ims-volte-vowifi
/
strongswan
9
0
Fork 0
Code Pull Requests Releases Activity
10,518 Commits 6 Branches 233 Tags 88 MiB
Commit Graph

495 Commits

Author SHA1 Message Date
Andreas Steffen 8dcc56dcc0 created tnc-imc and tnc-imv plugins 2010-10-07 23:31:23 +02:00
Andreas Steffen 9b04378ece version bump to 4.5.0dr5 2010-10-06 07:07:14 +02:00
Andreas Steffen 6d0e9cf046 created hull for TNCCS 2.0 plugin 2010-10-05 21:15:24 +02:00
Andreas Steffen f685b3aca0 started use of libtnc library 2010-09-29 23:24:59 +02:00
Andreas Steffen 062e8faee1 version bump to 4.5dr4 2010-09-29 07:14:33 +02:00
Andreas Steffen 4e8e74fcfa moved TNCCS layer out of eap_tnc plugin 2010-09-28 23:34:04 +02:00
Tobias Brunner 0a1233e642 Moved man pages for config files to a separate directory. 2010-09-10 12:01:19 +02:00
Andreas Steffen 3c1debeb59 version bump to 4.5.0dr2 2010-09-10 07:37:28 +02:00
Martin Willi 30cd31fb69 Added a simple led plugin to control Linux LEDs based on IKE activity 2010-09-08 12:00:57 +02:00
Martin Willi 3f5de7b65f Enable the random plugin for scripts 2010-09-06 18:11:05 +02:00
Andreas Steffen 25de08474b version bump to 4.5.0dr2 2010-09-02 22:19:37 +02:00
Tobias Brunner 062a602216 Moved all kernel plugins to libhydra. 2010-09-02 19:01:26 +02:00
Andreas Steffen 68eb610d81 fixed typos 2010-08-30 16:22:33 +02:00
Andreas Steffen d93e2e5409 created an eap-tnc method hull 2010-08-30 15:36:34 +02:00
Martin Willi f1a74a3cab Implemented a TLS utility to test on any TLS secured TCP connection 2010-08-25 12:57:13 +02:00
Martin Willi 1a64981048 Implemented a gcm plugin providing GCM mode based on CBC crypters 2010-08-19 19:05:15 +02:00
Martin Willi 37e52c3fbf Added a crypto transform stress test for profiling 2010-08-19 19:05:14 +02:00
Martin Willi 80a93a1335 Implemented a ccm plugin providing CCM mode based on CBC crypters 2010-08-19 19:05:14 +02:00
Martin Willi 272f0e1ae4 Added a counter mode wrapper plugin operating on existing CBC crypters 2010-08-13 19:39:59 +02:00
Martin Willi 123a84d3db Use an explicit plugin list instead of the unrealible "find" to build checksums 2010-08-12 16:07:24 +02:00
Martin Willi 8f01815143 Build dedicated plugin lists for each strongSwan component 2010-08-12 14:46:57 +02:00
Martin Willi 9e2c88b98d Use a m4 helper macro to build plugin lists 2010-08-12 13:14:32 +02:00
Andreas Steffen 26eb9b2d17 added eap_ttls plugin configuration 2010-08-07 11:26:04 +02:00
Martin Willi 83e52fd12d Register hmac/xcbc algorithms after potentially underlying PKCS#11 2010-08-04 09:26:22 +02:00
Martin Willi c281a427e0 Moved gmp plugin before users of it 2010-08-04 09:26:19 +02:00
Martin Willi 6e862e2152 Added PKCS#11 token plugin stub 2010-08-04 09:26:18 +02:00
Martin Willi 0f82a47063 Moved TLS stack to its own library 2010-08-03 15:39:26 +02:00
Martin Willi 2107953804 Added EAP-TLS plugin stub 2010-08-03 15:39:24 +02:00
Andreas Steffen b599b80013 version bump to 4.4.2 2010-07-30 22:26:14 +02:00
Andreas Steffen 3de510ca43 Warn about manual plugin load directives for pluto/charon with --disable-load-warning compile option 2010-07-15 06:29:26 +02:00
Martin Willi 1c8c924610 Moved addrblock plugin to libcharon 2010-07-13 10:26:07 +02:00
Martin Willi c2e5cee413 Moved CRL/OCSP checking to a dedicated plugin called revocation 2010-07-13 10:26:07 +02:00
Martin Willi 5f9e62c54f Moved X509 addrBlock validation to a separate addrblock plugin 2010-07-13 10:26:07 +02:00
Martin Willi 4f99093235 Show mallinfo() data in statusall, if available 2010-07-06 16:28:25 +02:00
Tobias Brunner 946be4d357 Adding support for the native Linux capabilities interface. 
