Martin Willi
|
1caa265c61
|
a (incomplete) implementation of draft-sheffer-ikev2-gtc-00.txt using PAM
|
2008-08-21 12:10:07 +00:00 |
Andreas Steffen
|
dc6a2edd0d
|
corrected caption
|
2008-08-21 11:58:58 +00:00 |
Andreas Steffen
|
5cd07d18a3
|
charon.process_route = no does not process RTM_NEWROUTE and RTM_DELROUTE events. Useful for taking down hundreds of virtual IPs on the same host
|
2008-08-21 11:55:16 +00:00 |
Martin Willi
|
2d6559b107
|
added sqlite busy handler: retries on locking conflicts
|
2008-08-21 09:25:06 +00:00 |
Martin Willi
|
02e907fe66
|
avoid too many alloca()s in netlink send, problematic on MIPS
|
2008-08-21 07:55:16 +00:00 |
Martin Willi
|
bdbf3c49fc
|
some string fixes
|
2008-08-20 13:59:37 +00:00 |
Martin Willi
|
6368a58ffc
|
added missing tooltip
|
2008-08-20 12:02:53 +00:00 |
Martin Willi
|
1b9f6c2410
|
handle DBUS permission problems gracefully
|
2008-08-20 11:44:47 +00:00 |
Martin Willi
|
142eaea43c
|
fixed shared key lookup by ID
proper auth method selection
|
2008-08-20 08:51:18 +00:00 |
Martin Willi
|
592dc30108
|
fixed auth-dialog password flush
|
2008-08-20 08:49:47 +00:00 |
Andreas Steffen
|
59bb33e1e0
|
set version back to 4.2.6
|
2008-08-19 18:53:15 +00:00 |
Andreas Steffen
|
af165431d2
|
fixed libstrongswan integrity test
|
2008-08-19 18:51:30 +00:00 |
Martin Willi
|
ec24987164
|
certificate based gateway authentication
prototype PSK user authentication with auth-dialog
|
2008-08-19 15:19:45 +00:00 |
Martin Willi
|
62556b2b45
|
updated nm plugin to NetworkManager API changes
|
2008-08-18 11:59:19 +00:00 |
Martin Willi
|
475814ce5f
|
roam jobs for routing table changes not fired for virtual IP routes
|
2008-08-18 11:07:26 +00:00 |
Andreas Steffen
|
7cdf728586
|
do not fire a roam job when virtual IP is deleted
|
2008-08-15 19:15:52 +00:00 |
Andreas Steffen
|
26fd3f0057
|
temporary workaround to prevent roam jobs due to virtual IP installations
|
2008-08-11 19:04:48 +00:00 |
Andreas Steffen
|
9f1ec81290
|
corrected typo
|
2008-08-11 18:40:22 +00:00 |
Tobias Brunner
|
e5d6f165fc
|
* ruby extension extracted from irdumm
* guests do not shutdown anymore on SIGINT in irb
|
2008-08-07 14:56:54 +00:00 |
Andreas Steffen
|
990ebd4a75
|
added ipv6/net2net-ip6-in-ip6-ikev2 scenario
|
2008-08-06 20:40:14 +00:00 |
Andreas Steffen
|
249a90af98
|
add additional scenario diagrams
|
2008-08-06 20:35:42 +00:00 |
Tobias Brunner
|
f753e03ab8
|
added missing cleanup on failure
|
2008-08-06 07:31:26 +00:00 |
Andreas Steffen
|
342c84ddec
|
initiator sends contents of rightca= if present as a certificate request without searching for further CA certificates
|
2008-08-05 09:05:57 +00:00 |
Andreas Steffen
|
ea36a1f159
|
fixed improper TAILQ fix which caused pluto to segfault
|
2008-08-03 18:01:21 +00:00 |
Andreas Steffen
|
619998b3ac
|
corrected caption
|
2008-08-01 12:59:08 +00:00 |
Andreas Steffen
|
7ebac6728b
|
Redhat/Fedora requires var/lock/subsys/ipsec for runlevel changes
|
2008-08-01 12:04:35 +00:00 |
