strongswan.git
8 years agoMigrated libfast to INIT/METHOD macros
Martin Willi [Wed, 15 Jun 2011 09:25:53 +0000 (11:25 +0200)]
Migrated libfast to INIT/METHOD macros

8 years agoadded missing single quotes
Andreas Steffen [Tue, 14 Jun 2011 15:26:54 +0000 (17:26 +0200)]
added missing single quotes

8 years agofixed the IF-TNCCS 1.1 ReasonString XML encoding
Andreas Steffen [Tue, 14 Jun 2011 13:58:03 +0000 (15:58 +0200)]
fixed the IF-TNCCS 1.1 ReasonString XML encoding

8 years agosend a reason string only if action recommendation is not allow
Andreas Steffen [Tue, 14 Jun 2011 13:45:34 +0000 (15:45 +0200)]
send a reason string only if action recommendation is not allow

8 years agocosmetics
Andreas Steffen [Tue, 14 Jun 2011 12:26:05 +0000 (14:26 +0200)]
cosmetics

8 years agoeat trailing space in preferred language string
Andreas Steffen [Mon, 13 Jun 2011 21:01:28 +0000 (23:01 +0200)]
eat trailing space in preferred language string

8 years agosupport multiple language preferences
Andreas Steffen [Mon, 13 Jun 2011 13:58:27 +0000 (15:58 +0200)]
support multiple language preferences

8 years agoimplemented sending of reason strings
Andreas Steffen [Mon, 13 Jun 2011 13:31:34 +0000 (15:31 +0200)]
implemented sending of reason strings

8 years agoadded missing single quotes
Andreas Steffen [Mon, 13 Jun 2011 13:29:43 +0000 (15:29 +0200)]
added missing single quotes

8 years agofixed length check
Andreas Steffen [Sun, 12 Jun 2011 19:49:53 +0000 (21:49 +0200)]
fixed length check

8 years agoversion bump to 4.5.3dr4
Andreas Steffen [Fri, 10 Jun 2011 05:45:40 +0000 (07:45 +0200)]
version bump to 4.5.3dr4

8 years agounfinished MS SoH Request
Andreas Steffen [Thu, 9 Jun 2011 06:56:45 +0000 (08:56 +0200)]
unfinished MS SoH Request

8 years agoCOPYING updated to the most current version (address was incorrect).
Tobias Brunner [Wed, 8 Jun 2011 14:32:30 +0000 (16:32 +0200)]
COPYING updated to the most current version (address was incorrect).

8 years agoFix integrity checks with monolithic build.
Tobias Brunner [Wed, 8 Jun 2011 13:46:07 +0000 (15:46 +0200)]
Fix integrity checks with monolithic build.

8 years agoPrevent deadlock while shutting down thread pool.
Tobias Brunner [Wed, 8 Jun 2011 08:52:05 +0000 (10:52 +0200)]
Prevent deadlock while shutting down thread pool.

During destruction the main thread locks the mutex in processor_t and
waits on a condvar for threads to have terminated.  Because the mutex
has also to be locked to decrement the thread count the condvar cannot
be signaled before doing that as otherwise the main thread might already
be waiting to join the threads while locking the mutex and thus causing
a deadlock.

8 years agoProperly print time differences.
Tobias Brunner [Tue, 7 Jun 2011 15:16:01 +0000 (17:16 +0200)]
Properly print time differences.

time_t is not necessarily of type int.

8 years agoUse proper printf specifiers to print u_int64_t and uintptr_t.
Tobias Brunner [Tue, 7 Jun 2011 15:13:48 +0000 (17:13 +0200)]
Use proper printf specifiers to print u_int64_t and uintptr_t.

8 years agoFix compilation with GCC 4.6.
Laurent Bigonville [Tue, 7 Jun 2011 13:45:18 +0000 (15:45 +0200)]
Fix compilation with GCC 4.6.

