strongswan.git
11 years agoadded caption to ipsec.sql file
Andreas Steffen [Tue, 13 May 2008 05:53:21 +0000 (05:53 -0000)]
added caption to ipsec.sql file

11 years agodo-test always downloads ipsec.sql
Andreas Steffen [Tue, 13 May 2008 05:51:12 +0000 (05:51 -0000)]
do-test always downloads ipsec.sql

11 years agoadded empty ipsec.sql file
Andreas Steffen [Tue, 13 May 2008 05:50:23 +0000 (05:50 -0000)]
added empty ipsec.sql file

11 years agodelete both ipsec.db and ipsec.sql in posttest.dat
Andreas Steffen [Mon, 12 May 2008 20:41:12 +0000 (20:41 -0000)]
delete both ipsec.db and ipsec.sql in posttest.dat

11 years agoadded ikev2/ip-pool-db scenario
Andreas Steffen [Mon, 12 May 2008 20:34:38 +0000 (20:34 -0000)]
added ikev2/ip-pool-db scenario

11 years agodo not preserve ownership of copied files
Andreas Steffen [Mon, 12 May 2008 20:06:58 +0000 (20:06 -0000)]
do not preserve ownership of copied files

11 years agoforgot about alphabetical order
Andreas Steffen [Mon, 12 May 2008 12:46:30 +0000 (12:46 -0000)]
forgot about alphabetical order

11 years agoadded description of plutostderrlog parameter to ipsec.conf.5 man page
Andreas Steffen [Mon, 12 May 2008 11:36:59 +0000 (11:36 -0000)]
added description of plutostderrlog parameter to ipsec.conf.5 man page

11 years agoplutostderrlog parameter now declares a stderr redirection file
Andreas Steffen [Mon, 12 May 2008 10:05:49 +0000 (10:05 -0000)]
plutostderrlog parameter now declares a stderr redirection file

11 years agofixed typos
Andreas Steffen [Sun, 11 May 2008 20:36:14 +0000 (20:36 -0000)]
fixed typos

11 years agoincluded pools and leases tables to ipsec.sql database
Andreas Steffen [Sun, 11 May 2008 19:34:33 +0000 (19:34 -0000)]
included pools and leases tables to ipsec.sql database

11 years agoadded missing ipcomp DB type definition
Andreas Steffen [Sun, 11 May 2008 16:41:51 +0000 (16:41 -0000)]
added missing ipcomp DB type definition

11 years agosupport of plutostderrlog keyword
Andreas Steffen [Sun, 11 May 2008 07:59:00 +0000 (07:59 -0000)]
support of plutostderrlog keyword

11 years agoported IP pool to mysql
Martin Willi [Fri, 9 May 2008 15:01:22 +0000 (15:01 -0000)]
ported IP pool to mysql

11 years agousable prototype of "ipsec pool" tool
Martin Willi [Fri, 9 May 2008 12:55:41 +0000 (12:55 -0000)]
usable prototype of "ipsec pool" tool

11 years agosupport for left bounded padding in %H and %D
Martin Willi [Fri, 9 May 2008 12:25:39 +0000 (12:25 -0000)]
support for left bounded padding in %H and %D

11 years agowhitelisted gmtime_r
Martin Willi [Fri, 9 May 2008 12:24:11 +0000 (12:24 -0000)]
whitelisted gmtime_r

11 years agocorrectly reassigning valid leases
Martin Willi [Fri, 9 May 2008 12:22:20 +0000 (12:22 -0000)]
correctly reassigning valid leases

11 years agosupporting width modifier in identification_t printf hook (e.g. %30D)
Martin Willi [Fri, 9 May 2008 11:34:58 +0000 (11:34 -0000)]
supporting width modifier in identification_t printf hook (e.g. %30D)
cleanups in host_t %H printf hook

11 years agofixed interface disconnection
Martin Willi [Fri, 9 May 2008 10:38:18 +0000 (10:38 -0000)]
fixed interface disconnection

11 years agoIPComp for IKEv2
Tobias Brunner [Thu, 8 May 2008 16:19:11 +0000 (16:19 -0000)]
IPComp for IKEv2

