Martin Willi
|
9ad5b8fa95
|
Cleanup CERT payload constructors
|
2012-03-20 17:31:13 +01:00 |
Martin Willi
|
e174e0d445
|
Added not-yet used sa_payload parameters used in IKEv1
|
2012-03-20 17:30:52 +01:00 |
Tobias Brunner
|
d6cec44b24
|
Fixed conftests after extending CERT payload.
|
2012-03-20 17:30:50 +01:00 |
Tobias Brunner
|
a0563846b0
|
Moved version specific keymat functions to specific interfaces.
|
2012-03-20 17:30:45 +01:00 |
Martin Willi
|
c311d22d0f
|
Don't clone chunk in message.get_packet_data
|
2012-03-20 17:30:44 +01:00 |
Martin Willi
|
04ee2b7fed
|
Added IKEv1 support to notify payload
|
2012-03-20 17:30:43 +01:00 |
Martin Willi
|
38fb67fbf1
|
Add a payload.get_header_length() method, remove header length definitions
|
2012-03-20 17:30:42 +01:00 |
Martin Willi
|
e9b55b8325
|
Simplify signature of get_encoding_rules(), make all rules static
|
2012-03-20 17:30:42 +01:00 |
Tobias Brunner
|
f7a8fcedc0
|
Use enum to define IKE version on peer_cfg_t.
Replaced all those magic numbers.
|
2012-03-20 17:30:41 +01:00 |
Tobias Brunner
|
4ed52db2bb
|
Allow creation of message_t objects for IKEv1 packets.
|
2012-03-20 17:30:40 +01:00 |
Martin Willi
|
b0b9d18593
|
Extend sa_payload for IKEv1 support
|
2012-03-20 17:30:40 +01:00 |
Martin Willi
|
8e3f14baab
|
bus->listen() and the controller wrappers accept a timeout to wait for callbacks
|
2011-08-26 10:44:25 +02:00 |
Tobias Brunner
|
4bbce1ef37
|
Replaced ike_sa_t.create_child_sa_iterator with enumerator.
This required two new methods on ike_sa_t. One returns the number of
CHILD_SAs and one allows to remove a CHILD_SA.
|
2011-07-06 09:43:45 +02:00 |
Martin Willi
|
69c3eca0e9
|
Added a non-blocking, skipping variant of IKE_SA enumerator
|
2011-05-16 15:24:13 +02:00 |
Martin Willi
|
32973044b0
|
Added a merge option to optionally reload files instead of merging them
|
2011-04-15 10:07:13 +02:00 |
Martin Willi
|
2a277867be
|
Show full blown traffic selector in log_ts hook
|
2011-04-14 09:21:58 +02:00 |
Tobias Brunner
|
84545f6e7c
|
Some typos fixed.
|
2011-02-07 11:39:41 +01:00 |
Andreas Steffen
|
a226307f13
|
suiteb directory hasn't been moved to Master yet
|
2011-01-08 02:17:42 +01:00 |
Martin Willi
|
5b0e6c593a
|
Added option to use a different key when rebuilding AUTH
|
2011-01-05 16:46:07 +01:00 |
Martin Willi
|
97d30f0010
|
Added support for OCSP responder URIs to conftest
|
2011-01-05 16:46:07 +01:00 |
Martin Willi
|
968e5e665b
|
Added support for CDPs to conftest
|
2011-01-05 16:46:06 +01:00 |
Martin Willi
|
06e6535151
|
Updated conftest README
|
2011-01-05 16:46:06 +01:00 |
Martin Willi
|
dbec133eb8
|
Added support for custom file loggers, loglevel settings
|
2011-01-05 16:46:06 +01:00 |
Martin Willi
|
98ef286580
|
Merge test config into suite config, instead of having two distinct configs
|
2011-01-05 16:46:04 +01:00 |
Martin Willi
|
58be32e88e
|
Added a cert_policy option to conftest configurations
|
2011-01-05 16:46:03 +01:00 |
Martin Willi
|
0beb1d6fbb
|
Added a hook to reset ESP sequence numbers
|
2011-01-05 16:46:00 +01:00 |
Martin Willi
|
48ef001133
|
Accept a suffix to differentiate x509, crl, ecdsa and rsa files
|
2011-01-05 16:45:59 +01:00 |
Martin Willi
|
c7f7a0ba06
|
Use strncaseeq instead of strncasecmp
|
2011-01-05 16:45:59 +01:00 |
Martin Willi
|
04a1279f91
|
Added tfc_padding option, changes signature to master changes
|
2011-01-05 16:45:59 +01:00 |
Martin Willi
|
9992cb1c10
|
Generate payload to rebuild_auth, works with injected unknown payloads
|
2011-01-05 16:45:55 +01:00 |
Martin Willi
|
5c95bf7b93
|
Move rebuild_auth functionality to a standalone hook
This reverts commit 3c12b239fd55aa36c59eb60224d27af8b8d915d1.
