strongswan.git
13 years agofixed typo in iptables script
Andreas Steffen [Fri, 16 Nov 2007 22:45:47 +0000 (22:45 -0000)]
fixed typo in iptables script

13 years agoadded rw-psk-ikev2 scenario
Andreas Steffen [Fri, 16 Nov 2007 20:25:26 +0000 (20:25 -0000)]
added rw-psk-ikev2 scenario

13 years agoadded rw-psk-ikev1 scenario
Andreas Steffen [Fri, 16 Nov 2007 20:25:15 +0000 (20:25 -0000)]
added rw-psk-ikev1 scenario

13 years agosearch : delimiter in ipsec.secrets entries from the rear
Andreas Steffen [Fri, 16 Nov 2007 20:23:29 +0000 (20:23 -0000)]
search : delimiter in ipsec.secrets entries from the rear

13 years agorefactored bus and interface to resolve threading issues (WIP)
Martin Willi [Thu, 15 Nov 2007 18:35:54 +0000 (18:35 -0000)]
refactored bus and interface to resolve threading issues (WIP)

13 years agobe less agressive, but more verbose in killing charon
Martin Willi [Thu, 15 Nov 2007 18:34:05 +0000 (18:34 -0000)]
be less agressive, but more verbose in killing charon

13 years agoadded IKE IP addresses to config list for manager
Martin Willi [Thu, 15 Nov 2007 10:09:48 +0000 (10:09 -0000)]
added IKE IP addresses to config list for manager

13 years agofiltering out IKEv1 configurations for manager
Martin Willi [Thu, 15 Nov 2007 10:09:14 +0000 (10:09 -0000)]
filtering out IKEv1 configurations for manager

13 years agofixed daemon kill before threads are spawned
Martin Willi [Wed, 14 Nov 2007 10:12:34 +0000 (10:12 -0000)]
fixed daemon kill before threads are spawned

13 years agofixed NO_PROPOSAL_CHOSEN response on IKE_SA_INIT
Martin Willi [Wed, 14 Nov 2007 09:41:08 +0000 (09:41 -0000)]
fixed NO_PROPOSAL_CHOSEN response on IKE_SA_INIT

13 years agochanged session timeout to 15 minutes
Martin Willi [Tue, 13 Nov 2007 12:00:02 +0000 (12:00 -0000)]
changed session timeout to 15 minutes

13 years agoimplemented IKE_SA initiation in manager
Martin Willi [Tue, 13 Nov 2007 11:58:28 +0000 (11:58 -0000)]
implemented IKE_SA initiation in manager

13 years agoimplemented configuration query and IKE_SA initiation in XML interface
Martin Willi [Tue, 13 Nov 2007 11:56:52 +0000 (11:56 -0000)]
implemented configuration query and IKE_SA initiation in XML interface

13 years agoconfiguration query for manager (WIP)
Martin Willi [Mon, 12 Nov 2007 18:34:50 +0000 (18:34 -0000)]
configuration query for manager (WIP)

13 years agoimplemented IKE/CHILD_SA close through manager
Martin Willi [Mon, 12 Nov 2007 15:09:11 +0000 (15:09 -0000)]
implemented IKE/CHILD_SA close through manager

13 years agoimplemented IKE/CHILD_SA termination through XML interface
Martin Willi [Mon, 12 Nov 2007 15:06:04 +0000 (15:06 -0000)]
implemented IKE/CHILD_SA termination through XML interface

13 years agoupdated gentoo root file system
Andreas Steffen [Fri, 9 Nov 2007 00:49:45 +0000 (00:49 -0000)]
updated gentoo root file system

13 years agoupgrade of apache2 runlevel scripts from 2.0 to 2.2
Andreas Steffen [Fri, 9 Nov 2007 00:48:08 +0000 (00:48 -0000)]
upgrade of apache2 runlevel scripts from 2.0 to 2.2

13 years agoupgrade from apache 2.0 to 2.2
Andreas Steffen [Fri, 9 Nov 2007 00:38:01 +0000 (00:38 -0000)]
upgrade from apache 2.0 to 2.2