8 years agoexplicitly activate use of TNC headers
Andreas Steffen [Tue, 7 Jun 2011 10:19:23 +0000 (12:19 +0200)]
explicitly activate use of TNC headers

8 years agoAdded documentation and NEWS for closeaction
Martin Willi [Tue, 7 Jun 2011 10:03:45 +0000 (12:03 +0200)]
Added documentation and NEWS for closeaction

8 years agoAdd a closeaction ipsec.conf keyword to configure close action
Martin Willi [Tue, 7 Jun 2011 09:37:15 +0000 (11:37 +0200)]
Add a closeaction ipsec.conf keyword to configure close action

8 years agoseparated tncif_names from standard TCG TNC header files
Andreas Steffen [Mon, 6 Jun 2011 18:36:58 +0000 (20:36 +0200)]
separated tncif_names from standard TCG TNC header files

8 years agonearly completed PA-TNC error handling
Andreas Steffen [Sun, 5 Jun 2011 21:24:48 +0000 (23:24 +0200)]
nearly completed PA-TNC error handling

8 years agoshow PB-PA message type/subtype
Andreas Steffen [Sun, 5 Jun 2011 13:46:01 +0000 (15:46 +0200)]
show PB-PA message type/subtype

8 years agocosmetics
Andreas Steffen [Sun, 5 Jun 2011 13:06:55 +0000 (15:06 +0200)]
cosmetics

8 years agoversion bump to 4.5.3dr3
Andreas Steffen [Sun, 5 Jun 2011 12:55:18 +0000 (14:55 +0200)]
version bump to 4.5.3dr3

8 years agoenum names for ietf_attr_t
Andreas Steffen [Sun, 5 Jun 2011 12:17:47 +0000 (14:17 +0200)]
enum names for ietf_attr_t

8 years agomap action recommendation codes to PB access recommendation codes
Andreas Steffen [Sun, 5 Jun 2011 10:27:20 +0000 (12:27 +0200)]
map action recommendation codes to PB access recommendation codes

8 years agoadded a reference count for PA-TNC attributes
Andreas Steffen [Fri, 3 Jun 2011 14:39:27 +0000 (16:39 +0200)]
added a reference count for PA-TNC attributes

8 years agoCheck if colliding task has actually a CHILD, i.e. after a migrate
Martin Willi [Wed, 1 Jun 2011 13:57:29 +0000 (13:57 +0000)]
Check if colliding task has actually a CHILD, i.e. after a migrate

8 years agoFix alignement compiler warning
Martin Willi [Wed, 1 Jun 2011 12:12:35 +0000 (14:12 +0200)]
Fix alignement compiler warning

8 years agolink to the TNC@FHH project
Andreas Steffen [Fri, 3 Jun 2011 06:36:57 +0000 (08:36 +0200)]
link to the TNC@FHH project

8 years agofixed sleep command in ikev1/esp-ah-tunnel scenario
Andreas Steffen [Fri, 3 Jun 2011 05:05:43 +0000 (07:05 +0200)]
fixed sleep command in ikev1/esp-ah-tunnel scenario

8 years agoactive and passive IKEv2 hosts changed again
Andreas Steffen [Thu, 2 Jun 2011 23:47:25 +0000 (01:47 +0200)]
active and passive IKEv2 hosts changed again

8 years agomoved TNC scenarios to tnc folder
Andreas Steffen [Thu, 2 Jun 2011 22:47:20 +0000 (00:47 +0200)]
moved TNC scenarios to tnc folder

8 years agocorrectly destroy the hosts
Andreas Steffen [Thu, 2 Jun 2011 22:43:47 +0000 (00:43 +0200)]
correctly destroy the hosts

8 years agofixed subnet to string conversion by using ts_to_subnet()
Andreas Steffen [Thu, 2 Jun 2011 22:26:39 +0000 (00:26 +0200)]
fixed subnet to string conversion by using ts_to_subnet()

8 years agofixed IP range to subnet conversion in ts_to_subnet()
Andreas Steffen [Thu, 2 Jun 2011 22:19:22 +0000 (00:19 +0200)]
fixed IP range to subnet conversion in ts_to_subnet()

8 years agoikev2/rw-eap-tnc-11-radius scenario now uses a PA-TNC IMC/IMV pair
Andreas Steffen [Thu, 2 Jun 2011 10:36:27 +0000 (12:36 +0200)]
ikev2/rw-eap-tnc-11-radius scenario now uses a PA-TNC IMC/IMV pair

8 years agostreamlined libimcv debug output
Andreas Steffen [Thu, 2 Jun 2011 10:19:03 +0000 (12:19 +0200)]
streamlined libimcv debug output

8 years agoset configuration of imv_test with each TNC handshake
Andreas Steffen [Thu, 2 Jun 2011 09:37:27 +0000 (11:37 +0200)]
set configuration of imv_test with each TNC handshake

8 years agoconfigure IMC/IMV pairs as libimcv plugins
Andreas Steffen [Thu, 2 Jun 2011 08:24:31 +0000 (10:24 +0200)]
configure IMC/IMV pairs as libimcv plugins