|
2011-01-05 16:45:54 +01:00 |
Martin Willi
|
a73e040cd5
|
Added key strength constraints support to conftest
|
2011-01-05 16:45:53 +01:00 |
Martin Willi
|
586070d2ce
|
Implemented hook to log traffic selectors
|
2011-01-05 16:45:53 +01:00 |
Martin Willi
|
6bd3a1c220
|
The set_reserved() hook rebuilds AUTH if it mangles ID payload fields
|
2011-01-05 16:45:53 +01:00 |
Martin Willi
|
5f15faebc8
|
Include the used reserved bytes from ID payloads in AUTH calculation
|
2011-01-05 16:45:53 +01:00 |
Martin Willi
|
b5bbc9506c
|
Extended set_reserved hook to mangle sa_payload substructures
|
2011-01-05 16:45:52 +01:00 |
Martin Willi
|
a6da3795d6
|
The set_ike_version hook supports version flag mangling
|
2011-01-05 16:45:52 +01:00 |
Martin Willi
|
357e960e40
|
Implemented hook to toggle initiator flag in IKE header
|
2011-01-05 16:45:52 +01:00 |
Martin Willi
|
446a4537e5
|
Implemented a hook to set reserved bits
|
2011-01-05 16:45:51 +01:00 |
Martin Willi
|
15a612efb2
|
Use payload_get_field() to look up payload fields
|
2011-01-05 16:45:51 +01:00 |
Martin Willi
|
f5705d0fa6
|
Use standard ID getter in log_id hook
|
2011-01-05 16:45:50 +01:00 |
Martin Willi
|
64293410b7
|
Implemented a hook to toggle the IKE message request flag
|
2011-01-05 16:45:50 +01:00 |
Martin Willi
|
19a18de98a
|
Implemented hook to modify IKE header SPIs
|
2011-01-05 16:45:50 +01:00 |
Martin Willi
|
6b50b9115d
|
Fixed transport mode configuration option
|
2011-01-05 16:45:49 +01:00 |
Martin Willi
|
dbcdd4a46d
|
Disable MOBIKE in conftesting, as it changes port floating behavior
|
2011-01-05 16:45:49 +01:00 |
Martin Willi
|
9a99b745c0
|
Preload plugins configured in tests
|
2011-01-05 16:45:49 +01:00 |
Martin Willi
|
74a5dfe537
|
Added IKE options to configure source/destination ports
|
2011-01-05 16:45:48 +01:00 |
Martin Willi
|
448db6d9c0
|
Added IKE config option to fake NAT situations
|
2011-01-05 16:45:48 +01:00 |
Martin Willi
|
f2116c6de7
|
Show SPI in proposal logging hook
|
2011-01-05 16:45:48 +01:00 |
Martin Willi
|
42133e33bd
|
Implemented a hook to inject custom proposals
|
2011-01-05 16:45:48 +01:00 |