strongswan.git
12 years agoadded RADIUS, RADIUS-EAP and EAP-MD5 (CHAP) RFCs
Martin Willi [Thu, 30 Aug 2007 12:52:44 +0000 (12:52 -0000)]
added RADIUS, RADIUS-EAP and EAP-MD5 (CHAP) RFCs

12 years agoproper initialization of rsa private key
Martin Willi [Thu, 30 Aug 2007 12:47:38 +0000 (12:47 -0000)]
proper initialization of rsa private key

12 years agoadded bitnames for POLICY_BEET and POLICY_MOBIKE flags
Andreas Steffen [Wed, 29 Aug 2007 13:17:30 +0000 (13:17 -0000)]
added bitnames for POLICY_BEET and POLICY_MOBIKE flags

12 years agochange ipsec route table in UML scenarios
Andreas Steffen [Wed, 29 Aug 2007 13:03:34 +0000 (13:03 -0000)]
change ipsec route table in UML scenarios

12 years agoupdated index.txt.old
Andreas Steffen [Wed, 29 Aug 2007 12:50:26 +0000 (12:50 -0000)]
updated index.txt.old

12 years agoadded mobike=yes|no connection option
Martin Willi [Wed, 29 Aug 2007 12:11:25 +0000 (12:11 -0000)]
added mobike=yes|no connection option
  yes: include mobike support notifies as initiator
  no: only enable mobike as responder when initiator supports it
  default: yes

12 years ago_updown removed from distribution
Andreas Steffen [Wed, 29 Aug 2007 11:59:52 +0000 (11:59 -0000)]
_updown removed from distribution

12 years agoincluded the FIPS integrity test in LICENSE, CREDITS and NEWs
Andreas Steffen [Wed, 29 Aug 2007 11:04:55 +0000 (11:04 -0000)]
included the FIPS integrity test in LICENSE, CREDITS and NEWs

12 years agorenamed integrity check to integrity test
Andreas Steffen [Wed, 29 Aug 2007 10:36:08 +0000 (10:36 -0000)]
renamed integrity check to integrity test

12 years agocosmetics
Andreas Steffen [Wed, 29 Aug 2007 10:31:37 +0000 (10:31 -0000)]
cosmetics

12 years agofixed 64 bit issue (size_t is 32 bit)
Andreas Steffen [Wed, 29 Aug 2007 10:30:17 +0000 (10:30 -0000)]
fixed 64 bit issue (size_t is 32 bit)

12 years agofips_verify_hmac_signature() now returns a boolean status
Andreas Steffen [Wed, 29 Aug 2007 09:43:02 +0000 (09:43 -0000)]
fips_verify_hmac_signature() now returns a boolean status

12 years agoSHA-1 HMAC signature is now computed over concatenation of TEXT and RODATA segments
Andreas Steffen [Wed, 29 Aug 2007 09:13:08 +0000 (09:13 -0000)]
SHA-1 HMAC signature is now computed over concatenation of TEXT and RODATA segments

12 years agocompute SHA-1 HMAC over libstrongswan TEXT segment for the time being
Andreas Steffen [Wed, 29 Aug 2007 08:54:53 +0000 (08:54 -0000)]
compute SHA-1 HMAC over libstrongswan TEXT segment for the time being

12 years agosigners implemented with HMAC now support NULL output parameters
Martin Willi [Wed, 29 Aug 2007 07:52:49 +0000 (07:52 -0000)]
signers implemented with HMAC now support NULL output parameters
to feed signer with more than one block of data.

12 years agochange self_test to self-test
Andreas Steffen [Wed, 29 Aug 2007 07:03:47 +0000 (07:03 -0000)]
change self_test to self-test

12 years agobuild fips_signer and fips_signature with USE_INTEGRITY_TEST condition only
Andreas Steffen [Wed, 29 Aug 2007 07:02:13 +0000 (07:02 -0000)]
build fips_signer and fips_signature with USE_INTEGRITY_TEST condition only

12 years agochanged interface of fips_verify_hmac_signature
Andreas Steffen [Wed, 29 Aug 2007 05:43:45 +0000 (05:43 -0000)]
changed interface of fips_verify_hmac_signature

