strongswan.git
10 years agohooray, pluto and scepclient do not depend on libgmp anymore
Andreas Steffen [Sun, 7 Jun 2009 17:48:46 +0000 (19:48 +0200)]
hooray, pluto and scepclient do not depend on libgmp anymore

10 years agoupdate strongswan.conf for pluto and scepclient
Andreas Steffen [Sun, 7 Jun 2009 10:44:02 +0000 (12:44 +0200)]
update strongswan.conf for pluto and scepclient

10 years agopkcs7.c also uses signature_scheme_from_oid()
Andreas Steffen [Sun, 7 Jun 2009 10:18:06 +0000 (12:18 +0200)]
pkcs7.c also uses signature_scheme_from_oid()

10 years agocreated signature_scheme_from_oid() helper function
Andreas Steffen [Sun, 7 Jun 2009 09:52:03 +0000 (11:52 +0200)]
created signature_scheme_from_oid() helper function

10 years agohardened OpenPGP parser
Andreas Steffen [Sat, 6 Jun 2009 14:46:59 +0000 (16:46 +0200)]
hardened OpenPGP parser

10 years agopluto now requires pubkey plugin
Andreas Steffen [Sat, 6 Jun 2009 14:25:52 +0000 (16:25 +0200)]
pluto now requires pubkey plugin

10 years agoupdated documentation on leftsendcert
Andreas Steffen [Sat, 6 Jun 2009 14:23:42 +0000 (16:23 +0200)]
updated documentation on leftsendcert

10 years agoused rsa coeff field in OpenPGP secret key payload
Andreas Steffen [Sat, 6 Jun 2009 12:54:14 +0000 (14:54 +0200)]
used rsa coeff field in OpenPGP secret key payload

10 years agofixed OpenPGPv3 fingerprint computation
Andreas Steffen [Sat, 6 Jun 2009 12:41:26 +0000 (14:41 +0200)]
fixed OpenPGPv3 fingerprint computation

10 years agofixed OpenPGP parsing
Andreas Steffen [Sat, 6 Jun 2009 11:13:11 +0000 (13:13 +0200)]
fixed OpenPGP parsing

10 years agomoved PGP types to pgp/pgp.h
Andreas Steffen [Fri, 5 Jun 2009 20:06:28 +0000 (22:06 +0200)]
moved PGP types to pgp/pgp.h

10 years agopluto and scepclient use private and public key plugins of libstrongswan
Andreas Steffen [Fri, 5 Jun 2009 19:14:31 +0000 (21:14 +0200)]
pluto and scepclient use private and public key plugins of libstrongswan

10 years agoupdated medcli/medsrv plugins to use new auth_cfg API, fixes compilation
Martin Willi [Thu, 4 Jun 2009 12:00:01 +0000 (14:00 +0200)]
updated medcli/medsrv plugins to use new auth_cfg API, fixes compilation

10 years agoadded missing identification.h include
Martin Willi [Thu, 4 Jun 2009 11:49:51 +0000 (13:49 +0200)]
added missing identification.h include

10 years agoapply is_anyaddr fix from socket also to socket-raw
Martin Willi [Wed, 3 Jun 2009 15:56:55 +0000 (17:56 +0200)]
apply is_anyaddr fix from socket also to socket-raw

10 years agofixed ENUM naming of XCBC prf
Martin Willi [Tue, 2 Jun 2009 12:41:53 +0000 (14:41 +0200)]
fixed ENUM naming of XCBC prf

10 years agoadded a charon.install_virtual_ip option to disable IP installation for testing
Martin Willi [Tue, 2 Jun 2009 11:34:03 +0000 (13:34 +0200)]
added a charon.install_virtual_ip option to disable IP installation for testing

10 years ago_updown script fix for ALT Linux, courtesy of Michael Shigorin
Andreas Steffen [Fri, 29 May 2009 06:10:02 +0000 (08:10 +0200)]
_updown script fix for ALT Linux, courtesy of Michael Shigorin

