Martin Willi
|
ad3af574a4
|
moved updown script invocation to an optional plugin
|
2008-10-16 11:48:18 +00:00 |
Martin Willi
|
e17353fc31
|
bus uses finally recusive locking
other small fixes
|
2008-10-16 11:32:43 +00:00 |
Martin Willi
|
f868dc0ca2
|
condvar->wait() can handle recursive mutex
|
2008-10-16 11:29:42 +00:00 |
Martin Willi
|
229ee197a3
|
added missing EAP-AKA RFC
|
2008-10-16 07:21:30 +00:00 |
Martin Willi
|
61508be2f5
|
added a guest.mconsole() method to script mconsole (e.g. add additional conX=)
|
2008-10-15 14:47:52 +00:00 |
Martin Willi
|
1df106bf39
|
cache keys for in and outbound ESP SAs
removed redundant storing of traffic selectors in CHILD_SA (sa_policy_t)
creating TS pairs dynamically using create_policy_enumerator()
|
2008-10-15 12:24:44 +00:00 |
Tobias Brunner
|
35379b2130
|
typedef fixed
|
2008-10-15 11:34:29 +00:00 |
Martin Willi
|
0b9728986a
|
reverted changeset [4440], [4443] uses old algorithm name again
|
2008-10-15 08:50:14 +00:00 |
Martin Willi
|
9f4e5f8c47
|
store ESP keys in CHILD_SA
|
2008-10-15 08:37:56 +00:00 |
Andreas Steffen
|
ff93a76cf1
|
activate compilation of the kernel_pfkey plugin
|
2008-10-15 00:22:51 +00:00 |
Andreas Steffen
|
deb079204e
|
added PFKEYv2 UML scenarios
|
2008-10-15 00:11:00 +00:00 |
Andreas Steffen
|
c126cdc270
|
name of ESP algorithm changed to AES_XCBC_96-128
|
2008-10-14 23:55:19 +00:00 |
Martin Willi
|
e517b4b174
|
passing chunks, not prf+, to kernel interface
gives us better control of keymat in CHILD_SA
|
2008-10-14 15:17:44 +00:00 |
Tobias Brunner
|
c25c8dce60
|
typos
|
2008-10-14 12:18:53 +00:00 |
Tobias Brunner
|
35ae2d7fe7
|
directory 'build' renamed as 'packages'
|
2008-10-14 11:53:23 +00:00 |
Martin Willi
|
a985db3ff3
|
reintegrated bus-refactoring branch
|
2008-10-14 08:52:13 +00:00 |
Tobias Brunner
|
1adaa02bb2
|
merging kernel_pfkey plugin back from kernel-interface branch
|
2008-10-14 08:46:31 +00:00 |
Andreas Steffen
|
9257c3a287
|
version bump to 4.2.9
|
2008-10-14 01:53:37 +00:00 |
Andreas Steffen
|
f2780731b0
|
corrected typo
|
2008-10-13 22:54:09 +00:00 |
Andreas Steffen
|
5dadb16ef8
|
added bug fix for addr_in_subnet() to NEWS
|
2008-10-13 00:15:16 +00:00 |
Andreas Steffen
|
35c365c2e3
|
add support of --enable-eap-sim-file and --enable-kernel-pfkey configuration options
|
2008-10-13 00:09:44 +00:00 |
Martin Willi
|
405e8ecfe3
|
set guest-specific kernel parameters
removed memory setting, use mem= instead
|
2008-10-10 11:20:04 +00:00 |
Martin Willi
|
79a878466c
|
reintegrated two-sim branch providing SIM card plugin API
|
2008-10-10 08:36:01 +00:00 |
Martin Willi
|
c5ebb635a1
|
trimming additial / in some cases
|
2008-10-10 07:33:37 +00:00 |
Martin Willi
|
88f65cd589
|
use busybox compatible kill
|
2008-10-10 06:59:03 +00:00 |
Andreas Steffen
|
b165cfa945
|
remove intermediate CA certs after UML test
|
2008-10-09 22:20:56 +00:00 |
