:37:13 +0000 (09:37 -0000)]
hiding XFRM message names from netlink

10 years agorenamed chunk
Andreas Steffen [Fri, 9 Jan 2009 08:51:41 +0000 (08:51 -0000)]
renamed chunk

10 years agorefactored DBG3 output of sent XFRM messages
Andreas Steffen [Fri, 9 Jan 2009 08:46:31 +0000 (08:46 -0000)]
refactored DBG3 output of sent XFRM messages

10 years agoDBG3 output of sent XFRM messages
Andreas Steffen [Fri, 9 Jan 2009 08:27:17 +0000 (08:27 -0000)]
DBG3 output of sent XFRM messages

10 years agoadded message for undefined ocsp status #4
Andreas Steffen [Fri, 9 Jan 2009 01:36:13 +0000 (01:36 -0000)]
added message for undefined ocsp status #4

10 years agoadd a compatible memrchr() function if the platform does not support it (e.g. old...
Andreas Steffen [Fri, 9 Jan 2009 01:19:45 +0000 (01:19 -0000)]
add a compatible memrchr() function if the platform does not support it (e.g. old glibc). Patch courtesy to Thomas Jarosch

10 years agothe Linux 2.6.28 uml guest kernel does not need any patches
Andreas Steffen [Fri, 9 Jan 2009 00:28:47 +0000 (00:28 -0000)]
the Linux 2.6.28 uml guest kernel does not need any patches

10 years agotest of ipsec leases command in ikev2/ip-pool and ikev2/ip-two-pools scenarios
Andreas Steffen [Fri, 9 Jan 2009 00:24:54 +0000 (00:24 -0000)]
test of ipsec leases command in ikev2/ip-pool and ikev2/ip-two-pools scenarios

10 years agoversion bump to 2.4.11
Andreas Steffen [Thu, 8 Jan 2009 22:23:42 +0000 (22:23 -0000)]
version bump to 2.4.11

10 years agoadapted ikev2/ip-pool-wish scenario to the new stroke ip pool function
Andreas Steffen [Thu, 8 Jan 2009 21:41:07 +0000 (21:41 -0000)]
adapted ikev2/ip-pool-wish scenario to the new stroke ip pool function

10 years agofixed two bugs introduced by the stroke ip pool refactoring 4.2.10
Andreas Steffen [Thu, 8 Jan 2009 21:34:44 +0000 (21:34 -0000)]
fixed two bugs introduced by the stroke ip pool refactoring

10 years agoincrease nonce size to 32 bytes, required when using SHA384/512 PRFs
Martin Willi [Wed, 31 Dec 2008 08:58:49 +0000 (08:58 -0000)]
increase nonce size to 32 bytes, required when using SHA384/512 PRFs

10 years agomissing LOGFILE in debug statement
Andreas Steffen [Tue, 23 Dec 2008 06:35:16 +0000 (06:35 -0000)]
missing LOGFILE in debug statement

10 years agoadded some NEWS for 4.2.10
Martin Willi [Mon, 22 Dec 2008 12:48:50 +0000 (12:48 -0000)]
added some NEWS for 4.2.10

10 years agofixed a potential memory leak when reusing mobike task
Martin Willi [Fri, 19 Dec 2008 14:34:40 +0000 (14:34 -0000)]
fixed a potential memory leak when reusing mobike task

10 years agoRNG tests based on FIPS 140-1
Martin Willi [Thu, 18 Dec 2008 16:24:22 +0000 (16:24 -0000)]
RNG tests based on FIPS 140-1

10 years agosupport for Padlock RNG
Martin Willi [Thu, 18 Dec 2008 16:21:05 +0000 (16:21 -0000)]
support for Padlock RNG