10 years agomissed keyid2sql.c
Andreas Steffen [Thu, 28 May 2009 13:50:05 +0000 (15:50 +0200)]
missed keyid2sql.c

10 years agoNO_CREDENTIAL_FACTORY compile option not needed anymore
Andreas Steffen [Thu, 28 May 2009 13:44:22 +0000 (15:44 +0200)]
NO_CREDENTIAL_FACTORY compile option not needed anymore

10 years agohide credentials headers in credential_factory.h
Andreas Steffen [Thu, 28 May 2009 13:34:18 +0000 (15:34 +0200)]
hide credentials headers in credential_factory.h

10 years agoregister the already implemented AUTH_HMAC_SHA1_160 algorithm
Martin Willi [Thu, 28 May 2009 12:57:59 +0000 (14:57 +0200)]
register the already implemented AUTH_HMAC_SHA1_160 algorithm

10 years agoset parsed = TRUE before calling parse_certificate()
Andreas Steffen [Wed, 27 May 2009 07:52:53 +0000 (09:52 +0200)]
set parsed = TRUE before calling parse_certificate()

10 years agofixed typo
Andreas Steffen [Wed, 27 May 2009 06:46:13 +0000 (08:46 +0200)]
fixed typo

10 years agodh_exponent_ansi_x9_42 is now a libstrongswan setting
Andreas Steffen [Tue, 26 May 2009 16:32:52 +0000 (18:32 +0200)]
dh_exponent_ansi_x9_42 is now a libstrongswan setting

10 years agoeliminated ipsec_policy.h
Andreas Steffen [Tue, 26 May 2009 15:19:26 +0000 (17:19 +0200)]
eliminated ipsec_policy.h

10 years agoshow strongSwan version in pluto's statusall
Andreas Steffen [Tue, 26 May 2009 13:35:32 +0000 (15:35 +0200)]
show strongSwan version in pluto's statusall

10 years agoshow strongSwan version in statusall
Martin Willi [Tue, 26 May 2009 11:47:20 +0000 (13:47 +0200)]
show strongSwan version in statusall

10 years agoadded generated extconf.rb to .gitignore, removed it from distribution
Martin Willi [Mon, 25 May 2009 13:45:05 +0000 (15:45 +0200)]
added generated extconf.rb to .gitignore, removed it from distribution

10 years agoresolve clone naming conflict with uclibc
Andreas Steffen [Mon, 25 May 2009 06:38:36 +0000 (08:38 +0200)]
resolve clone naming conflict with uclibc

10 years agoremoved optionsfrom.c from libfreeswan
Andreas Steffen [Sun, 24 May 2009 19:04:50 +0000 (21:04 +0200)]
removed optionsfrom.c from libfreeswan

10 years agowhack uses optionsfrom from libstrongswan
Andreas Steffen [Sun, 24 May 2009 18:59:28 +0000 (20:59 +0200)]
whack uses optionsfrom from libstrongswan

10 years agocosmetics
Andreas Steffen [Sun, 24 May 2009 18:14:13 +0000 (20:14 +0200)]
cosmetics

10 years agosuppress Routed Connections caption if list is empty
Andreas Steffen [Sun, 24 May 2009 18:06:55 +0000 (20:06 +0200)]
suppress Routed Connections caption if list is empty

10 years agopluto uses optionsfrom from libstrongswan
Andreas Steffen [Sun, 24 May 2009 18:03:01 +0000 (20:03 +0200)]
pluto uses optionsfrom from libstrongswan

10 years agopluto now needs the gmp plugin
Andreas Steffen [Sun, 24 May 2009 17:33:16 +0000 (19:33 +0200)]
pluto now needs the gmp plugin

10 years agoload gmp plugin in ike scenarios
Andreas Steffen [Sun, 24 May 2009 16:16:00 +0000 (18:16 +0200)]
load gmp plugin in ike scenarios

10 years agoadded openssl/ikev1-alg-ecp-low and openssl/ikev1-alg-ecp-high scenarios
Andreas Steffen [Sun, 24 May 2009 16:12:31 +0000 (18:12 +0200)]
added openssl/ikev1-alg-ecp-low and openssl/ikev1-alg-ecp-high scenarios

