f3bb1bd039
Fixed common misspellings.
...
Mostly found by 'codespell'.
2011-07-20 16:14:10 +02:00
328f22e1d3
Add the reqid to kernel_ipsec_t.del_policy.
2011-07-06 09:43:45 +02:00
c74ece334d
pluto: Made helper functions in event_queue static.
2011-05-24 19:23:45 +02:00
59965aaf96
pluto: Securely wipe quick mode keys from memory.
...
Keying material is derived in two separate steps for local and remote
endpoint. This allows us to securely wipe local/remote secrets
separately, too -- a precondition to wipe quick mode keys from memory in
a secure fashion.
2011-05-10 15:39:00 +02:00
9e6bb93ab9
pluto: Securely wipe sensitive data from memory.
2011-05-10 15:19:46 +02:00
8af1e3606b
fixed loop error in parsing of OCSP basic responses
2011-04-26 12:32:19 +02:00
4778655726
Cast size_t len arguments to %.*s to int
2011-04-20 13:08:32 +02:00
4876d4f3b3
Added an esn parameter to the kernel interface add_sa functions
2011-04-20 12:26:57 +02:00
6e0c82141f
pluto: Replaced some strcpy usages with strncpy.
2011-04-19 17:35:57 +02:00
2653c08513
pluto: Make sure connection name is null-terminated during DPD restart.
2011-04-19 13:48:51 +02:00
75cf0cc012
pluto: Clarified parsing of long durations.
2011-04-19 13:48:50 +02:00
73ac1f2040
pluto: Avoid potential null-pointer dereference when checking CRLs.
2011-04-19 13:48:50 +02:00
82017bf417
pluto: from_state is strictly lower than STATE_IKE_ROOF.
2011-04-19 13:48:50 +02:00
c55818ebb0
Added a (not yet implemented) plugin_t method to reload plugin configuration
2011-04-15 10:07:13 +02:00
787b5884aa
Added a get_name() function to plugin_t, create_plugin_enumerator enumerates over plugin_t
2011-04-15 10:07:12 +02:00
6e2791715b
Migrated remaining plugin_t implementations to INIT/METHOD macros
2011-04-15 10:07:12 +02:00
823d2f5035
pluto: Fixed check for NAT-T keepalives.
2011-04-14 18:11:47 +02:00
3bec23d88c
pluto: Properly initialize constants.
2011-04-14 18:11:46 +02:00
7223229924
pluto: Avoid hiding outer parameter.
2011-04-14 18:11:46 +02:00
33c9e8b28d
pluto: Use %zu to print values of type size_t.
2011-04-14 18:11:46 +02:00
809750d72b
pluto: Fixed potential memory leak when processing requested virtual IPs.
2011-04-14 18:10:52 +02:00
267d47d6f2
pluto: Properly free buffer in error cases in read_packet.
2011-04-14 18:10:27 +02:00
e51cae33a9
Fix compiler warnings at creation of CRL cache filenames.
...
This was not really a problem because ptr is the first member of a chunk_t
and it contains a null-terminated string at that point. But it's clearer
this way.
2011-04-14 18:10:27 +02:00
64f4237b1e
Fix "set nexthop to him when instantiating rightallowyes template with leftnexthop == right"
...
This fixes commit 280f6b1ab2
2011-04-14 18:10:26 +02:00
e54a2bd20e
pluto: Properly initialize a.continuation.
2011-04-12 17:39:11 +02:00
2cec32e8eb
pluto: Properly initialize ta.encrypter.
2011-04-12 17:22:50 +02:00
7f1fb6b69d
pluto: Fixed off by one error when reading private keys.
2011-04-12 15:54:29 +02:00
24e0595437
Removed unused variables.
2011-04-12 14:44:49 +02:00
c38877b395
pluto: Properly free secrets in error cases.
2011-02-10 16:49:42 +01:00
84545f6e7c
Some typos fixed.
2011-02-07 11:39:41 +01:00
2b2eecb6ec
Fixed whatis entry of pluto manpage.
2011-02-07 11:39:41 +01:00
189cb3a1de
Escape - in manpages when used as minus sign.
2011-02-07 11:39:41 +01:00
b3d359e58f
Use a generic getter for all numerical X.509 constraints
2011-01-05 16:46:05 +01:00
a6478a0402
Simplified format of x509 CRL URI parsing/enumerator
2011-01-05 16:46:03 +01:00
5dba5852fc
Slightly renamed X509_NO_PATH_LEN_CONSTRAINT to use it for PolicyConstraints, too
2011-01-05 16:46:02 +01:00
4e508517d7
Added support for CRL Issuers to x509 and OpenSSL plugins
2011-01-05 16:45:55 +01:00
27a66f9393
implemented wrap around of registered IKEv1 algorithm names
2010-12-26 17:11:02 +01:00
d86bb6ef4d
Implemented Traffic Flow Confidentiality padding in kernel_interface
2010-12-20 09:45:39 +01:00
5932f41fcc
trace back crypto algorithms to the plugins that registered them
2010-12-18 16:31:12 +01:00
5feda42724
pluto: Fixed a regression introduced in f565d0c575.
...
Since scx_add could return a previously created smartcard object, using
sc->last_cert to store the newly added certificate could lead to segfaults.
2010-10-26 09:58:13 +02:00
71711b67b4
pluto: Locking fixed in cert_add.
2010-10-26 09:58:13 +02:00
1f2c328355
payloads are not aligned to 4 byte boundaries
2010-10-25 19:31:07 +02:00
4b7d1262d9
define state_story for STATE_UNDEFINED
2010-10-16 16:15:10 +02:00
4de8398f93
fix segfault when reading certificate from smartcard
2010-10-15 11:09:38 +02:00
4d10e260de
pluto: Install inbound policies together with outbound policies.
...
This avoids an error message when uninstalling the policies and charon
did it already like this.
2010-10-14 13:53:20 +02:00
2b3124c76d
fixed release of virtual IP for XAUTH identities
2010-09-26 10:17:01 +02:00
0a1233e642
Moved man pages for config files to a separate directory.
2010-09-10 12:01:19 +02:00
f3051ebf53
fixed memory leak
2010-09-09 21:38:41 +02:00
d987946e80
Added a final flag to builder registration to enumerate the actually supported algorithms
2010-09-03 18:09:48 +02:00
1dfd6d18ff
pluto: Removed unused lifetime from raw_eroute.
2010-09-02 19:04:26 +02:00
Tobias Brunner