Commit Graph

800 Commits

Author SHA1 Message Date
Martin Willi c0d63ac9db updated INSTALL to conform with autotools
added a short HACKING introduction
2006-06-08 06:34:52 +00:00
Martin Willi 8d77eddec2 further work for rekeying:
get liftimes from policy
  added new state
  initiation of rekeying done
proposal redone:
  removed support for AH+ESP proposals
2006-06-07 13:26:23 +00:00
Martin Willi a401efd091 proper leak detective hook for realloc
excluded pthread_setspecific from leak detective
2006-06-07 13:22:38 +00:00
Martin Willi 6a030ba9ea fixed a memleak 2006-06-07 05:54:09 +00:00
Andreas Steffen 0f2094930d cosmetics 2006-06-06 06:24:04 +00:00
Andreas Steffen 71c80765a5 ipv6-host2host scenario added 2006-06-06 05:43:32 +00:00
Andreas Steffen fc0afb6810 created IPv6 environment 2006-06-06 05:41:21 +00:00
Martin Willi 32b6500fbf job management:
moved job code from thread_pool to job, jobs have an "execute" method now
  added two new jobs: delete_child_sa & rekey_child_sa
kernel interface:
  listens now for ACQUIRE & EXPIRE
  supports hard and soft lifetimes
  fires jobs for delete and rekey child sa
ike sa manager:
  can checkout IKE SAs by requid of owned CHILD SAs
we have now the infrastructure to do the rekeying... :-)
2006-05-31 14:23:15 +00:00
Martin Willi 6f2aba1322 - fixed some memleaks/freebugs
- leak detective works almost usable now (?!)
2006-05-31 14:13:26 +00:00
Martin Willi 3b8af2ab60 - added host2host test for ikev2 2006-05-31 08:15:23 +00:00
Martin Willi bd72398729 - fixed host-host tunnel traffic selection, host-host works now 2006-05-31 06:52:27 +00:00
Andreas Steffen 1df544d063 bug fixed circumventing an assertion in delete_connection when ikev1 is not set 2006-05-31 05:51:05 +00:00
Andreas Steffen 6848dac603 minimized prefixed on stroke logger output 2006-05-31 05:50:04 +00:00
Andreas Steffen 90ed2e8278 charon outputs strongSwan version 2006-05-31 05:48:32 +00:00
Andreas Steffen ef8f5256d3 tests with subjectAltNames now 2006-05-31 05:47:30 +00:00
Martin Willi 2d6c3bce06 2006-05-30 14:56:12 +00:00
Martin Willi b93782903f - fixed event queue for events >36min 2006-05-30 13:22:46 +00:00
Martin Willi 8403b34bd9 2006-05-30 13:01:50 +00:00
Martin Willi 0773bdcf3f - included charons module tests to build & dist 2006-05-30 13:00:18 +00:00
Andreas Steffen 6d5e617f7d full support of ikev1 and ikev2 connection flags 2006-05-30 11:10:42 +00:00
Andreas Steffen 9db4f61476 cosmetics in log_status output 2006-05-30 11:07:14 +00:00
Andreas Steffen c11c43d2c3 use of streq 2006-05-30 11:03:55 +00:00
Martin Willi 5e5f0bd4b2 - added testing files to dist
- required the use of the "ustar" format to support 
    filenames longer than 99 chars
2006-05-30 08:51:48 +00:00
Andreas Steffen 510d54eb59 lookup of private key based on keyid of public key 2006-05-30 07:53:13 +00:00
Andreas Steffen fa896e9a21 new functions to add certificates and retrieve private and public keys 2006-05-30 07:52:25 +00:00
Andreas Steffen d793980f56 changed log level 2006-05-30 07:50:15 +00:00
Andreas Steffen e1c00b96a6 list ca certificates 2006-05-30 07:48:29 +00:00
Andreas Steffen f5a4518a74 computation of SHA-1 hash over publicKeyInfo object 2006-05-30 07:47:19 +00:00
Andreas Steffen 3b58a143a0 moved abbreviated thread_id in front of brackets 2006-05-30 07:45:06 +00:00
Andreas Steffen cdffecf3ba added has_key parameter to log_certificates() 2006-05-30 07:43:39 +00:00
Andreas Steffen c164f8c4a7 log_certificates() now shows keyid and availability of matching private key 2006-05-30 07:42:52 +00:00
Andreas Steffen 7c2e556644 indented loaded file log entry 2006-05-30 07:41:22 +00:00
Andreas Steffen 1a10669080 moved TIMETOA_BUF definition to types.h 2006-05-30 07:40:44 +00:00
Andreas Steffen 79332d28a5 moved TIMETOA_BUF definition from asn1.h 2006-05-30 07:39:44 +00:00
Andreas Steffen abf2be2281 define default CA_CERTIFICATE_DIR 2006-05-30 07:38:41 +00:00
Andreas Steffen 92d30836fd load all ca certificates 2006-05-30 07:37:48 +00:00
Martin Willi db66c624bf - fixed daemon destruction order to prevent
crashes on termination
2006-05-30 06:14:23 +00:00
Martin Willi 139ce7871f - fixed memleak when deleting a connection 2006-05-29 11:29:23 +00:00
Martin Willi 60b9abf5c1 - updated todo list 2006-05-29 11:19:31 +00:00
Martin Willi 9fe14f4b8a - policies contain a connections name now
- used for initiate and delete
- connections won't get initiated twice anymore
- deleting of connections is now possible, which allows us to use
  ipsec update and ipsec reload
2006-05-29 11:09:45 +00:00
Martin Willi 4c59264d9b - changed iterator->remove behavior 2006-05-29 11:04:09 +00:00
Andreas Steffen b83200569e ipsec up|down|route|delete require a connection name 2006-05-29 07:17:55 +00:00
Andreas Steffen ecadab2ba7 stroke now uses constant size string buffer 2006-05-29 07:14:57 +00:00
Andreas Steffen f8be15f53b changed to standard connection log output 2006-05-29 07:11:50 +00:00
Andreas Steffen 353c7b57c8 reworked parsing and matching of subjectAltNames 2006-05-29 07:06:02 +00:00
Andreas Steffen 3c3595adfd added memeq() macro 2006-05-29 07:03:34 +00:00
Andreas Steffen c2e7442fc1 moved timetoa() from asn1.c to types.c 2006-05-29 07:02:12 +00:00
Andreas Steffen a8a1fa1c03 corrected type 2006-05-29 06:58:55 +00:00
Martin Willi 65996a534d - some logging improvements and cosmetics 2006-05-24 11:59:58 +00:00
Martin Willi 3a13a78084 - handle IKE_SA setup without a piggy-packed CHILD_SA
more IKEv2 conform
2006-05-24 09:05:21 +00:00