strongswan.git
10 years agostart and stop apache server on dave
Andreas Steffen [Mon, 4 Jul 2011 20:40:46 +0000 (22:40 +0200)]
start and stop apache server on dave

10 years agoadded ITA Scanner IMC/IMV pair to tnccs-11-radius-block scenario
Andreas Steffen [Mon, 4 Jul 2011 20:32:34 +0000 (22:32 +0200)]
added ITA Scanner IMC/IMV pair to tnccs-11-radius-block scenario

10 years agofixed debug statement
Andreas Steffen [Mon, 4 Jul 2011 20:27:46 +0000 (22:27 +0200)]
fixed debug statement

10 years agoadded ITA Scanner IMC/IMV pair to tnccs-20 and tnccs-20-block scenarios
Andreas Steffen [Mon, 4 Jul 2011 19:44:22 +0000 (21:44 +0200)]
added ITA Scanner IMC/IMV pair to tnccs-20 and tnccs-20-block scenarios

10 years agoadded ITA Scanner IMC/IMV pair which detects open server ports on TNC clients
Andreas Steffen [Mon, 4 Jul 2011 19:40:25 +0000 (21:40 +0200)]
added ITA Scanner IMC/IMV pair which detects open server ports on TNC clients

10 years agoadded support if the IETF port filter attribute
Andreas Steffen [Fri, 1 Jul 2011 16:10:33 +0000 (18:10 +0200)]
added support if the IETF port filter attribute

10 years agoagain a bitwise or is required
Andreas Steffen [Thu, 30 Jun 2011 20:26:36 +0000 (22:26 +0200)]
again a bitwise or is required

10 years agoversion bump to 4.5.3dr7
Andreas Steffen [Wed, 29 Jun 2011 14:51:33 +0000 (16:51 +0200)]
version bump to 4.5.3dr7

10 years agofixed sql/shunt-policies scenario
Andreas Steffen [Wed, 29 Jun 2011 06:23:58 +0000 (08:23 +0200)]
fixed sql/shunt-policies scenario

10 years agoimplemented PASS and DROP shunt policies
Andreas Steffen [Tue, 28 Jun 2011 17:42:54 +0000 (19:42 +0200)]
implemented PASS and DROP shunt policies

10 years agoInitialize trap_manager listener with INIT macro, too
Martin Willi [Tue, 28 Jun 2011 15:19:20 +0000 (17:19 +0200)]
Initialize trap_manager listener with INIT macro, too

10 years agoMigrated trap_manager_t to INIT/METHOD macros
Andreas Steffen [Tue, 28 Jun 2011 12:42:29 +0000 (14:42 +0200)]
Migrated trap_manager_t to INIT/METHOD macros

10 years agoversion bump to 4.5.3dr6
Andreas Steffen [Mon, 27 Jun 2011 20:35:20 +0000 (22:35 +0200)]
version bump to 4.5.3dr6

10 years agooops, should have been a bitwise and
Andreas Steffen [Sat, 25 Jun 2011 12:57:49 +0000 (14:57 +0200)]
oops, should have been a bitwise and

10 years agofixed copy-and-paste error
Andreas Steffen [Sat, 25 Jun 2011 12:21:20 +0000 (14:21 +0200)]
fixed copy-and-paste error

10 years agooutput all known PA-TNC subtype names
Andreas Steffen [Fri, 24 Jun 2011 15:31:47 +0000 (17:31 +0200)]
output all known PA-TNC subtype names

10 years agoadded tnc/tnccs-20-server-retry scenario
Andreas Steffen [Thu, 23 Jun 2011 17:59:27 +0000 (19:59 +0200)]
added tnc/tnccs-20-server-retry scenario

10 years agorenamed tncss-20-retry scenario to tnccs-20-client-retry
Andreas Steffen [Thu, 23 Jun 2011 17:59:00 +0000 (19:59 +0200)]
renamed tncss-20-retry scenario to tnccs-20-client-retry

10 years agorefactoring of change_state()
Andreas Steffen [Thu, 23 Jun 2011 17:52:30 +0000 (19:52 +0200)]
refactoring of change_state()

10 years agoimplemented server-initiated handshake retry in IMC/IMV Test pair
Andreas Steffen [Thu, 23 Jun 2011 13:23:53 +0000 (15:23 +0200)]
implemented server-initiated handshake retry in IMC/IMV Test pair

