sharpetronics/strongswan
1
0
Fork 0
mirror of https://github.com/strongswan/strongswan.git synced 2025-10-04 00:00:14 -04:00
Code Issues Projects Releases Wiki Activity
3,682 Commits 101 Branches 327 Tags
Commit Graph

3682 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Andreas Steffen
7736a40448 use of attr and resolv-conf plugins in config-payload scenario 2009-05-16 11:07:29 +02:00
Andreas Steffen
7b72af2eba another lease identity to be single-quoted 2009-05-16 11:05:15 +02:00
Andreas Steffen
b75d6242c9 optimized gperf 2009-05-15 22:54:29 +02:00
Andreas Steffen
5e3b318c69 didn't want to commit that 2009-05-15 22:47:36 +02:00
Andreas Steffen
433cb51bb9 moved IKEv2 proposals and transforms to libstrongswan 2009-05-15 22:43:48 +02:00
Andreas Steffen
540061b59a removed some ancient files 2009-05-15 21:25:21 +02:00
Andreas Steffen
89699b7660 added OAKLEY_CAMELLIA 2009-05-15 21:08:43 +02:00
Andreas Steffen
dcf47581a8 shortened DH group names 2009-05-15 20:58:04 +02:00
Andreas Steffen
11239b55b6 oops, this was a hash_desc 2009-05-15 19:13:32 +02:00
Andreas Steffen
8cabe789a7 st_okley.hash contains hash algorithm 2009-05-15 19:10:42 +02:00
Andreas Steffen
d8cb1d1668 abort pluto if crypto self-test fails 2009-05-15 17:44:02 +02:00
Andreas Steffen
5eb61e3bca strongswan.conf for ikev1/ikev2 scenarios 2009-05-15 17:27:54 +02:00
Andreas Steffen
4a1387ecf4 strongswan.conf required for ldap scenarios 2009-05-15 17:14:47 +02:00
Andreas Steffen
06169c84b1 strongswan.conf for exotic algorithms 2009-05-15 16:57:03 +02:00
Andreas Steffen
6ef94ae994 new default strongswan.conf for UML scenarios 2009-05-15 16:42:05 +02:00
Martin Willi
0ed6b7a7d7 If the NM gateway certificate has the CA constraint set, we use the gateway address as its identity. 
To allow the same certificate deployment for Windows 7 and NetworkManager clients,
the NM plugin now accepts CA certificates. To prevent any certificate holder
to act as a gateway, we bind the identity to the entered gateway address. The
gateways certificate therefore must contain the IP/DNS of the gateway
as subjectAltName.
 2009-05-15 16:35:14 +02:00
Martin Willi
d4b403e2f3 updated glade dialog, using tooltip instead of tooltip_text 2009-05-15 16:04:07 +02:00
Martin Willi
6b967fb762 implemented save_secrets hook to avoid crash 2009-05-15 16:04:07 +02:00
Andreas Steffen
c6f43acc62 cosmetics in show_debug() output 2009-05-15 15:58:00 +02:00
Andreas Steffen
381bfc325f list loaded plugins in ipsec statusall 2009-05-15 15:57:59 +02:00
Martin Willi
a61395676f added .gitignore files to NM applet 2009-05-15 15:33:19 +02:00
Andreas Steffen
b73c5526da pluto aborts if no SHA-1 and MD5 hashers are present 2009-05-15 15:23:16 +02:00
Andreas Steffen
d43cfda7dd register hash functions instead of prfs 2009-05-15 14:58:46 +02:00
Tobias Brunner
28154e35be documented the idea behind the current implementation of the scheduler 2009-05-15 14:43:15 +02:00
Andreas Steffen
e209c4d820 disable crypto self-test 2009-05-15 14:39:42 +02:00
Andreas Steffen
deb73fee10 fixed fatal typo 2009-05-15 14:17:05 +02:00
Andreas Steffen
d2fbf2c516 cleaned up pluto's IKE alg descriptors 2009-05-15 14:08:02 +02:00
Martin Willi
9caceb6ed5 updated prf identifiers 2009-05-15 13:49:05 +02:00
Martin Willi
b79ca7858b updated integrity algorithm identifiers 2009-05-15 13:48:44 +02:00
Martin Willi
832427064c added a "purgeike" command to stroke, deleting all IKE_SAs without a CHILD_SA 2009-05-15 11:02:56 +02:00
Andreas Steffen
bb51102b89 use left|rightauth notation in eap scenarios 2009-05-15 10:40:08 +02:00
Martin Willi
5cb3210acf stroke accepts "down conn1{*}/[*]" to delete all CHILD/IKE_SAs using a given config 2009-05-15 10:18:43 +02:00
Andreas Steffen
13e51a62a8 fixed copy-and-paste error 2009-05-15 10:17:17 +02:00
Andreas Steffen
2728c31031 uml evaltest changes due to 4.3.x 2009-05-15 10:01:30 +02:00
Andreas Steffen
35ba7192bd added plutdebug=control 2009-05-15 10:01:30 +02:00
Andreas Steffen
244dbb06db if enabled, load openssl plugin by default in pluto 2009-05-15 10:01:30 +02:00
Tobias Brunner
5020a456c0 more intuitive leap year check 2009-05-15 09:36:55 +02:00
Andreas Steffen
24bb9fdbf7 also support 192 bit keys for Twofish and Serpent 2009-05-15 01:48:56 +02:00
Andreas Steffen
315fd57225 fixed copy-and-paste caption error 2009-05-15 01:40:27 +02:00
Andreas Steffen
1bfb8007c2 got rid of libcrypto 2009-05-15 01:28:48 +02:00
Andreas Steffen
c628e3455d removed libcrypto includes 2009-05-14 23:07:17 +02:00
Andreas Steffen
b5fd65e95c cleaned up pluto's crypto framework 2009-05-14 22:56:10 +02:00
Andreas Steffen
9908e8785c completed serpent plugin 2009-05-14 22:30:24 +02:00
Andreas Steffen
12eece1b27 cosmetics 2009-05-14 22:25:38 +02:00
Andreas Steffen
8bdc0327fb split encrypt/decrypt functionality of crypto_cbc() 2009-05-14 21:04:49 +02:00
Andreas Steffen
7121eca633 fixed ikev1 iv derivation 2009-05-14 21:04:49 +02:00
Tobias Brunner
7cdb1ddf08 Mac OS X doesn't have SADB_X_AALG_AES_XCBC_MAC 2009-05-14 17:38:36 +02:00
Tobias Brunner
9f090745cf added another possible location for the ipsec.h header file 2009-05-14 17:38:32 +02:00
Tobias Brunner
c1532e840d fixed compiler warning 2009-05-14 17:38:27 +02:00
Tobias Brunner
9015c073de make socket_t compatible with RFC 2292 (that got obsoleted by RFC 3542) 2009-05-14 17:16:21 +02:00