strongswan.git
12 years agofixed the cleanup code when the credential factory fails to create a builder
Tobias Brunner [Mon, 19 May 2008 12:43:01 +0000 (12:43 -0000)]
fixed the cleanup code when the credential factory fails to create a builder

12 years agofixed a bug introduced in [3973]
Tobias Brunner [Mon, 19 May 2008 08:48:44 +0000 (08:48 -0000)]
fixed a bug introduced in [3973]

12 years agoadded ikev2/esp-alg-aes-ccm and ikev2/esp-alg-aes-gcm scenarios
Andreas Steffen [Sat, 17 May 2008 21:57:08 +0000 (21:57 -0000)]
added ikev2/esp-alg-aes-ccm and ikev2/esp-alg-aes-gcm scenarios

12 years agosuppress listing of integrity algorithm if it is undefined
Andreas Steffen [Sat, 17 May 2008 21:52:58 +0000 (21:52 -0000)]
suppress listing of integrity algorithm if it is undefined

12 years agoccm and gcm icv_sizes are accepted both in bits and octets
Andreas Steffen [Sat, 17 May 2008 21:51:47 +0000 (21:51 -0000)]
ccm and gcm icv_sizes are accepted both in bits and octets

12 years agofixed warning if plugin list has trailing whitespaces
Martin Willi [Fri, 16 May 2008 13:48:58 +0000 (13:48 -0000)]
fixed warning if plugin list has trailing whitespaces

12 years agoAdded support for AES-CCM and AES-GCM (authenticated encryption algorithms) in charon.
Tobias Brunner [Fri, 16 May 2008 13:27:21 +0000 (13:27 -0000)]
Added support for AES-CCM and AES-GCM (authenticated encryption algorithms) in charon.

12 years agoupdated xfrm.h to the version from the 2.6.25.4 kernel sources
Tobias Brunner [Fri, 16 May 2008 13:24:18 +0000 (13:24 -0000)]
updated xfrm.h to the version from the 2.6.25.4 kernel sources

12 years agofixed plugin names of EAP modules
Martin Willi [Fri, 16 May 2008 12:14:48 +0000 (12:14 -0000)]
fixed plugin names of EAP modules

12 years agomoved manager to its own subdirectory in ipsecdir
Martin Willi [Fri, 16 May 2008 09:13:23 +0000 (09:13 -0000)]
moved manager to its own subdirectory in ipsecdir

12 years agoloading default modules depending on configure options
Martin Willi [Fri, 16 May 2008 08:52:32 +0000 (08:52 -0000)]
loading default modules depending on configure options

12 years agoadded missing semicolon
Andreas Steffen [Thu, 15 May 2008 19:40:38 +0000 (19:40 -0000)]
added missing semicolon

12 years agosome NEWS for 4.2.2
Martin Willi [Thu, 15 May 2008 14:15:27 +0000 (14:15 -0000)]
some NEWS for 4.2.2

12 years agoplugin load configuration in strongswan.conf
Martin Willi [Thu, 15 May 2008 14:01:26 +0000 (14:01 -0000)]
plugin load configuration in strongswan.conf
  some components accept a "component.load" option with a space separated list of plugins to load
  libcharon- plugins are now handled the same way as libstrongswan- plugins

12 years agoRSA with OpenSSL
Tobias Brunner [Thu, 15 May 2008 12:41:06 +0000 (12:41 -0000)]
RSA with OpenSSL

12 years agocorrected deinitialisation of public key factory
Tobias Brunner [Thu, 15 May 2008 12:39:35 +0000 (12:39 -0000)]
corrected deinitialisation of public key factory

12 years agogeneric public key factory moved
Tobias Brunner [Thu, 15 May 2008 12:33:00 +0000 (12:33 -0000)]
generic public key factory moved

12 years agostatic leases use 0, not NULL timeout
Martin Willi [Thu, 15 May 2008 09:26:47 +0000 (09:26 -0000)]
static leases use 0, not NULL timeout
fixed static leases

12 years agoproperly removing bootup poll interface eth0
Martin Willi [Thu, 15 May 2008 08:41:00 +0000 (08:41 -0000)]
properly removing bootup poll interface eth0

