strongswan.git
14 years agoadded nodebug configure script without any debug messages and without -g
Martin Willi [Tue, 31 Oct 2006 12:23:03 +0000 (12:23 -0000)]
added nodebug configure script without any debug messages and without -g

14 years agopreparations to include certreqs in policy decisions
Andreas Steffen [Tue, 31 Oct 2006 07:04:15 +0000 (07:04 -0000)]
preparations to include certreqs in policy decisions

14 years agodo not sent certreq payloads when the peer is known to use PSK
Andreas Steffen [Tue, 31 Oct 2006 06:54:28 +0000 (06:54 -0000)]
do not sent certreq payloads when the peer is known to use PSK

14 years agoposition of (myself) moved in log output
Andreas Steffen [Tue, 31 Oct 2006 06:51:04 +0000 (06:51 -0000)]
position of (myself) moved in log output

14 years agodo not sent certreq payloads when using self-signed certs
Andreas Steffen [Tue, 31 Oct 2006 06:48:34 +0000 (06:48 -0000)]
do not sent certreq payloads when using self-signed certs

14 years agomoved (myself) in log output
Andreas Steffen [Tue, 31 Oct 2006 06:31:21 +0000 (06:31 -0000)]
moved (myself) in log output

14 years agomoved typedefs to beginning of files to solve some include problems
Martin Willi [Mon, 30 Oct 2006 14:07:05 +0000 (14:07 -0000)]
moved typedefs to beginning of files to solve some include problems
splitted authenticator to have a separate implementation for each auth_method_t
using va_copy to clone va_lists, should fix proplems on AMD64
some other cleanups

14 years agodo not sanitize '*' character
Andreas Steffen [Mon, 30 Oct 2006 09:59:23 +0000 (09:59 -0000)]
do not sanitize '*' character

14 years agofixed SIGSEGV when setup of an additional CHILD_SA fails
Martin Willi [Mon, 30 Oct 2006 09:53:54 +0000 (09:53 -0000)]
fixed SIGSEGV when setup of an additional CHILD_SA fails

14 years agoadded IKEv2 clarifications RFC
Martin Willi [Mon, 30 Oct 2006 09:47:37 +0000 (09:47 -0000)]
added IKEv2 clarifications RFC

14 years agochanged debug level of certreq log output
Andreas Steffen [Sun, 29 Oct 2006 09:11:50 +0000 (09:11 -0000)]
changed debug level of certreq log output

14 years agocosmetics in debug output
Andreas Steffen [Sun, 29 Oct 2006 09:10:44 +0000 (09:10 -0000)]
cosmetics in debug output

14 years agosupport of certreq payload in IKE_AUTH messages
Andreas Steffen [Sat, 28 Oct 2006 20:02:26 +0000 (20:02 -0000)]
support of certreq payload in IKE_AUTH messages

14 years agochunk_to_hex() function declaration deleted
Andreas Steffen [Sat, 28 Oct 2006 20:00:56 +0000 (20:00 -0000)]
chunk_to_hex() function declaration deleted

14 years agoadded function certreq_payload_create_from_x509()
Andreas Steffen [Sat, 28 Oct 2006 15:38:15 +0000 (15:38 -0000)]
added function certreq_payload_create_from_x509()

14 years agosend a certreq as initiator if other_ca is set
Andreas Steffen [Sat, 28 Oct 2006 15:37:23 +0000 (15:37 -0000)]
send a certreq as initiator if other_ca is set

14 years agoadded method get_ca_certificate()
Andreas Steffen [Sat, 28 Oct 2006 15:32:30 +0000 (15:32 -0000)]
added method get_ca_certificate()

14 years agoadded methods get_my_ca() and get_other_ca()
Andreas Steffen [Sat, 28 Oct 2006 15:31:42 +0000 (15:31 -0000)]
added methods get_my_ca() and get_other_ca()

14 years agoadded methods get_my_ca() and get_other_ca()
Andreas Steffen [Sat, 28 Oct 2006 15:31:29 +0000 (15:31 -0000)]
added methods get_my_ca() and get_other_ca()

