Martin Willi
a6f31da40a
added missing enumerator implementation
2007-10-03 05:29:49 +00:00
Andreas Steffen
c57f8cc1ee
check for NAT faking log entry
2007-10-02 20:35:48 +00:00
Andreas Steffen
701ece07fb
added force-udp-encaps scenario
2007-10-02 20:24:13 +00:00
Andreas Steffen
7b315fcd1f
added mobike=no to net2net scenarios
2007-10-02 19:27:31 +00:00
Andreas Steffen
cd45c2faf3
switched mobike-nat and mobike-virtual-ip scenarios to a virtual IP of 10.3.0.3
2007-10-02 19:23:12 +00:00
Andreas Steffen
9c7aac664c
version bump to 4.1.7
2007-10-02 19:11:03 +00:00
Andreas Steffen
effdbc7c70
activated the libstrongswan integrity test
2007-10-02 19:10:24 +00:00
Tobias Brunner
183ddc20a9
typo
2007-10-02 13:56:58 +00:00
Tobias Brunner
9b997daab9
do not attempt to encrypt payloads without crypter or signer (allows to override message rules)
2007-10-02 13:31:12 +00:00
Martin Willi
06d00e4f7b
fixed "ipsec statusall" SPI formatting
2007-10-02 13:11:23 +00:00
Tobias Brunner
0572d41459
destruction helper macros
2007-10-02 12:04:03 +00:00
Martin Willi
e4c9b92171
fixed sqlite database path
2007-10-02 11:55:19 +00:00
Tobias Brunner
56db479192
ID payload with explicit payload type
2007-10-02 11:55:10 +00:00
Tobias Brunner
1fbcbe32d0
get_first_payload_type for message_t
2007-10-02 11:42:27 +00:00
Martin Willi
6e19327473
updated NEWS for 4.1.7
2007-10-02 11:36:54 +00:00
Tobias Brunner
17e78a0981
dummy callback added to interface manager
2007-10-02 11:33:16 +00:00
Martin Willi
754f90165f
added thread initialization/deinitialization hooks
...
moved empty_enumerator to a public implementation
2007-10-02 11:23:14 +00:00
Martin Willi
06011f6882
remove control sockets on startup, as we don't have privileges on shutdown
2007-10-02 11:20:07 +00:00
Martin Willi
a3f100fa09
improved debugging code for traffic selector processing
2007-10-02 07:39:56 +00:00
Martin Willi
f9b8417a7c
renamed force_encap to forceencaps (as it is named in openswan)
2007-10-02 06:57:58 +00:00
Andreas Steffen
b3d23996eb
fixed path to the local libstrongswan build
2007-10-01 20:15:28 +00:00
Martin Willi
f53b74c96f
moved force_encap to ike_config, enables responder to enforce udp encapsulation
...
fixed bugs in force_encap code
2007-10-01 16:41:34 +00:00
Martin Willi
011fb1b97e
removed accidentally checked in debugging code
2007-10-01 12:25:26 +00:00
Martin Willi
9dae1bed00
implemented IKEv2 force_encap connection parameter
...
enforces UDP encapsulation by faking NAT detection payloads
to hurdle restrictive firewalls
2007-10-01 12:19:39 +00:00
Martin Willi
92232dab33
fixed stuid()/setgid() and error handling
2007-10-01 09:07:10 +00:00
Martin Willi
9f3c55cdc4
fixed updown script privilige inheritance for pluto, too
2007-09-28 09:42:55 +00:00
Martin Willi
f215e91999
implemented more aggressive MOBIKE path probing
...
do not queue more than one MOBIKE task
2007-09-28 08:22:37 +00:00
Martin Willi
052d58feaf
fixed CHILD_SA SPI byte order in XML interface
2007-09-28 07:05:15 +00:00
Martin Willi
055d016b49
changed inheritable capability set to the permitted one to execute firewall script with CAP_NET_ADMIN
2007-09-28 07:04:09 +00:00
Martin Willi
780050cbc3
implemented proper argument parsing code
2007-09-28 06:43:59 +00:00
Martin Willi
a57ab4d690
removed colons from session cookie
2007-09-27 13:10:10 +00:00
Martin Willi
85c6fc0283
reduced debbugging level
2007-09-27 13:09:50 +00:00
Martin Willi
983d7cd292
made add_ip()/del_ip() calls synchron (waiting until kernel event received)
...
this should fix MOBIKE route migration with virtual IPs
2007-09-27 12:48:00 +00:00
Tobias Brunner
278396b6da
typos
2007-09-27 10:36:03 +00:00
Martin Willi
93720075df
implemented SHA1 encrypted passwords for manager
2007-09-27 07:15:47 +00:00
Martin Willi
324abae2ef
added vsyslog to leak detectives white list
...
removed debugging hook on openac cleanup
2007-09-27 06:40:50 +00:00
Martin Willi
87d0427def
updated TODO
2007-09-26 15:08:34 +00:00
Martin Willi
8207e3ea4d
fixed argument processing bug
2007-09-26 15:07:34 +00:00
Martin Willi
c295d0eb4b
refactored strongswan manager
...
removed buggy request parsing code, use ClearSilvers CGI kit instead
fixed CHILD_SA listing in manager (needs better design)
using secure XML communication through unix sockets
removed images with questionable (non-GPL) license
2007-09-26 14:02:21 +00:00
Andreas Steffen
a9522e1600
cleaning up
2007-09-25 20:13:06 +00:00
Andreas Steffen
b8eb1644a7
updated openac man page
2007-09-25 20:11:28 +00:00
Andreas Steffen
75dbbcfe31
updated copyright
2007-09-25 20:10:58 +00:00
Andreas Steffen
c4e252c55b
ignore : separators in hex input
2007-09-25 20:09:40 +00:00
Andreas Steffen
a4a3632c30
fixed bug occuring with multiple queued Quick Modes and NAT Traversal
2007-09-25 20:07:31 +00:00
Andreas Steffen
8129cc848a
fixed bug occuring with multiple queued Quick Modes and NAT Traversal
2007-09-25 20:07:04 +00:00
Martin Willi
d9d69536b0
improved MOBIKE roaming between interfaces
2007-09-24 12:15:25 +00:00
Andreas Steffen
e5f1ead26f
correct build of the ac signature
2007-09-19 04:57:45 +00:00
Andreas Steffen
e0b3a60578
replace sizeof(buf) by BUF_LEN
2007-09-18 22:10:52 +00:00
Andreas Steffen
230702901f
recovered lost asn1_init() function
2007-09-18 21:21:19 +00:00
Andreas Steffen
dbba276912
declared timetoasn1()function
2007-09-18 21:04:55 +00:00