12 years agoadded ikev2/compress scenario
Andreas Steffen [Wed, 14 May 2008 20:07:16 +0000 (20:07 -0000)]
added ikev2/compress scenario

12 years agoimplemented classical UML network scenario in dumm (ipsec testing)
Martin Willi [Wed, 14 May 2008 13:11:13 +0000 (13:11 -0000)]
implemented classical UML network scenario in dumm (ipsec testing)

12 years agopoll UML guests after startup using eth9=mcast, as networking is loaded after console
Martin Willi [Wed, 14 May 2008 11:48:00 +0000 (11:48 -0000)]
poll UML guests after startup using eth9=mcast, as networking is loaded after console

12 years agotypo
Tobias Brunner [Wed, 14 May 2008 11:10:37 +0000 (11:10 -0000)]
typo

12 years agoprototype of mediation client database plugin
Martin Willi [Wed, 14 May 2008 07:26:19 +0000 (07:26 -0000)]
prototype of mediation client database plugin

12 years agohandle ID_KEY_ID as a ID_PUBKEY_SHA1 for authentication
Martin Willi [Wed, 14 May 2008 06:49:31 +0000 (06:49 -0000)]
handle ID_KEY_ID as a ID_PUBKEY_SHA1 for authentication

12 years agofixed printing of %#H hosts
Martin Willi [Wed, 14 May 2008 06:34:54 +0000 (06:34 -0000)]
fixed printing of %#H hosts

12 years agoip pool now suppresses plugin loading debug output
Andreas Steffen [Tue, 13 May 2008 19:38:50 +0000 (19:38 -0000)]
ip pool now suppresses plugin loading debug output

12 years agoapplied aes-xcbc-96 to ike as well
Andreas Steffen [Tue, 13 May 2008 19:37:01 +0000 (19:37 -0000)]
applied aes-xcbc-96 to ike as well

12 years agoadded sql/ip-pool-db scenario
Andreas Steffen [Tue, 13 May 2008 19:35:10 +0000 (19:35 -0000)]
added sql/ip-pool-db scenario

12 years agoreverted [3945], proper fix for zero value ASN1 integer
Martin Willi [Tue, 13 May 2008 14:15:12 +0000 (14:15 -0000)]
reverted [3945], proper fix for zero value ASN1 integer

12 years agoupdated Makefile
Martin Willi [Tue, 13 May 2008 13:58:04 +0000 (13:58 -0000)]
updated Makefile

12 years agotool to calculate KEYIDs from keys
Martin Willi [Tue, 13 May 2008 13:57:42 +0000 (13:57 -0000)]
tool to calculate KEYIDs from keys

12 years agofixed unsave calculation of mpz_export length
Martin Willi [Tue, 13 May 2008 13:52:45 +0000 (13:52 -0000)]
fixed unsave calculation of mpz_export length

12 years agodecreased plugin load verbosity
Martin Willi [Tue, 13 May 2008 09:14:36 +0000 (09:14 -0000)]
decreased plugin load verbosity

12 years agofixed "pool --purge" on mysql
Martin Willi [Tue, 13 May 2008 07:39:24 +0000 (07:39 -0000)]
fixed "pool --purge" on mysql

12 years agofixed compiler warning (missing include)
Martin Willi [Tue, 13 May 2008 07:37:08 +0000 (07:37 -0000)]
fixed compiler warning (missing include)

12 years agofixed lookup for expired leases
Martin Willi [Tue, 13 May 2008 07:24:53 +0000 (07:24 -0000)]
fixed lookup for expired leases
initializing database if in inconsistent state

12 years agoadded caption to ipsec.sql file
Andreas Steffen [Tue, 13 May 2008 05:53:21 +0000 (05:53 -0000)]
added caption to ipsec.sql file

12 years agodo-test always downloads ipsec.sql
Andreas Steffen [Tue, 13 May 2008 05:51:12 +0000 (05:51 -0000)]
do-test always downloads ipsec.sql

12 years agoadded empty ipsec.sql file
Andreas Steffen [Tue, 13 May 2008 05:50:23 +0000 (05:50 -0000)]
added empty ipsec.sql file

