Martin Willi
|
c7a64d6f41
|
Use helper functions to handle (non-)skippable attributes
|
2009-09-18 15:08:43 +02:00 |
Martin Willi
|
e466139c91
|
Clients can handle AKA-Identity requests by sending the full identity
|
2009-09-18 14:51:35 +02:00 |
Martin Willi
|
85af7a89c6
|
nm uses the distributions trusted root CAs if none is explicitly specified
|
2009-09-18 14:34:27 +02:00 |
Martin Willi
|
7aa495d9d0
|
get_private() in listcacerts requires a valid auth cfg
|
2009-09-17 12:47:03 +02:00 |
Martin Willi
|
4a03e85b37
|
Fixed nexthop lookup, used by source route installation
|
2009-09-16 13:55:32 +02:00 |
Martin Willi
|
36b7ba5ee3
|
Use continue to advance to next iteration
|
2009-09-16 13:32:47 +02:00 |
Martin Willi
|
b538b606da
|
Use the default debug hook if possible
|
2009-09-16 13:16:00 +02:00 |
Martin Willi
|
e4be5ef8fb
|
Fall back to default credential set lookup if fingerprint lookup fails
|
2009-09-15 08:44:10 +02:00 |
Martin Willi
|
79c6f16212
|
Implemented support for preinstalled PGP certificates in charon
|
2009-09-15 08:23:48 +02:00 |
Martin Willi
|
3b878dae7e
|
Removed chunk_from_buf() in favor of a simpler chunk_from_chars() macro
|
2009-09-11 15:39:35 +02:00 |
Martin Willi
|
356b2b2780
|
pass NULL to library_init() to load settings from default file
|
2009-09-10 18:52:42 +02:00 |
Martin Willi
|
5b03a350fc
|
use NULL to load plugins from default plugin directory
|
2009-09-10 18:52:42 +02:00 |
Martin Willi
|
faa4bd49fb
|
use sysconfdir, no need for an additional confdir variable
|
2009-09-07 15:10:30 +02:00 |
Martin Willi
|
b7b5653386
|
Use macros to define --with options
|
2009-09-07 15:00:45 +02:00 |
Martin Willi
|
8b3b4a244e
|
Removed trailing whitespaces in configure.in/Makefile.am
|
2009-09-07 11:48:03 +02:00 |
Tobias Brunner
|
0755e98e5c
|
Cleaned up some code of the mediation extension.
|
2009-09-04 15:48:30 +02:00 |
Tobias Brunner
|
f4b975a65d
|
Moved set_state after the DBG0 statement, so that the message gets logged also for mediation connections without CHILD_SA.
|
2009-09-04 15:13:12 +02:00 |
Martin Willi
|
7b3814f75d
|
remove spaces before tabs at the beginning of lines (^( )+\t)
|
2009-09-04 15:02:11 +02:00 |
Martin Willi
|
b9b8a98f47
|
remove spaces within tabs (\t( )+\t)
|
2009-09-04 15:00:19 +02:00 |
Martin Willi
|
323f9f990f
|
replaces four spaces by tabs, where appropriate
|
2009-09-04 14:50:23 +02:00 |
Martin Willi
|
7daf5226b7
|
removed trailing spaces ([[:space:]]+$)
|
2009-09-04 13:46:09 +02:00 |
Marius Tomaschewski
|
7d1b030446
|
fixed open failure debug message in load_secrets
|
2009-09-04 11:52:28 +02:00 |
Martin Willi
|
dd2b6f3073
|
fixed memleak in rekey collissions
|
2009-09-03 18:09:29 +02:00 |
Martin Willi
|
72e2faf291
|
Convert empty CREATE_CHILD_SA exchange to an INFORMATIONAL
|
2009-09-03 17:32:41 +02:00 |
Martin Willi
|
9beb83868f
|
Use get_notify() to look up single notifies
|
2009-09-03 17:32:01 +02:00 |
Martin Willi
|
d176994235
|
Use recursive source address lookup if we get a gateway only
|
2009-09-03 14:46:39 +02:00 |
Marius Tomaschewski
|
dece3d8efc
|
Fixed load_secrets to acquire/release lock in level 0 only
The write_lock call fails with EDEADLK and unlocks in the
next recursion level.