14 years agoadded some missing 'AUD' entries
Andreas Steffen [Sat, 28 Oct 2006 15:24:59 +0000 (15:24 -0000)]
added some missing 'AUD' entries

14 years agocosmetics
Andreas Steffen [Sat, 28 Oct 2006 13:14:42 +0000 (13:14 -0000)]
cosmetics

14 years agocosmetics
Andreas Steffen [Sat, 28 Oct 2006 13:13:40 +0000 (13:13 -0000)]
cosmetics

14 years agochange due to change debug output
Andreas Steffen [Fri, 27 Oct 2006 18:37:50 +0000 (18:37 -0000)]
change due to change debug output

14 years agospaces should not be sanitized
Andreas Steffen [Fri, 27 Oct 2006 18:36:46 +0000 (18:36 -0000)]
spaces should not be sanitized

14 years agofixed due to new logging concept
Andreas Steffen [Fri, 27 Oct 2006 17:54:06 +0000 (17:54 -0000)]
fixed due to new logging concept

14 years agosome improvements in signaling code
Martin Willi [Fri, 27 Oct 2006 10:46:56 +0000 (10:46 -0000)]
some improvements in signaling code

14 years agoinclude only source NATD payloads really needed
Martin Willi [Fri, 27 Oct 2006 10:46:35 +0000 (10:46 -0000)]
include only source NATD payloads really needed

14 years agoupdated for NAT team
Martin Willi [Thu, 26 Oct 2006 11:37:37 +0000 (11:37 -0000)]
updated for NAT team

14 years agoimproved signal handling and emitting
Martin Willi [Thu, 26 Oct 2006 09:46:56 +0000 (09:46 -0000)]
improved signal handling and emitting

14 years agosupport of ModeCfg Push mode
Andreas Steffen [Wed, 25 Oct 2006 08:51:39 +0000 (08:51 -0000)]
support of ModeCfg Push mode

14 years agosupport of mixed RSA/PSK static connections
Andreas Steffen [Wed, 25 Oct 2006 08:51:00 +0000 (08:51 -0000)]
support of mixed RSA/PSK static connections

14 years agosupport of ipsec statusall in state output
Andreas Steffen [Wed, 25 Oct 2006 08:49:57 +0000 (08:49 -0000)]
support of ipsec statusall in state output

14 years agooutput of 'DPD active' in ISAKMP SAs
Andreas Steffen [Wed, 25 Oct 2006 08:49:34 +0000 (08:49 -0000)]
output of 'DPD active' in ISAKMP SAs

14 years agosupport of ipsec statusall in state output
Andreas Steffen [Wed, 25 Oct 2006 08:48:14 +0000 (08:48 -0000)]
support of ipsec statusall in state output

14 years agoadded natip support
Andreas Steffen [Wed, 25 Oct 2006 08:47:02 +0000 (08:47 -0000)]
added natip support

14 years agoadded has_natip flag
Andreas Steffen [Wed, 25 Oct 2006 08:45:23 +0000 (08:45 -0000)]
added has_natip flag

14 years agoadded ModeCfg push policy and states
Andreas Steffen [Wed, 25 Oct 2006 08:44:45 +0000 (08:44 -0000)]
added ModeCfg push policy and states

14 years agoadded ModeCfg push policy and states
Andreas Steffen [Wed, 25 Oct 2006 08:44:19 +0000 (08:44 -0000)]
added ModeCfg push policy and states

14 years agofixed typo in debug statement
Andreas Steffen [Wed, 25 Oct 2006 08:42:16 +0000 (08:42 -0000)]
fixed typo in debug statement

14 years agoredesigned list output format
Andreas Steffen [Wed, 25 Oct 2006 08:41:27 +0000 (08:41 -0000)]
redesigned list output format

14 years agoadded 'modeconfig=pull|push' and 'left|rightnatip' keywords
Andreas Steffen [Wed, 25 Oct 2006 08:40:34 +0000 (08:40 -0000)]
added 'modeconfig=pull|push' and 'left|rightnatip' keywords