12 years agodelete both ipsec.db and ipsec.sql in posttest.dat
Andreas Steffen [Mon, 12 May 2008 20:41:12 +0000 (20:41 -0000)]
delete both ipsec.db and ipsec.sql in posttest.dat

12 years agoadded ikev2/ip-pool-db scenario
Andreas Steffen [Mon, 12 May 2008 20:34:38 +0000 (20:34 -0000)]
added ikev2/ip-pool-db scenario

12 years agodo not preserve ownership of copied files
Andreas Steffen [Mon, 12 May 2008 20:06:58 +0000 (20:06 -0000)]
do not preserve ownership of copied files

12 years agoforgot about alphabetical order
Andreas Steffen [Mon, 12 May 2008 12:46:30 +0000 (12:46 -0000)]
forgot about alphabetical order

12 years agoadded description of plutostderrlog parameter to ipsec.conf.5 man page
Andreas Steffen [Mon, 12 May 2008 11:36:59 +0000 (11:36 -0000)]
added description of plutostderrlog parameter to ipsec.conf.5 man page

12 years agoplutostderrlog parameter now declares a stderr redirection file
Andreas Steffen [Mon, 12 May 2008 10:05:49 +0000 (10:05 -0000)]
plutostderrlog parameter now declares a stderr redirection file

12 years agofixed typos
Andreas Steffen [Sun, 11 May 2008 20:36:14 +0000 (20:36 -0000)]
fixed typos

12 years agoincluded pools and leases tables to ipsec.sql database
Andreas Steffen [Sun, 11 May 2008 19:34:33 +0000 (19:34 -0000)]
included pools and leases tables to ipsec.sql database

12 years agoadded missing ipcomp DB type definition
Andreas Steffen [Sun, 11 May 2008 16:41:51 +0000 (16:41 -0000)]
added missing ipcomp DB type definition

12 years agosupport of plutostderrlog keyword
Andreas Steffen [Sun, 11 May 2008 07:59:00 +0000 (07:59 -0000)]
support of plutostderrlog keyword

12 years agoported IP pool to mysql
Martin Willi [Fri, 9 May 2008 15:01:22 +0000 (15:01 -0000)]
ported IP pool to mysql

12 years agousable prototype of "ipsec pool" tool
Martin Willi [Fri, 9 May 2008 12:55:41 +0000 (12:55 -0000)]
usable prototype of "ipsec pool" tool

12 years agosupport for left bounded padding in %H and %D
Martin Willi [Fri, 9 May 2008 12:25:39 +0000 (12:25 -0000)]
support for left bounded padding in %H and %D

12 years agowhitelisted gmtime_r
Martin Willi [Fri, 9 May 2008 12:24:11 +0000 (12:24 -0000)]
whitelisted gmtime_r

12 years agocorrectly reassigning valid leases
Martin Willi [Fri, 9 May 2008 12:22:20 +0000 (12:22 -0000)]
correctly reassigning valid leases

12 years agosupporting width modifier in identification_t printf hook (e.g. %30D)
Martin Willi [Fri, 9 May 2008 11:34:58 +0000 (11:34 -0000)]
supporting width modifier in identification_t printf hook (e.g. %30D)
cleanups in host_t %H printf hook

12 years agofixed interface disconnection
Martin Willi [Fri, 9 May 2008 10:38:18 +0000 (10:38 -0000)]
fixed interface disconnection

12 years agoIPComp for IKEv2
Tobias Brunner [Thu, 8 May 2008 16:19:11 +0000 (16:19 -0000)]
IPComp for IKEv2

12 years agoimplemented append mode for xcbc, testcase
Martin Willi [Thu, 8 May 2008 14:51:37 +0000 (14:51 -0000)]
implemented append mode for xcbc, testcase

12 years agomoved RAW public key support to a separate plugin (pubkey)
Martin Willi [Thu, 8 May 2008 13:16:42 +0000 (13:16 -0000)]
moved RAW public key support to a separate plugin (pubkey)

12 years agofixed compiler warning
Martin Willi [Thu, 8 May 2008 13:12:43 +0000 (13:12 -0000)]
fixed compiler warning

