]>
git.ipfire.org Git - thirdparty/strongswan.git/log
Martin Willi [Fri, 27 May 2011 13:14:23 +0000 (15:14 +0200)]
Include m4/config directory in git, supporting autoregen -i of a fresh clone
Andreas Steffen [Wed, 1 Jun 2011 07:22:12 +0000 (09:22 +0200)]
do not checksum IMC/IMV plugins
Andreas Steffen [Wed, 1 Jun 2011 06:02:16 +0000 (08:02 +0200)]
fixed location of imc_test/imv_test Makefiles
Andreas Steffen [Wed, 1 Jun 2011 05:54:14 +0000 (07:54 +0200)]
moved imc_test/imv_test plugins to libimcv
Martin Willi [Tue, 31 May 2011 16:12:56 +0000 (18:12 +0200)]
Fix initialization of NM plugin
Andreas Steffen [Tue, 31 May 2011 13:46:30 +0000 (15:46 +0200)]
renamed tls_reader|writer to bio_* and moved to libstrongswan
Andreas Steffen [Tue, 31 May 2011 12:36:56 +0000 (14:36 +0200)]
removed unused files
Andreas Steffen [Tue, 31 May 2011 12:34:32 +0000 (14:34 +0200)]
removed unused variables
Andreas Steffen [Tue, 31 May 2011 12:33:27 +0000 (14:33 +0200)]
fixed type
Tobias Brunner [Tue, 31 May 2011 07:02:23 +0000 (09:02 +0200)]
Default value for keyingtries documented properly.
Andreas Steffen [Tue, 31 May 2011 04:22:42 +0000 (06:22 +0200)]
version bump to 4.5.3dr2
Andreas Steffen [Mon, 30 May 2011 21:08:16 +0000 (23:08 +0200)]
corrected debug class to IMV
Andreas Steffen [Mon, 30 May 2011 20:48:53 +0000 (22:48 +0200)]
re-established a deleted colon character
Andreas Steffen [Mon, 30 May 2011 19:46:45 +0000 (21:46 +0200)]
cleaned up the rw-eap-tnc-20 and rw-eap-tnc-20-fhh scenarios
Andreas Steffen [Mon, 30 May 2011 19:31:50 +0000 (21:31 +0200)]
added the ikev2/rw-eap-tnc-20 scenario based on the RFC 5792 PA-TNC protocol
Andreas Steffen [Mon, 30 May 2011 19:30:09 +0000 (21:30 +0200)]
implemented the RFC 5792 PA-TNC protocol and an example IMC/IMV pair
Andreas Steffen [Mon, 30 May 2011 19:28:07 +0000 (21:28 +0200)]
renamed ikev2/rw-eap-tnc-20 scenario to rw-eap-tnc-20-fhh
Andreas Steffen [Sun, 29 May 2011 08:48:55 +0000 (10:48 +0200)]
changed VENDOR_ID to PEN
Andreas Steffen [Sun, 29 May 2011 08:48:09 +0000 (10:48 +0200)]
use singular form
Andreas Steffen [Sun, 29 May 2011 08:42:46 +0000 (10:42 +0200)]
created Private Enterprise Number (PEN) list
Andreas Steffen [Sun, 29 May 2011 08:40:17 +0000 (10:40 +0200)]
added TNC_Connection_State_names
Andreas Steffen [Sun, 29 May 2011 08:36:41 +0000 (10:36 +0200)]
raw TLS debug output
Andreas Steffen [Sun, 29 May 2011 08:30:02 +0000 (10:30 +0200)]
logging initial EAP Identifier in EAP Identity Request
Andreas Steffen [Sun, 29 May 2011 08:25:13 +0000 (10:25 +0200)]
added DBG_IMC and DBG_IMV debug options
Tobias Brunner [Thu, 26 May 2011 10:43:01 +0000 (12:43 +0200)]
ipsec: Wait longer for starter to quit before killing it.
As starter waits up to 10 seconds for either daemon to quit, killing it
already after 5 seconds is too early.