12 years agofree hmac_signature string after use
Andreas Steffen [Wed, 29 Aug 2007 05:43:05 +0000 (05:43 -0000)]
free hmac_signature string after use

12 years agobeautification
Andreas Steffen [Wed, 29 Aug 2007 05:42:22 +0000 (05:42 -0000)]
beautification

12 years agostarted implementation of libstrongswan code integrity check
Andreas Steffen [Wed, 29 Aug 2007 00:37:10 +0000 (00:37 -0000)]
started implementation of libstrongswan code integrity check

12 years agodefined ietfAttr_create_from_string()
Andreas Steffen [Wed, 29 Aug 2007 00:35:51 +0000 (00:35 -0000)]
defined ietfAttr_create_from_string()

12 years agofixed typo
Andreas Steffen [Tue, 28 Aug 2007 09:59:53 +0000 (09:59 -0000)]
fixed typo

12 years agosimple console support through pts devices
Martin Willi [Tue, 28 Aug 2007 07:53:46 +0000 (07:53 -0000)]
simple console support through pts devices

12 years agoset ignore properties
Andreas Steffen [Tue, 28 Aug 2007 07:02:51 +0000 (07:02 -0000)]
set ignore properties

12 years agoset ignore properties
Andreas Steffen [Tue, 28 Aug 2007 07:02:23 +0000 (07:02 -0000)]
set ignore properties

12 years agotesting/do-tests is made from do-tests.in by inserting actual routing table
Andreas Steffen [Tue, 28 Aug 2007 06:40:39 +0000 (06:40 -0000)]
testing/do-tests is made from do-tests.in by inserting actual routing table

12 years agotesting/do-tests is made from do-tests.in by inserting actual routing table
Andreas Steffen [Tue, 28 Aug 2007 06:38:04 +0000 (06:38 -0000)]
testing/do-tests is made from do-tests.in by inserting actual routing table

12 years agoadded --enable-integrity-test and --disable-self-test options
Andreas Steffen [Tue, 28 Aug 2007 06:36:31 +0000 (06:36 -0000)]
added --enable-integrity-test and --disable-self-test options

12 years agodefault routing table/prio: 220/220 (as 19530 was invalid)
Martin Willi [Mon, 27 Aug 2007 14:53:42 +0000 (14:53 -0000)]
default routing table/prio: 220/220 (as 19530 was invalid)
added configure option --with-routing-table-prio=

12 years agousing default routing table 19530 for ipsec routes
Martin Willi [Mon, 27 Aug 2007 11:30:21 +0000 (11:30 -0000)]
using default routing table 19530 for ipsec routes

12 years agoadded --with-routing-table= configure option
Martin Willi [Mon, 27 Aug 2007 11:15:35 +0000 (11:15 -0000)]
added --with-routing-table= configure option

12 years agorerouting CHILD_SA if its IKE_SA gets deleted
Martin Willi [Mon, 27 Aug 2007 09:10:12 +0000 (09:10 -0000)]
rerouting CHILD_SA if its IKE_SA gets deleted

12 years agoinitiated support of caIssuers accessLocation
Andreas Steffen [Fri, 17 Aug 2007 08:01:10 +0000 (08:01 -0000)]
initiated support of caIssuers accessLocation

12 years agorequired CA is that.ca not this.ca
Andreas Steffen [Fri, 17 Aug 2007 07:22:04 +0000 (07:22 -0000)]
required CA is that.ca not this.ca

12 years agomatching_request instead of matching_trust must go into the metric
Andreas Steffen [Fri, 17 Aug 2007 07:21:26 +0000 (07:21 -0000)]
matching_request instead of matching_trust must go into the metric

12 years agofixed maximum path length info in match_requested_ca()
Andreas Steffen [Fri, 17 Aug 2007 07:20:27 +0000 (07:20 -0000)]
fixed maximum path length info in match_requested_ca()

12 years agosort attributes alphabetically
Andreas Steffen [Wed, 15 Aug 2007 22:58:15 +0000 (22:58 -0000)]
sort attributes alphabetically

12 years agoadded caIssuers OID
Andreas Steffen [Wed, 15 Aug 2007 09:46:40 +0000 (09:46 -0000)]
added caIssuers OID