14 years agoadded has_natip flag
Andreas Steffen [Wed, 25 Oct 2006 08:39:39 +0000 (08:39 -0000)]
added has_natip flag

14 years agoadded has_natip flag
Andreas Steffen [Wed, 25 Oct 2006 08:38:26 +0000 (08:38 -0000)]
added has_natip flag

14 years agoadded 'exit' statement in listcerts,.. case
Andreas Steffen [Wed, 25 Oct 2006 08:37:57 +0000 (08:37 -0000)]
added 'exit' statement in listcerts,.. case

14 years agofixed two bugs in the time_t and chunk_ct print functions
Andreas Steffen [Wed, 25 Oct 2006 08:36:28 +0000 (08:36 -0000)]
fixed two bugs in the time_t and chunk_ct print functions

14 years agoredesigned format of print function
Andreas Steffen [Wed, 25 Oct 2006 08:35:38 +0000 (08:35 -0000)]
redesigned format of print function

14 years agoreplaced 'times' by 'dates'
Andreas Steffen [Wed, 25 Oct 2006 08:32:32 +0000 (08:32 -0000)]
replaced 'times' by 'dates'

14 years agoadded private flag to asn1_init
Andreas Steffen [Wed, 25 Oct 2006 08:31:15 +0000 (08:31 -0000)]
added private flag to asn1_init

14 years agoadded private flag to asn1_ctx_t
Andreas Steffen [Wed, 25 Oct 2006 08:30:33 +0000 (08:30 -0000)]
added private flag to asn1_ctx_t

14 years agoremoved DES-EDE3-CBC only comment
Andreas Steffen [Wed, 25 Oct 2006 08:26:48 +0000 (08:26 -0000)]
removed DES-EDE3-CBC only comment

14 years agoremoved deprecated iterator methods (has_next & current)
Martin Willi [Tue, 24 Oct 2006 14:20:45 +0000 (14:20 -0000)]
removed deprecated iterator methods (has_next & current)
added iterator hook to manipulate iterator the clean way

14 years agolinked list cleanups
Martin Willi [Tue, 24 Oct 2006 08:46:17 +0000 (08:46 -0000)]
linked list cleanups
added list methods invoke(), destroy_offset(), destroy_function()
simplified list destruction when destroying its items

14 years agoadded verbosity level to stroke
Martin Willi [Tue, 24 Oct 2006 08:44:47 +0000 (08:44 -0000)]
added verbosity level to stroke

14 years agoupgrade to new Gentoo root file system and tcpdump command
Andreas Steffen [Mon, 23 Oct 2006 14:53:09 +0000 (14:53 -0000)]
upgrade to new Gentoo root file system and tcpdump command

14 years agoadded
Andreas Steffen [Mon, 23 Oct 2006 14:52:34 +0000 (14:52 -0000)]
added

14 years agodeleted
Andreas Steffen [Mon, 23 Oct 2006 14:51:30 +0000 (14:51 -0000)]
deleted

14 years agorenamed ikev1 scenario and added ikev2 scenario
Andreas Steffen [Mon, 23 Oct 2006 14:50:32 +0000 (14:50 -0000)]
renamed ikev1 scenario and added ikev2 scenario

14 years agoadded new scenarios
Andreas Steffen [Mon, 23 Oct 2006 14:49:43 +0000 (14:49 -0000)]
added new scenarios

14 years agoVersion bumps of UML kernel, Gentoo root file system and strongSwan release
Andreas Steffen [Mon, 23 Oct 2006 14:48:43 +0000 (14:48 -0000)]
Version bumps of UML kernel, Gentoo root file system and strongSwan release

14 years agocode cleanups in printf handlers
Martin Willi [Fri, 20 Oct 2006 05:57:25 +0000 (05:57 -0000)]
code cleanups in printf handlers

14 years agoadded eap authentication draft for ikev2
Martin Willi [Wed, 18 Oct 2006 11:49:37 +0000 (11:49 -0000)]
added eap authentication draft for ikev2