Tobias Brunner [Thu, 26 May 2011 10:36:00 +0000 (12:36 +0200)]
Option to enable duplicheck plugin fixed.
Andreas Steffen [Wed, 25 May 2011 19:34:22 +0000 (21:34 +0200)]
version bump to 4.5.3dr1
Martin Willi [Wed, 25 May 2011 16:32:00 +0000 (18:32 +0200)]
Use better packing of leak-detective memory_header to align pointers
Martin Willi [Wed, 25 May 2011 16:18:21 +0000 (18:18 +0200)]
Summarize leaks with identical backtraces, as we do it with memusage
Martin Willi [Wed, 25 May 2011 09:06:25 +0000 (11:06 +0200)]
Don't use a strongswan.conf in checksum_builder, disables checksumming
Martin Willi [Wed, 25 May 2011 08:38:31 +0000 (10:38 +0200)]
Force link of checksum builder against libhydra/libcharon
Martin Willi [Wed, 25 May 2011 08:33:14 +0000 (10:33 +0200)]
Checksum plugins only for components we actually build
Martin Willi [Wed, 25 May 2011 08:08:55 +0000 (10:08 +0200)]
Fix strict aliasing warning
Tobias Brunner [Tue, 24 May 2011 17:28:54 +0000 (19:28 +0200)]
Renamed option to enable unit tests as plugin is named unit-tester.
To correctly enable a plugin the names used in the ARG_ENABL_SET and
ADD_PLUGIN macros have to match (and they have, of course, to match the
plugin's name).
Tobias Brunner [Mon, 23 May 2011 16:45:49 +0000 (18:45 +0200)]
Keep count of remaining elements to enumerate in hashtable_t.
This improves performance during enumeration as not all buckets have to be
checked.
Tobias Brunner [Mon, 23 May 2011 16:35:21 +0000 (18:35 +0200)]
Replaced linked_list_t usage in hashtable_t with custom list implementation.
With this change inserting elements into a hashtable_t object is now
nearly as fast as inserting them into a linked_list_t object, whereas
before it was up to seven times slower. Additionally, the memory
footprint of a hashtable is now significantly smaller. The lookup
performance is also nearly doubled.
Tobias Brunner [Mon, 23 May 2011 16:13:33 +0000 (18:13 +0200)]
pluto: Made helper functions in event_queue static.
Tobias Brunner [Mon, 23 May 2011 16:13:22 +0000 (18:13 +0200)]
Compiler warning fixed.
Martin Willi [Tue, 24 May 2011 10:04:35 +0000 (12:04 +0200)]
Enable strict-aliasing warnings, we should really get rid of them
Martin Willi [Tue, 24 May 2011 08:00:57 +0000 (10:00 +0200)]
Fix memwipe() of leading unaligned bytes
Martin Willi [Fri, 20 May 2011 12:59:17 +0000 (14:59 +0200)]
Link libstrongswan against libdumm, fixes build of ruby extension
Martin Willi [Fri, 20 May 2011 08:09:09 +0000 (10:09 +0200)]
Use spaces in Makefile.am identation, autotools don't like tabs
Martin Willi [Fri, 20 May 2011 08:08:57 +0000 (10:08 +0200)]
Add md5 to script plugins
Martin Willi [Thu, 19 May 2011 12:29:21 +0000 (14:29 +0200)]
Link libstrongswan directly to dumm/irdumm, fixes build with newer binutils
Martin Willi [Thu, 19 May 2011 12:24:26 +0000 (14:24 +0200)]
Fix some warnings triggered by gcc 4.6 -Wunused-but-set-variable
Tobias Brunner [Mon, 16 May 2011 16:47:52 +0000 (18:47 +0200)]
stroke: Usage output updated.
Tobias Brunner [Mon, 16 May 2011 16:28:03 +0000 (18:28 +0200)]
Update working thread count without allocation.