11 years agoimplemented append mode for xcbc, testcase
Martin Willi [Thu, 8 May 2008 14:51:37 +0000 (14:51 -0000)]
implemented append mode for xcbc, testcase

11 years agomoved RAW public key support to a separate plugin (pubkey)
Martin Willi [Thu, 8 May 2008 13:16:42 +0000 (13:16 -0000)]
moved RAW public key support to a separate plugin (pubkey)

11 years agofixed compiler warning
Martin Willi [Thu, 8 May 2008 13:12:43 +0000 (13:12 -0000)]
fixed compiler warning

11 years agorenamed PRF_AES128_CBC to PRF_AES128_XCBC
Martin Willi [Thu, 8 May 2008 12:43:27 +0000 (12:43 -0000)]
renamed PRF_AES128_CBC to PRF_AES128_XCBC

11 years agorenamed med_db plugin to medsrv, as we will introduce an additional medcli client...
Martin Willi [Thu, 8 May 2008 12:11:30 +0000 (12:11 -0000)]
renamed med_db plugin to medsrv, as we will introduce an additional medcli client plugin

11 years agoreplaced --with-gid/uid by --with-group/user
Martin Willi [Thu, 8 May 2008 10:58:04 +0000 (10:58 -0000)]
replaced --with-gid/uid by --with-group/user
using named users, groups
fixed capability dropping in pluto

11 years agoadded ip-pool and ip-pool-wish scenarios
Andreas Steffen [Thu, 8 May 2008 09:08:02 +0000 (09:08 -0000)]
added ip-pool and ip-pool-wish scenarios

11 years agocorrected gnome-terminal's --show-menubar option
Andreas Steffen [Thu, 8 May 2008 08:22:07 +0000 (08:22 -0000)]
corrected gnome-terminal's --show-menubar option

11 years agoadded configure check and support for sqlite3 libraries without sqlite3_prepare_v2
Martin Willi [Wed, 7 May 2008 14:41:13 +0000 (14:41 -0000)]
added configure check and support for sqlite3 libraries without sqlite3_prepare_v2

11 years agofixed 3DES encryption
Martin Willi [Wed, 7 May 2008 11:54:30 +0000 (11:54 -0000)]
fixed 3DES encryption

11 years agoprototype of sql pool administration utility
Martin Willi [Wed, 7 May 2008 09:37:08 +0000 (09:37 -0000)]
prototype of sql pool administration utility

11 years agousing capset version 1 if a newer is available
Martin Willi [Wed, 7 May 2008 08:46:37 +0000 (08:46 -0000)]
using capset version 1 if a newer is available

11 years agosupport for @#hex ID_KEY_ID identification_t
Martin Willi [Tue, 6 May 2008 13:45:14 +0000 (13:45 -0000)]
support for @#hex ID_KEY_ID identification_t

11 years agoproviding medation configuration through med_db plugin
Martin Willi [Tue, 6 May 2008 13:44:14 +0000 (13:44 -0000)]
providing medation configuration through med_db plugin

11 years agofixed parsing of openssl format public keys
Martin Willi [Tue, 6 May 2008 12:56:36 +0000 (12:56 -0000)]
fixed parsing of openssl format public keys

11 years agoreturning reference pointer on get_ref()
Martin Willi [Tue, 6 May 2008 10:55:42 +0000 (10:55 -0000)]
returning reference pointer on get_ref()

11 years agoprintf "width" support for hosts (e.g. %15H)
Martin Willi [Mon, 5 May 2008 08:31:43 +0000 (08:31 -0000)]
printf "width" support for hosts (e.g. %15H)

11 years agoresetting old scheduling policy correctly in free() hook
Martin Willi [Mon, 5 May 2008 07:40:21 +0000 (07:40 -0000)]
resetting old scheduling policy correctly in free() hook

11 years agoimplemented XCBC algorithms (signer, prf) for IKE on top of a crypter
Martin Willi [Wed, 30 Apr 2008 14:26:24 +0000 (14:26 -0000)]
implemented XCBC algorithms (signer, prf) for IKE on top of a crypter
supporting ike=...-aesxcbc-... in ipsec.conf
added AUTH_AES_XCBC_96 and PRF_AES128_CBC to default IKE proposal
AES XCBC testcase