10 years agoKE payload of ECP groups has X and Y coordinates
Andreas Steffen [Sun, 24 May 2009 16:06:49 +0000 (18:06 +0200)]
KE payload of ECP groups has X and Y coordinates

10 years agofixed typo
Andreas Steffen [Sun, 24 May 2009 14:48:58 +0000 (16:48 +0200)]
fixed typo

10 years agoadded openssl/rw-cert-ikev1 scenario
Andreas Steffen [Sun, 24 May 2009 14:42:30 +0000 (16:42 +0200)]
added openssl/rw-cert-ikev1 scenario

10 years agorenamed some IKEv2 OpenSSL scenarios
Andreas Steffen [Sun, 24 May 2009 14:41:13 +0000 (16:41 +0200)]
renamed some IKEv2 OpenSSL scenarios

10 years agopluto now requires gmp plugin for DH functions
Andreas Steffen [Sun, 24 May 2009 14:11:24 +0000 (16:11 +0200)]
pluto now requires gmp plugin for DH functions

10 years agouse the Diffie-Hellman functionality of libstrongswan
Andreas Steffen [Sun, 24 May 2009 09:26:00 +0000 (11:26 +0200)]
use the Diffie-Hellman functionality of libstrongswan

10 years agocosmetics
Andreas Steffen [Sun, 24 May 2009 09:24:19 +0000 (11:24 +0200)]
cosmetics

10 years agoadded dh group descriptions
Andreas Steffen [Sun, 24 May 2009 09:23:24 +0000 (11:23 +0200)]
added dh group descriptions

10 years agoupdated copyright statements
Andreas Steffen [Fri, 22 May 2009 15:25:32 +0000 (17:25 +0200)]
updated copyright statements

10 years agoversion bump to 4.3.2
Andreas Steffen [Fri, 22 May 2009 15:05:58 +0000 (17:05 +0200)]
version bump to 4.3.2

10 years agofixed compiler warning 4.3.1
Andreas Steffen [Fri, 22 May 2009 12:15:39 +0000 (14:15 +0200)]
fixed compiler warning

10 years agocompleted NEWS for 4.3.1
Andreas Steffen [Fri, 22 May 2009 11:41:48 +0000 (13:41 +0200)]
completed NEWS for 4.3.1

10 years agorecognize ipsec purgeike command
Andreas Steffen [Fri, 22 May 2009 11:32:48 +0000 (13:32 +0200)]
recognize ipsec purgeike command

10 years agoload plugins for scepclient
Andreas Steffen [Fri, 22 May 2009 08:45:32 +0000 (10:45 +0200)]
load plugins for scepclient

10 years agoload plugins for scepclient
Andreas Steffen [Fri, 22 May 2009 08:40:25 +0000 (10:40 +0200)]
load plugins for scepclient

10 years agopsk scenarios don't have to load the curl plugin
Andreas Steffen [Fri, 22 May 2009 08:35:11 +0000 (10:35 +0200)]
psk scenarios don't have to load the curl plugin

10 years agopsk scenarios don't have to load the curl plugin
Andreas Steffen [Fri, 22 May 2009 08:26:38 +0000 (10:26 +0200)]
psk scenarios don't have to load the curl plugin

10 years agolod plugins for scepclient
Andreas Steffen [Fri, 22 May 2009 08:10:31 +0000 (10:10 +0200)]
lod plugins for scepclient

10 years agopsk scenarios don't have to load the curl plugin
Andreas Steffen [Fri, 22 May 2009 07:50:53 +0000 (09:50 +0200)]
psk scenarios don't have to load the curl plugin

10 years agoload plugins for scepclient
Andreas Steffen [Fri, 22 May 2009 07:50:09 +0000 (09:50 +0200)]
load plugins for scepclient

10 years agoadded pluto's plugins in ikev1/attr-cert scenario
Andreas Steffen [Fri, 22 May 2009 07:19:08 +0000 (09:19 +0200)]
added pluto's plugins in ikev1/attr-cert scenario

10 years agouse pluto's default plugins
Andreas Steffen [Fri, 22 May 2009 07:15:51 +0000 (09:15 +0200)]
use pluto's default plugins

10 years agosome more NEWS
Andreas Steffen [Thu, 21 May 2009 18:54:45 +0000 (20:54 +0200)]
some more NEWS

10 years agoFixing IPSEC_* checks on older Linux distros.
Tobias Brunner [Thu, 21 May 2009 08:03:27 +0000 (10:03 +0200)]
Fixing IPSEC_* checks on older Linux distros.

