Andreas Steffen
|
e58afb1a0a
|
support of crlcheckinterval=0 to disable IKEv2 CRL fetching
|
2007-04-04 07:49:05 +00:00 |
|
Martin Willi
|
80b7162531
|
improved log output for checkout_by_message()
|
2007-04-04 07:11:12 +00:00 |
|
Andreas Steffen
|
e47a7a131d
|
reinsert SHAREDTREE
|
2007-04-04 05:29:20 +00:00 |
|
Andreas Steffen
|
c056d929b2
|
--enable-ldap without value 3
|
2007-04-04 05:26:21 +00:00 |
|
Andreas Steffen
|
d15d1cc4f3
|
recognize strongSwan 2.8.4 VID
|
2007-04-04 05:25:06 +00:00 |
|
Andreas Steffen
|
8f76dbe8b1
|
support of dynamical http-based CRL fetching
|
2007-04-03 22:05:04 +00:00 |
|
Andreas Steffen
|
ace5de18b2
|
iptables -L has now a link of its own
|
2007-04-03 22:03:25 +00:00 |
|
Andreas Steffen
|
3d62a7d225
|
fixed crl fetching bug
|
2007-04-03 22:02:17 +00:00 |
|
Andreas Steffen
|
7e4f8db2bf
|
added ip route list and iptables -L
|
2007-04-03 21:18:46 +00:00 |
|
Andreas Steffen
|
a0eaa59b50
|
implemented dynamic http-based CRL fetching
|
2007-04-03 21:11:23 +00:00 |
|
Andreas Steffen
|
5d6dc162f2
|
send VID_NATT_IETF_02_N for Windows 2003 server support
|
2007-04-03 21:10:08 +00:00 |
|
Andreas Steffen
|
a8f02ad5f5
|
implemented dynamic http-based CRL fetching
|
2007-04-03 21:09:11 +00:00 |
|
Andreas Steffen
|
f166af2c0a
|
implemented http get method
|
2007-04-03 19:46:50 +00:00 |
|
Andreas Steffen
|
3b4f7d922a
|
IKEv1 changes
|
2007-04-03 12:41:37 +00:00 |
|
Andreas Steffen
|
b0f9f02ca4
|
added --enable-nat-transport and --disable-vendor-id configuration options
|
2007-04-03 07:58:34 +00:00 |
|
Andreas Steffen
|
7b0c588a88
|
added --enable-nat-transport and --disable-vendor-id configuration options
|
2007-04-03 07:58:21 +00:00 |
|
Andreas Steffen
|
a0c15611a4
|
bug fix: check existence of encryption key before sending encrypted notification
|
2007-04-02 19:04:51 +00:00 |
|
Martin Willi
|
ed284399cd
|
updated NEWS, TODO
|
2007-03-30 12:49:19 +00:00 |
|
Martin Willi
|
73390cce24
|
removed unneded includes
|
2007-03-30 12:24:31 +00:00 |
|
Martin Willi
|
3374c8b1c8
|
using IFA_LOCAL for interface enumeration to support ppp links
|
2007-03-30 09:21:48 +00:00 |
|
Martin Willi
|
b9e363f86f
|
added IKE_SA_INIT retransmission detection
fixed thread exhaustion when IKE_SA is blocked for a longer time
|
2007-03-29 14:20:10 +00:00 |
|
Martin Willi
|
891e69944f
|
implemented DoS protection with cookies and IP filter
|
2007-03-29 11:26:55 +00:00 |
|
Martin Willi
|
361e6df8c1
|
fixed task manager message id bug for cookies
|
2007-03-29 11:08:30 +00:00 |
|
Martin Willi
|
a6bdc731b1
|
added retry limit for IKE_SA_INIT (give up after 5 cookie failures)
|
2007-03-29 11:07:49 +00:00 |
|
Martin Willi
|
25eaae17db
|
added chunk_from_thing() macro
|
