Andreas Steffen
|
b59340a2c3
|
NEWS cosmetics
|
2010-07-21 21:43:43 +02:00 |
Martin Willi
|
e87b78c6ad
|
Multiple RADIUS server NEWS
|
2010-07-21 17:27:06 +02:00 |
Martin Willi
|
ce7967c50c
|
Implemented support for multiple RADIUS servers
|
2010-07-21 17:25:09 +02:00 |
Martin Willi
|
58d2ef6e14
|
Migrated eap-radius plugin to INIT/METHOD macros
|
2010-07-21 17:09:27 +02:00 |
Martin Willi
|
5b6c220d13
|
Added log statement if peer requests EAP, but current config does not allow it
|
2010-07-21 17:09:15 +02:00 |
Andreas Steffen
|
e93f452825
|
remove the private updown scripts after use
|
2010-07-17 23:25:15 +02:00 |
Andreas Steffen
|
15fd135564
|
minor fixes in the ikev2/rw-mark-in-out scenarios
|
2010-07-17 17:36:04 +02:00 |
Andreas Steffen
|
b22bb9f21c
|
updated NEWS
|
2010-07-17 17:25:01 +02:00 |
Andreas Steffen
|
f5baa5c4cf
|
some reformulations
|
2010-07-17 17:19:26 +02:00 |
Andreas Steffen
|
d2d7ed9227
|
the ikev2/nat-two-rw-mark and ikev2/rw-mark-in-out scenarios use the PLUTO_MARK_IN and PLUTO_ESP_ENC variables in the mark_update script
|
2010-07-17 16:32:47 +02:00 |
Andreas Steffen
|
16c97c8e59
|
documented the new PLUTO environment variables available in the updown script
|
2010-07-17 13:41:40 +02:00 |
Andreas Steffen
|
ae0e3b03b7
|
in a ESP_IN_UDP situation make UDP port available in the updown script
|
2010-07-17 13:27:19 +02:00 |
Andreas Steffen
|
34e93c0280
|
fix html error in scenario description
|
2010-07-17 13:09:28 +02:00 |
Andreas Steffen
|
14665981a5
|
make xfrm marks available in the updown scripts
|
2010-07-17 13:08:50 +02:00 |
Andreas Steffen
|
ff090f8781
|
check for mark changes in ipsec update
|
2010-07-17 09:13:48 +02:00 |
Andreas Steffen
|
cde633d632
|
all x509 based sql scenarios require the revocation plugin
|
2010-07-15 23:19:52 +02:00 |
Andreas Steffen
|
c349a68b2e
|
all x509 based pfkey scenarios require the revocation plugin
|
2010-07-15 23:17:37 +02:00 |
Andreas Steffen
|
f5731b4579
|
all x509 based p2pnat scenarios require the revocation plugin
|
2010-07-15 23:07:12 +02:00 |
Andreas Steffen
|
295d9cc313
|
all x509 based ipv6/*-ikev2 scenarios require the revocation plugin
|
2010-07-15 23:02:17 +02:00 |
Andreas Steffen
|
84fe65bd43
|
all x509 based ike scenarios require the revocation plugin
|
2010-07-15 22:40:20 +02:00 |
Andreas Steffen
|
001787b3eb
|
all x509 based openssl-ikev2 scenarios require the revocation plugin
|
2010-07-15 22:33:05 +02:00 |
Andreas Steffen
|
6c2bd2a7d8
|
all x509 based gcrypt-ikev2 scenarios require the revocation plugin
|
2010-07-15 22:03:16 +02:00 |
Andreas Steffen
|
2cf4d34f2f
|
all x509 based ikev2 scenarios require the revocation plugin
|
2010-07-15 21:39:01 +02:00 |
Andreas Steffen
|
afe5d482db
|
ikev2/net2net-psk-dscp does not need certificate support
|
2010-07-15 21:37:45 +02:00 |
Andreas Steffen
|
a3527c39dd
|
add revocation plugin to ikev2/rw-cert scenario
|
2010-07-15 20:03:11 +02:00 |
Andreas Steffen
|
3de510ca43
|
Warn about manual plugin load directives for pluto/charon with --disable-load-warning compile option
|
2010-07-15 06:29:26 +02:00 |
Martin Willi
|
83b957107f
|
Revert "Warn about manual plugin load directives for pluto/charon"
This reverts commit 5c46726d0d .