13 years agoIPv6 scenarios now used the new IPv6 topology graphs
Andreas Steffen [Thu, 8 Nov 2007 13:28:30 +0000 (13:28 -0000)]
IPv6 scenarios now used the new IPv6 topology graphs

13 years agocreated IPv6 topology graphs
Andreas Steffen [Thu, 8 Nov 2007 13:26:41 +0000 (13:26 -0000)]
created IPv6 topology graphs

13 years agoremoved internal IP from m-w-s.png
Andreas Steffen [Thu, 8 Nov 2007 13:25:25 +0000 (13:25 -0000)]
removed internal IP from m-w-s.png

13 years agoanother four IPv6 scenarios fully demonstrate ip6tables firewall use
Andreas Steffen [Thu, 8 Nov 2007 11:59:29 +0000 (11:59 -0000)]
another four IPv6 scenarios fully demonstrate ip6tables firewall use

13 years agoannounce IPv6 iptables support in _updown script
Andreas Steffen [Thu, 8 Nov 2007 10:55:07 +0000 (10:55 -0000)]
announce IPv6 iptables support in _updown script

13 years agoenabled ip6tables-based firewalling in first two IPv6 scenarios
Andreas Steffen [Wed, 7 Nov 2007 16:41:57 +0000 (16:41 -0000)]
enabled ip6tables-based firewalling in first two IPv6 scenarios

13 years agodo-tests script applies ip6tables in ipv6 subdir
Andreas Steffen [Wed, 7 Nov 2007 12:22:44 +0000 (12:22 -0000)]
do-tests script applies ip6tables in ipv6 subdir

13 years agothe _updown scripts now fully supports ip6tables firewall rule insertion and deletion
Andreas Steffen [Wed, 7 Nov 2007 12:20:15 +0000 (12:20 -0000)]
the _updown scripts now fully supports ip6tables firewall rule insertion and deletion

13 years agodisable MOBIKE in net2net IPv6 scenario
Andreas Steffen [Tue, 6 Nov 2007 18:19:51 +0000 (18:19 -0000)]
disable MOBIKE in net2net IPv6 scenario

13 years agoadded rw-ikev1 IPv6 scenario
Andreas Steffen [Tue, 6 Nov 2007 17:50:43 +0000 (17:50 -0000)]
added rw-ikev1 IPv6 scenario

13 years agocharon does not need leftnexthop for ipv6 scenarios
Andreas Steffen [Tue, 6 Nov 2007 16:38:29 +0000 (16:38 -0000)]
charon does not need leftnexthop for ipv6 scenarios

13 years agoversion bumpt to 4.1.9
Andreas Steffen [Tue, 6 Nov 2007 13:47:27 +0000 (13:47 -0000)]
version bumpt to 4.1.9

13 years agofixed ipv6 target in _updown script
Andreas Steffen [Tue, 6 Nov 2007 13:46:35 +0000 (13:46 -0000)]
fixed ipv6 target in _updown script

13 years agofixed _updown target for ipv6
Andreas Steffen [Tue, 6 Nov 2007 13:45:54 +0000 (13:45 -0000)]
fixed _updown target for ipv6

13 years agonew net2net ipv6 scenarios for IKEv1 and IKEv2
Andreas Steffen [Tue, 6 Nov 2007 13:44:57 +0000 (13:44 -0000)]
new net2net ipv6 scenarios for IKEv1 and IKEv2

13 years agoadding new virtual ip before deleting old one to keep IP on reauthentication
Martin Willi [Thu, 25 Oct 2007 07:50:23 +0000 (07:50 -0000)]
adding new virtual ip before deleting old one to keep IP on reauthentication

13 years agoadded vsignal todo
Martin Willi [Thu, 25 Oct 2007 07:49:32 +0000 (07:49 -0000)]
added vsignal todo

13 years agorequest_t.redirect takes variable argument list
Martin Willi [Fri, 19 Oct 2007 19:40:53 +0000 (19:40 -0000)]
request_t.redirect takes variable argument list
request_t.serve to serve non-template data
fixed dispatcher thread locking code