Tobias Brunner [Thu, 5 May 2011 16:06:09 +0000 (18:06 +0200)]
Make sure working thread count is correctly updated
Martin Willi [Fri, 6 May 2011 07:50:02 +0000 (09:50 +0200)]
Migrated controller_t to INIT/METHOD macros
Martin Willi [Fri, 6 May 2011 07:30:54 +0000 (09:30 +0200)]
Provide get_priority() method in controller jobs
Martin Willi [Thu, 5 May 2011 10:40:53 +0000 (12:40 +0200)]
Added a load tester strongswan.conf option to throttle initiation
Martin Willi [Thu, 5 May 2011 10:48:38 +0000 (12:48 +0200)]
Migrated load_tester_listern to INIT/METHOD macros
Martin Willi [Thu, 5 May 2011 10:34:24 +0000 (12:34 +0200)]
Added strongswan.conf option to override half open IKE_SA timeout
Martin Willi [Thu, 5 May 2011 08:51:11 +0000 (10:51 +0200)]
Use CRITICAL job priority class for long running dispatcher jobs
Martin Willi [Thu, 5 May 2011 08:33:26 +0000 (10:33 +0200)]
Introduce a highest priority job for critical thread services
Martin Willi [Thu, 5 May 2011 08:31:45 +0000 (10:31 +0200)]
Show total and half-open SA count in statusall
Martin Willi [Thu, 5 May 2011 08:01:21 +0000 (10:01 +0200)]
Added a get_count() method to IKE_SA manager
Martin Willi [Thu, 5 May 2011 07:54:35 +0000 (09:54 +0200)]
Fixed identiation in private_ike_sa_manager
Martin Willi [Wed, 4 May 2011 14:09:08 +0000 (16:09 +0200)]
Added a callback_job constructor supporting custom priorities
Martin Willi [Wed, 4 May 2011 14:03:14 +0000 (16:03 +0200)]
Added a DPD option for load-tester
Martin Willi [Wed, 4 May 2011 14:02:40 +0000 (16:02 +0200)]
Don't simulate traffic on load-tester kernel interface
Martin Willi [Wed, 4 May 2011 13:33:47 +0000 (15:33 +0200)]
Show how many threads are active in each class in statusall
Martin Willi [Wed, 4 May 2011 13:32:31 +0000 (15:32 +0200)]
Count number of threads active in each class, and reserve threads only if none active
Martin Willi [Wed, 4 May 2011 09:21:33 +0000 (11:21 +0200)]
Added a statusallnb stroke command to show status non-blocking
Martin Willi [Tue, 3 May 2011 16:18:58 +0000 (18:18 +0200)]
Added init_limit_half_open and a init_limit_job_load (replacing job_threshold) options, some refactorings
Martin Willi [Tue, 3 May 2011 14:43:30 +0000 (16:43 +0200)]
Added preshared_key/eap_password load_tester options to set custom credentials
Martin Willi [Tue, 3 May 2011 14:38:50 +0000 (16:38 +0200)]
Added initiator/responder_id load tester options to enforce different identities
Martin Willi [Tue, 3 May 2011 14:18:51 +0000 (16:18 +0200)]
Migrated load_tester_config to INIT/METHOD macros
Martin Willi [Tue, 3 May 2011 14:13:40 +0000 (16:13 +0200)]
Migrated load_tester_creds to INIT/METHOD macros
Martin Willi [Tue, 3 May 2011 11:15:37 +0000 (13:15 +0200)]
Fix load tester shared key enumerator, provide dedicated EAP password
Martin Willi [Mon, 2 May 2011 13:28:33 +0000 (15:28 +0200)]
Added a non-blocking, skipping variant of IKE_SA enumerator
Martin Willi [Mon, 2 May 2011 13:04:42 +0000 (15:04 +0200)]
Added a job_threshold option to drop IKE_SA_INITs if a certain job load reached