11 years agocrypter_t api supports in-place encryption using NULL as output parameter
Martin Willi [Wed, 30 Apr 2008 14:02:25 +0000 (14:02 -0000)]
crypter_t api supports in-place encryption using NULL as output parameter

11 years agosimplified the OpenSSL crypter a bit
Tobias Brunner [Wed, 30 Apr 2008 09:24:22 +0000 (09:24 -0000)]
simplified the OpenSSL crypter a bit

11 years agosimplified the OpenSSL hasher a bit
Tobias Brunner [Wed, 30 Apr 2008 09:23:13 +0000 (09:23 -0000)]
simplified the OpenSSL hasher a bit

11 years agoOpenSSL hasher does not need an internal buffer anymore
Tobias Brunner [Wed, 30 Apr 2008 08:54:36 +0000 (08:54 -0000)]
OpenSSL hasher does not need an internal buffer anymore

11 years agoadding diffie hellman with OpenSSL
Tobias Brunner [Tue, 29 Apr 2008 15:42:34 +0000 (15:42 -0000)]
adding diffie hellman with OpenSSL

11 years agouse SHA-1 as preferred hasher in the OpenSSL plugin
Tobias Brunner [Tue, 29 Apr 2008 09:13:14 +0000 (09:13 -0000)]
use SHA-1 as preferred hasher in the OpenSSL plugin

11 years agoset Id keyword
Andreas Steffen [Mon, 28 Apr 2008 18:44:21 +0000 (18:44 -0000)]
set Id keyword

11 years agoprototype of dumm GUI
Martin Willi [Mon, 28 Apr 2008 16:43:30 +0000 (16:43 -0000)]
prototype of dumm GUI

11 years agocosmetics
Andreas Steffen [Mon, 28 Apr 2008 16:02:53 +0000 (16:02 -0000)]
cosmetics

11 years agointroduced ASN1_EXIT command in ASN.1 object syntax definition
Andreas Steffen [Mon, 28 Apr 2008 16:00:52 +0000 (16:00 -0000)]
introduced ASN1_EXIT command in ASN.1 object syntax definition

11 years agoadded wrapper for OpenSSL hashers
Tobias Brunner [Mon, 28 Apr 2008 15:56:44 +0000 (15:56 -0000)]
added wrapper for OpenSSL hashers

11 years agoalgo lookup corrected
Tobias Brunner [Mon, 28 Apr 2008 15:26:38 +0000 (15:26 -0000)]
algo lookup corrected

11 years agomade algo struct static
Tobias Brunner [Mon, 28 Apr 2008 14:52:58 +0000 (14:52 -0000)]
made algo struct static

11 years agotypos
Tobias Brunner [Mon, 28 Apr 2008 14:32:18 +0000 (14:32 -0000)]
typos

11 years agoadded a wrapper plugin for OpenSSL crypters (AES, 3DES, Blowfish etc.)
Tobias Brunner [Mon, 28 Apr 2008 14:25:19 +0000 (14:25 -0000)]
added a wrapper plugin for OpenSSL crypters (AES, 3DES, Blowfish etc.)

11 years agomade some stuff static
Tobias Brunner [Mon, 28 Apr 2008 14:19:25 +0000 (14:19 -0000)]
made some stuff static

11 years agofixed javascript include using <script> tag
Martin Willi [Mon, 28 Apr 2008 08:52:17 +0000 (08:52 -0000)]
fixed javascript include using <script> tag

11 years agosome scenario fixes
Andreas Steffen [Sun, 27 Apr 2008 14:15:29 +0000 (14:15 -0000)]
some scenario fixes

11 years agoend->srcip string must be removed if it contains %config
Andreas Steffen [Sun, 27 Apr 2008 11:28:58 +0000 (11:28 -0000)]
end->srcip string must be removed if it contains %config

11 years agofixed starter_cmp_end()
Andreas Steffen [Sun, 27 Apr 2008 11:04:13 +0000 (11:04 -0000)]
fixed starter_cmp_end()