8 years agoconfigure libimcv debug output via strongswan.conf
Andreas Steffen [Thu, 2 Jun 2011 07:59:46 +0000 (09:59 +0200)]
configure libimcv debug output via strongswan.conf

8 years agodisable leak_detective in ikev2/rw-eap-tnc-11-radius scenario
Andreas Steffen [Wed, 1 Jun 2011 20:17:32 +0000 (22:17 +0200)]
disable leak_detective in ikev2/rw-eap-tnc-11-radius scenario

8 years agooutput strongswan.conf and daemon.log on RADIUS hosts with strongSwan IMV
Andreas Steffen [Wed, 1 Jun 2011 19:38:03 +0000 (21:38 +0200)]
output strongswan.conf and daemon.log on RADIUS hosts with strongSwan IMV

8 years agoinitialize libstrongswan in dynamic stand-alone libimcv-based libraries
Andreas Steffen [Wed, 1 Jun 2011 18:59:25 +0000 (20:59 +0200)]
initialize libstrongswan in dynamic stand-alone libimcv-based libraries

8 years agostarted error handling of PA-TNC protocol
Andreas Steffen [Wed, 1 Jun 2011 14:33:09 +0000 (16:33 +0200)]
started error handling of PA-TNC protocol

8 years agomake IMC/IMV pairs independent of libcharon
Andreas Steffen [Wed, 1 Jun 2011 14:32:01 +0000 (16:32 +0200)]
make IMC/IMV pairs independent of libcharon

8 years agoLoad af-alg with higher priority
Martin Willi [Tue, 31 May 2011 11:58:55 +0000 (13:58 +0200)]
Load af-alg with higher priority

8 years agoProvide recursive mutex' just in case the PKCS#11 library requires it
Martin Willi [Fri, 27 May 2011 14:07:58 +0000 (16:07 +0200)]
Provide recursive mutex' just in case the PKCS#11 library requires it

8 years agolibfast does not depend on zlib directly, clearsilver can be built without compressio...
Martin Willi [Fri, 27 May 2011 13:58:35 +0000 (15:58 +0200)]
libfast does not depend on zlib directly, clearsilver can be built without compression support

8 years agoInclude m4/config directory in git, supporting autoregen -i of a fresh clone
Martin Willi [Fri, 27 May 2011 13:14:23 +0000 (15:14 +0200)]
Include m4/config directory in git, supporting autoregen -i of a fresh clone

8 years agodo not checksum IMC/IMV plugins
Andreas Steffen [Wed, 1 Jun 2011 07:22:12 +0000 (09:22 +0200)]
do not checksum IMC/IMV plugins

8 years agofixed location of imc_test/imv_test Makefiles
Andreas Steffen [Wed, 1 Jun 2011 06:02:16 +0000 (08:02 +0200)]
fixed location of imc_test/imv_test Makefiles

8 years agomoved imc_test/imv_test plugins to libimcv
Andreas Steffen [Wed, 1 Jun 2011 05:54:14 +0000 (07:54 +0200)]
moved imc_test/imv_test plugins to libimcv

8 years agoFix initialization of NM plugin
Martin Willi [Tue, 31 May 2011 16:12:56 +0000 (18:12 +0200)]
Fix initialization of NM plugin

8 years agorenamed tls_reader|writer to bio_* and moved to libstrongswan
Andreas Steffen [Tue, 31 May 2011 13:46:30 +0000 (15:46 +0200)]
renamed tls_reader|writer to bio_* and moved to libstrongswan

8 years agoremoved unused files
Andreas Steffen [Tue, 31 May 2011 12:36:56 +0000 (14:36 +0200)]
removed unused files

8 years agoremoved unused variables
Andreas Steffen [Tue, 31 May 2011 12:34:32 +0000 (14:34 +0200)]
removed unused variables

8 years agofixed type
Andreas Steffen [Tue, 31 May 2011 12:33:27 +0000 (14:33 +0200)]
fixed type

8 years agoDefault value for keyingtries documented properly.
Tobias Brunner [Tue, 31 May 2011 07:02:23 +0000 (09:02 +0200)]
Default value for keyingtries documented properly.

