Commit Graph

1505 Commits

Author SHA1 Message Date
Andreas Steffen e58afb1a0a support of crlcheckinterval=0 to disable IKEv2 CRL fetching 2007-04-04 07:49:05 +00:00
Martin Willi 80b7162531 improved log output for checkout_by_message() 2007-04-04 07:11:12 +00:00
Andreas Steffen e47a7a131d reinsert SHAREDTREE 2007-04-04 05:29:20 +00:00
Andreas Steffen c056d929b2 --enable-ldap without value 3 2007-04-04 05:26:21 +00:00
Andreas Steffen d15d1cc4f3 recognize strongSwan 2.8.4 VID 2007-04-04 05:25:06 +00:00
Andreas Steffen 8f76dbe8b1 support of dynamical http-based CRL fetching 2007-04-03 22:05:04 +00:00
Andreas Steffen ace5de18b2 iptables -L has now a link of its own 2007-04-03 22:03:25 +00:00
Andreas Steffen 3d62a7d225 fixed crl fetching bug 2007-04-03 22:02:17 +00:00
Andreas Steffen 7e4f8db2bf added ip route list and iptables -L 2007-04-03 21:18:46 +00:00
Andreas Steffen a0eaa59b50 implemented dynamic http-based CRL fetching 2007-04-03 21:11:23 +00:00
Andreas Steffen 5d6dc162f2 send VID_NATT_IETF_02_N for Windows 2003 server support 2007-04-03 21:10:08 +00:00
Andreas Steffen a8f02ad5f5 implemented dynamic http-based CRL fetching 2007-04-03 21:09:11 +00:00
Andreas Steffen f166af2c0a implemented http get method 2007-04-03 19:46:50 +00:00
Andreas Steffen 3b4f7d922a IKEv1 changes 2007-04-03 12:41:37 +00:00
Andreas Steffen b0f9f02ca4 added --enable-nat-transport and --disable-vendor-id configuration options 2007-04-03 07:58:34 +00:00
Andreas Steffen 7b0c588a88 added --enable-nat-transport and --disable-vendor-id configuration options 2007-04-03 07:58:21 +00:00
Andreas Steffen a0c15611a4 bug fix: check existence of encryption key before sending encrypted notification 2007-04-02 19:04:51 +00:00
Martin Willi ed284399cd updated NEWS, TODO 2007-03-30 12:49:19 +00:00
Martin Willi 73390cce24 removed unneded includes 2007-03-30 12:24:31 +00:00
Martin Willi 3374c8b1c8 using IFA_LOCAL for interface enumeration to support ppp links 2007-03-30 09:21:48 +00:00
Martin Willi b9e363f86f added IKE_SA_INIT retransmission detection
fixed thread exhaustion when IKE_SA is blocked for a longer time
2007-03-29 14:20:10 +00:00
Martin Willi 891e69944f implemented DoS protection with cookies and IP filter 2007-03-29 11:26:55 +00:00
Martin Willi 361e6df8c1 fixed task manager message id bug for cookies 2007-03-29 11:08:30 +00:00
Martin Willi a6bdc731b1 added retry limit for IKE_SA_INIT (give up after 5 cookie failures) 2007-03-29 11:07:49 +00:00
Martin Willi 25eaae17db added chunk_from_thing() macro 2007-03-29 11:06:59 +00:00
Andreas Steffen 6819e4d754 implemented ipsec purgeocsp 2007-03-28 20:43:38 +00:00
Andreas Steffen 6af6c0bfc3 cosmetics 2007-03-28 20:43:25 +00:00
Andreas Steffen 2bfadf7f3b implemented ipsec purgeocsp 2007-03-28 20:43:11 +00:00
Martin Willi 4deb89485c removed send_queue, handled internally in sender_t know
do header parsing in receiver, ready for cookie integration
2007-03-28 13:34:02 +00:00
Martin Willi 077a6fff95 implemented a simple IP blocking filter in receiver thread 2007-03-28 09:23:03 +00:00
Martin Willi 9179ac9667 merged changes from eap-aka trunk 2007-03-28 07:32:54 +00:00
Andreas Steffen 9d9c72e317 is_trusted() adds cert_status to cert_to_be_trusted 2007-03-28 05:38:42 +00:00
Andreas Steffen 203e15fe03 fixed delta time format: 2 seconds, 1 second, 0 seconds 2007-03-28 05:37:20 +00:00
Andreas Steffen 7a89380eca replaced expired since %V by expired %V ago 2007-03-28 05:36:27 +00:00
Martin Willi c00840478e fixed state and logging of IKE_SA when using EAP authentication 2007-03-27 16:11:29 +00:00
Martin Willi e23a59f635 fixed deferred CHILD_SA rekeying while IKE_SA rekeying in progress 2007-03-27 13:32:12 +00:00
Martin Willi b34f86f545 giving up EAP-SIM authentication after 3 failed challenges 2007-03-27 06:24:17 +00:00
Andreas Steffen 1bf8530507 implemented ipsec listocsp function 2007-03-27 04:40:25 +00:00
Andreas Steffen 469e9686ae cmp_chunk returns int argument 2007-03-27 04:39:44 +00:00
Andreas Steffen 0953f2a65f registered PRINT_CERTINFO function with symbol Y 2007-03-27 04:38:22 +00:00
Andreas Steffen ef49c3486a added chunk_compare() which compares orders chunks 2007-03-27 04:37:15 +00:00
Andreas Steffen 51ae94d775 added OCSP signing certificates for the research and sales CAs 2007-03-26 07:08:39 +00:00
Andreas Steffen e3e6a1ec22 added ocsp-multi-level scenario 2007-03-26 07:05:02 +00:00
Andreas Steffen 0f7995b11e added CERT_ROOF 2007-03-23 22:01:59 +00:00
Andreas Steffen 387c29c62d added CERT_ROOF 2007-03-23 22:01:40 +00:00
Andreas Steffen d7eee6e1ca added certificate encoding OCSP content 2007-03-23 21:53:12 +00:00
Andreas Steffen 35101bf86a version bump to 4.1.1 2007-03-23 17:22:12 +00:00
Andreas Steffen 4b0f0e6cb4 carol's cert and private key does not have to be deleted 2007-03-23 17:20:44 +00:00
Andreas Steffen e92b363955 strongSwan version bumps and Windows Vista VIDs 2007-03-23 17:19:57 +00:00
Martin Willi 59c5a85313 updated Changelog/TODO 2007-03-22 08:07:14 +00:00