13 years agoupdated NEWS 4.1.8
Andreas Steffen [Wed, 17 Oct 2007 03:40:51 +0000 (03:40 -0000)]
updated NEWS

13 years agouml kernel version bump to 2.6.23.1
Andreas Steffen [Wed, 17 Oct 2007 03:39:16 +0000 (03:39 -0000)]
uml kernel version bump to 2.6.23.1

13 years agocorrected typos
Andreas Steffen [Wed, 17 Oct 2007 02:56:24 +0000 (02:56 -0000)]
corrected typos

13 years agocorrected brief
Andreas Steffen [Wed, 17 Oct 2007 02:55:53 +0000 (02:55 -0000)]
corrected brief

13 years agocorrected brief
Andreas Steffen [Wed, 17 Oct 2007 02:55:17 +0000 (02:55 -0000)]
corrected brief

13 years agoadded hasher_signature_algorithm_to_oid() function
Andreas Steffen [Fri, 12 Oct 2007 23:18:42 +0000 (23:18 -0000)]
added hasher_signature_algorithm_to_oid() function

13 years agoadded get_publicKeyInfo() method
Andreas Steffen [Fri, 12 Oct 2007 22:49:39 +0000 (22:49 -0000)]
added get_publicKeyInfo() method

13 years agoadded create_certificate_iterator() method
Andreas Steffen [Fri, 12 Oct 2007 21:57:20 +0000 (21:57 -0000)]
added create_certificate_iterator() method

13 years agoadded x509_build_generalNames() and x509_build_subjectAltNames() functions
Andreas Steffen [Fri, 12 Oct 2007 21:56:30 +0000 (21:56 -0000)]
added x509_build_generalNames() and x509_build_subjectAltNames() functions

13 years agoadded x509_ prefix to imported parse functions
Andreas Steffen [Fri, 12 Oct 2007 21:53:18 +0000 (21:53 -0000)]
added x509_ prefix to imported parse functions

13 years agoadded RCSID
Andreas Steffen [Fri, 12 Oct 2007 19:29:00 +0000 (19:29 -0000)]
added RCSID

13 years agocosmetics
Andreas Steffen [Fri, 12 Oct 2007 19:20:59 +0000 (19:20 -0000)]
cosmetics

13 years agoadded briefs
Andreas Steffen [Fri, 12 Oct 2007 18:39:40 +0000 (18:39 -0000)]
added briefs

13 years agoimplemented pkcs1_write() method
Andreas Steffen [Fri, 12 Oct 2007 15:23:29 +0000 (15:23 -0000)]
implemented pkcs1_write() method

13 years agoadded x509_create() synthesis function
Andreas Steffen [Thu, 11 Oct 2007 14:39:40 +0000 (14:39 -0000)]
added x509_create() synthesis function

13 years agoadded get_data() method
Andreas Steffen [Thu, 11 Oct 2007 14:38:46 +0000 (14:38 -0000)]
added get_data() method

13 years agoadded addr2strongline script which helps to resolve leaking symbols in libstrongswan
Martin Willi [Thu, 11 Oct 2007 13:40:52 +0000 (13:40 -0000)]
added addr2strongline script which helps to resolve leaking symbols in libstrongswan

13 years agocall get_keysize with const rsa_private_key_t*
Andreas Steffen [Thu, 11 Oct 2007 11:36:37 +0000 (11:36 -0000)]
call get_keysize with const rsa_private_key_t*

13 years agocosmetics
Andreas Steffen [Thu, 11 Oct 2007 11:26:20 +0000 (11:26 -0000)]
cosmetics

13 years agorenamed eme_pkcs1_decrypt() to pkcs1_decrypt()
Andreas Steffen [Thu, 11 Oct 2007 11:25:52 +0000 (11:25 -0000)]
renamed eme_pkcs1_decrypt() to pkcs1_decrypt()