2007-03-29 11:06:59 +00:00 |
|
Andreas Steffen
|
6819e4d754
|
implemented ipsec purgeocsp
|
2007-03-28 20:43:38 +00:00 |
|
Andreas Steffen
|
6af6c0bfc3
|
cosmetics
|
2007-03-28 20:43:25 +00:00 |
|
Andreas Steffen
|
2bfadf7f3b
|
implemented ipsec purgeocsp
|
2007-03-28 20:43:11 +00:00 |
|
Martin Willi
|
4deb89485c
|
removed send_queue, handled internally in sender_t know
do header parsing in receiver, ready for cookie integration
|
2007-03-28 13:34:02 +00:00 |
|
Martin Willi
|
077a6fff95
|
implemented a simple IP blocking filter in receiver thread
|
2007-03-28 09:23:03 +00:00 |
|
Martin Willi
|
9179ac9667
|
merged changes from eap-aka trunk
|
2007-03-28 07:32:54 +00:00 |
|
Andreas Steffen
|
9d9c72e317
|
is_trusted() adds cert_status to cert_to_be_trusted
|
2007-03-28 05:38:42 +00:00 |
|
Andreas Steffen
|
203e15fe03
|
fixed delta time format: 2 seconds, 1 second, 0 seconds
|
2007-03-28 05:37:20 +00:00 |
|
Andreas Steffen
|
7a89380eca
|
replaced expired since %V by expired %V ago
|
2007-03-28 05:36:27 +00:00 |
|
Martin Willi
|
c00840478e
|
fixed state and logging of IKE_SA when using EAP authentication
|
2007-03-27 16:11:29 +00:00 |
|
Martin Willi
|
e23a59f635
|
fixed deferred CHILD_SA rekeying while IKE_SA rekeying in progress
|
2007-03-27 13:32:12 +00:00 |
|
Martin Willi
|
b34f86f545
|
giving up EAP-SIM authentication after 3 failed challenges
|
2007-03-27 06:24:17 +00:00 |
|
Andreas Steffen
|
1bf8530507
|
implemented ipsec listocsp function
|
2007-03-27 04:40:25 +00:00 |
|
Andreas Steffen
|
469e9686ae
|
cmp_chunk returns int argument
|
2007-03-27 04:39:44 +00:00 |
|
Andreas Steffen
|
0953f2a65f
|
registered PRINT_CERTINFO function with symbol Y
|
2007-03-27 04:38:22 +00:00 |
|
Andreas Steffen
|
ef49c3486a
|
added chunk_compare() which compares orders chunks
|
2007-03-27 04:37:15 +00:00 |
|
Andreas Steffen
|
51ae94d775
|
added OCSP signing certificates for the research and sales CAs
|
2007-03-26 07:08:39 +00:00 |
|
Andreas Steffen
|
e3e6a1ec22
|
added ocsp-multi-level scenario
|
2007-03-26 07:05:02 +00:00 |
|
Andreas Steffen
|
0f7995b11e
|
added CERT_ROOF
|
2007-03-23 22:01:59 +00:00 |
|
Andreas Steffen
|
387c29c62d
|
added CERT_ROOF
|
2007-03-23 22:01:40 +00:00 |
|
Andreas Steffen
|
d7eee6e1ca
|
added certificate encoding OCSP content
|
2007-03-23 21:53:12 +00:00 |
|
Andreas Steffen
|
35101bf86a
|
version bump to 4.1.1
|
2007-03-23 17:22:12 +00:00 |
|
Andreas Steffen
|
4b0f0e6cb4
|
carol's cert and private key does not have to be deleted
|
2007-03-23 17:20:44 +00:00 |
|
Andreas Steffen
|
e92b363955
|
strongSwan version bumps and Windows Vista VIDs
|
2007-03-23 17:19:57 +00:00 |
|
Martin Willi
|
59c5a85313
|
updated Changelog/TODO
|
2007-03-22 08:07:14 +00:00 |