Martin Willi
|
bc6ff2fc99
|
Added strongswan.conf options to configure retransmission timeouts
|
2010-01-11 16:42:12 +01:00 |
Martin Willi
|
527f7f9b1c
|
Added a "double" getter to libstrongswan settings
|
2010-01-11 16:39:28 +01:00 |
Martin Willi
|
dbee988e28
|
Cast unaligned memcpy() args to char*, avoids over-optimization on ARM
See http://infocenter.arm.com/help/index.jsp?topic=/com.arm.doc.faqs/ka3934.html
|
2010-01-11 15:35:41 +01:00 |
Andreas Steffen
|
8fb389b299
|
added ikev2/rw-eap-sim-only-radius scenario
|
2010-01-11 11:20:45 +01:00 |
Andreas Steffen
|
b979032088
|
log EAP-only authentication proposal
|
2010-01-11 11:17:40 +01:00 |
Andreas Steffen
|
87eb27681a
|
send strongSwan Vendor ID in ikev2/alg-sha256-96 scenario
|
2010-01-11 00:54:33 +01:00 |
Andreas Steffen
|
dd37fa8620
|
pluto and charon are using the same strongSwan Vendor ID
|
2010-01-11 00:43:46 +01:00 |
Martin Willi
|
aca9f9ab5a
|
Added NEWS about mutual EAP-only authentication
|
2010-01-07 16:16:22 +01:00 |
Martin Willi
|
34948b9971
|
EAP-MSCHAPv2 is indeed mutual, but is prone to MITM dictionary attacks
|
2010-01-07 15:56:11 +01:00 |
Martin Willi
|
f34702ff3f
|
Support EAP-only authentication for mutual and key deriving EAP methods
|
2010-01-07 15:51:30 +01:00 |
Martin Willi
|
12fca6cc9f
|
Indicate and dected support for EAP-only authentication
|
2010-01-07 14:30:28 +01:00 |
Martin Willi
|
cdad91de49
|
Added NEWS for the new Vendor ID requirement for private use allocations
|
2010-01-07 11:14:33 +01:00 |
Martin Willi
|
023fd8f135
|
Match to private use algorithms only if we know we are talking to strongSwan
|
2010-01-07 11:07:53 +01:00 |
Martin Willi
|
b3349c5694
|
Interpret private use BEET mode notify only if we know we are talking to strongSwan
|
2010-01-07 09:37:38 +00:00 |
Martin Willi
|
a5a0bcaa04
|
Add an option to send a vendor ID, allows us to properly support private extensions
|
2010-01-07 09:37:27 +00:00 |
Andreas Steffen
|
580063971b
|
added some recent new attributes registered with IANA
|
2010-01-07 07:49:16 +01:00 |
Andreas Steffen
|
3e33ae1004
|
ipsec pki --self|issue supports --pathlen option setting a path length constraint
|
2009-12-31 15:13:35 +01:00 |
Andreas Steffen
|
7eaec999ca
|
make error message about missing MD4 hasher more explicit
|
2009-12-30 23:32:03 +01:00 |
Andreas Steffen
|
83c282ebb4
|
differentiate EAP method initialization errors
|
2009-12-30 21:34:59 +01:00 |
Andreas Steffen
|
a2847740d2
|
removed charon-specific load statement in pluto scenario
|
2009-12-26 17:13:53 +01:00 |
Tobias Brunner
|
e9a1852aac
|
Pluto's fetcher thread is now created via libstrongswan.
|
2009-12-26 15:50:34 +01:00 |
Andreas Steffen
|
c5454eaf61
|
added RFC 3779 CA
|
2009-12-25 11:20:59 +01:00 |
Andreas Steffen
|
7c697964d3
|
added three RFC 3779 scenarios
|
2009-12-25 11:20:59 +01:00 |
Andreas Steffen
|
e98a4d8028
|
Added RFC 3779 support to NEWS
|
2009-12-25 11:20:58 +01:00 |
Andreas Steffen
|
d002c62347
|
enforce RFC 3779 address constraints on traffic selectors
|
2009-12-25 11:20:58 +01:00 |
Tobias Brunner
|
ff4d4aa99a
|
Adapted the load_tester kernel-interface to the changes introduced in 6ec949e02 .
|
2009-12-23 17:15:28 +01:00 |
Tobias Brunner
|
cb186f9922
|
Added some IPv6 tweaks for Android.