12 years agorenamed PRF_AES128_CBC to PRF_AES128_XCBC
Martin Willi [Thu, 8 May 2008 12:43:27 +0000 (12:43 -0000)]
renamed PRF_AES128_CBC to PRF_AES128_XCBC

12 years agorenamed med_db plugin to medsrv, as we will introduce an additional medcli client...
Martin Willi [Thu, 8 May 2008 12:11:30 +0000 (12:11 -0000)]
renamed med_db plugin to medsrv, as we will introduce an additional medcli client plugin

12 years agoreplaced --with-gid/uid by --with-group/user
Martin Willi [Thu, 8 May 2008 10:58:04 +0000 (10:58 -0000)]
replaced --with-gid/uid by --with-group/user
using named users, groups
fixed capability dropping in pluto

12 years agoadded ip-pool and ip-pool-wish scenarios
Andreas Steffen [Thu, 8 May 2008 09:08:02 +0000 (09:08 -0000)]
added ip-pool and ip-pool-wish scenarios

12 years agocorrected gnome-terminal's --show-menubar option
Andreas Steffen [Thu, 8 May 2008 08:22:07 +0000 (08:22 -0000)]
corrected gnome-terminal's --show-menubar option

12 years agoadded configure check and support for sqlite3 libraries without sqlite3_prepare_v2
Martin Willi [Wed, 7 May 2008 14:41:13 +0000 (14:41 -0000)]
added configure check and support for sqlite3 libraries without sqlite3_prepare_v2

12 years agofixed 3DES encryption
Martin Willi [Wed, 7 May 2008 11:54:30 +0000 (11:54 -0000)]
fixed 3DES encryption

12 years agoprototype of sql pool administration utility
Martin Willi [Wed, 7 May 2008 09:37:08 +0000 (09:37 -0000)]
prototype of sql pool administration utility

12 years agousing capset version 1 if a newer is available
Martin Willi [Wed, 7 May 2008 08:46:37 +0000 (08:46 -0000)]
using capset version 1 if a newer is available

12 years agosupport for @#hex ID_KEY_ID identification_t
Martin Willi [Tue, 6 May 2008 13:45:14 +0000 (13:45 -0000)]
support for @#hex ID_KEY_ID identification_t

12 years agoproviding medation configuration through med_db plugin
Martin Willi [Tue, 6 May 2008 13:44:14 +0000 (13:44 -0000)]
providing medation configuration through med_db plugin

12 years agofixed parsing of openssl format public keys
Martin Willi [Tue, 6 May 2008 12:56:36 +0000 (12:56 -0000)]
fixed parsing of openssl format public keys

12 years agoreturning reference pointer on get_ref()
Martin Willi [Tue, 6 May 2008 10:55:42 +0000 (10:55 -0000)]
returning reference pointer on get_ref()

12 years agoprintf "width" support for hosts (e.g. %15H)
Martin Willi [Mon, 5 May 2008 08:31:43 +0000 (08:31 -0000)]
printf "width" support for hosts (e.g. %15H)

12 years agoresetting old scheduling policy correctly in free() hook
Martin Willi [Mon, 5 May 2008 07:40:21 +0000 (07:40 -0000)]
resetting old scheduling policy correctly in free() hook

12 years agoimplemented XCBC algorithms (signer, prf) for IKE on top of a crypter
Martin Willi [Wed, 30 Apr 2008 14:26:24 +0000 (14:26 -0000)]
implemented XCBC algorithms (signer, prf) for IKE on top of a crypter
supporting ike=...-aesxcbc-... in ipsec.conf
added AUTH_AES_XCBC_96 and PRF_AES128_CBC to default IKE proposal
AES XCBC testcase

12 years agocrypter_t api supports in-place encryption using NULL as output parameter
Martin Willi [Wed, 30 Apr 2008 14:02:25 +0000 (14:02 -0000)]
crypter_t api supports in-place encryption using NULL as output parameter

12 years agosimplified the OpenSSL crypter a bit
Tobias Brunner [Wed, 30 Apr 2008 09:24:22 +0000 (09:24 -0000)]
simplified the OpenSSL crypter a bit

