ims-volte-vowifi
/
strongswan
9
0
Fork 0
Code Pull Requests Releases Activity
13,711 Commits 7 Branches 233 Tags 88 MiB
Commit Graph

136 Commits

Author SHA1 Message Date
Tobias Brunner a23d3073e3 pki: Load hmac plugin which is required to decrypt PKCS#12 containers 2014-12-12 13:11:29 +01:00
Andreas Steffen dce6f69546 Version bump to 5.2.2rc1 2014-12-12 12:00:20 +01:00
Tobias Brunner 700df23886 bliss: Fix monolithic build 
This requires moving test files so that the Makefile for the tests can be
included after building libstrongswan, which requires the plugin when
building monolithically.  Due to this a static helper library is required
as directly referring to object files (or source files) is not possible.

It's also necessary to avoid any link-time dependency on libstrongswan in
bliss_huffman, to avoid circular dependencies (bliss_huffman -> libstrongswan
-> bliss -> bliss_huffman).
 2014-12-12 12:00:20 +01:00
Andreas Steffen 32d19652f1 Version bump to 5.2.2dr1 2014-11-29 15:00:10 +01:00
Andreas Steffen 9d5b91d198 Created framework for BLISS post-quantum signature algorithm 2014-11-29 14:51:14 +01:00
Tobias Brunner 385d4486ba libhydra: Add test runner 2014-10-30 12:32:44 +01:00
Andreas Steffen 4b1b91913a Version bump to 5.2.1 2014-10-18 12:12:17 +02:00
Martin Willi 4e37bdbf57 kernel-pfroute: Check for RTM_IFANNOUNCE availability 
This message is not available on OS X.
 2014-10-14 16:33:10 +02:00
Martin Willi f684be6583 vici: Use "gem"-assisted vici ruby gem building and installation 2014-10-10 11:42:17 +02:00
Martin Willi 409f1fc144 configure: Add global --enable-ruby-gems and --with-rubygemdir options 
This provides the options to build and install ruby gems for components
providing them, such as vici.
 2014-10-10 11:42:17 +02:00
Andreas Steffen f83215bbdb version bump to 5.2.1rc1 2014-10-06 23:14:13 +02:00
Martin Willi b2c1973ffb ext-auth: Add an ext-auth plugin invoking an external authorization script 
Original patch courtesy of Vyronas Tsingaras.
 2014-10-06 18:30:46 +02:00
Andreas Steffen d6fb2cc6e3 Merged libpts into libimcv 2014-10-05 12:55:37 +02:00
Martin Willi 44b6a34d43 configure: Load fetcher plugins after crypto base plugins 
Some fetcher plugins (such as curl) might build upon OpenSSL to implement
HTTPS fetching. As we set (and can't unset) threading callbacks in our
openssl plugin, we must ensure that OpenSSL functions don't get called after
openssl plugin unloading.

We achieve that by loading curl and all other fetcher plugins after the base
crypto plugins, including openssl.
 2014-09-24 17:34:54 +02:00
Martin Willi 0097141858 init: Provide a service file for charon-systemd using swanctl 2014-09-22 14:19:38 +02:00
Martin Willi b2f76c514d systemd: Check if ./configure detected a systemd system unit directory 2014-09-22 14:19:38 +02:00
Martin Willi db8ae75bf6 systemd: Discover and check systemd libraries with pkg-config during configure 2014-09-22 14:19:38 +02:00
Martin Willi 73ed38e74f systemd: Provide a charon-systemd daemon targeting full systemd integration 2014-09-22 13:55:11 +02:00
Tobias Brunner b04f40406d configure: Add additional includes when checking for linux/fib_rules.h 
This seems to be required on Cent OS 6.5.
 2014-08-11 18:40:18 +02:00
Tobias Brunner fafed376e7 imv-swid: Use pkg-config to check for libjson-c 
The package/library is called libjson-c on recent distributions.
Some like Ubuntu 14.04 provide symlinks with the old name but these
will eventually disappear.  Using pkg-config allows us to easily check
for it (with a fallback) and configure the proper compiler flags.