Martin Willi [Mon, 2 May 2011 11:56:49 +0000 (13:56 +0200)]
Use high priority for retransmit/dpd/keepalive jobs
Martin Willi [Mon, 2 May 2011 11:56:17 +0000 (13:56 +0200)]
Use job priorities in process_message job based on exchange types
Martin Willi [Mon, 2 May 2011 10:18:03 +0000 (12:18 +0200)]
Reserve threads for job priority classes based on strongswan.conf options
Martin Willi [Mon, 2 May 2011 09:53:25 +0000 (11:53 +0200)]
Added job priority enum names
Martin Willi [Mon, 2 May 2011 09:28:04 +0000 (11:28 +0200)]
Processor job scheduling respects job priority classes
Martin Willi [Mon, 2 May 2011 08:52:06 +0000 (10:52 +0200)]
Introduce priority classes for jobs
Martin Willi [Fri, 29 Apr 2011 13:13:15 +0000 (15:13 +0200)]
Added a stroke memusage command to show memory usage
Martin Willi [Fri, 29 Apr 2011 12:53:24 +0000 (14:53 +0200)]
Added a leak detective method to report current memory usage with backtraces
Martin Willi [Fri, 29 Apr 2011 12:52:32 +0000 (14:52 +0200)]
Make leak detective public
Martin Willi [Fri, 29 Apr 2011 12:00:45 +0000 (14:00 +0200)]
Migrated leak_detective to INIT/METHOD macros
Martin Willi [Fri, 29 Apr 2011 11:56:20 +0000 (13:56 +0200)]
Added a frame enumerator to backtrace_t
Martin Willi [Fri, 29 Apr 2011 11:49:24 +0000 (13:49 +0200)]
Added an equals function to backtrace_t
Martin Willi [Fri, 29 Apr 2011 11:45:22 +0000 (13:45 +0200)]
Migrated backtrace_t to METHOD macro
Tobias Brunner [Mon, 16 May 2011 12:15:08 +0000 (14:15 +0200)]
maemo: New upstream release.
Andreas Steffen [Sat, 14 May 2011 15:12:50 +0000 (17:12 +0200)]
version bump to final 4.5.2
Andreas Steffen [Sat, 14 May 2011 15:11:15 +0000 (17:11 +0200)]
whitelisting can already be enabled in strongswan.conf
Andreas Steffen [Sat, 14 May 2011 15:09:45 +0000 (17:09 +0200)]
fixed whitelist enabling
Andreas Steffen [Sat, 14 May 2011 14:36:05 +0000 (16:36 +0200)]
do not call recommendations if recs does not exist
Andreas Steffen [Sat, 14 May 2011 11:31:16 +0000 (13:31 +0200)]
Restrict IMCs and IMVs to call SendMessage()
Tobias Brunner [Fri, 13 May 2011 11:11:11 +0000 (13:11 +0200)]
Don't compile login() in openssl_rsa_private_key_t if ENGINE support is disabled in OpenSSL.
Tobias Brunner [Fri, 13 May 2011 11:09:38 +0000 (13:09 +0200)]
fetcher.c added to Android.mk.
Andreas Steffen [Thu, 12 May 2011 19:11:01 +0000 (21:11 +0200)]
added ikev2/rw-whitelist scenario
Martin Willi [Thu, 12 May 2011 07:07:14 +0000 (09:07 +0200)]
Disable whitelist plugin by default
Duncan Salerno [Thu, 12 May 2011 04:19:59 +0000 (06:19 +0200)]
Protect the communication with the SIM card during a transaction from access by a second application
Andreas Steffen [Wed, 11 May 2011 17:34:01 +0000 (19:34 +0200)]
protection against insane IMCs and IMVs
Martin Willi [Wed, 11 May 2011 10:12:02 +0000 (12:12 +0200)]
Do not use deprecated vte_terminal_fork_command()
Tobias Brunner [Tue, 10 May 2011 13:45:42 +0000 (15:45 +0200)]
Return correct status code in kernel_netlink_ipsec_t.query_sa.
Tobias Brunner [Tue, 10 May 2011 13:40:46 +0000 (15:40 +0200)]
chunk_clear not clear_chunk.