Note that this interface is deprecated and mainly added to support
Android. Use libcap, if possible.
 2010-06-15 19:58:30 +02:00
Tobias Brunner b77e493bea Explicitly refer to LIBCAP in Makefiles. 2010-06-15 19:57:31 +02:00
Martin Willi d2c358742a Added a EAP-SIM/AKA backend reading triplets/quintuplets from a SQL database 2010-06-02 15:59:44 +02:00
Andreas Steffen 26ec52a405 implemented xauth as a pluto plugin 2010-05-18 13:51:27 +02:00
Martin Willi 322226c0ce Link to libgpg-error to resolve additional symbols when testing for libgcrypt 2010-05-17 11:08:13 +02:00
Andreas Steffen 9a0333fa62 moved resolve plugin from libcharon to libhydra 2010-05-04 23:53:08 +02:00
Andreas Steffen a784c540e5 version bump to 4.4.1 2010-05-03 09:09:43 +02:00
Martin Willi d87489661c Renamed ha-sync plugin to ha 2010-04-07 13:55:15 +02:00
Martin Willi e67f5136c0 HA sync plugin stub 2010-04-07 13:55:11 +02:00
Tobias Brunner a5ec302547 Moved attr plugin from libcharon to libhydra. 2010-04-06 12:47:40 +02:00
Martin Willi 0d7b48a388 Added a farp plugin stop to spoof ARP requests 2010-03-25 14:39:32 +01:00
Martin Willi beaa048eed Added DHCP plugin stub. 2010-03-25 14:28:28 +01:00
Tobias Brunner 75dc019252 Moving attr-sql plugin from libstrongswan to libhydra. 2010-03-24 18:53:09 +01:00
Tobias Brunner 0bf68cbf7c Adding libhydra stub. 2010-03-24 18:53:09 +01:00
Tobias Brunner bd3f8ea30b Convert charon into libcharon. 2010-03-19 13:34:52 +01:00
Martin Willi 0fa7d1abb3 Do not disable the default-socket if it was enabled explicitly 2010-03-11 08:52:48 +01:00
Martin Willi 40f130dab3 Implemented the PRF_KEYED_SHA1 algorithm in the openssl plugin 2010-03-08 13:16:12 +01:00
Andreas Steffen 31bd75ec64 removed unwanted commits 2010-03-07 21:11:57 +01:00
Andreas Steffen ceeb9bac8b critical keyUsage extension must be parsed 2010-03-07 20:51:34 +01:00
Tobias Brunner 3372ad144b Adding an option to build libstrongswan and charon monolithically. 2010-03-02 09:10:32 +01:00
Martin Willi 9ed1bb4842 Added an initiator-only socket implementation which binds ports on demand 2010-02-26 11:44:34 +01:00
Martin Willi dab0560497 Moved socket and socket-raw implementations to plugins 2010-02-26 11:44:32 +01:00
Tobias Brunner c711687c00 Force libdl if the android plugin is enabled. AC_SEARCH_LIBS thinks it's not required, but on Android 2.0 it is. 2010-02-25 13:51:05 +01:00
Martin Willi 3e35a6e7a1 Use side-channel secured mpz_powm_sec of libgmp 5, if available 2010-02-18 17:38:59 +01:00
Martin Willi 55699f037f Added Android plugin, currently provides DNS handling on Android 2010-02-17 18:24:11 +01:00
Andreas Steffen b65d7f8a15 version bump to 4.4.0 2010-02-15 20:58:41 +01:00
Tobias Brunner cb186f9922 Added some IPv6 tweaks for Android. 
Android 1.6 does not yet support the Advanced Sockets API for IPv6 as defined in
RFC 3542. Also, in6addr_any is missing.
