Martin Willi
007c47088c
Implemented permanent certificate coupling plugin
2011-02-28 16:39:40 +01:00
Martin Willi
0d6d992589
Update duplicheck entry during IKE rekeying
2011-02-28 15:37:18 +00:00
Martin Willi
b85be69079
Remove entry from active duplicate list only if it was not in checking
2011-02-28 15:37:18 +00:00
Martin Willi
ee0f53e189
Added an example application listening to duplicheck notifications
2011-02-28 15:37:18 +00:00
Martin Willi
3883150779
Notify duplicate detections over a UNIX sockets to listening applications
2011-02-28 15:37:18 +00:00
Martin Willi
3e74ebbecc
Added an advanced duplicate checking plugin with liveness check of old SA
2011-02-28 15:37:18 +00:00
Martin Willi
8ce567e69e
Invert check to delete unestablished IKE_SAs to not delete them once established
2011-02-28 15:37:17 +00:00
Martin Willi
320e98c2ac
Added whitelist plugin NEWS
2011-02-28 15:00:46 +01:00
Martin Willi
c893bf7e5c
Added a whitelist command line utility to control whitelist plugin
2011-02-28 15:00:46 +01:00
Martin Willi
53f2a7c712
Added a UNIX socket based control backend to whitelist plugin
2011-02-28 15:00:46 +01:00
Martin Willi
5e603aba4e
Implemented a in-memory peer identity whitelist plugin
2011-02-28 15:00:46 +01:00
Tobias Brunner
dcab9d39a2
Fixed a possible segfault after termination of IKE and child SAs.
...
Because the thread that is actually terminating the SA and thus checking
it in again is not be the same thread that previously checked it out and
queued the termination job, the thread local SA on the bus has to be reset
manually, similar to how it is set in the job which is executing the job.
2011-02-28 13:29:09 +01:00
Martin Willi
e44ebdcfc8
Slightly change IKE_SA destruction order to inherit properly during ike_rekey task destruction
2011-02-28 10:31:36 +00:00
Martin Willi
d17304cd29
Added a pseudo EAP type to allow an implementation to select the real type dynamically
2011-02-22 16:09:45 +01:00
Andreas Steffen
1a9f2443a2
prevent multiple debug outputs in case of non-monolithic plugins
2011-02-20 15:18:36 +01:00
Martin Willi
07bda3feea
Whitelisted another tzset variant and dlsym
2011-02-18 16:08:01 +01:00
Martin Willi
e131f11779
Migrated kernel_pfroute_net to INIT/METHOD macros
2011-02-17 09:39:25 +00:00
Martin Willi
887abfb1e7
Migrated kernel_netlink_net to INIT/METHOD macros
2011-02-17 09:34:53 +00:00
Tobias Brunner
be8d5c08fb
maemo: New upstream release.
2011-02-15 10:43:19 +01:00
Andreas Steffen
e7d60a9a06
version bump to 4.5.2dr1
2011-02-11 07:46:23 +01:00
Tobias Brunner
068b9c0b76
maemo: Disabled some unneeded plugins.
2011-02-10 16:51:35 +01:00
Tobias Brunner
6302f49754
Merged the monolithic and non-monolithic plugin loaders into one.
...
This allows to add additional plugins even when the original build was
monolithic. Also fixes the pluto/xauth bug with the monolithic build.
2011-02-10 16:49:42 +01:00
Tobias Brunner
c38877b395
pluto: Properly free secrets in error cases.
2011-02-10 16:49:42 +01:00
Tobias Brunner
e185d78fc9
Kernel interface updated for KLIPS plugin (TFC padding).
2011-02-10 16:49:42 +01:00
Tobias Brunner
35fe7f8cbd
Compiler warning fixed.
2011-02-10 16:49:42 +01:00
Andreas Steffen
d390b3b901
[hopefully] fixed pathlen problem on ARM platforms
2011-02-10 15:51:18 +01:00
Tobias Brunner
afddd6a7e8
maemo: Typos in description fixed.
2011-02-10 10:17:46 +01:00
Tobias Brunner
bcf34c20d5
maemo: Homepage added to debian/control files.
2011-02-10 10:17:46 +01:00
Andreas Steffen
76c8b190f8
removed ipsec up %startall from scenario descriptions
2011-02-10 10:03:59 +01:00
Andreas Steffen
3cd805a115
Migrated update_sa_job_t to INIT/METHOD macros
2011-02-10 08:31:46 +01:00
Andreas Steffen
51d6a0d44a
Migrated send_keepalive_job_t to INIT/METHOD macros
2011-02-10 08:28:19 +01:00
Andreas Steffen
bcf071d9d5
Migrated send_dpd_job_t to INIT/METHOD macros
2011-02-10 08:25:41 +01:00
Andreas Steffen
e76d12bb9e
Migrated roam_job_t to INIT/METHOD macros
2011-02-10 08:22:57 +01:00
Andreas Steffen
ac226a1a60
Migrated retransmit_job_t to INIT/METHOD macros
2011-02-10 08:19:47 +01:00
Andreas Steffen
84e8fa47dc
Migrated rekey_ike_sa_job_t to INIT/METHOD macros
2011-02-10 08:16:23 +01:00
Andreas Steffen
44836c50ff
Migrated rekey_child_sa_job_t to INIT/METHOD macros
2011-02-10 08:13:01 +01:00
Andreas Steffen
76331a6493
Migrated process_message_job_t to INIT/METHOD macros
2011-02-10 08:09:36 +01:00
Andreas Steffen
8125dcca59
Migrated migrate_job_t to INIT/METHOD macros
2011-02-10 08:06:06 +01:00
Andreas Steffen
43c4a21bd9
_ prefix not required
2011-02-10 07:59:43 +01:00
Andreas Steffen
fc83263403
Migrated delete_ike_sa_job_t to INIT/METHOD macros
2011-02-10 07:56:53 +01:00
Andreas Steffen
1328423985
Migrated delete_child_sa_job_t to INIT/METHOD macros
2011-02-10 07:53:34 +01:00
Andreas Steffen
be02b8a094
Migrated acquire_job_t to INIT/METHOD macros
2011-02-10 07:49:05 +01:00
Andreas Steffen
f04d1c2dfe
replaced ipsec up %startall command by start_action job
2011-02-09 22:27:04 +01:00
Andreas Steffen
5ca559cfce
version bump to 4.5.1
2011-02-09 20:40:32 +01:00
Andreas Steffen
2ecafc7316
added openssl-ikev2/critical-extension scenario
2011-02-08 22:58:31 +01:00
Tobias Brunner
32c19f1fe2
maemo: Exclude static libraries from strongswan-applet package.
2011-02-08 16:18:50 +01:00
Tobias Brunner
8486783594
maemo: Use automatic optification.
2011-02-08 15:19:15 +01:00
Tobias Brunner
bcc4eb6ac2
maemo: Explicitly list the installed files.
...
This avoids packaging static libraries and .la files plus excludes man3
pages of libfreeswan.
2011-02-08 15:17:37 +01:00
Tobias Brunner
a417409096
maemo: Use /usr/lib instead of /usr/libexec.
2011-02-08 15:17:37 +01:00
Tobias Brunner
feb8ada613
maemo: Create DBUS service file with correct path to charon.
2011-02-08 15:17:36 +01:00