sharpetronics/strongswan
1
0
Fork 0
mirror of https://github.com/strongswan/strongswan.git synced 2025-10-05 00:00:45 -04:00
Code Issues Projects Releases Wiki Activity
10,236 Commits 101 Branches 327 Tags
Commit Graph

483 Commits

Author SHA1 Message Date
Martin Willi
bd20f040fd Add a plugin stub for PKCS#7 containers 2012-12-19 10:32:07 +01:00
Martin Willi
4185c64464 Use a ./configure check to detect pthread spinlock availability 
_POSIX_SPIN_LOCKS does not seem to be defined correctly on all
systems (Debian libc 2.3.6). Fixes #262.
 2012-12-18 09:51:33 +01:00
Tobias Brunner
d972975d87 Use rb_errinfo() instead of ruby_errinfo for Ruby 1.9 2012-12-10 09:47:46 +01:00
Tobias Brunner
afabe7b0ef Use proper Ruby library depending on the available version 2012-12-10 09:47:46 +01:00
Tobias Brunner
5057df5b73 Fixed search for ruby.h in ./configure for newer Ruby releases 2012-12-10 09:47:46 +01:00
Andreas Steffen
d287c14436 version bump to 5.0.2dr4 2012-11-15 21:56:27 +01:00
Tobias Brunner
6782bf3722 Properly define TSS_TROUSERS in configure script 2012-11-12 10:34:04 +01:00
Tobias Brunner
44566c2238 Made TSS implementation configurable and thereby optional 2012-11-08 19:32:41 +01:00
Andreas Steffen
bbd454a467 version bump to 5.0.2dr3 2012-10-28 08:21:02 +01:00
Martin Willi
e0d7c1eda7 Add a lookip plugin stub to lookup connections by virtual IP 2012-10-24 11:43:33 +02:00
Andreas Steffen
d8e62ae9b4 version bump to 5.0.2dr2 2012-10-20 10:49:27 +02:00
Andreas Steffen
abcc762387 version bump to 5.0.2dr1 2012-10-11 09:21:38 +02:00
Andreas Steffen
e9f47ee2d5 created OS IMC/IMV pair 2012-10-09 23:58:36 +02:00
Andreas Steffen
c8697a7170 version bump to 5.0.1 2012-10-02 10:39:43 +02:00
Martin Willi
5ff012f717 Add Cisco Unity client support for Split-Include and Local-LAN 2012-09-18 17:17:47 +02:00
Tobias Brunner
6d30954ae8 Removed the unneeded socket-raw plugin 2012-09-14 14:10:14 +02:00
Andreas Steffen
493f85b696 version bump to 5.0.1rc1 2012-09-12 23:56:12 +02:00
Tobias Brunner
868409139b Merge branch 'eap-client-select' 
This brings support for EAP-Nak payloads on the client (to select a
specific or supported method), and the server (via the eap-dynamic
plugin which selects a method supported/requested by the client).
 2012-08-31 12:25:41 +02:00
Tobias Brunner
700ff5def9 Added eap-dynamic plugin which can proxy any other EAP method 2012-08-31 11:42:01 +02:00
Andreas Steffen
7b1c711ea0 version bump to 5.0.1dr4 2012-08-31 02:47:37 +02:00
Martin Willi
907d3d0f1d Add a mutex/condvar based semaphore implementation if sem_timedwait is unavailable 
Fixes #214.
 2012-08-20 17:20:26 +02:00
Andreas Steffen
5ff8309889 version bump to 5.0.1dr3 2012-08-20 12:25:53 +02:00
Andreas Steffen
81d7e9bbaf version bump to 5.0.1dr2 2012-08-14 10:05:57 +02:00
Tobias Brunner
09ae3d79ca Merge branch 'android-app' 
This branch introduces a userland IPsec implementation (libipsec) and an
Android App which targets the VpnService API that is provided by Android 4+.

The implementation is based on the bachelor thesis 'Userland IPsec for
Android 4' by Giuliano Grassi and Ralf Sager.
 2012-08-13 12:07:52 +02:00
Tobias Brunner
e4ef4c9877 Merge branch 'android-ndk' 
This branch comes with some preliminary changes for the user-land IPsec
implementation and the Android App.