 2009-12-23 17:03:42 +01:00
Tobias Brunner 85202e8795 Added a workaround for the missing pthread_cancel on Android. 2009-12-23 17:03:42 +01:00
Tobias Brunner b2944d71ca Use pthread_cond_timedwait_monotonic on Android. 2009-12-23 17:03:41 +01:00
Tobias Brunner 070ac5b0b7 Check if libpthread is required or not. 2009-12-23 17:02:26 +01:00
Tobias Brunner 866dc0134a Check for pthread_condattr_init added to configure script. 2009-12-23 17:02:25 +01:00
Tobias Brunner f36143b0ba Implemented a read-write lock using only mutex_t and condvar_t (in case the pthread_rwlock_* group of functions is not available). 2009-12-23 17:01:30 +01:00
Martin Willi 89d236f0da Support "_" and "-" variants of NetworkManager pkg-config packages 2009-12-08 14:36:22 +01:00
Martin Willi 10bc5d96cb Move comment out of register_printf_function test 2009-11-19 14:37:34 +01:00
Martin Willi f6bbcec390 Use register_printf_specifier instead of deprecated register_printf_function, if available 2009-11-12 13:16:46 +01:00
Martin Willi edcb2dd35b Moved reauth/pseudonym functionality from eap-sim-file to separate plugins, usable by any SIM/AKA backend 2009-11-12 10:34:01 +01:00
Martin Willi f8330d0395 Added a libsimaka library with shared message handling code for EAP-SIM/AKA 2009-11-12 10:33:58 +01:00
Martin Willi 5269150ebc If cross-compiling, test for the existence of pthread_condattr_setclock only 2009-11-09 15:07:01 +01:00
Andreas Steffen a58b1722b0 version bump to 4.3.6 2009-11-02 22:47:55 +01:00
Martin Willi c4d53fe06b Streamlined EAP plugins to use a dash between eap-method, as used in all other places 2009-10-15 10:36:17 +02:00
Martin Willi b76b867c70 Renamed --enable-load-tests to --enable-load-tester, like the plugin itself 2009-10-15 10:36:17 +02:00
Andreas Steffen 601bc1df20 pluto can now make use of the mysql and sqlite plugins 2009-10-14 12:43:54 +02:00
Andreas Steffen 247794827e move SQL-based pool functionality to new attr-sql libstrongswan plugin 2009-10-13 17:02:29 +02:00
Martin Willi 4720815774 Added a stub for the EAP-AKA backend implementing the 3GPP2 functions in software 2009-10-09 13:02:19 +02:00
Andreas Steffen f3e9eae283 the ikev1 scenarios need the x509 plugin 2009-10-06 14:38:34 +02:00
Martin Willi 840743479a Use mysql_config to query MySQL LIBS and CFLAGS 2009-09-23 12:45:03 +02:00
Martin Willi a7f79ee9c1 Define ME for all charon plugins 2009-09-23 11:13:27 +02:00
Martin Willi e20b792108 Correctly handle --enable-mediation option 2009-09-23 10:50:00 +02:00
Andreas Steffen 4819ec6a71 resolv_conf plugin renamed to resolve 2009-09-20 19:06:58 +02:00
Andreas Steffen ddbb34093f fixed --enable-eap-md5 and --enable-eap-gtc options 2009-09-18 18:23:26 +02:00
Martin Willi 85af7a89c6 nm uses the distributions trusted root CAs if none is explicitly specified 2009-09-18 14:34:27 +02:00
Martin Willi faa4bd49fb use sysconfdir, no need for an additional confdir variable 2009-09-07 15:10:30 +02:00
Martin Willi b7b5653386 Use macros to define --with options 2009-09-07 15:00:45 +02:00
Martin Willi b803bc82f4 Use macros to define --enable/--disable options 2009-09-07 15:00:45 +02:00