Android 1.6 does not yet support the Advanced Sockets API for IPv6 as defined in
RFC 3542. Also, in6addr_any is missing.
|
2009-12-23 17:03:42 +01:00 |
Tobias Brunner
|
a37cf4580a
|
Semicolon removed.
|
2009-12-23 17:03:42 +01:00 |
Tobias Brunner
|
3f490ff978
|
According to the man page (and the header files in Android) prctl takes a total of 5 arguments.
|
2009-12-23 17:03:42 +01:00 |
Tobias Brunner
|
85202e8795
|
Added a workaround for the missing pthread_cancel on Android.
|
2009-12-23 17:03:42 +01:00 |
Tobias Brunner
|
b2944d71ca
|
Use pthread_cond_timedwait_monotonic on Android.
|
2009-12-23 17:03:41 +01:00 |
Tobias Brunner
|
01e606546c
|
Cache queue locking in credential manager corrected.
|
2009-12-23 17:03:41 +01:00 |
Tobias Brunner
|
47e98cda5f
|
Join worker threads when destroying the processor.
|
2009-12-23 17:03:41 +01:00 |
Tobias Brunner
|
b97cc0ab3f
|
Callback job refactored and fixed.
|
2009-12-23 17:03:41 +01:00 |
Tobias Brunner
|
89ec5bef08
|
Whitespace cleanup.
|
2009-12-23 17:03:41 +01:00 |
Tobias Brunner
|
4ec2c94b5d
|
Readding changes that got lost during refactoring/rebasing.
|
2009-12-23 17:03:41 +01:00 |
Tobias Brunner
|
4a5a5dd290
|
Using the thread wrapper in charon, libstrongswan and their plugins.
|
2009-12-23 17:03:41 +01:00 |
Tobias Brunner
|
c48eea9203
|
Adding an object-oriented wrapper for thread-specific values.
|
2009-12-23 17:02:26 +01:00 |
Tobias Brunner
|
0d5c6a28d5
|
Adding an object-oriented wrapper for threads.
|
2009-12-23 17:02:26 +01:00 |
Tobias Brunner
|
070ac5b0b7
|
Check if libpthread is required or not.
|
2009-12-23 17:02:26 +01:00 |
Tobias Brunner
|
866dc0134a
|
Check for pthread_condattr_init added to configure script.
|
2009-12-23 17:02:25 +01:00 |
Tobias Brunner
|
c33d4f29bc
|
Generating the apidoc in an out-of-tree build fixed.
|
2009-12-23 17:02:25 +01:00 |
Tobias Brunner
|
5fe538504e
|
Moved implementation of condvar_t to mutex.c because it requires access to private_mutex_t.
|
2009-12-23 17:02:25 +01:00 |
Tobias Brunner
|
eba64cef41
|
Separated the public interfaces of the threading primitives.
|
2009-12-23 17:01:53 +01:00 |
Tobias Brunner
|
f36143b0ba
|
Implemented a read-write lock using only mutex_t and condvar_t (in case the pthread_rwlock_* group of functions is not available).
|
2009-12-23 17:01:30 +01:00 |
Tobias Brunner
|
b1f35d0695
|
Threading primitives separated.
|
2009-12-23 17:01:30 +01:00 |
Tobias Brunner
|
14f7091280
|
Moved mutex.c to a separate folder in order to cleanly wrap other threading primitives (and utils/mutex.h is now threading.h).
|
2009-12-23 17:00:58 +01:00 |
Andreas Steffen
|
32d8f44229
|
verify RFC3779 IP address blocks along X.509 certificate trust chain
|
2009-12-23 14:21:31 +01:00 |
Martin Willi
|
f8f4f31a77
|
Fixed untoh32 function
|
2009-12-23 13:08:56 +01:00 |
Andreas Steffen
|
925eadba5f
|
do not recalculate netbits for true subnets
|
2009-12-22 17:07:08 +01:00 |