12 years agocorrected typo
Andreas Steffen [Wed, 15 Aug 2007 09:46:14 +0000 (09:46 -0000)]
corrected typo

12 years agouse symbolic shell variables in library paths
Andreas Steffen [Wed, 15 Aug 2007 08:40:16 +0000 (08:40 -0000)]
use symbolic shell variables in library paths

12 years agoremoved oid.txt and oid.pl in pluto subdir
Andreas Steffen [Wed, 15 Aug 2007 08:29:55 +0000 (08:29 -0000)]
removed oid.txt and oid.pl in pluto subdir

12 years agoaligned pluto/oid.txt to libstrongswan/asn1/oid.txt
Andreas Steffen [Tue, 14 Aug 2007 21:21:21 +0000 (21:21 -0000)]
aligned pluto/oid.txt to libstrongswan/asn1/oid.txt

12 years agoadded Microsof Encrypting File System Extended Key Usage OID
Andreas Steffen [Tue, 14 Aug 2007 21:13:53 +0000 (21:13 -0000)]
added Microsof Encrypting File System Extended Key Usage OID

12 years agoadded Microsof Smartcard Logon Extended Key Usage OID
Andreas Steffen [Tue, 14 Aug 2007 21:05:40 +0000 (21:05 -0000)]
added Microsof Smartcard Logon Extended Key Usage OID

12 years agofinetuning of phase1 matching metrics
Andreas Steffen [Tue, 14 Aug 2007 19:15:01 +0000 (19:15 -0000)]
finetuning of phase1 matching metrics

12 years agoappend new attribute certs at the end
Andreas Steffen [Tue, 14 Aug 2007 13:04:36 +0000 (13:04 -0000)]
append new attribute certs at the end

12 years agoadding attribute certficates to a chained list
Andreas Steffen [Tue, 14 Aug 2007 12:27:02 +0000 (12:27 -0000)]
adding attribute certficates to a chained list

12 years agosoft-limit treatment of unmatched certificate requests using a priority metric
Andreas Steffen [Tue, 14 Aug 2007 12:26:22 +0000 (12:26 -0000)]
soft-limit treatment of unmatched certificate requests using a priority metric

12 years agoreplaced hex_str() by fprintf(#B) for printing unknown OIDs
Andreas Steffen [Tue, 14 Aug 2007 12:24:35 +0000 (12:24 -0000)]
replaced hex_str() by fprintf(#B) for printing unknown OIDs

12 years agofixed bug occuring with multiple occurences of the same cacert on a smartcard
Andreas Steffen [Mon, 13 Aug 2007 07:47:47 +0000 (07:47 -0000)]
fixed bug occuring with multiple occurences of the same cacert on a smartcard

12 years agohas_rsa_private_key() must also be protected by keys_mutex
Andreas Steffen [Fri, 10 Aug 2007 12:10:36 +0000 (12:10 -0000)]
has_rsa_private_key() must also be protected by keys_mutex

12 years agocorrected debug output
Andreas Steffen [Fri, 10 Aug 2007 11:23:45 +0000 (11:23 -0000)]
corrected debug output

12 years agoset default to uml=false
Andreas Steffen [Fri, 10 Aug 2007 10:47:48 +0000 (10:47 -0000)]
set default to uml=false

12 years agoadded listaacerts,listacerts,rereadsecerts,rereadocspcerts,rereadaacerts,rereadacerts...
Andreas Steffen [Fri, 10 Aug 2007 10:19:53 +0000 (10:19 -0000)]
added listaacerts,listacerts,rereadsecerts,rereadocspcerts,rereadaacerts,rereadacerts to stroke

12 years agofixed typo stroke keyword list
Andreas Steffen [Fri, 10 Aug 2007 10:00:59 +0000 (10:00 -0000)]
fixed typo stroke keyword list

12 years agoipsec stroke rereadsecrets|rereadaacerts|rereadacerts|listacerts supported
Andreas Steffen [Fri, 10 Aug 2007 09:19:58 +0000 (09:19 -0000)]
ipsec stroke rereadsecrets|rereadaacerts|rereadacerts|listacerts supported

12 years agoipsec stroke rereadaacerts|rereadacerts supported
Andreas Steffen [Fri, 10 Aug 2007 09:17:34 +0000 (09:17 -0000)]
ipsec stroke rereadaacerts|rereadacerts supported