10 years agoPortably check for IPSEC_* constants (defined in ipsec.h).
Tobias Brunner [Wed, 20 May 2009 18:15:06 +0000 (20:15 +0200)]
Portably check for IPSEC_* constants (defined in ipsec.h).

The problem is that FreeBSD defines them as #defines whereas Linux defines them as enums.

10 years agoAutomatically build (and install) the DUMM Ruby extension.
Tobias Brunner [Wed, 20 May 2009 17:34:17 +0000 (19:34 +0200)]
Automatically build (and install) the DUMM Ruby extension.

10 years agoEnable building the DUMM Ruby extension in a VPATH build.
Tobias Brunner [Wed, 20 May 2009 16:40:27 +0000 (18:40 +0200)]
Enable building the DUMM Ruby extension in a VPATH build.

10 years agoThe configure script now tries to figure out where ruby.h is located.
Tobias Brunner [Wed, 20 May 2009 12:15:14 +0000 (14:15 +0200)]
The configure script now tries to figure out where ruby.h is located.

This is required because the location depends on the architecture.

10 years agoinclude TSi/TSr of triggering packet in acquire
Martin Willi [Wed, 20 May 2009 09:44:43 +0000 (11:44 +0200)]
include TSi/TSr of triggering packet in acquire

10 years agoproperly terminate EAP authentication if EAP method fails
Martin Willi [Wed, 20 May 2009 07:24:18 +0000 (09:24 +0200)]
properly terminate EAP authentication if EAP method fails

10 years agofixed dumping of integers in generator
Martin Willi [Wed, 20 May 2009 07:03:48 +0000 (09:03 +0200)]
fixed dumping of integers in generator

10 years agoadapted IKEv2 scenarios to new crypto proposal output
Andreas Steffen [Wed, 20 May 2009 06:04:01 +0000 (08:04 +0200)]
adapted IKEv2 scenarios to new crypto proposal output

10 years agoadapted scenarios to new crypto proposal output
Andreas Steffen [Wed, 20 May 2009 05:51:25 +0000 (07:51 +0200)]
adapted scenarios to new crypto proposal output

10 years agomake signer names consistent
Andreas Steffen [Tue, 19 May 2009 20:56:14 +0000 (22:56 +0200)]
make signer names consistent

10 years agoremove ikev1/alg-sha-equals-sha1 scenario
Andreas Steffen [Tue, 19 May 2009 20:55:12 +0000 (22:55 +0200)]
remove ikev1/alg-sha-equals-sha1 scenario

10 years agosame format as IKEv1
Andreas Steffen [Tue, 19 May 2009 20:12:29 +0000 (22:12 +0200)]
same format as IKEv1

10 years agoadded lookup of ESP_NULL
Andreas Steffen [Tue, 19 May 2009 14:46:49 +0000 (16:46 +0200)]
added lookup of ESP_NULL

10 years agostatus output of 3DES_CBC without key length
Andreas Steffen [Tue, 19 May 2009 14:02:50 +0000 (16:02 +0200)]
status output of 3DES_CBC without key length

10 years agoremoved unused functions
Andreas Steffen [Tue, 19 May 2009 13:44:54 +0000 (15:44 +0200)]
removed unused functions

10 years agoadded des and default length cbc encryption algorithms
Andreas Steffen [Tue, 19 May 2009 13:44:34 +0000 (15:44 +0200)]
added des and default length cbc encryption algorithms

