strongswan.git
12 years agoimplemented configuration query and IKE_SA initiation in XML interface
Martin Willi [Tue, 13 Nov 2007 11:56:52 +0000 (11:56 -0000)]
implemented configuration query and IKE_SA initiation in XML interface

12 years agoconfiguration query for manager (WIP)
Martin Willi [Mon, 12 Nov 2007 18:34:50 +0000 (18:34 -0000)]
configuration query for manager (WIP)

12 years agoimplemented IKE/CHILD_SA close through manager
Martin Willi [Mon, 12 Nov 2007 15:09:11 +0000 (15:09 -0000)]
implemented IKE/CHILD_SA close through manager

12 years agoimplemented IKE/CHILD_SA termination through XML interface
Martin Willi [Mon, 12 Nov 2007 15:06:04 +0000 (15:06 -0000)]
implemented IKE/CHILD_SA termination through XML interface

12 years agoupdated gentoo root file system
Andreas Steffen [Fri, 9 Nov 2007 00:49:45 +0000 (00:49 -0000)]
updated gentoo root file system

12 years agoupgrade of apache2 runlevel scripts from 2.0 to 2.2
Andreas Steffen [Fri, 9 Nov 2007 00:48:08 +0000 (00:48 -0000)]
upgrade of apache2 runlevel scripts from 2.0 to 2.2

12 years agoupgrade from apache 2.0 to 2.2
Andreas Steffen [Fri, 9 Nov 2007 00:38:01 +0000 (00:38 -0000)]
upgrade from apache 2.0 to 2.2

12 years agoIPv6 scenarios now used the new IPv6 topology graphs
Andreas Steffen [Thu, 8 Nov 2007 13:28:30 +0000 (13:28 -0000)]
IPv6 scenarios now used the new IPv6 topology graphs

12 years agocreated IPv6 topology graphs
Andreas Steffen [Thu, 8 Nov 2007 13:26:41 +0000 (13:26 -0000)]
created IPv6 topology graphs

12 years agoremoved internal IP from m-w-s.png
Andreas Steffen [Thu, 8 Nov 2007 13:25:25 +0000 (13:25 -0000)]
removed internal IP from m-w-s.png

12 years agoanother four IPv6 scenarios fully demonstrate ip6tables firewall use
Andreas Steffen [Thu, 8 Nov 2007 11:59:29 +0000 (11:59 -0000)]
another four IPv6 scenarios fully demonstrate ip6tables firewall use

12 years agoannounce IPv6 iptables support in _updown script
Andreas Steffen [Thu, 8 Nov 2007 10:55:07 +0000 (10:55 -0000)]
announce IPv6 iptables support in _updown script

12 years agoenabled ip6tables-based firewalling in first two IPv6 scenarios
Andreas Steffen [Wed, 7 Nov 2007 16:41:57 +0000 (16:41 -0000)]
enabled ip6tables-based firewalling in first two IPv6 scenarios

12 years agodo-tests script applies ip6tables in ipv6 subdir
Andreas Steffen [Wed, 7 Nov 2007 12:22:44 +0000 (12:22 -0000)]
do-tests script applies ip6tables in ipv6 subdir

12 years agothe _updown scripts now fully supports ip6tables firewall rule insertion and deletion
Andreas Steffen [Wed, 7 Nov 2007 12:20:15 +0000 (12:20 -0000)]
the _updown scripts now fully supports ip6tables firewall rule insertion and deletion

12 years agodisable MOBIKE in net2net IPv6 scenario
Andreas Steffen [Tue, 6 Nov 2007 18:19:51 +0000 (18:19 -0000)]
disable MOBIKE in net2net IPv6 scenario

12 years agoadded rw-ikev1 IPv6 scenario
Andreas Steffen [Tue, 6 Nov 2007 17:50:43 +0000 (17:50 -0000)]
added rw-ikev1 IPv6 scenario