Fixes #663.
 2014-07-30 16:57:00 +02:00
Andreas Steffen 13ec4cf2ad Version bump to 5.2.1dr1 2014-07-16 15:59:56 +02:00
Andreas Steffen af494268fb Version bump to 5.2.0 2014-07-08 15:24:31 +02:00
Tobias Brunner 38f27e172c conf: Document swanctl options 2014-06-30 13:25:13 +02:00
Tobias Brunner 4d066ef7fc conf: Document aikgen options 2014-06-30 13:25:13 +02:00
Tobias Brunner 3986c1e3fd autoconf: Replace --disable-tools option with --disable-scepclient 
Since using a separate option for pki this was the only tool that was still
enabled by that option.
 2014-06-30 13:25:13 +02:00
Tobias Brunner 566d1a90cd Remove kernel-klips plugin 2014-06-19 14:20:33 +02:00
Tobias Brunner f245ac6cc0 starter: Add tests for ipsec.conf parser 2014-06-19 14:00:48 +02:00
Andreas Steffen b16e177e06 Version bump to 5.2.0rc1 2014-06-15 11:40:15 +02:00
Martin Willi bd19e27ae3 windows: Do not check if having clock_gettime() 
Windows does not have it, but libwinpthread has. If this library is available
during build, it will be linked, which we prefer to avoid.
 2014-06-06 15:34:12 +02:00
Andreas Steffen 9d228ddb04 Version bump to 5.2.0dr6 2014-06-06 11:18:17 +02:00
Martin Willi f48c26bce3 pki: Support complex trustchain and revocation checking in --verify 2014-06-04 16:34:16 +02:00
Martin Willi 6f90fc8061 winhttp: Implement a http(s) fetcher based on Microsofts WinHTTP API 2014-06-04 16:34:15 +02:00
Martin Willi 00780f0238 kernel-iph: Add a stub for a Windows IP Helper based networking backend 2014-06-04 16:32:07 +02:00
Martin Willi 8d91eee3fc kernel-wfp: Add a stub for a Windows Filtering Platform based IPsec backend 2014-06-04 16:32:05 +02:00
Martin Willi fb0b539084 socket-win: Implement a Windows socket plugin using Winsock2 2014-06-04 16:31:09 +02:00
Martin Willi 3b7b806d27 windows: Compile with -mno-ms-bitfields if option not set explicitly 
-mms-bitfields is the default in newer MinGWs, but it breaks
__attribute__((packed)).
 2014-06-04 15:53:13 +02:00
Martin Willi 0ca8541564 configure: Fix attribute((packed)) test when using -Werror 2014-06-04 15:53:13 +02:00
Martin Willi 3ab6082a0f configure: Mark conftest variable as unused to pass test with -Werror 
When using -Werror, the warning for the unused variable would let the test fail,
even if in6addr_any is available.
 2014-06-04 15:53:13 +02:00
Martin Willi 2d42dce4a4 configure: Don't use -rdynamic with the LLVM toolchain 2014-06-04 15:53:13 +02:00
Martin Willi 5cd28cd25a pki: Provide a fallback if strptime() not supported 
For simplicity, we support the default pki datetime format only, but optionally
accept four digit years for longer lifetimes.
 2014-06-04 15:53:11 +02:00
Martin Willi b70849ada2 configure: Separate pki from --disable-tools 
While pki builds and runs just fine on Windows, this is not true for scepclient.
 2014-06-04 15:53:08 +02:00
Martin Willi 4161ee6678 configure: Check if __attribute__((packed)) works as expected 
This is really hard to detect if not, and is not unlikely. If -mms-bitfields
is given, the attribute does not work. Even worse, that switch is by default
on with GCC/MinGW 4.7+ for Windows targets.

http://gcc.gnu.org/bugzilla/show_bug.cgi?id=52991
 2014-06-04 15:53:08 +02:00
Martin Willi ee2498e3d6 bus: Build syslog logger depending on syslog() availability 2014-06-04 15:53:05 +02:00
Martin Willi 8e1c0d15a9 mysql: Add Windows support 
As the mysql_config script is not available for Windows, we use a hardcoded
library name and no additional CFLAGS. This builds fine against the binary
MySQL Connector/C distribution.
 2014-06-04 15:53:04 +02:00
Martin Willi df4341747c charon-svc: Implement a Windows IKE service using libcharon 
The resulting binary can be either run as Windows service or directly as
console application.
 2014-06-04 15:53:04 +02:00
Martin Willi b9dca7057c filelog: Ignore flush_line option if setlinebuf() not supported 2014-06-04 15:53:04 +02:00
Martin Willi c6503d451a charon: Don't use syslog() if not supported 2014-06-04 15:53:03 +02:00
Martin Willi 396baeaea2 windows: Never link to libpthread 2014-06-04 15:53:03 +02:00
Martin Willi b7a4d44bd0 openssl: Check and link against libeay32 instead of libcrypto on Windows 
Most Windows OpenSSL builds come with the crypto library named libeay32.
 2014-06-04 15:53:02 +02:00
Martin Willi 4163421f91 plugins: Don't link with -rdynamic on Windows 2014-06-04 15:53:02 +02:00