sharpetronics/strongswan
1
0
Fork 0
mirror of https://github.com/strongswan/strongswan.git synced 2025-10-04 00:00:14 -04:00
Code Issues Projects Releases Wiki Activity
3,618 Commits 101 Branches 327 Tags
Commit Graph

3618 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Andreas Steffen
6ef94ae994 new default strongswan.conf for UML scenarios 2009-05-15 16:42:05 +02:00
Martin Willi
0ed6b7a7d7 If the NM gateway certificate has the CA constraint set, we use the gateway address as its identity. 
To allow the same certificate deployment for Windows 7 and NetworkManager clients,
the NM plugin now accepts CA certificates. To prevent any certificate holder
to act as a gateway, we bind the identity to the entered gateway address. The
gateways certificate therefore must contain the IP/DNS of the gateway
as subjectAltName.
 2009-05-15 16:35:14 +02:00
Martin Willi
d4b403e2f3 updated glade dialog, using tooltip instead of tooltip_text 2009-05-15 16:04:07 +02:00
Martin Willi
6b967fb762 implemented save_secrets hook to avoid crash 2009-05-15 16:04:07 +02:00
Andreas Steffen
c6f43acc62 cosmetics in show_debug() output 2009-05-15 15:58:00 +02:00
Andreas Steffen
381bfc325f list loaded plugins in ipsec statusall 2009-05-15 15:57:59 +02:00
Martin Willi
a61395676f added .gitignore files to NM applet 2009-05-15 15:33:19 +02:00
Andreas Steffen
b73c5526da pluto aborts if no SHA-1 and MD5 hashers are present 2009-05-15 15:23:16 +02:00
Andreas Steffen
d43cfda7dd register hash functions instead of prfs 2009-05-15 14:58:46 +02:00
Tobias Brunner
28154e35be documented the idea behind the current implementation of the scheduler 2009-05-15 14:43:15 +02:00
Andreas Steffen
e209c4d820 disable crypto self-test 2009-05-15 14:39:42 +02:00
Andreas Steffen
deb73fee10 fixed fatal typo 2009-05-15 14:17:05 +02:00
Andreas Steffen
d2fbf2c516 cleaned up pluto's IKE alg descriptors 2009-05-15 14:08:02 +02:00
Martin Willi
9caceb6ed5 updated prf identifiers 2009-05-15 13:49:05 +02:00
Martin Willi
b79ca7858b updated integrity algorithm identifiers 2009-05-15 13:48:44 +02:00
Martin Willi
832427064c added a "purgeike" command to stroke, deleting all IKE_SAs without a CHILD_SA 2009-05-15 11:02:56 +02:00
Andreas Steffen
bb51102b89 use left|rightauth notation in eap scenarios 2009-05-15 10:40:08 +02:00
Martin Willi
5cb3210acf stroke accepts "down conn1{*}/[*]" to delete all CHILD/IKE_SAs using a given config 2009-05-15 10:18:43 +02:00
Andreas Steffen
13e51a62a8 fixed copy-and-paste error 2009-05-15 10:17:17 +02:00
Andreas Steffen
2728c31031 uml evaltest changes due to 4.3.x 2009-05-15 10:01:30 +02:00
Andreas Steffen
35ba7192bd added plutdebug=control 2009-05-15 10:01:30 +02:00
Andreas Steffen
244dbb06db if enabled, load openssl plugin by default in pluto 2009-05-15 10:01:30 +02:00
Tobias Brunner
5020a456c0 more intuitive leap year check 2009-05-15 09:36:55 +02:00
Andreas Steffen
24bb9fdbf7 also support 192 bit keys for Twofish and Serpent 2009-05-15 01:48:56 +02:00
Andreas Steffen
315fd57225 fixed copy-and-paste caption error 2009-05-15 01:40:27 +02:00
Andreas Steffen
1bfb8007c2 got rid of libcrypto 2009-05-15 01:28:48 +02:00
Andreas Steffen
c628e3455d removed libcrypto includes 2009-05-14 23:07:17 +02:00
Andreas Steffen
b5fd65e95c cleaned up pluto's crypto framework 2009-05-14 22:56:10 +02:00
Andreas Steffen
9908e8785c completed serpent plugin 2009-05-14 22:30:24 +02:00
Andreas Steffen
12eece1b27 cosmetics 2009-05-14 22:25:38 +02:00
Andreas Steffen
8bdc0327fb split encrypt/decrypt functionality of crypto_cbc() 2009-05-14 21:04:49 +02:00
Andreas Steffen
7121eca633 fixed ikev1 iv derivation 2009-05-14 21:04:49 +02:00
Tobias Brunner
7cdb1ddf08 Mac OS X doesn't have SADB_X_AALG_AES_XCBC_MAC 2009-05-14 17:38:36 +02:00
Tobias Brunner
9f090745cf added another possible location for the ipsec.h header file 2009-05-14 17:38:32 +02:00
Tobias Brunner
c1532e840d fixed compiler warning 2009-05-14 17:38:27 +02:00
Tobias Brunner
9015c073de make socket_t compatible with RFC 2292 (that got obsoleted by RFC 3542) 2009-05-14 17:16:21 +02:00
Andreas Steffen
978c2df17a completed twofish sources 2009-05-14 16:51:53 +02:00
Andreas Steffen
4a85e33ccc ported twofish as a plugin 2009-05-14 15:39:31 +02:00
Andreas Steffen
13bb168485 fixed 32 bit overflow check 2009-05-14 15:39:31 +02:00
Martin Willi
c296e51c40 added eap_start option to radius plugin 
EAP-Start sends an empty EAP message to initiate EAP conversation
before doing EAP-Identity.
 2009-05-14 14:14:29 +02:00
Andreas Steffen
2b02b0fe9f introduced encryption test vectors 2009-05-14 13:55:56 +02:00
Andreas Steffen
0a8ad227d4 renamed ENCR_TWOFISH and ENCR_SERPENT to ENCR_TWOFISH_CBC and ENCR_SERPENT_CBC, respectively 2009-05-14 13:55:56 +02:00
Andreas Steffen
24400cf617 fixed setting of variable key length 2009-05-14 13:55:56 +02:00
Andreas Steffen
6e0ff31e07 use localtime_r() instead of localtime() 2009-05-14 13:55:56 +02:00
Andreas Steffen
7eea232f44 clone iv before blowfish en|decryption 2009-05-14 13:55:56 +02:00
Andreas Steffen
111b963931 replaced clone_bytes() by clalloc() 2009-05-14 13:55:56 +02:00
Andreas Steffen
910221c236 fixed indentation 2009-05-14 13:55:55 +02:00
Andreas Steffen
30a896173b compute ASN.1 to UTC time without time functions 2009-05-14 13:55:55 +02:00
Andreas Steffen
3783980edb changed TRUE/FALSE to 1/0 2009-05-14 13:55:55 +02:00
Andreas Steffen
3bc613d01d blowfish block size is 8 bytes 2009-05-14 13:55:55 +02:00