12 years agocharon does not need leftnexthop for ipv6 scenarios
Andreas Steffen [Tue, 6 Nov 2007 16:38:29 +0000 (16:38 -0000)]
charon does not need leftnexthop for ipv6 scenarios

12 years agoversion bumpt to 4.1.9
Andreas Steffen [Tue, 6 Nov 2007 13:47:27 +0000 (13:47 -0000)]
version bumpt to 4.1.9

12 years agofixed ipv6 target in _updown script
Andreas Steffen [Tue, 6 Nov 2007 13:46:35 +0000 (13:46 -0000)]
fixed ipv6 target in _updown script

12 years agofixed _updown target for ipv6
Andreas Steffen [Tue, 6 Nov 2007 13:45:54 +0000 (13:45 -0000)]
fixed _updown target for ipv6

12 years agonew net2net ipv6 scenarios for IKEv1 and IKEv2
Andreas Steffen [Tue, 6 Nov 2007 13:44:57 +0000 (13:44 -0000)]
new net2net ipv6 scenarios for IKEv1 and IKEv2

12 years agoadding new virtual ip before deleting old one to keep IP on reauthentication
Martin Willi [Thu, 25 Oct 2007 07:50:23 +0000 (07:50 -0000)]
adding new virtual ip before deleting old one to keep IP on reauthentication

12 years agoadded vsignal todo
Martin Willi [Thu, 25 Oct 2007 07:49:32 +0000 (07:49 -0000)]
added vsignal todo

12 years agorequest_t.redirect takes variable argument list
Martin Willi [Fri, 19 Oct 2007 19:40:53 +0000 (19:40 -0000)]
request_t.redirect takes variable argument list
request_t.serve to serve non-template data
fixed dispatcher thread locking code

12 years agoupdated NEWS 4.1.8
Andreas Steffen [Wed, 17 Oct 2007 03:40:51 +0000 (03:40 -0000)]
updated NEWS

12 years agouml kernel version bump to 2.6.23.1
Andreas Steffen [Wed, 17 Oct 2007 03:39:16 +0000 (03:39 -0000)]
uml kernel version bump to 2.6.23.1

12 years agocorrected typos
Andreas Steffen [Wed, 17 Oct 2007 02:56:24 +0000 (02:56 -0000)]
corrected typos

12 years agocorrected brief
Andreas Steffen [Wed, 17 Oct 2007 02:55:53 +0000 (02:55 -0000)]
corrected brief

12 years agocorrected brief
Andreas Steffen [Wed, 17 Oct 2007 02:55:17 +0000 (02:55 -0000)]
corrected brief

12 years agoadded hasher_signature_algorithm_to_oid() function
Andreas Steffen [Fri, 12 Oct 2007 23:18:42 +0000 (23:18 -0000)]
added hasher_signature_algorithm_to_oid() function

12 years agoadded get_publicKeyInfo() method
Andreas Steffen [Fri, 12 Oct 2007 22:49:39 +0000 (22:49 -0000)]
added get_publicKeyInfo() method

12 years agoadded create_certificate_iterator() method
Andreas Steffen [Fri, 12 Oct 2007 21:57:20 +0000 (21:57 -0000)]
added create_certificate_iterator() method

12 years agoadded x509_build_generalNames() and x509_build_subjectAltNames() functions
Andreas Steffen [Fri, 12 Oct 2007 21:56:30 +0000 (21:56 -0000)]
added x509_build_generalNames() and x509_build_subjectAltNames() functions

12 years agoadded x509_ prefix to imported parse functions
Andreas Steffen [Fri, 12 Oct 2007 21:53:18 +0000 (21:53 -0000)]
added x509_ prefix to imported parse functions

12 years agoadded RCSID
Andreas Steffen [Fri, 12 Oct 2007 19:29:00 +0000 (19:29 -0000)]
added RCSID

12 years agocosmetics
Andreas Steffen [Fri, 12 Oct 2007 19:20:59 +0000 (19:20 -0000)]
cosmetics

12 years agoadded briefs
Andreas Steffen [Fri, 12 Oct 2007 18:39:40 +0000 (18:39 -0000)]
added briefs