10 years agooutput of encryption algs with zero key length
Andreas Steffen [Tue, 19 May 2009 13:12:44 +0000 (15:12 +0200)]
output of encryption algs with zero key length

10 years agosupport of ESP AES_XCBC_96
Andreas Steffen [Tue, 19 May 2009 12:52:47 +0000 (14:52 +0200)]
support of ESP AES_XCBC_96

10 years agoadded Debian specific packaging files to NM applet
Martin Willi [Tue, 19 May 2009 12:00:23 +0000 (14:00 +0200)]
added Debian specific packaging files to NM applet

10 years agonew NM applet release 1.1.1
Martin Willi [Tue, 19 May 2009 11:58:59 +0000 (13:58 +0200)]
new NM applet release 1.1.1

10 years agofixed debug output of ah transforms
Andreas Steffen [Tue, 19 May 2009 11:32:10 +0000 (13:32 +0200)]
fixed debug output of ah transforms

10 years agofixed compiler warnings
Martin Willi [Tue, 19 May 2009 09:36:08 +0000 (11:36 +0200)]
fixed compiler warnings

10 years agoreplaced deprecated g_strcasecmp()
Martin Willi [Tue, 19 May 2009 09:35:51 +0000 (11:35 +0200)]
replaced deprecated g_strcasecmp()

10 years agoupdated build system to newer autotool/gnome conventions
Martin Willi [Tue, 19 May 2009 09:35:09 +0000 (11:35 +0200)]
updated build system to newer autotool/gnome conventions

10 years agoremoved tab
Andreas Steffen [Tue, 19 May 2009 08:05:09 +0000 (10:05 +0200)]
removed tab

10 years agostreamlined pluto alg_info debug output
Andreas Steffen [Tue, 19 May 2009 08:02:17 +0000 (10:02 +0200)]
streamlined pluto alg_info debug output

10 years agoadd _CBC to all encryption algorithms in CBC mode
Andreas Steffen [Tue, 19 May 2009 07:29:23 +0000 (09:29 +0200)]
add _CBC to all encryption algorithms in CBC mode

10 years agofixed lookup table
Andreas Steffen [Tue, 19 May 2009 07:26:56 +0000 (09:26 +0200)]
fixed lookup table

10 years agoputo uses proposal_get_token() from libstrongswan
Andreas Steffen [Tue, 19 May 2009 05:51:48 +0000 (07:51 +0200)]
puto uses proposal_get_token() from libstrongswan

10 years agomoved definition of proposal_token from proposal.c to proposal_keywords.h
Andreas Steffen [Mon, 18 May 2009 17:33:15 +0000 (19:33 +0200)]
moved definition of proposal_token from proposal.c to proposal_keywords.h

10 years agodo not write to unaligned memory in MSCHAPv2
Martin Willi [Mon, 18 May 2009 12:41:16 +0000 (14:41 +0200)]
do not write to unaligned memory in MSCHAPv2

10 years agocleanup of generator code
Martin Willi [Mon, 18 May 2009 12:06:48 +0000 (14:06 +0200)]
cleanup of generator code

10 years agoremoved unused 64-bit integer parsing rule
Martin Willi [Mon, 18 May 2009 11:36:56 +0000 (13:36 +0200)]
removed unused 64-bit integer parsing rule

10 years agodo not access unaligned words/half-words directly
Martin Willi [Mon, 18 May 2009 11:34:09 +0000 (13:34 +0200)]
do not access unaligned words/half-words directly

10 years agocleaned up parser code
Martin Willi [Mon, 18 May 2009 11:12:52 +0000 (13:12 +0200)]
cleaned up parser code

10 years agoremoved trailing spaces/tabs
Martin Willi [Mon, 18 May 2009 09:23:36 +0000 (11:23 +0200)]
removed trailing spaces/tabs

10 years agotypo
Tobias Brunner [Mon, 18 May 2009 11:04:18 +0000 (13:04 +0200)]
typo

10 years agofixed typos
Martin Willi [Mon, 18 May 2009 08:49:50 +0000 (10:49 +0200)]
fixed typos