11 years agofixed memory corruption problem in starter
Andreas Steffen [Sun, 27 Apr 2008 10:49:31 +0000 (10:49 -0000)]
fixed memory corruption problem in starter

11 years agooptimized parser->success()
Andreas Steffen [Sat, 26 Apr 2008 11:08:36 +0000 (11:08 -0000)]
optimized parser->success()

11 years agoported ASN.1 changes to pkcs7
Andreas Steffen [Sat, 26 Apr 2008 10:20:51 +0000 (10:20 -0000)]
ported ASN.1 changes to pkcs7

11 years agodoxygen fix for fips.h
Andreas Steffen [Sat, 26 Apr 2008 09:40:22 +0000 (09:40 -0000)]
doxygen fix for fips.h

11 years agorefactoring of the ASN.1 parser
Andreas Steffen [Sat, 26 Apr 2008 09:24:14 +0000 (09:24 -0000)]
refactoring of the ASN.1 parser

11 years agosupporting multiple comma seperated subnets in left/rightsubnet definition
Martin Willi [Fri, 25 Apr 2008 12:41:37 +0000 (12:41 -0000)]
supporting multiple comma seperated subnets in left/rightsubnet definition
e.g. leftsubnet=10.2.0.0/16,10.4.0.0/16

11 years agoadded simple Makefile to build scripts
Martin Willi [Fri, 25 Apr 2008 11:18:09 +0000 (11:18 -0000)]
added simple Makefile to build scripts

11 years agoextract_token() now handles whitespace
Andreas Steffen [Fri, 25 Apr 2008 07:04:59 +0000 (07:04 -0000)]
extract_token() now handles whitespace

11 years agochunk_to_hex() adaptations
Andreas Steffen [Fri, 25 Apr 2008 06:39:41 +0000 (06:39 -0000)]
chunk_to_hex() adaptations

11 years agoadded _GNU_SOURCE and limits.h to build against glibc-2.8
Martin Willi [Thu, 24 Apr 2008 13:49:20 +0000 (13:49 -0000)]
added _GNU_SOURCE and limits.h to build against glibc-2.8

11 years agoadded missing base64 chunk test
Martin Willi [Thu, 24 Apr 2008 13:28:18 +0000 (13:28 -0000)]
added missing base64 chunk test

11 years agoreplaced freeswan ttodata by own chunk_{to|from}_{hex|base64} functions
Martin Willi [Thu, 24 Apr 2008 13:26:22 +0000 (13:26 -0000)]
replaced freeswan ttodata by own chunk_{to|from}_{hex|base64} functions

11 years agosome c-libs require _GNU_SOURCE for pthread_rwlock
Martin Willi [Wed, 23 Apr 2008 09:45:02 +0000 (09:45 -0000)]
some c-libs require _GNU_SOURCE for pthread_rwlock

11 years ago'Hash and URL' certificates of research and sales CAs
Andreas Steffen [Tue, 22 Apr 2008 20:36:44 +0000 (20:36 -0000)]
'Hash and URL' certificates of research and sales CAs

11 years agofixed AES-128 test
Martin Willi [Tue, 22 Apr 2008 09:00:27 +0000 (09:00 -0000)]
fixed AES-128 test

11 years agoexperimental Padlock plugin supportin SHA1 and AES-128 for VIA C7 Esther
Martin Willi [Tue, 22 Apr 2008 08:44:56 +0000 (08:44 -0000)]
experimental Padlock plugin supportin SHA1 and AES-128 for VIA C7 Esther

11 years agoadded AES-128 unit test
Martin Willi [Tue, 22 Apr 2008 08:33:55 +0000 (08:33 -0000)]
added AES-128 unit test

11 years agoremoved status result from crypter interface to be consistent with other crypto inter...
Martin Willi [Tue, 22 Apr 2008 07:14:24 +0000 (07:14 -0000)]
removed status result from crypter interface to be consistent with other crypto interfaces

11 years agoproper library initialization for dumm
Martin Willi [Mon, 21 Apr 2008 13:21:21 +0000 (13:21 -0000)]
proper library initialization for dumm