12 years agofixed build without --enable-uml
Martin Willi [Fri, 10 Aug 2007 09:14:20 +0000 (09:14 -0000)]
fixed build without --enable-uml

12 years agofixed build without --enable-uml
Martin Willi [Fri, 10 Aug 2007 08:58:37 +0000 (08:58 -0000)]
fixed build without --enable-uml

12 years agoset STROKE_REREAD_FIRST to STROKE_REREAD_SECRETS
Andreas Steffen [Fri, 10 Aug 2007 08:49:20 +0000 (08:49 -0000)]
set STROKE_REREAD_FIRST to STROKE_REREAD_SECRETS

12 years agoset STROKE_REREAD_FIRST to STROKE_REREAD_SECRETS
Andreas Steffen [Fri, 10 Aug 2007 08:49:03 +0000 (08:49 -0000)]
set STROKE_REREAD_FIRST to STROKE_REREAD_SECRETS

12 years agoadded rereadsecrets keyword to stroke
Andreas Steffen [Fri, 10 Aug 2007 08:05:03 +0000 (08:05 -0000)]
added rereadsecrets keyword to stroke

12 years agosupport of ipsec rereadsecrets for stroke
Andreas Steffen [Fri, 10 Aug 2007 07:16:32 +0000 (07:16 -0000)]
support of ipsec rereadsecrets for stroke

12 years agoreread notify socket when interrupted (EINTR) through sigchild
Martin Willi [Fri, 10 Aug 2007 06:01:03 +0000 (06:01 -0000)]
reread notify socket when interrupted (EINTR) through sigchild

12 years agofixed libstrongswan linking for libdumm
Martin Willi [Thu, 9 Aug 2007 12:50:01 +0000 (12:50 -0000)]
fixed libstrongswan linking for libdumm

12 years agomade linked lists invoke() method consistent to clone_*() and destroy_*() methods
Martin Willi [Thu, 9 Aug 2007 12:43:11 +0000 (12:43 -0000)]
made linked lists invoke() method consistent to clone_*() and destroy_*() methods

12 years agoremoved Makefile from svn
Martin Willi [Thu, 9 Aug 2007 07:14:56 +0000 (07:14 -0000)]
removed Makefile from svn
support for scenario switching

12 years agobuild UML stuff only on --enable-uml
Martin Willi [Wed, 8 Aug 2007 14:24:25 +0000 (14:24 -0000)]
build UML stuff only on --enable-uml

12 years agoadded UML modeler to autotools
Martin Willi [Wed, 8 Aug 2007 14:03:55 +0000 (14:03 -0000)]
added UML modeler to autotools

12 years agousable without scenarios
Martin Willi [Wed, 8 Aug 2007 12:35:24 +0000 (12:35 -0000)]
usable without scenarios

12 years agoversion bump to 4.1.6
Andreas Steffen [Wed, 8 Aug 2007 08:17:48 +0000 (08:17 -0000)]
version bump to 4.1.6

12 years agobug fix in linked_list deletion - instead of acerts destroyed certs twice 4.1.5
Andreas Steffen [Wed, 8 Aug 2007 06:02:59 +0000 (06:02 -0000)]
bug fix in linked_list deletion - instead of acerts destroyed certs twice

12 years agoversion bumps
Andreas Steffen [Tue, 7 Aug 2007 21:14:06 +0000 (21:14 -0000)]
version bumps

12 years agoimplemented listing of attribute certificates
Andreas Steffen [Tue, 7 Aug 2007 20:32:11 +0000 (20:32 -0000)]
implemented listing of attribute certificates

12 years agoupdated NEWS for 4.1.5
Martin Willi [Tue, 7 Aug 2007 06:48:48 +0000 (06:48 -0000)]
updated NEWS for 4.1.5

12 years agofixed segfault when sourceip in stroke message is NULL
Martin Willi [Mon, 6 Aug 2007 12:35:28 +0000 (12:35 -0000)]
fixed segfault when sourceip in stroke message is NULL

12 years agotolerate DNS lookup failures
Andreas Steffen [Mon, 6 Aug 2007 12:02:12 +0000 (12:02 -0000)]
tolerate DNS lookup failures

12 years agoseparate the PSK IDs by spaces
Andreas Steffen [Mon, 6 Aug 2007 11:52:21 +0000 (11:52 -0000)]
separate the PSK IDs by spaces

12 years agocowfs is bootable now!
Martin Willi [Mon, 6 Aug 2007 11:42:32 +0000 (11:42 -0000)]
cowfs is bootable now!