12 years agosimplified the OpenSSL hasher a bit
Tobias Brunner [Wed, 30 Apr 2008 09:23:13 +0000 (09:23 -0000)]
simplified the OpenSSL hasher a bit

12 years agoOpenSSL hasher does not need an internal buffer anymore
Tobias Brunner [Wed, 30 Apr 2008 08:54:36 +0000 (08:54 -0000)]
OpenSSL hasher does not need an internal buffer anymore

12 years agoadding diffie hellman with OpenSSL
Tobias Brunner [Tue, 29 Apr 2008 15:42:34 +0000 (15:42 -0000)]
adding diffie hellman with OpenSSL

12 years agouse SHA-1 as preferred hasher in the OpenSSL plugin
Tobias Brunner [Tue, 29 Apr 2008 09:13:14 +0000 (09:13 -0000)]
use SHA-1 as preferred hasher in the OpenSSL plugin

12 years agoset Id keyword
Andreas Steffen [Mon, 28 Apr 2008 18:44:21 +0000 (18:44 -0000)]
set Id keyword

12 years agoprototype of dumm GUI
Martin Willi [Mon, 28 Apr 2008 16:43:30 +0000 (16:43 -0000)]
prototype of dumm GUI

12 years agocosmetics
Andreas Steffen [Mon, 28 Apr 2008 16:02:53 +0000 (16:02 -0000)]
cosmetics

12 years agointroduced ASN1_EXIT command in ASN.1 object syntax definition
Andreas Steffen [Mon, 28 Apr 2008 16:00:52 +0000 (16:00 -0000)]
introduced ASN1_EXIT command in ASN.1 object syntax definition

12 years agoadded wrapper for OpenSSL hashers
Tobias Brunner [Mon, 28 Apr 2008 15:56:44 +0000 (15:56 -0000)]
added wrapper for OpenSSL hashers

12 years agoalgo lookup corrected
Tobias Brunner [Mon, 28 Apr 2008 15:26:38 +0000 (15:26 -0000)]
algo lookup corrected

12 years agomade algo struct static
Tobias Brunner [Mon, 28 Apr 2008 14:52:58 +0000 (14:52 -0000)]
made algo struct static

12 years agotypos
Tobias Brunner [Mon, 28 Apr 2008 14:32:18 +0000 (14:32 -0000)]
typos

12 years agoadded a wrapper plugin for OpenSSL crypters (AES, 3DES, Blowfish etc.)
Tobias Brunner [Mon, 28 Apr 2008 14:25:19 +0000 (14:25 -0000)]
added a wrapper plugin for OpenSSL crypters (AES, 3DES, Blowfish etc.)

12 years agomade some stuff static
Tobias Brunner [Mon, 28 Apr 2008 14:19:25 +0000 (14:19 -0000)]
made some stuff static

12 years agofixed javascript include using <script> tag
Martin Willi [Mon, 28 Apr 2008 08:52:17 +0000 (08:52 -0000)]
fixed javascript include using <script> tag

12 years agosome scenario fixes
Andreas Steffen [Sun, 27 Apr 2008 14:15:29 +0000 (14:15 -0000)]
some scenario fixes

12 years agoend->srcip string must be removed if it contains %config
Andreas Steffen [Sun, 27 Apr 2008 11:28:58 +0000 (11:28 -0000)]
end->srcip string must be removed if it contains %config

12 years agofixed starter_cmp_end()
Andreas Steffen [Sun, 27 Apr 2008 11:04:13 +0000 (11:04 -0000)]
fixed starter_cmp_end()

12 years agofixed memory corruption problem in starter
Andreas Steffen [Sun, 27 Apr 2008 10:49:31 +0000 (10:49 -0000)]
fixed memory corruption problem in starter

12 years agooptimized parser->success()
Andreas Steffen [Sat, 26 Apr 2008 11:08:36 +0000 (11:08 -0000)]
optimized parser->success()

12 years agoported ASN.1 changes to pkcs7
Andreas Steffen [Sat, 26 Apr 2008 10:20:51 +0000 (10:20 -0000)]
ported ASN.1 changes to pkcs7