10 years agonotify IMVs about handshake retries
Andreas Steffen [Thu, 23 Jun 2011 13:22:41 +0000 (15:22 +0200)]
notify IMVs about handshake retries

10 years agoversion bump to 4.5.3dr5
Andreas Steffen [Sun, 19 Jun 2011 21:27:43 +0000 (23:27 +0200)]
version bump to 4.5.3dr5

10 years agoadded libimcv options to strongswan.conf
Andreas Steffen [Sat, 18 Jun 2011 12:08:37 +0000 (14:08 +0200)]
added libimcv options to strongswan.conf

10 years agosome cosmetics
Andreas Steffen [Thu, 16 Jun 2011 09:34:52 +0000 (11:34 +0200)]
some cosmetics

10 years agofixed XML parsing of TNCCS 1.1 ReasonString message
Andreas Steffen [Thu, 16 Jun 2011 09:30:38 +0000 (11:30 +0200)]
fixed XML parsing of TNCCS 1.1 ReasonString message

10 years agorestablish the lost links to the TNC@FHH project
Andreas Steffen [Wed, 15 Jun 2011 12:16:58 +0000 (14:16 +0200)]
restablish the lost links to the TNC@FHH project

10 years agofixed some descriptions
Andreas Steffen [Wed, 15 Jun 2011 12:07:16 +0000 (14:07 +0200)]
fixed some descriptions

10 years agoadded the tnc/tnccs-20-retry scenario
Andreas Steffen [Wed, 15 Jun 2011 12:06:48 +0000 (14:06 +0200)]
added the tnc/tnccs-20-retry scenario

10 years agoclear reason strings after delivering them
Andreas Steffen [Wed, 15 Jun 2011 11:53:53 +0000 (13:53 +0200)]
clear reason strings after delivering them

10 years agoimplemented handshake retry on the client side
Andreas Steffen [Wed, 15 Jun 2011 11:09:19 +0000 (13:09 +0200)]
implemented handshake retry on the client side

10 years agoWe actually need to link against libz, as neo libraries are often static
Martin Willi [Wed, 15 Jun 2011 10:23:21 +0000 (12:23 +0200)]
We actually need to link against libz, as neo libraries are often static

This reverts commit 3c0630a797a18ad353167e56feb21476b4553834.

10 years agoSet cookies for the complete domain
Martin Willi [Wed, 15 Jun 2011 10:22:41 +0000 (12:22 +0200)]
Set cookies for the complete domain

10 years agoMigrated libfast to INIT/METHOD macros
Martin Willi [Wed, 15 Jun 2011 09:25:53 +0000 (11:25 +0200)]
Migrated libfast to INIT/METHOD macros

10 years agoadded missing single quotes
Andreas Steffen [Tue, 14 Jun 2011 15:26:54 +0000 (17:26 +0200)]
added missing single quotes

10 years agofixed the IF-TNCCS 1.1 ReasonString XML encoding
Andreas Steffen [Tue, 14 Jun 2011 13:58:03 +0000 (15:58 +0200)]
fixed the IF-TNCCS 1.1 ReasonString XML encoding

10 years agosend a reason string only if action recommendation is not allow
Andreas Steffen [Tue, 14 Jun 2011 13:45:34 +0000 (15:45 +0200)]
send a reason string only if action recommendation is not allow

10 years agocosmetics
Andreas Steffen [Tue, 14 Jun 2011 12:26:05 +0000 (14:26 +0200)]
cosmetics

10 years agoeat trailing space in preferred language string
Andreas Steffen [Mon, 13 Jun 2011 21:01:28 +0000 (23:01 +0200)]
eat trailing space in preferred language string

10 years agosupport multiple language preferences
Andreas Steffen [Mon, 13 Jun 2011 13:58:27 +0000 (15:58 +0200)]
support multiple language preferences

10 years agoimplemented sending of reason strings
Andreas Steffen [Mon, 13 Jun 2011 13:31:34 +0000 (15:31 +0200)]
implemented sending of reason strings

10 years agoadded missing single quotes
Andreas Steffen [Mon, 13 Jun 2011 13:29:43 +0000 (15:29 +0200)]
added missing single quotes

10 years agofixed length check
Andreas Steffen [Sun, 12 Jun 2011 19:49:53 +0000 (21:49 +0200)]
fixed length check

10 years agoversion bump to 4.5.3dr4
Andreas Steffen [Fri, 10 Jun 2011 05:45:40 +0000 (07:45 +0200)]
version bump to 4.5.3dr4

10 years agounfinished MS SoH Request
Andreas Steffen [Thu, 9 Jun 2011 06:56:45 +0000 (08:56 +0200)]
unfinished MS SoH Request

10 years agoCOPYING updated to the most current version (address was incorrect).
Tobias Brunner [Wed, 8 Jun 2011 14:32:30 +0000 (16:32 +0200)]
COPYING updated to the most current version (address was incorrect).