One important change is that the UDP ports used by the socket-default plugin
were made configurable (either via ./configure or strongswan.conf).
Also, the plugin does randomly allocate a port if it is configured to 0,
which is useful for client implementations.  A consequence of these
changes is that the local UDP port used when creating ike_cfg_t objects has
to be fetched from the socket.
 2012-08-13 10:45:39 +02:00
Tobias Brunner
9ede42e112 Documentation fixes regarding xauth-pam/eap-gtc plugins 2012-08-11 16:05:05 +02:00
Martin Willi
b9e4916321 Add xauth-pam, an XAuth backend verifying credentials with PAM 2012-08-10 10:43:44 +02:00
Tobias Brunner
b6a071514a Fixed ip_packet_t if IPv6 is not available 2012-08-08 15:41:03 +02:00
Tobias Brunner
224ab4c59b socket-default plugin allocates random ports if configured to 0. 
Also added strongswan.conf options to change the ports.
 2012-08-08 15:30:27 +02:00
Tobias Brunner
b70139fbfd Stub library for user space IPsec implementation added. 2012-08-08 15:09:31 +02:00
Tobias Brunner
162621ed57 Moved Android specific logger to separate plugin. 
This is mainly because the other parts of the existing android plugin
can not be built in the NDK (access to keystore and system properties are
not part of the stable NDK libraries).
 2012-08-08 15:07:43 +02:00
Tobias Brunner
e7ea057fd2 Make the UDP ports charon listens for packets on (and uses as source ports) configurable. 2012-08-08 15:07:43 +02:00
Martin Willi
4c6c934635 With --enable-bfd-backtraces, use binutils libbfd to resolve backtraces 
The invocation of addr2line to resolve backtrace source locations
is slow and cumbersome. When using libbfd directly, we can eliminate
the overhead of the process invocation. Even better, we can cache
library symbol names, bringing wicked fast lookups. As a neat bonus,
we can resolve static function names.
 2012-07-13 13:23:29 +02:00
Martin Willi
bbe5b50567 Set a sane default if --with-dev-headers is given without path 2012-07-12 08:39:54 +02:00
Andreas Steffen
ccceb82662 version bump to 5.0.1dr1 2012-07-11 17:46:45 +02:00
Martin Willi
b188f23199 Install dev headers only if --with-dev-headers= option is set 2012-07-11 11:16:31 +02:00
Martin Willi
4c311ffb1f Check if config.h passed correctly via gcc -include 2012-07-11 09:57:07 +02:00
Martin Willi
7300eb29d1 Use and install a config.h AC_CONFIG_HEADER that contains all AC_DEFINE results 2012-07-11 09:57:07 +02:00
Martin Willi
a4037686c7 Added a description to all AC_DEFINE macros, as required by autoheader 2012-07-11 09:57:07 +02:00
Tobias Brunner
ee7b7de18f getpwnam_r and getgrnam_r are not supported by the Android NDK 2012-07-09 17:52:01 +02:00
Tobias Brunner
4f07a19d10 Fixed help text for --disable-xauth-generic plugin 2012-07-05 09:46:59 +02:00
Tobias Brunner
2a59527659 Thread-safe wrapper around strerror(3)/strerror_r(3) added 2012-06-28 13:14:52 +02:00
Tobias Brunner
bc6d944705 Added an option to rename the ipsec script during installation 
Also rename the man page and adjust all references in the script, the
man page and other files.

Closes #194.
 2012-06-25 16:53:38 +02:00
Tobias Brunner
720ba902c5 Enable xauth-generic by default but don't build it if IKEv1 is disabled 2012-06-25 11:07:49 +02:00
Andreas Steffen
83c75fd10f version bump to 5.0.0 2012-06-23 11:32:54 +02:00
Tobias Brunner
6d599fb964 Removed remaining pluto related configure options. 2012-06-13 11:33:32 +02:00
Tobias Brunner
fff4b74db2 Bye bye Pluto! 
Charon will take over IKEv1 duties from here.  This also removes
libfreeswan and whack.
 2012-06-11 17:33:32 +02:00
Andreas Steffen
1527307ec9 version bump to 5.0.0rc1 2012-06-09 14:05:08 +02:00
Tobias Brunner
7a56c35fc9 Remove executable flag from source files. 2012-05-18 10:04:08 +02:00
Adrian-Ken Rueegsegger
04024b5de8 Add nonce plugin implementation 
This nonce generator uses an RNG to generate nonces. The RNG quality is
currently set to RNG_WEAK which is the same value used in IKE init.

The plugin is enabled and thus built by default.
 2012-05-18 08:15:40 +02:00