Martin Willi e455ae1343 use m4/ autoconf subdirectory 2009-09-07 15:00:32 +02:00
Martin Willi 8b3b4a244e Removed trailing whitespaces in configure.in/Makefile.am 2009-09-07 11:48:03 +02:00
Martin Willi 3d5818ec38 use monotonic time source in convar->timed_wait, and in the scheduler using it 2009-08-31 15:13:48 +02:00
Martin Willi 3f310c0d1f implemented a monotonic timestamping function, unaffected from system time changes 2009-08-31 15:03:35 +02:00
Martin Willi 1d39663f7a do not depend on gcrypt autoconf macros 2009-08-31 13:14:54 +02:00
Andreas Steffen ca275b383f fixed two typos 2009-08-26 17:29:57 +02:00
Martin Willi d16fd64d39 openac (and tools) do not depend on gmp anymore 2009-08-26 14:08:20 +02:00
Martin Willi 7c577c8ea2 started implementation of a PKI tool, currently supporting RSA|ECDSA key generation 2009-08-26 11:23:55 +02:00
Martin Willi 5ef478aaee implemented RFC3110 key builder in a plugin, added generic DNSKEY RR parsing 2009-08-26 11:23:51 +02:00
Martin Willi 9493dd2ce0 implemented a pgp plugin providing PGP key parsing builders 2009-08-26 11:23:50 +02:00
Martin Willi 1e0f69373a implemented a pkcs1 plugin providing PKCS#1 key parsing builders 2009-08-26 11:23:50 +02:00
Martin Willi 160f4c225d moved PEM parsing functionality to its own plugin 2009-08-26 11:23:48 +02:00
Andreas Steffen 8bc2a8086c version bump to 4.3.5 2009-08-18 18:35:37 +02:00
Tobias Brunner f1777dff59 Replacing gethostbyname, gethostbyname2 and their _r variants with getaddrinfo to increase portability. 2009-08-14 16:14:32 +02:00
Tobias Brunner 26965b4ef3 OpenSolaris needs libsocket and libnsl for socket(). 2009-08-14 14:50:53 +02:00
Tobias Brunner e580e0a9a2 sockio.h is required on OpenSolaris for SIOCGIFADDR. 2009-08-14 14:50:50 +02:00
Tobias Brunner 8b6a5ce5ba We need to include alloca.h on OpenSolaris. 2009-08-14 13:25:22 +02:00
Tobias Brunner 3974b2fb07 FreeBSD's libc does not support backtrace(), but libexecinfo optionally replicates this function (and the other defined in execinfo.h). 2009-08-07 18:46:25 +02:00
Tobias Brunner 1e7b4b0028 Reversed the check for udp.h, fixes compilation on Linux. 2009-08-06 10:01:59 +02:00
Tobias Brunner e8c3cdb25b Missing check for udp.h added. 2009-08-04 11:08:57 +02:00
Andreas Steffen 8ce8e19068 version bump to 4.3.4 2009-07-21 22:21:52 +02:00
Tobias Brunner 6ff7ab850b Fixed GID lookup in cases where the configured group is a prefix of another group. 2009-07-20 21:20:03 +02:00
Tobias Brunner 7d2b06da6a Translate the configured user and group to a numerical UID and GID. 2009-07-20 21:01:13 +02:00
Tobias Brunner 69fc782000 Check for gperf version added to configure script. 2009-07-16 15:15:40 +02:00
Tobias Brunner c7e0f07ced Typo fixed. 2009-07-16 15:15:35 +02:00
Tobias Brunner cf00cffef2 Added an option to the configure script to disable building the scripts. 2009-07-16 15:15:26 +02:00
Martin Willi f5410905ac moved the CFLAGS mangling AC_LIB_PREFIX macro behind CFLAG test 2009-07-15 16:04:37 +02:00
Tobias Brunner 0b5f2a81da Added --with-lib-prefix option to the configure script. 
This option enables users to add additional search paths for include
files and libraries.