12 years agoimplemented pkcs1_write() method
Andreas Steffen [Fri, 12 Oct 2007 15:23:29 +0000 (15:23 -0000)]
implemented pkcs1_write() method

12 years agoadded x509_create() synthesis function
Andreas Steffen [Thu, 11 Oct 2007 14:39:40 +0000 (14:39 -0000)]
added x509_create() synthesis function

12 years agoadded get_data() method
Andreas Steffen [Thu, 11 Oct 2007 14:38:46 +0000 (14:38 -0000)]
added get_data() method

12 years agoadded addr2strongline script which helps to resolve leaking symbols in libstrongswan
Martin Willi [Thu, 11 Oct 2007 13:40:52 +0000 (13:40 -0000)]
added addr2strongline script which helps to resolve leaking symbols in libstrongswan

12 years agocall get_keysize with const rsa_private_key_t*
Andreas Steffen [Thu, 11 Oct 2007 11:36:37 +0000 (11:36 -0000)]
call get_keysize with const rsa_private_key_t*

12 years agocosmetics
Andreas Steffen [Thu, 11 Oct 2007 11:26:20 +0000 (11:26 -0000)]
cosmetics

12 years agorenamed eme_pkcs1_decrypt() to pkcs1_decrypt()
Andreas Steffen [Thu, 11 Oct 2007 11:25:52 +0000 (11:25 -0000)]
renamed eme_pkcs1_decrypt() to pkcs1_decrypt()

12 years agocorrected brief
Andreas Steffen [Mon, 8 Oct 2007 21:25:44 +0000 (21:25 -0000)]
corrected brief

12 years agocosmetics
Andreas Steffen [Mon, 8 Oct 2007 21:21:21 +0000 (21:21 -0000)]
cosmetics

12 years agoadded RCSID
Andreas Steffen [Mon, 8 Oct 2007 20:18:34 +0000 (20:18 -0000)]
added RCSID

12 years agoadded RCSID
Andreas Steffen [Mon, 8 Oct 2007 20:15:30 +0000 (20:15 -0000)]
added RCSID

12 years agoadded RCSID
Andreas Steffen [Mon, 8 Oct 2007 20:12:25 +0000 (20:12 -0000)]
added RCSID

12 years agoadded RCSID
Andreas Steffen [Mon, 8 Oct 2007 20:09:57 +0000 (20:09 -0000)]
added RCSID

12 years agoadded RCSID
Andreas Steffen [Mon, 8 Oct 2007 20:03:02 +0000 (20:03 -0000)]
added RCSID

12 years agoadded RCSID
Andreas Steffen [Mon, 8 Oct 2007 19:59:18 +0000 (19:59 -0000)]
added RCSID

12 years agoadded RCSID
Andreas Steffen [Mon, 8 Oct 2007 19:57:54 +0000 (19:57 -0000)]
added RCSID

12 years agoadded RCSID
Andreas Steffen [Mon, 8 Oct 2007 19:57:37 +0000 (19:57 -0000)]
added RCSID

12 years agoadded RCSID
Andreas Steffen [Mon, 8 Oct 2007 19:52:55 +0000 (19:52 -0000)]
added RCSID

12 years agoadded RCSID
Andreas Steffen [Mon, 8 Oct 2007 19:49:56 +0000 (19:49 -0000)]
added RCSID

12 years agoadded RCSID
Andreas Steffen [Mon, 8 Oct 2007 19:47:03 +0000 (19:47 -0000)]
added RCSID

12 years agoincrease debug level from 1 to 2
Andreas Steffen [Mon, 8 Oct 2007 19:36:42 +0000 (19:36 -0000)]
increase debug level from 1 to 2

12 years agocompleted pkcs7 parsing methods
Andreas Steffen [Sun, 7 Oct 2007 22:11:42 +0000 (22:11 -0000)]
completed pkcs7 parsing methods