12 years agodebug info on preshared secrets
Andreas Steffen [Mon, 6 Aug 2007 11:05:11 +0000 (11:05 -0000)]
debug info on preshared secrets

12 years agoallow starter to initiate connections simultaneously (on auto=start)
Martin Willi [Mon, 6 Aug 2007 07:41:19 +0000 (07:41 -0000)]
allow starter to initiate connections simultaneously (on auto=start)

12 years agoadded doxygen comments
Andreas Steffen [Sat, 4 Aug 2007 10:54:26 +0000 (10:54 -0000)]
added doxygen comments

12 years agodoxygen cosmetics
Andreas Steffen [Sat, 4 Aug 2007 07:32:37 +0000 (07:32 -0000)]
doxygen cosmetics

12 years agoimproved source routing table creation
Andreas Steffen [Fri, 3 Aug 2007 17:59:13 +0000 (17:59 -0000)]
improved source routing table creation

12 years agoID_FQDN lost its @ prefix
Andreas Steffen [Fri, 3 Aug 2007 13:36:28 +0000 (13:36 -0000)]
ID_FQDN lost its @ prefix

12 years agoproper shutdown
Martin Willi [Fri, 3 Aug 2007 11:47:20 +0000 (11:47 -0000)]
proper shutdown
moved signal handler for SIGCHD and SIGHUP to dumm

12 years agorecognize strongswan-2.8.7 VID
Andreas Steffen [Fri, 3 Aug 2007 11:34:44 +0000 (11:34 -0000)]
recognize strongswan-2.8.7 VID

12 years agore-introduced listing of nexthop in ipsec status
Andreas Steffen [Fri, 3 Aug 2007 11:16:43 +0000 (11:16 -0000)]
re-introduced listing of nexthop in ipsec status

12 years agouse cgecho for green output
Andreas Steffen [Fri, 3 Aug 2007 10:58:45 +0000 (10:58 -0000)]
use cgecho for green output

12 years agocheck source routing table 100
Andreas Steffen [Fri, 3 Aug 2007 10:57:37 +0000 (10:57 -0000)]
check source routing table 100

12 years agore-introduced leftnexthop=%direct
Andreas Steffen [Fri, 3 Aug 2007 10:57:08 +0000 (10:57 -0000)]
re-introduced leftnexthop=%direct

12 years agoadded routing table 50 for passthrough routes
Andreas Steffen [Fri, 3 Aug 2007 10:56:40 +0000 (10:56 -0000)]
added routing table 50 for passthrough routes

12 years agouse table 100 for source routing
Andreas Steffen [Fri, 3 Aug 2007 10:05:15 +0000 (10:05 -0000)]
use table 100 for source routing

12 years agoworking cowfs prototype
Martin Willi [Fri, 3 Aug 2007 09:33:43 +0000 (09:33 -0000)]
working cowfs prototype

12 years agohandle dns lookup failures
Andreas Steffen [Thu, 2 Aug 2007 18:38:28 +0000 (18:38 -0000)]
handle dns lookup failures

12 years agostarted own cowfs implementation
Martin Willi [Tue, 31 Jul 2007 15:23:23 +0000 (15:23 -0000)]
started own cowfs implementation

12 years agoadded two methods to clone linked lists and the contained objects.
Tobias Brunner [Tue, 31 Jul 2007 12:54:17 +0000 (12:54 -0000)]
added two methods to clone linked lists and the contained objects.

12 years agobridging using libbridge
Martin Willi [Mon, 30 Jul 2007 13:20:35 +0000 (13:20 -0000)]
bridging using libbridge
rewrite of guest, does not change cwd anymore
loading of created scenarios

12 years agocorrected typo
Andreas Steffen [Mon, 30 Jul 2007 10:55:09 +0000 (10:55 -0000)]
corrected typo