|
2010-07-14 07:17:16 +02:00 |
Andreas Steffen
|
fccf00576f
|
activate --enable-addrblock configure option in UML scenarios
|
2010-07-13 21:04:20 +02:00 |
Martin Willi
|
5c46726d0d
|
Warn about manual plugin load directives for pluto/charon
|
2010-07-13 14:43:45 +02:00 |
Martin Willi
|
15d9904406
|
Remove plugin load directives from default strongswan.conf
|
2010-07-13 14:28:11 +02:00 |
Martin Willi
|
7f3a946874
|
Added NEWS about --signcrl and PEM support in pki utility
|
2010-07-13 14:18:19 +02:00 |
Martin Willi
|
b5b95c75de
|
Added pki PEM encoding support for certificates, CRLs and PKCS10 requests
|
2010-07-13 14:14:39 +02:00 |
Martin Willi
|
e3b987f79b
|
Added support for Certificate, CRL and PKCS10 encoding to PEM plugin
|
2010-07-13 13:53:33 +02:00 |
Martin Willi
|
0406eeaacb
|
Support different encoding types in certificate.get_encoding()
|
2010-07-13 13:53:20 +02:00 |
Martin Willi
|
da9724e6d0
|
Renamed key_encod{ing,der}_t and constants, prepare for generic credential encoding
|
2010-07-13 11:29:35 +02:00 |
Martin Willi
|
24d327ab4d
|
Moved keys/key_encoding.[ch] to cred_encoding.[ch]
|
2010-07-13 11:02:35 +02:00 |
Martin Willi
|
e1c51fd859
|
Fixed doxygen group of cert_validator interface
|
2010-07-13 10:42:02 +02:00 |
Martin Willi
|
e9448cfc2f
|
Added NEWS for revocation/addrblock plugin
|
2010-07-13 10:26:07 +02:00 |
Martin Willi
|
f90d465ce2
|
Added addrblock plugin to RFC3779 test cases
|
2010-07-13 10:26:07 +02:00 |
Martin Willi
|
1f457546c1
|
Added revocation plugin to ikev2 crl/ocsp test cases
|
2010-07-13 10:26:07 +02:00 |
Martin Willi
|
e57a29c731
|
Moved X509 ipAddrBlock checking to the addrblock plugin
|
2010-07-13 10:26:07 +02:00 |
Martin Willi
|
be715344c2
|
Added a hook to narrow traffic selectors for CHILD_SAs
|
2010-07-13 10:26:07 +02:00 |
Martin Willi
|
88fa56b1ad
|
Moved bus_t to METHOD/INIT macros
|
2010-07-13 10:26:07 +02:00 |
Martin Willi
|
1c8c924610
|
Moved addrblock plugin to libcharon
|
2010-07-13 10:26:07 +02:00 |
Martin Willi
|
c2e5cee413
|
Moved CRL/OCSP checking to a dedicated plugin called revocation
|
2010-07-13 10:26:07 +02:00 |
Martin Willi
|
c1f9dad672
|
Made some useful methods in the credential manager public
|
2010-07-13 10:26:07 +02:00 |
Martin Willi
|
5f9e62c54f
|
Moved X509 addrBlock validation to a separate addrblock plugin
|
2010-07-13 10:26:07 +02:00 |
Martin Willi
|
2feb16f5dd
|
Added a certificate validation hook to the credential manager
|
2010-07-13 10:26:07 +02:00 |
Martin Willi
|
c3a9bef08e
|
Migrated credential manager to INIT/METHOD macros
|
2010-07-13 10:26:07 +02:00 |
Martin Willi
|
2ccc02a4fd
|
Moved credential manager to libstrongswan
|
2010-07-13 10:26:07 +02:00 |