3d44d735c6
Added generic XAuth backend, using secrets provided by credential sets.
2012-03-20 17:31:17 +01:00
41e1e435d9
Removed xauth-null dummy plugin.
2012-03-20 17:31:17 +01:00
8c583c110e
version bump to 5.0.0dr1
2012-03-20 17:31:11 +01:00
4394d96844
IKEv1 XAuth: Added a "NULL" XAuth plugin which sends a hardcoded user/pass, and blindly accepts whatever user/pass is sent it. Changed the xauth_request task to use this new plugin. Add --enable-xauth-null to your configure line to build with the new plugin.
2012-03-20 17:31:11 +01:00
ccdd3a4cee
Added configure option for the IKEv1 implementation in charon.
2012-03-20 17:30:39 +01:00
584178c3bb
version bump to 4.6.3dr2
2012-03-16 22:21:54 +01:00
c224f7654d
version bump to 4.6.3dr1
2012-03-14 07:45:35 +01:00
21b0f216b9
created libradius shared by eap-radius and tnc-pdp plugins
2012-03-13 16:27:17 +01:00
70fd2d1af7
created tnc-pdp policy decision point plugin
2012-03-13 16:27:16 +01:00
0853ff39c5
Build libradius if radattr plugin is enabled
2012-03-05 18:08:04 +01:00
caf4b88efc
Added a radattr plugin that prints any received RADIUS notify to console
2012-03-05 18:08:04 +01:00
f0f94e2ce6
Moved generic RADIUS protocol support to a dedicated libradius
2012-03-05 18:08:04 +01:00
f3d6b9c88c
added missing x character
2012-02-21 16:29:35 +01:00
81ce0cf67e
libtnccs is required by the eap_tnc plugin
2012-02-20 09:04:02 +01:00
f8b1b32768
charon does not depend on libtncif any more but tnc_tnccs does
2012-02-20 08:00:48 +01:00
05f421b7d3
build libstrongswan if libimcv is built
2012-02-16 23:28:38 +01:00
a54cf814e6
version bump to 4.6.2
2012-02-16 00:10:36 +01:00
b3cbc53893
version bump to 4.6.2rc1
2012-02-05 22:24:56 +01:00
2a77a27213
version bump to 4.6.2dr4
2012-02-02 18:26:12 +01:00
5ec525c1d1
Added PKCS#8 stub plugin.
2012-02-01 18:27:45 +01:00
023800ba62
Build libstrongswan if libfast gets built
2012-01-24 18:23:44 +01:00
17e3a92661
Fix gettid() on Android, which is defined in unistd.h there.
2012-01-12 11:08:22 +01:00
66f16d9629
Use native gettid() if available (which is the case on Android).
2012-01-10 18:31:33 +01:00
cb4da3f610
register aik certificate via ipsec attest
2011-12-25 14:31:26 +01:00
005d981cc2
check for TrouSerS
2011-12-18 18:26:38 +01:00
c17f6f96e2
Log native thread ID when a thread is created.
...
If possible gettid() is used, otherwise pthread_self() is logged (which is
not completely portable, but seems to work on most supported platforms).
2011-12-16 16:44:38 +01:00
0e94ae1286
Revert "fixed caption alignment"
...
This reverts commit d463def798
2011-12-16 14:19:14 +01:00
d463def798
fixed caption alignment
2011-12-16 14:15:46 +01:00
bc74e1aaf0
version bump to 4.6.2dr2
2011-12-12 10:38:23 +01:00
b448e3ece6
moved attestation plugins to libpts in order to resolve circular reference with libimcv
2011-11-28 21:23:59 +01:00
602122771e
automatically construct attest plugin list
2011-11-28 21:23:24 +01:00
28ca456426
version bump to 4.6.2dr1
2011-11-28 06:01:03 +01:00
acb92cb44c
version bump to 4.6.1
2011-11-08 21:00:09 +01:00
74d165a94b
version bump to 4.6.0
2011-11-02 09:30:45 +01:00
b08505da70
tnc-tnccs plugin is now included in integrity tests
2011-10-31 23:30:06 +01:00
b3b3613c60
pkcs11: Register the pkcs11 plugin before any other crypto plugins.
...
This is what most users probably expect when they enable the pkcs11
plugin. All advanced features (like DH/RNG) are disabled by default.