14 years agoupdated stroke to allow run-time manipulation of debug levels
Martin Willi [Wed, 18 Oct 2006 11:47:26 +0000 (11:47 -0000)]
updated stroke to allow run-time manipulation of debug levels

14 years agoadded charondebug config parameter to set debug level at startup
Martin Willi [Wed, 18 Oct 2006 11:46:57 +0000 (11:46 -0000)]
added charondebug config parameter to set debug level at startup

14 years agointroduced new logging subsystem using bus:
Martin Willi [Wed, 18 Oct 2006 11:46:13 +0000 (11:46 -0000)]
introduced new logging subsystem using bus:
  passive listeners can register on the bus
  active listeners wait for signals actively
  multiplexing allows multiple listeners to receive debug signals
  a lot more...

14 years agoinclude CREDITS file in distribution
Martin Willi [Wed, 18 Oct 2006 11:41:19 +0000 (11:41 -0000)]
include CREDITS file in distribution

14 years agomoved various scripts in scripts/ dir
Martin Willi [Wed, 18 Oct 2006 11:40:53 +0000 (11:40 -0000)]
moved various scripts in scripts/ dir
add configure script wrappers

14 years agoremoved txt files from doxygen
Martin Willi [Wed, 18 Oct 2006 11:39:12 +0000 (11:39 -0000)]
removed txt files from doxygen

14 years agoremoved module tests, outdated. We need something more system-test like
Martin Willi [Wed, 18 Oct 2006 11:38:43 +0000 (11:38 -0000)]
removed module tests, outdated. We need something more system-test like

14 years agoadded missing -DDEBUG compile option
Andreas Steffen [Wed, 18 Oct 2006 08:07:01 +0000 (08:07 -0000)]
added missing -DDEBUG compile option

14 years agofixed auxillary message data parsing for IPV6 socket
Martin Willi [Mon, 9 Oct 2006 12:28:43 +0000 (12:28 -0000)]
fixed auxillary message data parsing for IPV6 socket
using SOL_* constants for socket level

14 years agofixed IPV6_PKTINFO setsockopt() to work with most kernel headers
Martin Willi [Mon, 9 Oct 2006 12:14:56 +0000 (12:14 -0000)]
fixed IPV6_PKTINFO setsockopt() to work with most kernel headers
replaced strerror(errno) with %m printf specifier

14 years agoadded stronger certs for moon, carol, and dave
Andreas Steffen [Mon, 9 Oct 2006 08:25:20 +0000 (08:25 -0000)]
added stronger certs for moon, carol, and dave

14 years agoadded IPv6 hw and multicast addresses
Andreas Steffen [Mon, 9 Oct 2006 08:24:49 +0000 (08:24 -0000)]
added IPv6 hw and multicast addresses

14 years agoadapted to new tcpdump ipv6 output
Andreas Steffen [Mon, 9 Oct 2006 08:23:38 +0000 (08:23 -0000)]
adapted to new tcpdump ipv6 output

14 years agomulti-level-ca scenarios use unencrypted private key
Andreas Steffen [Mon, 9 Oct 2006 08:23:11 +0000 (08:23 -0000)]
multi-level-ca scenarios use unencrypted private key

14 years agoadded scenario
Andreas Steffen [Mon, 9 Oct 2006 08:20:01 +0000 (08:20 -0000)]
added scenario

14 years agofixed timing
Andreas Steffen [Fri, 6 Oct 2006 07:57:25 +0000 (07:57 -0000)]
fixed timing

14 years agonew gentoo root file system
Andreas Steffen [Fri, 6 Oct 2006 07:54:07 +0000 (07:54 -0000)]
new gentoo root file system

14 years agofixed bug with openldap 2.3
Andreas Steffen [Fri, 6 Oct 2006 07:48:24 +0000 (07:48 -0000)]
fixed bug with openldap 2.3

14 years agoremoved ipsec.conf version information
Andreas Steffen [Fri, 6 Oct 2006 07:47:11 +0000 (07:47 -0000)]
removed ipsec.conf version information