10 years agoFix integrity checks with monolithic build.
Tobias Brunner [Wed, 8 Jun 2011 13:46:07 +0000 (15:46 +0200)]
Fix integrity checks with monolithic build.

10 years agoPrevent deadlock while shutting down thread pool.
Tobias Brunner [Wed, 8 Jun 2011 08:52:05 +0000 (10:52 +0200)]
Prevent deadlock while shutting down thread pool.

During destruction the main thread locks the mutex in processor_t and
waits on a condvar for threads to have terminated.  Because the mutex
has also to be locked to decrement the thread count the condvar cannot
be signaled before doing that as otherwise the main thread might already
be waiting to join the threads while locking the mutex and thus causing
a deadlock.

10 years agoProperly print time differences.
Tobias Brunner [Tue, 7 Jun 2011 15:16:01 +0000 (17:16 +0200)]
Properly print time differences.

time_t is not necessarily of type int.

10 years agoUse proper printf specifiers to print u_int64_t and uintptr_t.
Tobias Brunner [Tue, 7 Jun 2011 15:13:48 +0000 (17:13 +0200)]
Use proper printf specifiers to print u_int64_t and uintptr_t.

10 years agoFix compilation with GCC 4.6.
Laurent Bigonville [Tue, 7 Jun 2011 13:45:18 +0000 (15:45 +0200)]
Fix compilation with GCC 4.6.

10 years agoexplicitly activate use of TNC headers
Andreas Steffen [Tue, 7 Jun 2011 10:19:23 +0000 (12:19 +0200)]
explicitly activate use of TNC headers

10 years agoAdded documentation and NEWS for closeaction
Martin Willi [Tue, 7 Jun 2011 10:03:45 +0000 (12:03 +0200)]
Added documentation and NEWS for closeaction

10 years agoAdd a closeaction ipsec.conf keyword to configure close action
Martin Willi [Tue, 7 Jun 2011 09:37:15 +0000 (11:37 +0200)]
Add a closeaction ipsec.conf keyword to configure close action

10 years agoseparated tncif_names from standard TCG TNC header files
Andreas Steffen [Mon, 6 Jun 2011 18:36:58 +0000 (20:36 +0200)]
separated tncif_names from standard TCG TNC header files

10 years agonearly completed PA-TNC error handling
Andreas Steffen [Sun, 5 Jun 2011 21:24:48 +0000 (23:24 +0200)]
nearly completed PA-TNC error handling

10 years agoshow PB-PA message type/subtype
Andreas Steffen [Sun, 5 Jun 2011 13:46:01 +0000 (15:46 +0200)]
show PB-PA message type/subtype

10 years agocosmetics
Andreas Steffen [Sun, 5 Jun 2011 13:06:55 +0000 (15:06 +0200)]
cosmetics

10 years agoversion bump to 4.5.3dr3
Andreas Steffen [Sun, 5 Jun 2011 12:55:18 +0000 (14:55 +0200)]
version bump to 4.5.3dr3

10 years agoenum names for ietf_attr_t
Andreas Steffen [Sun, 5 Jun 2011 12:17:47 +0000 (14:17 +0200)]
enum names for ietf_attr_t

10 years agomap action recommendation codes to PB access recommendation codes
Andreas Steffen [Sun, 5 Jun 2011 10:27:20 +0000 (12:27 +0200)]
map action recommendation codes to PB access recommendation codes

10 years agoadded a reference count for PA-TNC attributes
Andreas Steffen [Fri, 3 Jun 2011 14:39:27 +0000 (16:39 +0200)]
added a reference count for PA-TNC attributes

10 years agoCheck if colliding task has actually a CHILD, i.e. after a migrate
Martin Willi [Wed, 1 Jun 2011 13:57:29 +0000 (13:57 +0000)]
Check if colliding task has actually a CHILD, i.e. after a migrate