Andreas Steffen
|
573fd9ce03
|
ipsec starter gives the charon daemon 8s to terminate gracefully before killing the process brutally
|
2008-08-01 10:35:59 +00:00 |
Andreas Steffen
|
181abd3fdd
|
fixed the close_peerlog() bug causing ipsec pluto --help to segfault
|
2008-08-01 10:12:33 +00:00 |
Martin Willi
|
39c0ae3780
|
configuration plugin for NetworkManager
|
2008-07-31 15:07:52 +00:00 |
Martin Willi
|
092a9b88ad
|
added options for virtual IP, UDP encapsulation, IPComp
proper handling of libstrongswan/glib TRUE/FALSE conflict
|
2008-07-31 14:32:11 +00:00 |
Tobias Brunner
|
5e9346ed92
|
exec on a guest now returns the return value of the executed process
|
2008-07-31 12:59:59 +00:00 |
Martin Willi
|
6dbce9c803
|
reimplemented dbus plugin for NetworkManager 0.7, renamed to nm
|
2008-07-31 11:16:14 +00:00 |
Martin Willi
|
2d87903db9
|
recreating FIFO if it exists
|
2008-07-31 09:04:54 +00:00 |
Martin Willi
|
eb04645c10
|
fixed usage typo
|
2008-07-31 09:01:56 +00:00 |
Martin Willi
|
19ad10b5d3
|
increased stroke socket backlog to 10
|
2008-07-30 14:17:05 +00:00 |
Martin Willi
|
f0a8fa25ba
|
using a entry cache for duplicate checks, avoids deadlocks
|
2008-07-30 14:15:08 +00:00 |
Martin Willi
|
7a4ad866b0
|
use condvar broadcasts to signal threads waiting for an IP, there might be more than one
|
2008-07-30 13:19:12 +00:00 |
Tobias Brunner
|
eadd460f7c
|
the list of addresses on the interface of a guest is not cached anymore, but queried directly from the interface
|
2008-07-30 13:15:18 +00:00 |
Tobias Brunner
|
9901cdb4cd
|
* Guest#exec uses the new exec_str function
* tab completion in irdumm enabled
|
2008-07-30 13:01:04 +00:00 |
Tobias Brunner
|
2e73cd6e87
|
added an extended exec function to guests that allows to get the output of the command as string or by line.
|
2008-07-30 12:58:45 +00:00 |
Martin Willi
|
38a8e39739
|
using shared read locks in credential set enumerators to avoid deadlocks
|
2008-07-30 11:38:44 +00:00 |
Martin Willi
|
21632b76e0
|
added strongswan.conf option "charon.dos_protection" to disable cookies/aggressiveness check
|
2008-07-30 08:27:08 +00:00 |
Andreas Steffen
|
f5a0d968fc
|
added keyid2sql helper script
|
2008-07-29 19:46:39 +00:00 |
Andreas Steffen
|
ce91f67f60
|
starter now waits for a maximum of 10s instead of 1s for charon before restarting the daemon
|
2008-07-29 19:44:54 +00:00 |
Andreas Steffen
|
98ba96f185
|
demoted IKE state change output to debug level 2
|
2008-07-28 14:01:45 +00:00 |
Andreas Steffen
|
3fd9c75717
|
ignore AUTH_LIFETIME value if reauthentication has already been scheduled earlier
|
2008-07-28 13:53:04 +00:00 |
Martin Willi
|
7fb2693724
|
switched xterm console title
|
2008-07-28 13:10:34 +00:00 |
Martin Willi
|
bc8f868c99
|
using gnome-terminal in irdumm
|
2008-07-28 12:37:01 +00:00 |
Andreas Steffen
|
5c96dab653
|
version bump to 4.2.6
|
2008-07-28 09:14:07 +00:00 |
Martin Willi
|
7c04589335
|
use XFRM_MSG_UPDPOLICY for existing policies only
|
2008-07-28 08:29:04 +00:00 |