13 years agocorrected brief
Andreas Steffen [Mon, 8 Oct 2007 21:25:44 +0000 (21:25 -0000)]
corrected brief

13 years agocosmetics
Andreas Steffen [Mon, 8 Oct 2007 21:21:21 +0000 (21:21 -0000)]
cosmetics

13 years agoadded RCSID
Andreas Steffen [Mon, 8 Oct 2007 20:18:34 +0000 (20:18 -0000)]
added RCSID

13 years agoadded RCSID
Andreas Steffen [Mon, 8 Oct 2007 20:15:30 +0000 (20:15 -0000)]
added RCSID

13 years agoadded RCSID
Andreas Steffen [Mon, 8 Oct 2007 20:12:25 +0000 (20:12 -0000)]
added RCSID

13 years agoadded RCSID
Andreas Steffen [Mon, 8 Oct 2007 20:09:57 +0000 (20:09 -0000)]
added RCSID

13 years agoadded RCSID
Andreas Steffen [Mon, 8 Oct 2007 20:03:02 +0000 (20:03 -0000)]
added RCSID

13 years agoadded RCSID
Andreas Steffen [Mon, 8 Oct 2007 19:59:18 +0000 (19:59 -0000)]
added RCSID

13 years agoadded RCSID
Andreas Steffen [Mon, 8 Oct 2007 19:57:54 +0000 (19:57 -0000)]
added RCSID

13 years agoadded RCSID
Andreas Steffen [Mon, 8 Oct 2007 19:57:37 +0000 (19:57 -0000)]
added RCSID

13 years agoadded RCSID
Andreas Steffen [Mon, 8 Oct 2007 19:52:55 +0000 (19:52 -0000)]
added RCSID

13 years agoadded RCSID
Andreas Steffen [Mon, 8 Oct 2007 19:49:56 +0000 (19:49 -0000)]
added RCSID

13 years agoadded RCSID
Andreas Steffen [Mon, 8 Oct 2007 19:47:03 +0000 (19:47 -0000)]
added RCSID

13 years agoincrease debug level from 1 to 2
Andreas Steffen [Mon, 8 Oct 2007 19:36:42 +0000 (19:36 -0000)]
increase debug level from 1 to 2

13 years agocompleted pkcs7 parsing methods
Andreas Steffen [Sun, 7 Oct 2007 22:11:42 +0000 (22:11 -0000)]
completed pkcs7 parsing methods

13 years agoadded eme_pkcs1_decrypt() method
Andreas Steffen [Sun, 7 Oct 2007 21:43:24 +0000 (21:43 -0000)]
added eme_pkcs1_decrypt() method

13 years agoadded error message in case of incorrect padding
Andreas Steffen [Sun, 7 Oct 2007 21:42:38 +0000 (21:42 -0000)]
added error message in case of incorrect padding

13 years agoadded RCSID
Andreas Steffen [Sun, 7 Oct 2007 21:41:37 +0000 (21:41 -0000)]
added RCSID

13 years agoreplaced strncmp() == 0 by strneq()
Andreas Steffen [Sun, 7 Oct 2007 13:42:43 +0000 (13:42 -0000)]
replaced strncmp() == 0 by strneq()

13 years agoadded strneq(x,y,len) macro
Andreas Steffen [Sun, 7 Oct 2007 13:35:42 +0000 (13:35 -0000)]
added strneq(x,y,len) macro

13 years agocosmetics
Andreas Steffen [Sun, 7 Oct 2007 09:17:59 +0000 (09:17 -0000)]
cosmetics

13 years agouse RCSID
Andreas Steffen [Sat, 6 Oct 2007 21:39:00 +0000 (21:39 -0000)]
use RCSID

13 years agoactivated Id property
Andreas Steffen [Sat, 6 Oct 2007 21:24:50 +0000 (21:24 -0000)]
activated Id property

13 years agoactivated Id property
Andreas Steffen [Sat, 6 Oct 2007 21:20:18 +0000 (21:20 -0000)]
activated Id property

