Martin Willi
bb16217581
Store proposal number in proposal_t to reuse it in the selected proposal
...
According to RFC 5996 3.3.1, we MUST reuse the proposal number of
the selected proposal in the SA payload reply.
2010-10-28 15:08:14 +02:00
Martin Willi
d454c586ab
Migrated proposal_t to INIT/METHOD macros
2010-10-28 13:06:20 +00:00
Martin Willi
806b69a467
Migrated proposal_substructure to INIT/METHOD macros, removed unused methods
2010-10-28 13:06:20 +00:00
Martin Willi
80f93f20a4
Migrated sa_payload to INIT/METHOD macros, removed unused methods
2010-10-28 13:06:19 +00:00
Martin Willi
c8f5aaf0a4
Renamed mem_cred_t clear function internally to clear_, fixes potential name conflict
2010-10-28 13:06:19 +00:00
Tobias Brunner
5feda42724
pluto: Fixed a regression introduced in f565d0c575
.
...
Since scx_add could return a previously created smartcard object, using
sc->last_cert to store the newly added certificate could lead to segfaults.
2010-10-26 09:58:13 +02:00
Tobias Brunner
71711b67b4
pluto: Locking fixed in cert_add.
2010-10-26 09:58:13 +02:00
Andreas Steffen
1f2c328355
payloads are not aligned to 4 byte boundaries
2010-10-25 19:31:07 +02:00
Andreas Steffen
fd459a8f45
version bump to 4.5.0rc3
2010-10-25 18:20:38 +02:00
Andreas Steffen
9b9352c83b
fixed 64 bit printf() issue
2010-10-24 20:30:19 +02:00
Tobias Brunner
4915ea8217
Updated Android.mk to latest Makefile.am.
2010-10-21 15:02:32 +02:00
Tobias Brunner
ed174fd7e2
Added missing include for RAND_seed and RAND_status.
2010-10-21 14:16:09 +02:00
Martin Willi
185c2669d5
Set ownership of all HA ClusterIP control files
2010-10-20 14:55:26 +02:00
Martin Willi
384b69d964
Set ownership/permissions of HA control socket
2010-10-20 14:54:51 +02:00
Tobias Brunner
a5477a6fa3
Changed some minor stuff in ipsec.conf(5) man page.
...
Also added some "links" to strongswan.conf(5).
2010-10-19 17:18:30 +02:00
Tobias Brunner
6bcf6016e6
Added accepted values to all options in ipsec.conf(5) man page.
2010-10-19 17:16:07 +02:00
Tobias Brunner
a6f8100812
Removed unsupported options from ipsec.conf(5) man page.
2010-10-19 17:06:57 +02:00
Tobias Brunner
8207a74200
Fixed SEE ALSO references in main man pages.
2010-10-19 10:53:54 +02:00
Tobias Brunner
9f8ceffbd9
Added notes about expiry and rekey to ipsec.conf(5) man page.
2010-10-19 10:53:54 +02:00
Martin Willi
e3bde0ef82
Prefer the 'server identifier' attribute address to send DHCP requests to
2010-10-18 12:32:16 +02:00
Andreas Steffen
ce84a5cb1d
version bump to 4.5.0rc2
2010-10-16 20:47:38 +02:00
Andreas Steffen
4b7d1262d9
define state_story for STATE_UNDEFINED
2010-10-16 16:15:10 +02:00
Tobias Brunner
b3cabd1f03
Added some NEWS about Maemo, MOBIKE and the kernel interfaces.
2010-10-15 18:17:09 +02:00
Tobias Brunner
6c6492d7e8
Some Doxygen fixes.
2010-10-15 18:14:48 +02:00
Tobias Brunner
5ce1a63054
Missed one unneeded destructor.
2010-10-15 17:33:57 +02:00
Tobias Brunner
fa20849431
Deferred instantiation of socket implmentations until registration.
...
Instantiating the implementations on plugin load was problematic
in case multiple socket plugins were loaded. Now, the first one
registered is instantiated.
2010-10-15 17:30:21 +02:00
Egbert Koening
4de8398f93
fix segfault when reading certificate from smartcard
2010-10-15 11:09:38 +02:00
Tobias Brunner
d3622166dd
Added some generated files to .gitignore.
2010-10-15 10:25:08 +02:00
Martin Willi
18a4f86500
Added NEWS about multiple RADIUS servers, LED plugin
2010-10-15 10:13:35 +02:00
Martin Willi
ac544be241
Fixed IKEv2 RFC number in NEWS
2010-10-15 10:00:55 +02:00
Andreas Steffen
b14923ec50
IKEv2 is now the default key exchange protocol
2010-10-14 21:28:05 +02:00
Andreas Steffen
8a1353fc0e
added TNC support to NEWS
2010-10-14 21:20:27 +02:00
Andreas Steffen
8d01a80819
do not send certificate requests in EAP-ONLY scenarios
2010-10-14 21:10:03 +02:00
Andreas Steffen
260d056170
suport certificate-based client authentication with EAP-TTLS
2010-10-14 21:00:41 +02:00
Andreas Steffen
ea7c8b3880
added ikev2/rw-eap-tnc-ls scenario
2010-10-14 21:00:41 +02:00
Tobias Brunner
cf1bf2656e
Moved sources of the NetworkManager plugin to src/frontends.
2010-10-14 17:47:02 +02:00
Tobias Brunner
333bb05122
Maemo: Added a basic debian package for charon.
2010-10-14 17:36:20 +02:00
Tobias Brunner
c2fad1916a
Avoid recursive loop if no socket implementations are loaded.
2010-10-14 17:36:20 +02:00
Tobias Brunner
070b63d704
Maemo: Added a widget to "unselect" a certificate.
2010-10-14 17:36:20 +02:00
Tobias Brunner
889c7947a6
Avoid duplicate certificates in mem_cred_t.
2010-10-14 17:36:20 +02:00
Tobias Brunner
3a6c5493af
Maemo: Load CA certificates from system directories.
2010-10-14 17:36:20 +02:00
Tobias Brunner
31e7a45647
Maemo: OK is default response in password dialog.
2010-10-14 17:36:20 +02:00
Tobias Brunner
be26f9a280
Maemo: Handle status changes from charon.
...
Use synchronous invocation for "Connect" again.
2010-10-14 17:36:19 +02:00
Tobias Brunner
ef247379ea
Maemo: Track the status of the current SA and send changes to the frontend.
2010-10-14 17:36:19 +02:00
Tobias Brunner
6f59971371
Maemo: Properly unregister the RPC callbacks.
2010-10-14 17:36:19 +02:00
Tobias Brunner
9f01ba4044
Maemo: Plugin implements the listener_t interface.
2010-10-14 17:36:19 +02:00
Tobias Brunner
39e5b21310
Maemo: Extracted most plugin code to a separate class, so we can use that as listener.
2010-10-14 17:36:19 +02:00
Tobias Brunner
4fef86d1ed
Maemo: Initiate consumes a child_sa reference, so get an additional one.
2010-10-14 17:36:19 +02:00
Tobias Brunner
28c51809a7
Maemo: Basic functionality added to notify the applet about status updates.
2010-10-14 17:36:19 +02:00
Tobias Brunner
c213353393
Maemo: Clear the credentials before each connection attempt.
2010-10-14 17:36:19 +02:00