2011-10-31 18:46:16 +01:00
75093db66a
version bump to 4.6.0rc3
2011-10-26 09:17:57 +02:00
f0a8bf47f7
refactored TNC framework
2011-10-25 01:10:16 +02:00
f0fa002fd1
moved imc_manager to libtnccs
2011-10-25 01:10:16 +02:00
e4e96e5c67
fixed type
2011-10-22 12:31:09 +02:00
41273bfbee
version bump to 4.6.0rc2
2011-10-22 12:29:37 +02:00
adab84533e
starter: Use kernel interfaces to flush SAD and SPD.
...
This now supports platforms where neither 'ip xfrm' nor 'setkey' are
available (like Android).
2011-10-21 14:24:34 +02:00
f3a682c1ff
starter: Load plugins specific to starter.
2011-10-21 14:24:34 +02:00
d52c37790e
pluto: Option added to disable adns.
...
This basically disables opportunistic encryption.
2011-10-14 17:36:20 +02:00
9a8fdc159a
Added a replacement for closefrom (available on *BSD).
2011-10-13 11:19:12 +02:00
2421ac9e98
getpass(3) is not supported on Android.
...
No replacement yet.
2011-10-11 16:30:20 +02:00
0ea9772b9e
version bump to 4.6.0dr5
2011-10-05 21:04:07 +02:00
439cb93ce9
Check for RTA_TABLE in configure.
2011-10-04 18:46:51 +02:00
3946821937
Load eap-aka plugin before shared simaka helpers depending on it
2011-09-26 13:43:38 +00:00
07534f8998
version bump to 4.6.0dr4
2011-09-13 23:32:37 +02:00
3ed943c34f
created libpts
2011-09-08 12:20:58 +02:00
f5f19c334b
removed conflicts
2011-09-08 12:08:09 +02:00
4a492a8d1f
created empty imc_attestation and imv_attestation plugin hulls
2011-09-08 12:08:08 +02:00
f9a0f55657
Check if ClearSilver actually requires zlib
2011-09-02 13:40:38 +02:00
ba2201edf0
Added plugin stub of certexpire plugin
2011-08-22 18:42:32 +02:00
756fd15f55
version bump to 4.6.0dr3
2011-08-14 09:26:21 +02:00
92a1b234b4
version bump to 4.6.0dr2
2011-08-11 07:56:42 +02:00
5a2e2e0b8c
version bump to 4.6.0dr1
2011-08-10 09:29:35 +02:00
c77af76807
created tnc-ifmap plugin
2011-08-10 09:29:33 +02:00
25ea6c1542
version bump to 4.5.3
2011-08-01 19:15:01 +02:00
4b30589724
version bump to 4.5.3rc1
2011-07-14 23:27:07 +02:00
19db8e9eff
install IMC and IMV dynamic libraries in imcvs directory
2011-07-06 21:53:40 +02:00
60d62b9e5c
Don't install the libraries directly in lib/.
...
Instead use a subdirectory (prefix/lib/ipsec by default). Also moved the
plugins from libexec to a subdirectory of that dir.
2011-07-05 14:42:14 +02:00
7dc1ff73c1
version bump to 4.5.3dr8
2011-07-05 07:37:36 +02:00
d9cdab9249
added ITA Scanner IMC/IMV pair which detects open server ports on TNC clients
2011-07-04 21:40:25 +02:00
d6b6a1615e
version bump to 4.5.3dr7
2011-06-29 16:51:33 +02:00
32af7f32ea
version bump to 4.5.3dr6
2011-06-27 22:35:20 +02:00
91a7703bc4
version bump to 4.5.3dr5
2011-06-19 23:27:43 +02:00
6fe53bde24
We actually need to link against libz, as neo libraries are often static
...
This reverts commit 3c0630a797
2011-06-15 12:23:21 +02:00
d97f870048
version bump to 4.5.3dr4
2011-06-10 07:45:40 +02:00
b000bb42f9
version bump to 4.5.3dr3
2011-06-05 14:55:18 +02:00
7c4d4d209d
make IMC/IMV pairs independent of libcharon
2011-06-01 16:33:44 +02:00
91b9bc3e0f
Load af-alg with higher priority
2011-06-01 12:03:44 +02:00
3c0630a797
libfast does not depend on zlib directly, clearsilver can be built without compression support
2011-06-01 12:03:44 +02:00
3208d8a73c
do not checksum IMC/IMV plugins
2011-06-01 09:22:12 +02:00
71ad779801
fixed location of imc_test/imv_test Makefiles
2011-06-01 08:02:16 +02:00
5d179d1999
version bump to 4.5.3dr2
2011-05-31 06:22:42 +02:00
510f37abd4
implemented the RFC 5792 PA-TNC protocol and an example IMC/IMV pair
2011-05-30 21:30:09 +02:00
13eeb1d22a
version bump to 4.5.3dr1
2011-05-25 21:34:22 +02:00
617061072b
Renamed option to enable unit tests as plugin is named unit-tester.