13 years agoactivated Id property
Andreas Steffen [Sat, 6 Oct 2007 21:19:41 +0000 (21:19 -0000)]
activated Id property

13 years agofixed some typos
Martin Willi [Fri, 5 Oct 2007 09:52:23 +0000 (09:52 -0000)]
fixed some typos

13 years agoremoved recursive mutex and __USE_UNIX98, should fix uClibc build
Martin Willi [Fri, 5 Oct 2007 09:47:55 +0000 (09:47 -0000)]
removed recursive mutex and __USE_UNIX98, should fix uClibc build

13 years agofixed bad cast which resulted in a crash on "ipsec update"
Martin Willi [Fri, 5 Oct 2007 09:13:03 +0000 (09:13 -0000)]
fixed bad cast which resulted in a crash on "ipsec update"

13 years agofixed memory leak
Martin Willi [Thu, 4 Oct 2007 15:20:00 +0000 (15:20 -0000)]
fixed memory leak

13 years agoimplemented an optional DH public value test
Martin Willi [Thu, 4 Oct 2007 15:19:24 +0000 (15:19 -0000)]
implemented an optional DH public value test
some other cleanups, using RFC2631 variable names

13 years agocleanups, fixes and simplification of diffie hellman code
Martin Willi [Thu, 4 Oct 2007 12:08:11 +0000 (12:08 -0000)]
cleanups, fixes and simplification of diffie hellman code

13 years agoimplemented enumerator for linked_list
Martin Willi [Thu, 4 Oct 2007 08:40:20 +0000 (08:40 -0000)]
implemented enumerator for linked_list

13 years agomoved enumerator from libappserv to libstrongswan
Martin Willi [Thu, 4 Oct 2007 08:21:53 +0000 (08:21 -0000)]
moved enumerator from libappserv to libstrongswan

13 years agofixed sqlite_backend compilation to respect changes from [3238]
Martin Willi [Thu, 4 Oct 2007 08:18:42 +0000 (08:18 -0000)]
fixed sqlite_backend compilation to respect changes from [3238]

13 years agoversion bump to 4.1.8
Andreas Steffen [Thu, 4 Oct 2007 06:41:45 +0000 (06:41 -0000)]
version bump to 4.1.8

13 years agoadded Andreas Eigenmann and Joel Stillhart to copyright statement 4.1.7
Andreas Steffen [Wed, 3 Oct 2007 21:48:42 +0000 (21:48 -0000)]
added Andreas Eigenmann and Joel Stillhart to copyright statement

13 years agoexperimental P2P-NAT-T for IKEv2 merged back from branch
Tobias Brunner [Wed, 3 Oct 2007 15:10:41 +0000 (15:10 -0000)]
experimental P2P-NAT-T for IKEv2 merged back from branch

13 years agoproper cleanup on error
Martin Willi [Wed, 3 Oct 2007 15:07:46 +0000 (15:07 -0000)]
proper cleanup on error

13 years agomore libstrongswan-like error handling in optionsfrom
Martin Willi [Wed, 3 Oct 2007 15:02:29 +0000 (15:02 -0000)]
more libstrongswan-like error handling in optionsfrom

13 years agoadded inbound and outbound arrows to ESP SPIs
Andreas Steffen [Wed, 3 Oct 2007 10:09:40 +0000 (10:09 -0000)]
added inbound and outbound arrows to ESP SPIs

13 years agoreverted changeset [3215], as we need NULL callback to do asynchronous calls
Martin Willi [Wed, 3 Oct 2007 08:10:03 +0000 (08:10 -0000)]
reverted changeset [3215], as we need NULL callback to do asynchronous calls
  added interface_manager_cb_empty function, which calls synchronous but doesn't do anything

13 years agoselection from multiple PSK in ipsec.secrets
Andreas Steffen [Wed, 3 Oct 2007 06:54:52 +0000 (06:54 -0000)]
selection from multiple PSK in ipsec.secrets

13 years agoreformulation
Andreas Steffen [Wed, 3 Oct 2007 06:52:58 +0000 (06:52 -0000)]
reformulation