12 years agoadded eme_pkcs1_decrypt() method
Andreas Steffen [Sun, 7 Oct 2007 21:43:24 +0000 (21:43 -0000)]
added eme_pkcs1_decrypt() method

12 years agoadded error message in case of incorrect padding
Andreas Steffen [Sun, 7 Oct 2007 21:42:38 +0000 (21:42 -0000)]
added error message in case of incorrect padding

12 years agoadded RCSID
Andreas Steffen [Sun, 7 Oct 2007 21:41:37 +0000 (21:41 -0000)]
added RCSID

12 years agoreplaced strncmp() == 0 by strneq()
Andreas Steffen [Sun, 7 Oct 2007 13:42:43 +0000 (13:42 -0000)]
replaced strncmp() == 0 by strneq()

12 years agoadded strneq(x,y,len) macro
Andreas Steffen [Sun, 7 Oct 2007 13:35:42 +0000 (13:35 -0000)]
added strneq(x,y,len) macro

12 years agocosmetics
Andreas Steffen [Sun, 7 Oct 2007 09:17:59 +0000 (09:17 -0000)]
cosmetics

12 years agouse RCSID
Andreas Steffen [Sat, 6 Oct 2007 21:39:00 +0000 (21:39 -0000)]
use RCSID

12 years agoactivated Id property
Andreas Steffen [Sat, 6 Oct 2007 21:24:50 +0000 (21:24 -0000)]
activated Id property

12 years agoactivated Id property
Andreas Steffen [Sat, 6 Oct 2007 21:20:18 +0000 (21:20 -0000)]
activated Id property

12 years agoactivated Id property
Andreas Steffen [Sat, 6 Oct 2007 21:19:41 +0000 (21:19 -0000)]
activated Id property

12 years agofixed some typos
Martin Willi [Fri, 5 Oct 2007 09:52:23 +0000 (09:52 -0000)]
fixed some typos

12 years agoremoved recursive mutex and __USE_UNIX98, should fix uClibc build
Martin Willi [Fri, 5 Oct 2007 09:47:55 +0000 (09:47 -0000)]
removed recursive mutex and __USE_UNIX98, should fix uClibc build

12 years agofixed bad cast which resulted in a crash on "ipsec update"
Martin Willi [Fri, 5 Oct 2007 09:13:03 +0000 (09:13 -0000)]
fixed bad cast which resulted in a crash on "ipsec update"

12 years agofixed memory leak
Martin Willi [Thu, 4 Oct 2007 15:20:00 +0000 (15:20 -0000)]
fixed memory leak

12 years agoimplemented an optional DH public value test
Martin Willi [Thu, 4 Oct 2007 15:19:24 +0000 (15:19 -0000)]
implemented an optional DH public value test
some other cleanups, using RFC2631 variable names

12 years agocleanups, fixes and simplification of diffie hellman code
Martin Willi [Thu, 4 Oct 2007 12:08:11 +0000 (12:08 -0000)]
cleanups, fixes and simplification of diffie hellman code

12 years agoimplemented enumerator for linked_list
Martin Willi [Thu, 4 Oct 2007 08:40:20 +0000 (08:40 -0000)]
implemented enumerator for linked_list

12 years agomoved enumerator from libappserv to libstrongswan
Martin Willi [Thu, 4 Oct 2007 08:21:53 +0000 (08:21 -0000)]
moved enumerator from libappserv to libstrongswan

12 years agofixed sqlite_backend compilation to respect changes from [3238]
Martin Willi [Thu, 4 Oct 2007 08:18:42 +0000 (08:18 -0000)]
fixed sqlite_backend compilation to respect changes from [3238]

12 years agoversion bump to 4.1.8
Andreas Steffen [Thu, 4 Oct 2007 06:41:45 +0000 (06:41 -0000)]
version bump to 4.1.8

12 years agoadded Andreas Eigenmann and Joel Stillhart to copyright statement 4.1.7
Andreas Steffen [Wed, 3 Oct 2007 21:48:42 +0000 (21:48 -0000)]
added Andreas Eigenmann and Joel Stillhart to copyright statement