11 years agoversion bump to 4.2.2
Andreas Steffen [Sat, 19 Apr 2008 10:07:32 +0000 (10:07 -0000)]
version bump to 4.2.2

11 years agoedited NEWS 4.2.1
Andreas Steffen [Sat, 19 Apr 2008 09:49:06 +0000 (09:49 -0000)]
edited NEWS

11 years agoupdated testing.conf
Andreas Steffen [Sat, 19 Apr 2008 07:57:24 +0000 (07:57 -0000)]
updated testing.conf

11 years agoadd symbolic link to hash-and-url certs
Andreas Steffen [Sat, 19 Apr 2008 07:48:53 +0000 (07:48 -0000)]
add symbolic link to hash-and-url certs

11 years agofixed iptables/ip6tables switch
Andreas Steffen [Sat, 19 Apr 2008 07:47:00 +0000 (07:47 -0000)]
fixed iptables/ip6tables switch

11 years agoadded hash-and-url certs
Andreas Steffen [Fri, 18 Apr 2008 21:46:26 +0000 (21:46 -0000)]
added hash-and-url certs

11 years agoadded ikev2/rw-hash-and-url scenario
Andreas Steffen [Fri, 18 Apr 2008 21:43:05 +0000 (21:43 -0000)]
added ikev2/rw-hash-and-url scenario

11 years agoupdated NEWS: support of AES_XCBC_MAC and CAMELLIA
Andreas Steffen [Fri, 18 Apr 2008 21:42:31 +0000 (21:42 -0000)]
updated NEWS: support of AES_XCBC_MAC and CAMELLIA

11 years agoHash and URL cosmetics
Andreas Steffen [Fri, 18 Apr 2008 21:27:08 +0000 (21:27 -0000)]
Hash and URL cosmetics

11 years agoadded ikev1/esp-alg-camellia scenario
Andreas Steffen [Fri, 18 Apr 2008 20:02:42 +0000 (20:02 -0000)]
added ikev1/esp-alg-camellia scenario

11 years agofixed cbc(camellia) netlink configuration error
Andreas Steffen [Fri, 18 Apr 2008 20:01:49 +0000 (20:01 -0000)]
fixed cbc(camellia) netlink configuration error

11 years agouse ip xfrm state in crypto evaltests
Andreas Steffen [Fri, 18 Apr 2008 19:07:46 +0000 (19:07 -0000)]
use ip xfrm state in crypto evaltests

11 years agoadded ikev1/esp-alg-aesxcbc scenario
Andreas Steffen [Fri, 18 Apr 2008 19:06:43 +0000 (19:06 -0000)]
added ikev1/esp-alg-aesxcbc scenario

11 years agofixed aes-xcbc netlink configuration error
Andreas Steffen [Fri, 18 Apr 2008 18:37:57 +0000 (18:37 -0000)]
fixed aes-xcbc netlink configuration error

11 years agosupport of AES_XCBC and CAMELLIA ESP cipher by pluto
Andreas Steffen [Fri, 18 Apr 2008 17:01:45 +0000 (17:01 -0000)]
support of AES_XCBC and CAMELLIA ESP cipher by pluto

11 years agofixed AES default key length
Andreas Steffen [Fri, 18 Apr 2008 17:00:30 +0000 (17:00 -0000)]
fixed AES default key length

11 years agoshipping a default strongswan.conf
Martin Willi [Fri, 18 Apr 2008 12:52:47 +0000 (12:52 -0000)]
shipping a default strongswan.conf

11 years agoupdated pfkeyv2.h
Andreas Steffen [Fri, 18 Apr 2008 12:27:50 +0000 (12:27 -0000)]
updated pfkeyv2.h

11 years agosql pool prototype
Martin Willi [Fri, 18 Apr 2008 11:51:58 +0000 (11:51 -0000)]
sql pool prototype

11 years agofunctions invoked on all linked list items now support up to five additional arguments
Tobias Brunner [Fri, 18 Apr 2008 11:48:53 +0000 (11:48 -0000)]
functions invoked on all linked list items now support up to five additional arguments

11 years agonews (hash and url)
Tobias Brunner [Fri, 18 Apr 2008 11:43:20 +0000 (11:43 -0000)]
news (hash and url)