Andreas Steffen
26ec52a405
implemented xauth as a pluto plugin
2010-05-18 13:51:27 +02:00
Andreas Steffen
8143f10914
introduced xauth_identity keyword
2010-05-15 10:18:29 +02:00
Andreas Steffen
03b5e4d8d7
refactoring of Mode Config functionality allows transport and handling of any attribute
2010-05-14 17:07:03 +02:00
Andreas Steffen
fb7de3a8bf
implemented support of resolve plugin
2010-05-08 16:09:02 +02:00
Andreas Steffen
c2651ff13d
include demux.h only once
2010-05-06 21:55:19 +02:00
Andreas Steffen
c158df0f23
already defined in attributes/attributes.h
2010-05-06 21:44:15 +02:00
Andreas Steffen
4eee16354b
include state.h only once
2010-05-06 21:35:00 +02:00
Andreas Steffen
9a0333fa62
moved resolve plugin from libcharon to libhydra
2010-05-04 23:53:08 +02:00
Tobias Brunner
257e27df07
Fixing out-of-tree build after adding dependency to config.status.
2010-04-29 13:29:53 +02:00
Martin Willi
b0e789035c
Users of PLUGINS depend on config.status, rebuilding them if plugin configuration is updated
2010-04-29 11:28:27 +02:00
Andreas Steffen
916fd45709
do not destroy whack_attr if it hasn't been initialized
2010-04-29 07:28:51 +02:00
Andreas Steffen
e20a494013
added debug output argument
2010-04-28 12:28:25 +02:00
Andreas Steffen
af3be116cb
added AES_GMAC output string
2010-04-27 13:47:11 +02:00
Heiko Hund
d0f1b3b96f
fixed segfault in pluto with multiple ISAKMP SAs in delete payload
2010-04-20 21:23:05 +02:00
Martin Willi
4590260b2d
Added support for DH groups 22, 23 and 24, patch contributed by Joy Latten
2010-04-19 14:41:20 +02:00
Andreas Steffen
d3d2b7390f
implemented inheritance of virtual IP assigned by Mode Config on the responder side
2010-04-11 19:19:20 +02:00
Andreas Steffen
ec96692c38
show in-memory pools in ipsec statusall
2010-04-11 11:46:47 +02:00
Andreas Steffen
b1701d097c
added missing curly brackets
2010-04-11 00:49:04 +02:00
Andreas Steffen
b3127b42f9
support in-memory pools in swapped connection definitions
2010-04-11 00:27:04 +02:00
Tobias Brunner
e41932320c
Explicitly unload plugins before deinitializing libhydra and libstrongswan in pluto.
2010-04-06 12:47:41 +02:00
Tobias Brunner
894936ce9e
Replaced some DBG_LIB with more specific groups.
2010-04-06 12:47:40 +02:00
Tobias Brunner
8b0e09103b
Adding DBG_LIB to all calls of libstrongswan's version of DBG*.
2010-04-06 12:47:40 +02:00
Tobias Brunner
9ed6341d3f
Adding support for debug groups in libstrongswan's logger.
2010-04-06 12:47:40 +02:00
Tobias Brunner
9f3df622e4
Manually loading the pluto.(n)dns* settings is not needed anymore.
2010-04-06 12:47:40 +02:00
Tobias Brunner
facf887253
Store the name of the daemon that initialized libhydra to load daemon-specific settings.
2010-04-06 12:47:40 +02:00
Tobias Brunner
6bfa8e907c
Added options to whack to query in-memory leases.
2010-04-06 12:47:39 +02:00
Tobias Brunner
4db0af9080
Added function to list the leases of the in-memory pools.
2010-04-06 12:47:39 +02:00
Tobias Brunner
4e06abe0fa
Delete the in-memory IP address pools if a connection gets deleted.
...
This fixes ipsec reload.
2010-04-06 12:47:39 +02:00
Tobias Brunner
bd22823358
Use whack_attribute in pluto to provide in-memory IP address pools.
...
The pools are configured by setting rightsourceip in ipsec.conf to a
network in CIDR notation.
2010-04-06 12:47:39 +02:00
Tobias Brunner
89715bd790
Adding a whack_attribute class which manages in-memory pools in pluto and is very similar to stroke_attribute.
2010-04-06 12:47:39 +02:00
Andreas Steffen
061c95b449
fixed pluto crash caused by expired leftcert and rightca=%same
2010-03-29 17:44:37 +02:00
Tobias Brunner
58f86d0f0f
Changed all usages of lib->attributes to hydra->attributes.
2010-03-24 18:54:26 +01:00
Tobias Brunner
52bff307e1
Init/deinit libhydra in charon and pluto.
2010-03-24 18:53:10 +01:00
Tobias Brunner
39856897e6
Link pluto and charon to libhydra, fixes monolithic build.
2010-03-24 18:53:10 +01:00
Tobias Brunner
7b1fc2f7cf
Fixing a compiler warning when building with -Wextra.
2010-03-16 12:42:58 +01:00
Tobias Brunner
01b87c2bc1
Fixed a bug in pluto's x509 handling.
...
This bug would have lead to a segmentation fault, if no public key could
have been extracted from a certificate.
2010-03-12 17:28:20 +01:00
Andreas Steffen
4cedab5ad7
deleted old strongSwan VIDs
2010-03-12 03:29:18 +01:00
Andreas Steffen
469d448333
recognize strongSwan VID
2010-03-07 17:52:04 +01:00
Martin Willi
3eb633e1e6
Remove the invalid cast in time() parameter, as reported by Marius Tomaschewski.
2010-03-04 08:44:23 +01:00
Tobias Brunner
38da64fe12
Detect windows hosts to add specific workarounds.
2010-02-12 10:57:39 +01:00
Tobias Brunner
71baf5a8f0
Adding support for AES GMAC (RFC4543).
2010-02-12 10:57:39 +01:00
Tobias Brunner
3cc0cc4332
Increased the buffer for netlink responses.
...
If an error occurs while manipulating policies in the kernel, the
original netlink request gets attached to the response.
Prior to Linux 2.6.32 the size in the netlink header of the response was
wrong.
2010-02-05 20:10:54 +01:00
Andreas Steffen
6c9c0baee9
init_fetch() changed to fetch_initialize()
2010-02-05 06:17:02 +01:00
Andreas Steffen
889ff9389b
renamed init_fetch() to fetch_initialize()
2010-02-02 19:44:34 +01:00
Tobias Brunner
dc5969242f
Join pluto's fetching thread instead of detaching it in order to avoid that the leak-detective reports a memleak.
2010-02-02 15:23:39 +01:00
Andreas Steffen
bf1e0df7c5
warn if loaded local certificate is invalid
2010-02-01 12:29:32 +01:00
Andreas Steffen
dd37fa8620
pluto and charon are using the same strongSwan Vendor ID
2010-01-11 00:43:46 +01:00
Tobias Brunner
e9a1852aac
Pluto's fetcher thread is now created via libstrongswan.
2009-12-26 15:50:34 +01:00
Tobias Brunner
070ac5b0b7
Check if libpthread is required or not.
2009-12-23 17:02:26 +01:00
Andreas Steffen
b6623e87b4
IKEv1 daemon supports DNS and NBNS server assignment from database
2009-12-16 21:49:51 +01:00