26ec52a405
implemented xauth as a pluto plugin
2010-05-18 13:51:27 +02:00
8143f10914
introduced xauth_identity keyword
2010-05-15 10:18:29 +02:00
03b5e4d8d7
refactoring of Mode Config functionality allows transport and handling of any attribute
2010-05-14 17:07:03 +02:00
fb7de3a8bf
implemented support of resolve plugin
2010-05-08 16:09:02 +02:00
c2651ff13d
include demux.h only once
2010-05-06 21:55:19 +02:00
c158df0f23
already defined in attributes/attributes.h
2010-05-06 21:44:15 +02:00
4eee16354b
include state.h only once
2010-05-06 21:35:00 +02:00
9a0333fa62
moved resolve plugin from libcharon to libhydra
2010-05-04 23:53:08 +02:00
257e27df07
Fixing out-of-tree build after adding dependency to config.status.
2010-04-29 13:29:53 +02:00
b0e789035c
Users of PLUGINS depend on config.status, rebuilding them if plugin configuration is updated
2010-04-29 11:28:27 +02:00
916fd45709
do not destroy whack_attr if it hasn't been initialized
2010-04-29 07:28:51 +02:00
e20a494013
added debug output argument
2010-04-28 12:28:25 +02:00
af3be116cb
added AES_GMAC output string
2010-04-27 13:47:11 +02:00
d0f1b3b96f
fixed segfault in pluto with multiple ISAKMP SAs in delete payload
2010-04-20 21:23:05 +02:00
4590260b2d
Added support for DH groups 22, 23 and 24, patch contributed by Joy Latten
2010-04-19 14:41:20 +02:00
d3d2b7390f
implemented inheritance of virtual IP assigned by Mode Config on the responder side
2010-04-11 19:19:20 +02:00
ec96692c38
show in-memory pools in ipsec statusall
2010-04-11 11:46:47 +02:00
b1701d097c
added missing curly brackets
2010-04-11 00:49:04 +02:00
b3127b42f9
support in-memory pools in swapped connection definitions
2010-04-11 00:27:04 +02:00
e41932320c
Explicitly unload plugins before deinitializing libhydra and libstrongswan in pluto.
2010-04-06 12:47:41 +02:00
894936ce9e
Replaced some DBG_LIB with more specific groups.
2010-04-06 12:47:40 +02:00
8b0e09103b
Adding DBG_LIB to all calls of libstrongswan's version of DBG*.
2010-04-06 12:47:40 +02:00
9ed6341d3f
Adding support for debug groups in libstrongswan's logger.
2010-04-06 12:47:40 +02:00
9f3df622e4
Manually loading the pluto.(n)dns* settings is not needed anymore.
2010-04-06 12:47:40 +02:00
facf887253
Store the name of the daemon that initialized libhydra to load daemon-specific settings.
2010-04-06 12:47:40 +02:00
6bfa8e907c
Added options to whack to query in-memory leases.
2010-04-06 12:47:39 +02:00
4db0af9080
Added function to list the leases of the in-memory pools.
2010-04-06 12:47:39 +02:00
4e06abe0fa
Delete the in-memory IP address pools if a connection gets deleted.
...
This fixes ipsec reload.
2010-04-06 12:47:39 +02:00
bd22823358
Use whack_attribute in pluto to provide in-memory IP address pools.
...
The pools are configured by setting rightsourceip in ipsec.conf to a
network in CIDR notation.
2010-04-06 12:47:39 +02:00
89715bd790
Adding a whack_attribute class which manages in-memory pools in pluto and is very similar to stroke_attribute.
2010-04-06 12:47:39 +02:00
061c95b449
fixed pluto crash caused by expired leftcert and rightca=%same
2010-03-29 17:44:37 +02:00
58f86d0f0f
Changed all usages of lib->attributes to hydra->attributes.
2010-03-24 18:54:26 +01:00
52bff307e1
Init/deinit libhydra in charon and pluto.
2010-03-24 18:53:10 +01:00
39856897e6
Link pluto and charon to libhydra, fixes monolithic build.
2010-03-24 18:53:10 +01:00
7b1fc2f7cf
Fixing a compiler warning when building with -Wextra.
2010-03-16 12:42:58 +01:00
01b87c2bc1
Fixed a bug in pluto's x509 handling.
...
This bug would have lead to a segmentation fault, if no public key could
have been extracted from a certificate.
2010-03-12 17:28:20 +01:00
4cedab5ad7
deleted old strongSwan VIDs
2010-03-12 03:29:18 +01:00
469d448333
recognize strongSwan VID
2010-03-07 17:52:04 +01:00
3eb633e1e6
Remove the invalid cast in time() parameter, as reported by Marius Tomaschewski.
2010-03-04 08:44:23 +01:00
38da64fe12
Detect windows hosts to add specific workarounds.
2010-02-12 10:57:39 +01:00
71baf5a8f0
Adding support for AES GMAC (RFC4543).
2010-02-12 10:57:39 +01:00
3cc0cc4332
Increased the buffer for netlink responses.
...
If an error occurs while manipulating policies in the kernel, the
original netlink request gets attached to the response.
Prior to Linux 2.6.32 the size in the netlink header of the response was
wrong.
2010-02-05 20:10:54 +01:00
6c9c0baee9
init_fetch() changed to fetch_initialize()
2010-02-05 06:17:02 +01:00
889ff9389b
renamed init_fetch() to fetch_initialize()
2010-02-02 19:44:34 +01:00
dc5969242f
Join pluto's fetching thread instead of detaching it in order to avoid that the leak-detective reports a memleak.
2010-02-02 15:23:39 +01:00
bf1e0df7c5
warn if loaded local certificate is invalid
2010-02-01 12:29:32 +01:00
dd37fa8620
pluto and charon are using the same strongSwan Vendor ID
2010-01-11 00:43:46 +01:00
e9a1852aac
Pluto's fetcher thread is now created via libstrongswan.
2009-12-26 15:50:34 +01:00
070ac5b0b7
Check if libpthread is required or not.
2009-12-23 17:02:26 +01:00
b6623e87b4
IKEv1 daemon supports DNS and NBNS server assignment from database
2009-12-16 21:49:51 +01:00
Andreas Steffen