 2009-07-14 12:09:22 +02:00
Martin Willi 67a7bb02ef moved checksum_builder/libchechsum to top srcdir to respect build order 2009-06-22 15:47:18 +02:00
Martin Willi e4e6a77a80 check for dladdr() and dl_iterate_phdr() if --enable-integrity-test set 2009-06-22 15:47:17 +02:00
Martin Willi e3b7be91e1 removed obsolete INTEGRITY_TEST and fips signer code 
--enable-integrity-test now conditionally builds libchecksum
 2009-06-22 15:47:17 +02:00
Martin Willi 12c68f1b3a implemented a checksum_builder tool to build the checksum library 2009-06-22 15:47:17 +02:00
Andreas Steffen c4963c92ac version bump to 4.3.3 2009-06-19 17:00:34 +02:00
Andreas Steffen 0e9ded6838 removed serpent and twofish plugins - use gcrypt instead 2009-06-18 07:27:40 +02:00
Martin Willi a998276a2b calculating plugin dependencies for eap-sim/aka 2009-06-16 14:53:16 +02:00
Martin Willi 9c9a110130 pluto does not depend on gmp anymore 2009-06-16 14:47:07 +02:00
Martin Willi 62d6da67dd support older gcrypt libraries not defining the CAMELLIA cipher 2009-06-16 14:23:32 +02:00
Martin Willi 0c013ff345 load hmac/xcbc plugins after hash/crypter plugins to pass crypto tests 2009-06-16 13:05:43 +02:00
Tobias Brunner 272c81134c Typo in configure script fixed. 2009-06-12 10:42:07 +02:00
Martin Willi c66cd00df4 removed pluto test vectors, --disable-self-test option 2009-06-11 20:27:32 +02:00
Martin Willi 81811a9d8b added a plugin providing crypto test vectors 2009-06-11 15:55:59 +02:00
Martin Willi ccd1464586 use autoconf macro provided by libgcrypt 2009-06-09 11:18:57 +02:00
Martin Willi 4977018c23 added skeleton for libgcrypt based crypto plugin 2009-06-09 11:18:56 +02:00
Andreas Steffen c146b2c8df pluto now requires pubkey plugin 2009-06-09 11:03:33 +02:00
Andreas Steffen 96d42f445e pluto now needs the gmp plugin 2009-05-24 19:33:16 +02:00
Andreas Steffen a213175d96 version bump to 4.3.2 2009-05-22 17:05:58 +02:00
Tobias Brunner a6ae2a1490 Fixing IPSEC_* checks on older Linux distros. 2009-05-21 10:03:27 +02:00
Tobias Brunner 617e59b7bc Portably check for IPSEC_* constants (defined in ipsec.h). 
The problem is that FreeBSD defines them as #defines whereas Linux defines them as enums.
 2009-05-20 20:15:06 +02:00
Tobias Brunner 2d9ce480fa Enable building the DUMM Ruby extension in a VPATH build. 2009-05-20 19:38:01 +02:00
Tobias Brunner d2e9cbc9a2 The configure script now tries to figure out where ruby.h is located. 
This is required because the location depends on the architecture.
 2009-05-20 19:38:01 +02:00
Andreas Steffen 13e51a62a8 fixed copy-and-paste error 2009-05-15 10:17:17 +02:00
Andreas Steffen 244dbb06db if enabled, load openssl plugin by default in pluto 2009-05-15 10:01:30 +02:00
Andreas Steffen 1bfb8007c2 got rid of libcrypto 2009-05-15 01:28:48 +02:00
Tobias Brunner 9f090745cf added another possible location for the ipsec.h header file 2009-05-14 17:38:32 +02:00
Andreas Steffen 30a896173b compute ASN.1 to UTC time without time functions 2009-05-14 13:55:55 +02:00
Andreas Steffen d36ae9e305 started migration to encryption plugins 2009-05-09 00:04:28 +02:00
Tobias Brunner bf45d6dd3b added a configure option to enable the Vstr string library even if register_printf_function is available 2009-04-24 05:32:17 +02:00
Tobias Brunner 65ea37abcd fixed timezone compensation when parsing ASN.1 dates 2009-05-08 15:23:50 +02:00
Tobias Brunner a9f56adb59 more portable handling of the bool data type (Mac OS X has stdbool.h) 2009-05-06 09:11:13 -04:00
Tobias Brunner f52e9c1aa8 gethostbyname_r is not supported on Mac OS X (but gethostbyname uses thread-local buffers) 2009-05-06 09:11:03 -04:00