|
2009-09-03 14:46:36 +02:00 |
Tobias Brunner
|
a20e98749a
|
Simplified the search for ME_CONNECTID notifies.
|
2009-09-02 17:30:47 +02:00 |
Tobias Brunner
|
484a06bce7
|
Fixed some typos; whitespace cleanup.
|
2009-09-02 17:30:46 +02:00 |
Tobias Brunner
|
5293b02945
|
Missing commas added.
|
2009-09-02 17:29:44 +02:00 |
Martin Willi
|
8fb4edc4ff
|
handle plugin loading failures
|
2009-09-01 16:20:45 +02:00 |
Tobias Brunner
|
e75f423753
|
Refactored the lifetime_cfg_t struct to be simpler and more expressive. Initialization is now static.
|
2009-09-01 12:54:33 +02:00 |
Tobias Brunner
|
abff49a7ff
|
Handling of new lifetime limits added to stroke.
|
2009-09-01 12:53:44 +02:00 |
Tobias Brunner
|
f40c115531
|
If no inbound CHILD_SA is found, try to find an outbound SA.
Due to the new lifetime limits in- and outbound SAs may expire
individually.
|
2009-09-01 12:53:44 +02:00 |
Tobias Brunner
|
1087b9cebb
|
Set the packet and byte limits in the netlink and pfkey kernel interfaces.
|
2009-09-01 12:53:44 +02:00 |
Tobias Brunner
|
e3c7e72973
|
Terminology and return value of get_lifetime of child_sa_t corrected.
|
2009-09-01 12:53:44 +02:00 |
Tobias Brunner
|
cb123493d1
|
child_sa_t adapted to the new lifetime configuration.
|
2009-09-01 12:53:43 +02:00 |
Tobias Brunner
|
888af96343
|
Adapted the kernel interfaces to the new lifetime configuration.
|
2009-09-01 12:53:13 +02:00 |
Tobias Brunner
|
e0a8a8c3ec
|
Adapted the config backends to the new lifetime configuration.
|
2009-09-01 12:50:50 +02:00 |
Tobias Brunner
|
caf87c7dcb
|
child_cfg_t now takes a lifetime_cfg_t to configure the lifetime limits. Also adjusted the jitter calculation, so it works for values > RAND_MAX.
|
2009-09-01 12:50:50 +02:00 |
Tobias Brunner
|
86e4728550
|
lifetime_cfg_t added to configure lifetime limits of a CHILD_SA.
|
2009-09-01 12:50:50 +02:00 |
Martin Willi
|
6180a55852
|
use time_monotonic() instead of time() for statistics and time difference calculations
|
2009-08-31 18:00:28 +02:00 |
Martin Willi
|
de5784452b
|
use time_monotonic() instead of gettimeofday() for time difference calculations
|
2009-08-31 15:25:03 +02:00 |
Martin Willi
|
3d5818ec38
|
use monotonic time source in convar->timed_wait, and in the scheduler using it
|
2009-08-31 15:13:48 +02:00 |
Martin Willi
|
8365f7cd81
|
fixed crash in crl listing
|
2009-08-31 10:21:38 +02:00 |
Martin Willi
|
500f515a64
|
moved chunk_increment() function to libstrongswan
|
2009-08-26 14:07:26 +02:00 |
Martin Willi
|
9c3d2b3d60
|
updated medsrv and test to new fingerprint/encoding API
|
2009-08-26 11:23:55 +02:00 |
Martin Willi
|
1cd0d7969a
|
updated load-tester plugin to new fingerprinting API
|
2009-08-26 11:23:53 +02:00 |
Martin Willi
|
8eefe4617f
|
use only KEY_ID_PUBKEY_SHA1 fingerprint charon internally
|
2009-08-26 11:23:53 +02:00 |
Martin Willi
|
87d2026341
|
updated nm plugin to new fingerprinting API
|
2009-08-26 11:23:53 +02:00 |