...
To correctly enable a plugin the names used in the ARG_ENABL_SET and
ADD_PLUGIN macros have to match (and they have, of course, to match the
plugin's name).
2011-05-24 19:28:54 +02:00
8ed3c9fba5
Enable strict-aliasing warnings, we should really get rid of them
2011-05-24 12:04:35 +02:00
afd53de627
Add md5 to script plugins
2011-05-20 10:08:57 +02:00
d6fc82c12e
version bump to final 4.5.2
2011-05-14 17:12:50 +02:00
82b43847f5
version bump to 4.5.2rc2
2011-05-08 17:56:05 +02:00
b58e9783d7
version bump to 4.5.2rc1
2011-05-02 22:15:43 +02:00
406051ea4e
fixed segmentation fault due to null pointer
2011-04-22 10:11:16 +02:00
7bc718ff3b
version bump to 4.5.2dr5
2011-04-11 06:24:31 +02:00
1be296dfb2
implemented the PEAP tunneling protocol as an EAP plugin
2011-04-06 14:42:02 +02:00
80dca77a50
Added SIM card backend based on pcsc-lite
2011-04-04 08:51:50 +02:00
6d508e8f36
version bump to 4.5.2dr4
2011-04-02 07:46:16 +02:00
fc16b361ef
Install systemd service file if systemd is available
2011-03-29 09:27:54 +02:00
a6390879d5
Make availability of glob(3) optional in settings_t.
...
If glob(3) is not available just try to open the pattern as regular
file. The reason for this change is that glob(3) is not available on Android.
2011-03-22 19:21:26 +01:00
d32a84fbc4
version bump to 4.5.2dr3
2011-03-17 20:24:44 +01:00
adba3c695d
version bump to 4.5.2dr2
2011-03-11 09:12:13 +01:00
007c47088c
Implemented permanent certificate coupling plugin
2011-02-28 16:39:40 +01:00
3e74ebbecc
Added an advanced duplicate checking plugin with liveness check of old SA
2011-02-28 15:37:18 +00:00
5e603aba4e
Implemented a in-memory peer identity whitelist plugin
2011-02-28 15:00:46 +01:00
e7d60a9a06
version bump to 4.5.2dr1
2011-02-11 07:46:23 +01:00
5ca559cfce
version bump to 4.5.1
2011-02-09 20:40:32 +01:00
234955d1ea
Check for libxml when building tnccs_11, use autoconf libxml CFLAGS/LIBS
2011-02-08 11:11:01 +01:00
8d13c12eac
version bump to 4.5.1rc2
2011-02-05 08:59:36 +01:00
ad061503b8
version bump to strongswan-4.5.1rc1
2011-01-31 05:39:17 +01:00
f652995b21
implemented dynamic detection of TNCCS protocol
2011-01-31 00:59:17 +01:00
44b6b8f9d5
Load load-tester plugin before kernel interfaces, fixes fake_kernel option
2011-01-19 16:43:00 +01:00
2ca52c8048
Implemented an alternative HTTP fetcher based on libsoup
2011-01-17 18:20:06 +01:00
2b52d5cb41
Do not install config files with user/group, as it might not exist on build machine
2011-01-17 18:08:17 +01:00
01d3038137
Added plugin stub for advanced X509 constraint checking
2011-01-05 16:46:00 +01:00
37b3fad782
Install "ipsec" script with tools or conftest
2011-01-05 16:45:56 +01:00
e78ec86d27
Added a Suite B conftest utility skeleton using libcharon
2011-01-05 16:45:40 +01:00
4aab89274c
version bump to 4.5.1dr5
2010-12-27 13:49:32 +01:00
71c87e3483
Added plugin stub for AF_ALG
2010-12-20 09:52:02 +01:00
814873a356
version bump to 4.5.1dr4
2010-12-19 09:46:59 +01:00
c0cadd7182
version bump to 4.5.1dr3
2010-12-15 08:56:32 +01:00
86818437c5
version bump to 4.5.1dr2
2010-12-01 10:08:49 +01:00
25be47b431
version bump to 4.5.1dr1
2010-11-28 11:55:40 +01:00
bcd386a95f
removed dependencies from libtnc
2010-11-09 20:43:50 +01:00
37242cc3fb
moved tnccs-20 plugin in front of tnc-imv and intc-imc
2010-11-01 18:55:01 +01:00
77255f477c
version bump to 4.5.1
2010-10-29 09:30:57 +02:00
327aa0c012
version bump to 4.5.0
2010-10-28 20:24:12 +02:00
fd459a8f45
version bump to 4.5.0rc3
2010-10-25 18:20:38 +02:00
ce84a5cb1d
version bump to 4.5.0rc2
2010-10-16 20:47:38 +02:00
8464e25a0f
Maemo: Register with libosso and init Glib main loop.