Andreas Steffen 6eb9bc9bb8 SKEYID derivation based on libstrongswan 2009-05-05 14:28:31 +02:00
Martin Willi 4f734a55b7 fixed dladdr ./configure check, leak detective whitelist 2009-05-04 13:59:44 +02:00
Andreas Steffen bc2e33ca96 pluto and scepclient use the random plugin from libstrongswan 2009-04-30 18:31:48 +00:00
Tobias Brunner ea7e89c72c somehow missed these changes during the portability branch back-merge 2009-04-30 17:13:45 +00:00
Andreas Steffen de92b9e70c default plugins for pluto 2009-04-29 08:56:19 +00:00
Martin Willi be0a03be64 set default CFLAGS globally, including -Wno-format 2009-04-27 11:34:07 +00:00
Martin Willi adc25ec252 added missing configure.in changes for attr/resolv_conf plugins 2009-04-24 14:14:43 +00:00
Andreas Steffen f032a6909a version bump to 4.3.1 2009-04-24 04:38:57 +00:00
Andreas Steffen 4985ad6e4a pluto and scepclient use the regular libstrongswan library 2009-04-21 12:26:04 +00:00
Andreas Steffen d4f8c569ab version bump to 4.3.0 2009-03-31 03:53:18 +00:00
Andreas Steffen 8f83b1472b set version back to 4.2.14 2009-03-27 10:17:23 +00:00
Andreas Steffen 22180558a5 some changes 2009-03-27 10:16:38 +00:00
Martin Willi 4a6b84a934 reintegrated eap-radius branch into trunk 2009-03-24 10:24:58 +00:00
Andreas Steffen 623bca407b version bump to 4.2.14 2009-03-22 14:37:03 +00:00
Tobias Brunner d25ce3701e printf hooks refactored to increase portability (i.e. support for platforms without glibc-compatible customizable printf - the Vstr string library is currently required on such platforms). 2009-03-12 18:07:32 +00:00
Andreas Steffen ce62951115 version bump to 4.2.13 2009-02-21 17:53:10 +00:00
Andreas Steffen 1e0d1ae213 support of MD4 hash 2009-02-19 10:06:58 +00:00
Tobias Brunner f98cdf7a47 adding plugin for EAP-MS-CHAPv2 2009-02-18 19:57:15 +00:00
Martin Willi 2d887e8e08 removed unused extract_last_token() and the required memrchr implementation 2009-02-18 09:45:54 +00:00
Andreas Steffen 9599ee1597 version bump to 4.2.12 2009-01-21 03:14:52 +00:00
Tobias Brunner bb835afa90 fixing cross-compilation 2009-01-13 10:38:16 +00:00
Andreas Steffen 48032aed00 add a compatible memrchr() function if the platform does not support it (e.g. old glibc). Patch courtesy to Thomas Jarosch 2009-01-09 01:19:45 +00:00
Andreas Steffen 0519ca9099 version bump to 2.4.11 2009-01-08 22:23:42 +00:00
Martin Willi efd0fe21e4 ref_get()/ref_put() use atomic gcc operations if supported, thanks to Thomas Jarosch for the patch 2008-12-02 12:14:32 +00:00
Martin Willi 6905f794bb added a --disable-threads ./configure option for pluto 2008-12-02 09:01:57 +00:00
Martin Willi fc3ef71fa7 fixed lock-profiler help message 2008-11-19 15:37:46 +00:00
Andreas Steffen 50ae86017c version bump to 4.2.10 2008-11-18 00:02:59 +00:00
Andreas Steffen 9a095db5e8 set release number back to 4.2.9 2008-11-16 22:25:16 +00:00
Andreas Steffen 4dc0dce886 added migration to NEWS 2008-11-16 21:23:56 +00:00
Tobias Brunner ea625fabf9 merging kernel_klips plugin back into trunk 2008-11-11 09:22:00 +00:00
Martin Willi 0214012508 threshhold and ./configure option for lock profiler 2008-11-05 14:36:57 +00:00
Martin Willi 0fd6e95562 a load testing plugin, to: 
find multi-threading issues
	do performance profiling
 2008-10-21 13:00:38 +00:00
Martin Willi ad3af574a4 moved updown script invocation to an optional plugin 2008-10-16 11:48:18 +00:00
Tobias Brunner 1adaa02bb2 merging kernel_pfkey plugin back from kernel-interface branch 2008-10-14 08:46:31 +00:00
Andreas Steffen 9257c3a287 version bump to 4.2.9 2008-10-14 01:53:37 +00:00
Martin Willi 79a878466c reintegrated two-sim branch providing SIM card plugin API 2008-10-10 08:36:01 +00:00
