Martin Willi
|
abba7ecb9d
|
further work done for simultaneous rekeying/delete
still some cases which cause trouble
|
2006-07-10 14:24:04 +00:00 |
|
Martin Willi
|
c5d2d7c023
|
fixed compiler warnings in parser when using -O2
|
2006-07-07 12:48:27 +00:00 |
|
Martin Willi
|
af2faa1f1d
|
reenabled check_expiry
|
2006-07-07 12:25:25 +00:00 |
|
Martin Willi
|
c71d53ba4e
|
updated copyright information
|
2006-07-07 08:49:06 +00:00 |
|
Martin Willi
|
698d774918
|
reimplemented CHILD_SA rekeying & delete
no simultanous transaction with CHILD_SAs yet!
|
2006-07-07 07:04:07 +00:00 |
|
Andreas Steffen
|
54da7eb962
|
removed NAT_TRAVERSAL and VIRTUAL_IP compile options
|
2006-07-07 05:51:54 +00:00 |
|
Andreas Steffen
|
34ee2a46f4
|
removed NAT_TRAVERSAL compile option
|
2006-07-07 05:51:20 +00:00 |
|
Andreas Steffen
|
dc33fee770
|
removed NAT_TRAVERSAL and VIRTUAL_IP compile options
|
2006-07-07 05:50:02 +00:00 |
|
Andreas Steffen
|
ad3dab0520
|
added
|
2006-07-07 05:44:45 +00:00 |
|
Martin Willi
|
efa40c11e4
|
updated NEWS
|
2006-07-05 14:13:45 +00:00 |
|
Martin Willi
|
d109b48968
|
added support for leftprotoport and rightprotoport
|
2006-07-05 13:13:07 +00:00 |
|
Martin Willi
|
5f0eb96fc4
|
improved CHILD_SA output for "ipsec statusall"
|
2006-07-05 13:11:55 +00:00 |
|
Martin Willi
|
b190424716
|
updated whitelist (getprotobynumber)
|
2006-07-05 13:10:47 +00:00 |
|
Martin Willi
|
3dd3c5f39e
|
redesigned IKE_SA using a transaction mechanism:
removed old state machine
reimplemented IKE_SA setup and delete
implemented dead peer detection
implemented keep-alives
a lot of fixes
no rekeying yet
|
2006-07-05 10:53:20 +00:00 |
|
Martin Willi
|
b12af2ead6
|
fixed compiler warnings
|
2006-07-05 10:09:42 +00:00 |
|
Martin Willi
|
57d02978cf
|
made thread ids unsigned again, to avoid negative thread ids on some systems
|
2006-07-04 13:30:49 +00:00 |
|
Martin Willi
|
1135f79898
|
fixed memleak when initiating a connection already up
|
2006-07-04 13:29:16 +00:00 |
|
Martin Willi
|
318dc7b6c4
|
updated leak detective whitelist
|
2006-07-04 13:26:20 +00:00 |
|
Martin Willi
|
f141214e64
|
applied latest NATT patch with some fixes and cleanups
|
2006-07-04 13:25:00 +00:00 |
|
Andreas Steffen
|
343ae15214
|
test currently without firewall
|
2006-07-04 06:54:53 +00:00 |
|
Andreas Steffen
|
ef9e55def4
|
added
|
2006-07-04 06:51:58 +00:00 |
|
Andreas Steffen
|
5061a2af1a
|
added
|
2006-07-04 06:13:54 +00:00 |
|
Andreas Steffen
|
5fc1577728
|
added
|
2006-07-04 06:13:33 +00:00 |
|
Andreas Steffen
|
20f29a359e
|
removed
|
2006-07-04 06:13:07 +00:00 |
|
Andreas Steffen
|
1a8a163630
|
removed version information from ipsec.conf
|
2006-07-04 06:12:10 +00:00 |
|
Andreas Steffen
|
a642cbe3ae
|
log entries start with lowcercase character
|
2006-07-04 06:11:35 +00:00 |
|
Andreas Steffen
|
fe98a03ff1
|
restored lost IKEv2 packet suppression
|
2006-07-03 14:39:57 +00:00 |
|
Andreas Steffen
|
6981aca04f
|
added USE_LEAK_DETECTIVE option
|
2006-07-03 08:36:47 +00:00 |
|
Andreas Steffen
|
427088f004
|
fixed natd_hash memory leak
|
2006-07-03 08:34:34 +00:00 |
|
Andreas Steffen
|
6db2ac30c7
|
tests with subdirectory structure
|
2006-07-03 07:11:30 +00:00 |
|
Andreas Steffen
|
92069df82f
|
removed tests
|
2006-07-03 07:10:25 +00:00 |
|
Andreas Steffen
|
d9a883c337
|
introduced subdirectory structure
|
2006-07-03 07:10:17 +00:00 |
|
Andreas Steffen
|
971218c3ae
|
support of cert payloads
|
2006-07-03 06:27:45 +00:00 |
|
Andreas Steffen
|
1d390631d7
|
lowercase log entries
|
2006-07-03 06:26:06 +00:00 |
|
Andreas Steffen
|
830cc85298
|
distributed by ITA
|
2006-07-03 06:24:54 +00:00 |
|
Andreas Steffen
|
e5382ce736
|
added support of updown parameter
|
2006-07-03 06:22:43 +00:00 |
|
Andreas Steffen
|
5c149670df
|
generation of default key
|
2006-07-03 06:21:56 +00:00 |
|
Andreas Steffen
|
0e3cb317e2
|
cosmetics
|
2006-07-03 06:21:40 +00:00 |
|
Andreas Steffen
|
b17e4d2bfd
|
added support of updown parameter
|
2006-07-03 06:21:14 +00:00 |
|
Andreas Steffen
|
7fa242410a
|
version bump to 4.0.2
|
2006-06-28 11:09:14 +00:00 |
|
Andreas Steffen
|
6f74bfd6ac
|
added X.509 trust chain verification
|
2006-06-27 08:48:28 +00:00 |
|
Andreas Steffen
|
c01d911201
|
version bump to 4.0.2
|
2006-06-27 08:47:03 +00:00 |
|
Andreas Steffen
|
dd50707e4f
|
ESP packet size changed
|
2006-06-27 07:08:37 +00:00 |
|
Andreas Steffen
|
cfd8b27f78
|
fixed bad_proposal_syntax bug
|
2006-06-27 07:07:44 +00:00 |
|
Martin Willi
|
2f89902d07
|
applied new changes from NATT team
DPD only done when no IPsec and IKE traffic processed
minor changes here and there
|
2006-06-23 14:02:30 +00:00 |
|
Martin Willi
|
2891590b05
|
some message code cleanups
|
2006-06-23 14:00:15 +00:00 |
|
Martin Willi
|
eecb2da87d
|
fixed identification_t clone to apply function pointers
|
2006-06-23 13:20:17 +00:00 |
|
Martin Willi
|
4b24dd2d7d
|
cleaner error handling on UDP encapsultion sockopt failure
|
2006-06-22 13:05:15 +00:00 |
|
Martin Willi
|
6f51c9f184
|
added mysterious UDP encapsulation socket option to get encapsulation working
|
2006-06-22 12:57:49 +00:00 |
|
Andreas Steffen
|
8d204aa145
|
fixed BAD_PROPOSAL_SYNTAX vulnerability
|
2006-06-22 12:16:12 +00:00 |