8 years agoversion bump to 4.5.3dr2
Andreas Steffen [Tue, 31 May 2011 04:22:42 +0000 (06:22 +0200)]
version bump to 4.5.3dr2

8 years agocorrected debug class to IMV
Andreas Steffen [Mon, 30 May 2011 21:08:16 +0000 (23:08 +0200)]
corrected debug class to IMV

8 years agore-established a deleted colon character
Andreas Steffen [Mon, 30 May 2011 20:48:53 +0000 (22:48 +0200)]
re-established a deleted colon character

8 years agocleaned up the rw-eap-tnc-20 and rw-eap-tnc-20-fhh scenarios
Andreas Steffen [Mon, 30 May 2011 19:46:45 +0000 (21:46 +0200)]
cleaned up the rw-eap-tnc-20 and rw-eap-tnc-20-fhh scenarios

8 years agoadded the ikev2/rw-eap-tnc-20 scenario based on the RFC 5792 PA-TNC protocol
Andreas Steffen [Mon, 30 May 2011 19:31:50 +0000 (21:31 +0200)]
added the ikev2/rw-eap-tnc-20 scenario based on the RFC 5792 PA-TNC protocol

8 years agoimplemented the RFC 5792 PA-TNC protocol and an example IMC/IMV pair
Andreas Steffen [Mon, 30 May 2011 19:30:09 +0000 (21:30 +0200)]
implemented the RFC 5792 PA-TNC protocol and an example IMC/IMV pair

8 years agorenamed ikev2/rw-eap-tnc-20 scenario to rw-eap-tnc-20-fhh
Andreas Steffen [Mon, 30 May 2011 19:28:07 +0000 (21:28 +0200)]
renamed ikev2/rw-eap-tnc-20 scenario to rw-eap-tnc-20-fhh

8 years agochanged VENDOR_ID to PEN
Andreas Steffen [Sun, 29 May 2011 08:48:55 +0000 (10:48 +0200)]
changed VENDOR_ID to PEN

8 years agouse singular form
Andreas Steffen [Sun, 29 May 2011 08:48:09 +0000 (10:48 +0200)]
use singular form

8 years agocreated Private Enterprise Number (PEN) list
Andreas Steffen [Sun, 29 May 2011 08:42:46 +0000 (10:42 +0200)]
created Private Enterprise Number (PEN) list

8 years agoadded TNC_Connection_State_names
Andreas Steffen [Sun, 29 May 2011 08:40:17 +0000 (10:40 +0200)]
added TNC_Connection_State_names

8 years agoraw TLS debug output
Andreas Steffen [Sun, 29 May 2011 08:36:41 +0000 (10:36 +0200)]
raw TLS debug output

8 years agologging initial EAP Identifier in EAP Identity Request
Andreas Steffen [Sun, 29 May 2011 08:30:02 +0000 (10:30 +0200)]
logging initial EAP Identifier in EAP Identity Request

8 years agoadded DBG_IMC and DBG_IMV debug options
Andreas Steffen [Sun, 29 May 2011 08:25:13 +0000 (10:25 +0200)]
added DBG_IMC and DBG_IMV debug options

8 years agoipsec: Wait longer for starter to quit before killing it.
Tobias Brunner [Thu, 26 May 2011 10:43:01 +0000 (12:43 +0200)]
ipsec: Wait longer for starter to quit before killing it.

As starter waits up to 10 seconds for either daemon to quit, killing it
already after 5 seconds is too early.

8 years agoOption to enable duplicheck plugin fixed.
Tobias Brunner [Thu, 26 May 2011 10:36:00 +0000 (12:36 +0200)]
Option to enable duplicheck plugin fixed.

8 years agoversion bump to 4.5.3dr1
Andreas Steffen [Wed, 25 May 2011 19:34:22 +0000 (21:34 +0200)]
version bump to 4.5.3dr1

8 years agoUse better packing of leak-detective memory_header to align pointers
Martin Willi [Wed, 25 May 2011 16:32:00 +0000 (18:32 +0200)]
Use better packing of leak-detective memory_header to align pointers

8 years agoSummarize leaks with identical backtraces, as we do it with memusage
Martin Willi [Wed, 25 May 2011 16:18:21 +0000 (18:18 +0200)]
Summarize leaks with identical backtraces, as we do it with memusage

8 years agoDon't use a strongswan.conf in checksum_builder, disables checksumming
Martin Willi [Wed, 25 May 2011 09:06:25 +0000 (11:06 +0200)]
Don't use a strongswan.conf in checksum_builder, disables checksumming

8 years agoForce link of checksum builder against libhydra/libcharon
Martin Willi [Wed, 25 May 2011 08:38:31 +0000 (10:38 +0200)]
Force link of checksum builder against libhydra/libcharon