2010-10-14 17:36:18 +02:00
2bce814190
Maemo: Register charon as D-BUS system service.
...
In order to be able to access this service via libosso, charon is
started with the run-standalone.sh script, which sets up the required
environment.
2010-10-14 17:36:18 +02:00
f79161e866
Stub plugin for Maemo specific extensions added.
2010-10-14 17:36:17 +02:00
095e0e7940
version bump to 4.5.0rc1
2010-10-14 15:50:42 +02:00
d1b94592a6
fixed notation
2010-10-07 23:34:37 +02:00
8dcc56dcc0
created tnc-imc and tnc-imv plugins
2010-10-07 23:31:23 +02:00
9b04378ece
version bump to 4.5.0dr5
2010-10-06 07:07:14 +02:00
6d0e9cf046
created hull for TNCCS 2.0 plugin
2010-10-05 21:15:24 +02:00
f685b3aca0
started use of libtnc library
2010-09-29 23:24:59 +02:00
062e8faee1
version bump to 4.5dr4
2010-09-29 07:14:33 +02:00
4e8e74fcfa
moved TNCCS layer out of eap_tnc plugin
2010-09-28 23:34:04 +02:00
0a1233e642
Moved man pages for config files to a separate directory.
2010-09-10 12:01:19 +02:00
3c1debeb59
version bump to 4.5.0dr2
2010-09-10 07:37:28 +02:00
30cd31fb69
Added a simple led plugin to control Linux LEDs based on IKE activity
2010-09-08 12:00:57 +02:00
3f5de7b65f
Enable the random plugin for scripts
2010-09-06 18:11:05 +02:00
25de08474b
version bump to 4.5.0dr2
2010-09-02 22:19:37 +02:00
062a602216
Moved all kernel plugins to libhydra.
2010-09-02 19:01:26 +02:00
68eb610d81
fixed typos
2010-08-30 16:22:33 +02:00
d93e2e5409
created an eap-tnc method hull
2010-08-30 15:36:34 +02:00
f1a74a3cab
Implemented a TLS utility to test on any TLS secured TCP connection
2010-08-25 12:57:13 +02:00
1a64981048
Implemented a gcm plugin providing GCM mode based on CBC crypters
2010-08-19 19:05:15 +02:00
37e52c3fbf
Added a crypto transform stress test for profiling
2010-08-19 19:05:14 +02:00
80a93a1335
Implemented a ccm plugin providing CCM mode based on CBC crypters
2010-08-19 19:05:14 +02:00
272f0e1ae4
Added a counter mode wrapper plugin operating on existing CBC crypters
2010-08-13 19:39:59 +02:00
123a84d3db
Use an explicit plugin list instead of the unrealible "find" to build checksums
2010-08-12 16:07:24 +02:00
8f01815143
Build dedicated plugin lists for each strongSwan component
2010-08-12 14:46:57 +02:00
9e2c88b98d
Use a m4 helper macro to build plugin lists
2010-08-12 13:14:32 +02:00
26eb9b2d17
added eap_ttls plugin configuration
2010-08-07 11:26:04 +02:00
83e52fd12d
Register hmac/xcbc algorithms after potentially underlying PKCS#11
2010-08-04 09:26:22 +02:00
Tobias Brunner