10 years agoFix alignement compiler warning
Martin Willi [Wed, 1 Jun 2011 12:12:35 +0000 (14:12 +0200)]
Fix alignement compiler warning

10 years agolink to the TNC@FHH project
Andreas Steffen [Fri, 3 Jun 2011 06:36:57 +0000 (08:36 +0200)]
link to the TNC@FHH project

10 years agofixed sleep command in ikev1/esp-ah-tunnel scenario
Andreas Steffen [Fri, 3 Jun 2011 05:05:43 +0000 (07:05 +0200)]
fixed sleep command in ikev1/esp-ah-tunnel scenario

10 years agoactive and passive IKEv2 hosts changed again
Andreas Steffen [Thu, 2 Jun 2011 23:47:25 +0000 (01:47 +0200)]
active and passive IKEv2 hosts changed again

10 years agomoved TNC scenarios to tnc folder
Andreas Steffen [Thu, 2 Jun 2011 22:47:20 +0000 (00:47 +0200)]
moved TNC scenarios to tnc folder

10 years agocorrectly destroy the hosts
Andreas Steffen [Thu, 2 Jun 2011 22:43:47 +0000 (00:43 +0200)]
correctly destroy the hosts

10 years agofixed subnet to string conversion by using ts_to_subnet()
Andreas Steffen [Thu, 2 Jun 2011 22:26:39 +0000 (00:26 +0200)]
fixed subnet to string conversion by using ts_to_subnet()

10 years agofixed IP range to subnet conversion in ts_to_subnet()
Andreas Steffen [Thu, 2 Jun 2011 22:19:22 +0000 (00:19 +0200)]
fixed IP range to subnet conversion in ts_to_subnet()

10 years agoikev2/rw-eap-tnc-11-radius scenario now uses a PA-TNC IMC/IMV pair
Andreas Steffen [Thu, 2 Jun 2011 10:36:27 +0000 (12:36 +0200)]
ikev2/rw-eap-tnc-11-radius scenario now uses a PA-TNC IMC/IMV pair

10 years agostreamlined libimcv debug output
Andreas Steffen [Thu, 2 Jun 2011 10:19:03 +0000 (12:19 +0200)]
streamlined libimcv debug output

10 years agoset configuration of imv_test with each TNC handshake
Andreas Steffen [Thu, 2 Jun 2011 09:37:27 +0000 (11:37 +0200)]
set configuration of imv_test with each TNC handshake

10 years agoconfigure IMC/IMV pairs as libimcv plugins
Andreas Steffen [Thu, 2 Jun 2011 08:24:31 +0000 (10:24 +0200)]
configure IMC/IMV pairs as libimcv plugins

10 years agoconfigure libimcv debug output via strongswan.conf
Andreas Steffen [Thu, 2 Jun 2011 07:59:46 +0000 (09:59 +0200)]
configure libimcv debug output via strongswan.conf

10 years agodisable leak_detective in ikev2/rw-eap-tnc-11-radius scenario
Andreas Steffen [Wed, 1 Jun 2011 20:17:32 +0000 (22:17 +0200)]
disable leak_detective in ikev2/rw-eap-tnc-11-radius scenario

10 years agooutput strongswan.conf and daemon.log on RADIUS hosts with strongSwan IMV
Andreas Steffen [Wed, 1 Jun 2011 19:38:03 +0000 (21:38 +0200)]
output strongswan.conf and daemon.log on RADIUS hosts with strongSwan IMV

10 years agoinitialize libstrongswan in dynamic stand-alone libimcv-based libraries
Andreas Steffen [Wed, 1 Jun 2011 18:59:25 +0000 (20:59 +0200)]
initialize libstrongswan in dynamic stand-alone libimcv-based libraries

10 years agostarted error handling of PA-TNC protocol
Andreas Steffen [Wed, 1 Jun 2011 14:33:09 +0000 (16:33 +0200)]
started error handling of PA-TNC protocol

10 years agomake IMC/IMV pairs independent of libcharon
Andreas Steffen [Wed, 1 Jun 2011 14:32:01 +0000 (16:32 +0200)]
make IMC/IMV pairs independent of libcharon

10 years agoLoad af-alg with higher priority
Martin Willi [Tue, 31 May 2011 11:58:55 +0000 (13:58 +0200)]
Load af-alg with higher priority