12 years agoexperimental P2P-NAT-T for IKEv2 merged back from branch
Tobias Brunner [Wed, 3 Oct 2007 15:10:41 +0000 (15:10 -0000)]
experimental P2P-NAT-T for IKEv2 merged back from branch

12 years agoproper cleanup on error
Martin Willi [Wed, 3 Oct 2007 15:07:46 +0000 (15:07 -0000)]
proper cleanup on error

12 years agomore libstrongswan-like error handling in optionsfrom
Martin Willi [Wed, 3 Oct 2007 15:02:29 +0000 (15:02 -0000)]
more libstrongswan-like error handling in optionsfrom

12 years agoadded inbound and outbound arrows to ESP SPIs
Andreas Steffen [Wed, 3 Oct 2007 10:09:40 +0000 (10:09 -0000)]
added inbound and outbound arrows to ESP SPIs

12 years agoreverted changeset [3215], as we need NULL callback to do asynchronous calls
Martin Willi [Wed, 3 Oct 2007 08:10:03 +0000 (08:10 -0000)]
reverted changeset [3215], as we need NULL callback to do asynchronous calls
  added interface_manager_cb_empty function, which calls synchronous but doesn't do anything

12 years agoselection from multiple PSK in ipsec.secrets
Andreas Steffen [Wed, 3 Oct 2007 06:54:52 +0000 (06:54 -0000)]
selection from multiple PSK in ipsec.secrets

12 years agoreformulation
Andreas Steffen [Wed, 3 Oct 2007 06:52:58 +0000 (06:52 -0000)]
reformulation

12 years agoadded missing enumerator implementation
Martin Willi [Wed, 3 Oct 2007 05:29:49 +0000 (05:29 -0000)]
added missing enumerator implementation

12 years agocheck for NAT faking log entry
Andreas Steffen [Tue, 2 Oct 2007 20:35:48 +0000 (20:35 -0000)]
check for NAT faking log entry

12 years agoadded force-udp-encaps scenario
Andreas Steffen [Tue, 2 Oct 2007 20:24:13 +0000 (20:24 -0000)]
added force-udp-encaps scenario

12 years agoadded mobike=no to net2net scenarios
Andreas Steffen [Tue, 2 Oct 2007 19:27:31 +0000 (19:27 -0000)]
added mobike=no to net2net scenarios

12 years agoswitched mobike-nat and mobike-virtual-ip scenarios to a virtual IP of 10.3.0.3
Andreas Steffen [Tue, 2 Oct 2007 19:23:12 +0000 (19:23 -0000)]
switched mobike-nat and mobike-virtual-ip scenarios to a virtual IP of 10.3.0.3

12 years agoversion bump to 4.1.7
Andreas Steffen [Tue, 2 Oct 2007 19:11:03 +0000 (19:11 -0000)]
version bump to 4.1.7

12 years agoactivated the libstrongswan integrity test
Andreas Steffen [Tue, 2 Oct 2007 19:10:24 +0000 (19:10 -0000)]
activated the libstrongswan integrity test

12 years agotypo
Tobias Brunner [Tue, 2 Oct 2007 13:56:58 +0000 (13:56 -0000)]
typo

12 years agodo not attempt to encrypt payloads without crypter or signer (allows to override...
Tobias Brunner [Tue, 2 Oct 2007 13:31:12 +0000 (13:31 -0000)]
do not attempt to encrypt payloads without crypter or signer (allows to override message rules)

12 years agofixed "ipsec statusall" SPI formatting
Martin Willi [Tue, 2 Oct 2007 13:11:23 +0000 (13:11 -0000)]
fixed "ipsec statusall" SPI formatting

12 years agodestruction helper macros
Tobias Brunner [Tue, 2 Oct 2007 12:04:03 +0000 (12:04 -0000)]
destruction helper macros

12 years agofixed sqlite database path
Martin Willi [Tue, 2 Oct 2007 11:55:19 +0000 (11:55 -0000)]
fixed sqlite database path