Martin Willi
|
f0974eb2c2
|
fixed MOBIKE roaming if clients address changes
|
2008-10-09 08:25:11 +00:00 |
Andreas Steffen
|
03d5f41137
|
faster implementation of addr_in_subnet()
|
2008-10-09 05:44:00 +00:00 |
Martin Willi
|
bb2059c60a
|
added proposal parsing of uncommon DH groups 3072/6144
|
2008-10-08 12:57:11 +00:00 |
Martin Willi
|
4f0241e6cf
|
some mobike improvement NEWS
|
2008-10-08 12:24:08 +00:00 |
Martin Willi
|
85be7e5b75
|
ignore routing events for our own routes
|
2008-10-08 08:29:49 +00:00 |
Martin Willi
|
ce5b17082d
|
mobike: try to keep existing source address before switching to another
|
2008-10-08 08:23:46 +00:00 |
Andreas Steffen
|
e39b271b17
|
raw public key support for charon
|
2008-10-08 07:03:39 +00:00 |
Andreas Steffen
|
d1cbe55127
|
implemented ipsec listalgs as a stroke command
|
2008-10-08 07:00:13 +00:00 |
Andreas Steffen
|
51358f9f72
|
correct fix that replaces Changeset 4378
|
2008-10-08 06:57:52 +00:00 |
Andreas Steffen
|
c85862931f
|
removing fix applied by Changeset 4378
|
2008-10-08 06:15:41 +00:00 |
Andreas Steffen
|
ec6a88f617
|
added the sql/rw-rsa and sql/rw-rsa-keyid scenarios using raw RSA public keys
|
2008-10-08 03:37:40 +00:00 |
Andreas Steffen
|
af09048e35
|
get_subject() of a CERT_TRUSTED_PUBKEY object returns ID_PUBKEY_INFO_SHA1 hash consistent with the IKEv2 keyid philosophy
|
2008-10-08 03:35:52 +00:00 |
Andreas Steffen
|
95fd1dedb3
|
Implemented BUILD_BLOB_ASN1_DER for the CERT_TRUSTED_PUBKEY subtype
|
2008-10-08 01:19:26 +00:00 |
Andreas Steffen
|
7a07cd1c75
|
fixed loop termination criterion in addr_in_subnet(). Thanks go to Wolfgang Steudel, TU Ilmenau
|
2008-10-07 21:41:45 +00:00 |
Martin Willi
|
c8ba5125d6
|
guest bootup waits for init, not for network stack (fixes 2.6.27 guest kernels)
|
2008-10-07 16:31:41 +00:00 |
Martin Willi
|
693a244d0f
|
ported mconsole-exec patch to 2.6.27-rc7
|
2008-10-07 09:09:34 +00:00 |
Martin Willi
|
aa9a300677
|
userland support to process notifies for new NAT mappings detected in UDP encapsulation
|
2008-10-07 07:55:28 +00:00 |
Andreas Steffen
|
41b1cd6b87
|
wait 5 seconds before deactivating eth1 interface on alice
|
2008-10-07 04:56:50 +00:00 |
Andreas Steffen
|
e8c58d8e64
|
explicitly load kernel-netlink plugin in UML scenarios
|
2008-10-07 04:51:20 +00:00 |
Martin Willi
|
9d9a772ee1
|
use MOBIKE enabled DPD if we are NATed
update SAs if we detect changes in NAT mappings
|
2008-10-06 13:37:04 +00:00 |
Martin Willi
|
0592212f23
|
fixed builder_cancel macro to return NULL on failed build
|
2008-10-06 13:08:49 +00:00 |
Martin Willi
|
aa1b90a5b2
|
do not run CHILD_SA delete action if rekeying
|
2008-10-03 16:01:14 +00:00 |
Andreas Steffen
|
09d7ef2614
|
added --disable-kernel-netlink configure option
|
2008-10-03 03:27:42 +00:00 |
Martin Willi
|
9c0aa46b64
|
use dpd_action also for remotely closed tunnels
|
2008-10-02 13:47:19 +00:00 |