10 years agoProvide recursive mutex' just in case the PKCS#11 library requires it
Martin Willi [Fri, 27 May 2011 14:07:58 +0000 (16:07 +0200)]
Provide recursive mutex' just in case the PKCS#11 library requires it

10 years agolibfast does not depend on zlib directly, clearsilver can be built without compressio...
Martin Willi [Fri, 27 May 2011 13:58:35 +0000 (15:58 +0200)]
libfast does not depend on zlib directly, clearsilver can be built without compression support

10 years agoInclude m4/config directory in git, supporting autoregen -i of a fresh clone
Martin Willi [Fri, 27 May 2011 13:14:23 +0000 (15:14 +0200)]
Include m4/config directory in git, supporting autoregen -i of a fresh clone

10 years agodo not checksum IMC/IMV plugins
Andreas Steffen [Wed, 1 Jun 2011 07:22:12 +0000 (09:22 +0200)]
do not checksum IMC/IMV plugins

10 years agofixed location of imc_test/imv_test Makefiles
Andreas Steffen [Wed, 1 Jun 2011 06:02:16 +0000 (08:02 +0200)]
fixed location of imc_test/imv_test Makefiles

10 years agomoved imc_test/imv_test plugins to libimcv
Andreas Steffen [Wed, 1 Jun 2011 05:54:14 +0000 (07:54 +0200)]
moved imc_test/imv_test plugins to libimcv

10 years agoFix initialization of NM plugin
Martin Willi [Tue, 31 May 2011 16:12:56 +0000 (18:12 +0200)]
Fix initialization of NM plugin

10 years agorenamed tls_reader|writer to bio_* and moved to libstrongswan
Andreas Steffen [Tue, 31 May 2011 13:46:30 +0000 (15:46 +0200)]
renamed tls_reader|writer to bio_* and moved to libstrongswan

10 years agoremoved unused files
Andreas Steffen [Tue, 31 May 2011 12:36:56 +0000 (14:36 +0200)]
removed unused files

10 years agoremoved unused variables
Andreas Steffen [Tue, 31 May 2011 12:34:32 +0000 (14:34 +0200)]
removed unused variables

10 years agofixed type
Andreas Steffen [Tue, 31 May 2011 12:33:27 +0000 (14:33 +0200)]
fixed type

10 years agoDefault value for keyingtries documented properly.
Tobias Brunner [Tue, 31 May 2011 07:02:23 +0000 (09:02 +0200)]
Default value for keyingtries documented properly.

10 years agoversion bump to 4.5.3dr2
Andreas Steffen [Tue, 31 May 2011 04:22:42 +0000 (06:22 +0200)]
version bump to 4.5.3dr2

10 years agocorrected debug class to IMV
Andreas Steffen [Mon, 30 May 2011 21:08:16 +0000 (23:08 +0200)]
corrected debug class to IMV

10 years agore-established a deleted colon character
Andreas Steffen [Mon, 30 May 2011 20:48:53 +0000 (22:48 +0200)]
re-established a deleted colon character

10 years agocleaned up the rw-eap-tnc-20 and rw-eap-tnc-20-fhh scenarios
Andreas Steffen [Mon, 30 May 2011 19:46:45 +0000 (21:46 +0200)]
cleaned up the rw-eap-tnc-20 and rw-eap-tnc-20-fhh scenarios

10 years agoadded the ikev2/rw-eap-tnc-20 scenario based on the RFC 5792 PA-TNC protocol
Andreas Steffen [Mon, 30 May 2011 19:31:50 +0000 (21:31 +0200)]
added the ikev2/rw-eap-tnc-20 scenario based on the RFC 5792 PA-TNC protocol

10 years agoimplemented the RFC 5792 PA-TNC protocol and an example IMC/IMV pair
Andreas Steffen [Mon, 30 May 2011 19:30:09 +0000 (21:30 +0200)]
implemented the RFC 5792 PA-TNC protocol and an example IMC/IMV pair

10 years agorenamed ikev2/rw-eap-tnc-20 scenario to rw-eap-tnc-20-fhh
Andreas Steffen [Mon, 30 May 2011 19:28:07 +0000 (21:28 +0200)]
renamed ikev2/rw-eap-tnc-20 scenario to rw-eap-tnc-20-fhh