14 years agocarolKey.pem is now protected by 3DES passphrase
Andreas Steffen [Fri, 6 Oct 2006 07:45:42 +0000 (07:45 -0000)]
carolKey.pem is now protected by 3DES passphrase

14 years agoupdated net runlevel scripts
Andreas Steffen [Fri, 6 Oct 2006 07:43:31 +0000 (07:43 -0000)]
updated net runlevel scripts

14 years agoupdated net init scripts
Andreas Steffen [Fri, 6 Oct 2006 07:42:17 +0000 (07:42 -0000)]
updated net init scripts

14 years agonew net configuration format
Andreas Steffen [Fri, 6 Oct 2006 07:40:39 +0000 (07:40 -0000)]
new net configuration format

14 years agoHW addresses must be predefined
Andreas Steffen [Fri, 6 Oct 2006 07:32:02 +0000 (07:32 -0000)]
HW addresses must be predefined

14 years agocosmetics
Andreas Steffen [Fri, 6 Oct 2006 07:24:41 +0000 (07:24 -0000)]
cosmetics

14 years agoadded USE_LIBCURL
Andreas Steffen [Fri, 6 Oct 2006 07:24:05 +0000 (07:24 -0000)]
added USE_LIBCURL

14 years agocosmetics
Andreas Steffen [Fri, 6 Oct 2006 07:23:39 +0000 (07:23 -0000)]
cosmetics

14 years agofound libraries are not appended to LIBS anymore
Andreas Steffen [Fri, 6 Oct 2006 07:22:38 +0000 (07:22 -0000)]
found libraries are not appended to LIBS anymore

14 years agoversion bump to 4.0.5
Andreas Steffen [Tue, 3 Oct 2006 06:52:31 +0000 (06:52 -0000)]
version bump to 4.0.5

14 years agofixed DPD to survive IKE_SA rekeying
Martin Willi [Thu, 28 Sep 2006 06:57:46 +0000 (06:57 -0000)]
fixed DPD to survive IKE_SA rekeying

14 years ago(no commit message)
Martin Willi [Wed, 27 Sep 2006 14:15:49 +0000 (14:15 -0000)]

14 years agointroduced printf() specifiers for:
Martin Willi [Wed, 27 Sep 2006 14:14:44 +0000 (14:14 -0000)]
introduced printf() specifiers for:
  host_t (%H)
  identification_t (%D)
  chunk pointers (%B)
  memory pointer/length (%b)
added a signaling bus:
  receives event and debug messages, sends them to its listeners
  stream_logger, sys_logger, file_logger added, listen to bus
some other tweaks here and there

14 years agoadded often used RFCs and drafts
Martin Willi [Wed, 27 Sep 2006 14:10:32 +0000 (14:10 -0000)]
added often used RFCs and drafts

14 years agoDES for private key encryption is not supported
Andreas Steffen [Mon, 25 Sep 2006 07:31:02 +0000 (07:31 -0000)]
DES for private key encryption is not supported

14 years agoupdated NEWS and ChangeLog for 4.0.4 release
Martin Willi [Mon, 25 Sep 2006 07:26:16 +0000 (07:26 -0000)]
updated NEWS and ChangeLog for 4.0.4 release

14 years agofixed retransmission policy for responder
Martin Willi [Mon, 25 Sep 2006 07:24:08 +0000 (07:24 -0000)]
fixed retransmission policy for responder

14 years agofixed dpd for responder
Martin Willi [Mon, 25 Sep 2006 06:38:58 +0000 (06:38 -0000)]
fixed dpd for responder

14 years agoadded ID_ANY check to matches_binary()
Andreas Steffen [Mon, 25 Sep 2006 06:19:40 +0000 (06:19 -0000)]
added ID_ANY check to matches_binary()

14 years agoreplaced 'missing value' warning by zero length chunk_t value
Andreas Steffen [Mon, 25 Sep 2006 06:18:45 +0000 (06:18 -0000)]
replaced 'missing value' warning by zero length chunk_t value