Martin Willi c5ebb635a1 trimming additial / in some cases 2008-10-10 07:33:37 +00:00
Andreas Steffen 09d7ef2614 added --disable-kernel-netlink configure option 2008-10-03 03:27:42 +00:00
Tobias Brunner 507f26f685 merging modularized kernel interface back to trunk 2008-09-25 07:56:58 +00:00
Andreas Steffen 414caff027 version bump to 4.2.8 2008-09-18 00:42:22 +00:00
Martin Willi 21c9546321 libstrongswan agent plugin to use ssh-agent for RSA signatures 2008-09-02 11:04:26 +00:00
Martin Willi eb3e27059b use libcap for capability dropping 
optional, must be enabled --with-capabilities=libcap
	will be extended to support --with-capabilities=libcap2
 2008-08-29 09:24:14 +00:00
Martin Willi e577ad3985 creating default IKE proposals dynamically using algorithm enumeration API 2008-08-28 11:07:57 +00:00
Andreas Steffen a9bb69c8a8 version bump to 4.2.7 2008-08-27 12:01:57 +00:00
Martin Willi 1caa265c61 a (incomplete) implementation of draft-sheffer-ikev2-gtc-00.txt using PAM 2008-08-21 12:10:07 +00:00
Andreas Steffen 59bb33e1e0 set version back to 4.2.6 2008-08-19 18:53:15 +00:00
Andreas Steffen af165431d2 fixed libstrongswan integrity test 2008-08-19 18:51:30 +00:00
Martin Willi 6dbce9c803 reimplemented dbus plugin for NetworkManager 0.7, renamed to nm 2008-07-31 11:16:14 +00:00
Andreas Steffen 5c96dab653 version bump to 4.2.6 2008-07-28 09:14:07 +00:00
Andreas Steffen 60721cee73 reset version to 4.2.5 2008-07-03 16:43:18 +00:00
Andreas Steffen 174216c79d update NEWS with ip pool add-ons and fixes 2008-07-03 16:42:45 +00:00
Martin Willi 7da767f773 sqlite plugin requires libsqlite3 => 3.3.1 to share connections 
use recursive locking if libsqlite3 < 3.5.0
 2008-06-30 11:06:18 +00:00
Andreas Steffen 39b7780df9 created scripts/Makefile.am 2008-06-29 13:57:00 +00:00
Andreas Steffen 615611afc1 version bump to 4.2.5 2008-06-26 09:59:55 +00:00
Andreas Steffen 7f6d8d5172 set version to 4.2.4 2008-06-22 18:08:37 +00:00
Martin Willi 29727a4447 compatibility fix for other shells than bash >= 3.1 2008-06-20 07:56:01 +00:00
Martin Willi 61c4638646 first simple prototype of a UCI configuration plugin for OpenWRT 2008-06-17 14:17:51 +00:00
Martin Willi 9529fb6836 added mediation server web frontend 
updated charons medsrv plugin to updated database scheme
 2008-06-11 14:13:24 +00:00
Martin Willi 1e9c46f13d configure option for updown firewall scripts 2008-06-06 08:24:39 +00:00
Martin Willi e581a31d6a link against openssl crypto library only 2008-06-06 08:04:42 +00:00
Andreas Steffen 8f7074cf2e version bump to 4.2.4 2008-05-25 10:35:39 +00:00
Andreas Steffen 8cc16c9d9e fixed the strongswan.conf path 2008-05-22 21:59:54 +00:00
Andreas Steffen 4d9c95ffcd version bump to 4.2.3 2008-05-21 18:40:11 +00:00
Martin Willi 1ba62b5562 loading default modules depending on configure options 2008-05-16 08:52:32 +00:00
Martin Willi 782db7edd1 prototype of mediation client database plugin 2008-05-14 07:26:19 +00:00
Martin Willi affd7a90ba moved RAW public key support to a separate plugin (pubkey) 2008-05-08 13:16:42 +00:00
Martin Willi 5b7ec6d4e0 renamed med_db plugin to medsrv, as we will introduce an additional medcli client plugin 2008-05-08 12:11:30 +00:00
Martin Willi 25b12c696b replaced --with-gid/uid by --with-group/user 
using named users, groups
fixed capability dropping in pluto
 2008-05-08 10:58:04 +00:00
Martin Willi f8277a8370 added configure check and support for sqlite3 libraries without sqlite3_prepare_v2 2008-05-07 14:41:13 +00:00
Martin Willi 27d04e055d implemented XCBC algorithms (signer, prf) for IKE on top of a crypter 
supporting ike=...-aesxcbc-... in ipsec.conf 