8 years agoChecksum plugins only for components we actually build
Martin Willi [Wed, 25 May 2011 08:33:14 +0000 (10:33 +0200)]
Checksum plugins only for components we actually build

8 years agoFix strict aliasing warning
Martin Willi [Wed, 25 May 2011 08:08:55 +0000 (10:08 +0200)]
Fix strict aliasing warning

8 years agoRenamed option to enable unit tests as plugin is named unit-tester.
Tobias Brunner [Tue, 24 May 2011 17:28:54 +0000 (19:28 +0200)]
Renamed option to enable unit tests as plugin is named unit-tester.

To correctly enable a plugin the names used in the ARG_ENABL_SET and
ADD_PLUGIN macros have to match (and they have, of course, to match the
plugin's name).

8 years agoKeep count of remaining elements to enumerate in hashtable_t.
Tobias Brunner [Mon, 23 May 2011 16:45:49 +0000 (18:45 +0200)]
Keep count of remaining elements to enumerate in hashtable_t.

This improves performance during enumeration as not all buckets have to be
checked.

8 years agoReplaced linked_list_t usage in hashtable_t with custom list implementation.
Tobias Brunner [Mon, 23 May 2011 16:35:21 +0000 (18:35 +0200)]
Replaced linked_list_t usage in hashtable_t with custom list implementation.

With this change inserting elements into a hashtable_t object is now
nearly as fast as inserting them into a linked_list_t object, whereas
before it was up to seven times slower.  Additionally, the memory
footprint of a hashtable is now significantly smaller.  The lookup
performance is also nearly doubled.

8 years agopluto: Made helper functions in event_queue static.
Tobias Brunner [Mon, 23 May 2011 16:13:33 +0000 (18:13 +0200)]
pluto: Made helper functions in event_queue static.

8 years agoCompiler warning fixed.
Tobias Brunner [Mon, 23 May 2011 16:13:22 +0000 (18:13 +0200)]
Compiler warning fixed.

8 years agoEnable strict-aliasing warnings, we should really get rid of them
Martin Willi [Tue, 24 May 2011 10:04:35 +0000 (12:04 +0200)]
Enable strict-aliasing warnings, we should really get rid of them

8 years agoFix memwipe() of leading unaligned bytes
Martin Willi [Tue, 24 May 2011 08:00:57 +0000 (10:00 +0200)]
Fix memwipe() of leading unaligned bytes

8 years agoLink libstrongswan against libdumm, fixes build of ruby extension
Martin Willi [Fri, 20 May 2011 12:59:17 +0000 (14:59 +0200)]
Link libstrongswan against libdumm, fixes build of ruby extension

8 years agoUse spaces in Makefile.am identation, autotools don't like tabs
Martin Willi [Fri, 20 May 2011 08:09:09 +0000 (10:09 +0200)]
Use spaces in Makefile.am identation, autotools don't like tabs

8 years agoAdd md5 to script plugins
Martin Willi [Fri, 20 May 2011 08:08:57 +0000 (10:08 +0200)]
Add md5 to script plugins

8 years agoLink libstrongswan directly to dumm/irdumm, fixes build with newer binutils
Martin Willi [Thu, 19 May 2011 12:29:21 +0000 (14:29 +0200)]
Link libstrongswan directly to dumm/irdumm, fixes build with newer binutils

8 years agoFix some warnings triggered by gcc 4.6 -Wunused-but-set-variable
Martin Willi [Thu, 19 May 2011 12:24:26 +0000 (14:24 +0200)]
Fix some warnings triggered by gcc 4.6 -Wunused-but-set-variable

8 years agostroke: Usage output updated.
Tobias Brunner [Mon, 16 May 2011 16:47:52 +0000 (18:47 +0200)]
stroke: Usage output updated.

8 years agoUpdate working thread count without allocation.
Tobias Brunner [Mon, 16 May 2011 16:28:03 +0000 (18:28 +0200)]
Update working thread count without allocation.

8 years agoMake sure working thread count is correctly updated
Tobias Brunner [Thu, 5 May 2011 16:06:09 +0000 (18:06 +0200)]
Make sure working thread count is correctly updated

8 years agoMigrated controller_t to INIT/METHOD macros
Martin Willi [Fri, 6 May 2011 07:50:02 +0000 (09:50 +0200)]
Migrated controller_t to INIT/METHOD macros