Martin Willi
c0d63ac9db
updated INSTALL to conform with autotools
...
added a short HACKING introduction
2006-06-08 06:34:52 +00:00
Martin Willi
8d77eddec2
further work for rekeying:
...
get liftimes from policy
added new state
initiation of rekeying done
proposal redone:
removed support for AH+ESP proposals
2006-06-07 13:26:23 +00:00
Martin Willi
a401efd091
proper leak detective hook for realloc
...
excluded pthread_setspecific from leak detective
2006-06-07 13:22:38 +00:00
Martin Willi
6a030ba9ea
fixed a memleak
2006-06-07 05:54:09 +00:00
Andreas Steffen
0f2094930d
cosmetics
2006-06-06 06:24:04 +00:00
Andreas Steffen
71c80765a5
ipv6-host2host scenario added
2006-06-06 05:43:32 +00:00
Andreas Steffen
fc0afb6810
created IPv6 environment
2006-06-06 05:41:21 +00:00
Martin Willi
32b6500fbf
job management:
...
moved job code from thread_pool to job, jobs have an "execute" method now
added two new jobs: delete_child_sa & rekey_child_sa
kernel interface:
listens now for ACQUIRE & EXPIRE
supports hard and soft lifetimes
fires jobs for delete and rekey child sa
ike sa manager:
can checkout IKE SAs by requid of owned CHILD SAs
we have now the infrastructure to do the rekeying... :-)
2006-05-31 14:23:15 +00:00
Martin Willi
6f2aba1322
- fixed some memleaks/freebugs
...
- leak detective works almost usable now (?!)
2006-05-31 14:13:26 +00:00
Martin Willi
3b8af2ab60
- added host2host test for ikev2
2006-05-31 08:15:23 +00:00
Martin Willi
bd72398729
- fixed host-host tunnel traffic selection, host-host works now
2006-05-31 06:52:27 +00:00
Andreas Steffen
1df544d063
bug fixed circumventing an assertion in delete_connection when ikev1 is not set
2006-05-31 05:51:05 +00:00
Andreas Steffen
6848dac603
minimized prefixed on stroke logger output
2006-05-31 05:50:04 +00:00
Andreas Steffen
90ed2e8278
charon outputs strongSwan version
2006-05-31 05:48:32 +00:00
Andreas Steffen
ef8f5256d3
tests with subjectAltNames now
2006-05-31 05:47:30 +00:00
Martin Willi
2d6c3bce06
2006-05-30 14:56:12 +00:00
Martin Willi
b93782903f
- fixed event queue for events >36min
2006-05-30 13:22:46 +00:00
Martin Willi
8403b34bd9
2006-05-30 13:01:50 +00:00
Martin Willi
0773bdcf3f
- included charons module tests to build & dist
2006-05-30 13:00:18 +00:00
Andreas Steffen
6d5e617f7d
full support of ikev1 and ikev2 connection flags
2006-05-30 11:10:42 +00:00
Andreas Steffen
9db4f61476
cosmetics in log_status output
2006-05-30 11:07:14 +00:00
Andreas Steffen
c11c43d2c3
use of streq
2006-05-30 11:03:55 +00:00
Martin Willi
5e5f0bd4b2
- added testing files to dist
...
- required the use of the "ustar" format to support
filenames longer than 99 chars
2006-05-30 08:51:48 +00:00
Andreas Steffen
510d54eb59
lookup of private key based on keyid of public key
2006-05-30 07:53:13 +00:00
Andreas Steffen
fa896e9a21
new functions to add certificates and retrieve private and public keys
2006-05-30 07:52:25 +00:00
Andreas Steffen
d793980f56
changed log level
2006-05-30 07:50:15 +00:00
Andreas Steffen
e1c00b96a6
list ca certificates
2006-05-30 07:48:29 +00:00
Andreas Steffen
f5a4518a74
computation of SHA-1 hash over publicKeyInfo object
2006-05-30 07:47:19 +00:00
Andreas Steffen
3b58a143a0
moved abbreviated thread_id in front of brackets
2006-05-30 07:45:06 +00:00
Andreas Steffen
cdffecf3ba
added has_key parameter to log_certificates()
2006-05-30 07:43:39 +00:00
Andreas Steffen
c164f8c4a7
log_certificates() now shows keyid and availability of matching private key
2006-05-30 07:42:52 +00:00
Andreas Steffen
7c2e556644
indented loaded file log entry
2006-05-30 07:41:22 +00:00
Andreas Steffen
1a10669080
moved TIMETOA_BUF definition to types.h
2006-05-30 07:40:44 +00:00
Andreas Steffen
79332d28a5
moved TIMETOA_BUF definition from asn1.h
2006-05-30 07:39:44 +00:00
Andreas Steffen
abf2be2281
define default CA_CERTIFICATE_DIR
2006-05-30 07:38:41 +00:00
Andreas Steffen
92d30836fd
load all ca certificates
2006-05-30 07:37:48 +00:00
Martin Willi
db66c624bf
- fixed daemon destruction order to prevent
...
crashes on termination
2006-05-30 06:14:23 +00:00
Martin Willi
139ce7871f
- fixed memleak when deleting a connection
2006-05-29 11:29:23 +00:00
Martin Willi
60b9abf5c1
- updated todo list
2006-05-29 11:19:31 +00:00
Martin Willi
9fe14f4b8a
- policies contain a connections name now
...
- used for initiate and delete
- connections won't get initiated twice anymore
- deleting of connections is now possible, which allows us to use
ipsec update and ipsec reload
2006-05-29 11:09:45 +00:00
Martin Willi
4c59264d9b
- changed iterator->remove behavior
2006-05-29 11:04:09 +00:00
Andreas Steffen
b83200569e
ipsec up|down|route|delete require a connection name
2006-05-29 07:17:55 +00:00
Andreas Steffen
ecadab2ba7
stroke now uses constant size string buffer
2006-05-29 07:14:57 +00:00
Andreas Steffen
f8be15f53b
changed to standard connection log output
2006-05-29 07:11:50 +00:00
Andreas Steffen
353c7b57c8
reworked parsing and matching of subjectAltNames
2006-05-29 07:06:02 +00:00
Andreas Steffen
3c3595adfd
added memeq() macro
2006-05-29 07:03:34 +00:00
Andreas Steffen
c2e7442fc1
moved timetoa() from asn1.c to types.c
2006-05-29 07:02:12 +00:00
Andreas Steffen
a8a1fa1c03
corrected type
2006-05-29 06:58:55 +00:00
Martin Willi
65996a534d
- some logging improvements and cosmetics
2006-05-24 11:59:58 +00:00
Martin Willi
3a13a78084
- handle IKE_SA setup without a piggy-packed CHILD_SA
...
more IKEv2 conform
2006-05-24 09:05:21 +00:00