added AUTH_AES_XCBC_96 and PRF_AES128_CBC to default IKE proposal
AES XCBC testcase
 2008-04-30 14:26:24 +00:00
Martin Willi a47486b5e4 prototype of dumm GUI 2008-04-28 16:43:30 +00:00
Tobias Brunner 17353034f3 added a wrapper plugin for OpenSSL crypters (AES, 3DES, Blowfish etc.) 2008-04-28 14:25:19 +00:00
Martin Willi 36d62fac65 experimental Padlock plugin supportin SHA1 and AES-128 for VIA C7 Esther 2008-04-22 08:44:56 +00:00
Andreas Steffen 7c0c0aac01 version bump to 4.2.2 2008-04-19 10:07:32 +00:00
Martin Willi 6a365f0740 added API for random number generators, served through credential factory 
ported randomizer_t to a rng_t on top of /dev/(u)random (plugin random)
 2008-04-15 05:56:35 +00:00
Martin Willi ff867d062e added ./configure option --with-strongswan-conf= 
defaults to /etc/strongswan.conf
 2008-04-07 06:56:33 +00:00
Andreas Steffen bc722433be version bump to 4.2.1 2008-04-06 12:12:13 +00:00
Martin Willi 9e72d3bcaf defining ME globally, as we need it in plugins 2008-03-31 15:01:43 +00:00
Andreas Steffen 681d56b1bb disabled build of outdated dbus interface 2008-03-31 12:59:39 +00:00
Martin Willi 6b9290ff12 renamed xml plugin to smp to avoid confusion 
added some dependency checks to configure
configure checks ClearSilver and fastcgi
cleanups in the build system here and there
 2008-03-28 12:44:01 +00:00
Tobias Brunner e74bc8e51d changed external interface to the mediation extension. 2008-03-27 12:31:35 +00:00
Tobias Brunner dc04b7c743 mediation extension adapted to the naming convention of the current version of the draft. note: the external interface (config, autotools) has not yet been changed 2008-03-26 18:40:19 +00:00
Martin Willi 552cc11b1f merged the modularization branch (credentials) back to trunk 2008-03-13 14:14:44 +00:00
Andreas Steffen a11ea97db8 version bump to 4.2.0 2008-02-15 18:44:29 +00:00
Andreas Steffen 6859f760d9 release of 4.1.11 bug fix version 2008-02-14 21:26:21 +00:00
Andreas Steffen dfc14c8480 added --with-plugindir option 2008-01-20 17:57:38 +00:00
Andreas Steffen fb6d76cd5c version bump to 4.2.0 2007-12-24 18:07:55 +00:00
Martin Willi 26e2467692 ported EAP-AKA branch into trunk 2007-12-13 10:54:29 +00:00
Martin Willi 4b403e7672 merged EAP-MD5 into trunk 2007-12-12 14:29:10 +00:00
Andreas Steffen 81edb520b2 version bump to 4.1.10 2007-12-04 23:54:32 +00:00
Andreas Steffen d7bf4e4279 added brackets in PKG_CHECK_MODULES 2007-12-03 23:12:39 +00:00
Martin Willi cbfb2aff50 added more ./configure build options for 
EAP-Identity module
  ipsec tools (openac, scepclient)
  optional charon/pluto build
  charon stroke interface
 2007-12-03 14:47:15 +00:00
Martin Willi 733f336ad3 socket_t implementation withouth raw sockets 
--disable-raw-socket configure option
  prevents charon/pluto to run in parallel
 2007-11-26 11:20:00 +00:00
Andreas Steffen 8ad95a2000 version bumpt to 4.1.9 2007-11-06 13:47:27 +00:00
Andreas Steffen c840a9b484 version bump to 4.1.8 2007-10-04 06:41:45 +00:00
Tobias Brunner d5cc175833 experimental P2P-NAT-T for IKEv2 merged back from branch 2007-10-03 15:10:41 +00:00
Martin Willi 8f561d4409 prototype implemementation of an sqlite configuration backend 2007-09-18 07:12:21 +00:00
Martin Willi b8c7453a82 manager can query and list IKE_SA status (no layout yet) 2007-09-13 07:45:04 +00:00
Andreas Steffen 054767bfff version bump to 4.1.7 2007-09-03 19:04:38 +00:00
Andreas Steffen 0e3073608d re-introduced the XAUTH_VID compile option 2007-09-02 11:13:24 +00:00
Andreas Steffen ef5f65626f change self_test to self-test 2007-08-29 07:03:47 +00:00
Andreas Steffen bf422b1664 fixed typo 2007-08-28 09:59:53 +00:00