sharpetronics/strongswan
1
0
Fork 0
mirror of https://github.com/strongswan/strongswan.git synced 2025-10-05 00:00:45 -04:00
Code Issues Projects Releases Wiki Activity
14,999 Commits 101 Branches 327 Tags
Commit Graph

14999 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Tobias Brunner
73a6bec3fc android: Increase the NAT-T keepalive interval to potentially save battery life 
In case this doesn't work out we could probably make it configurable.

References #1326.
 2016-05-02 18:38:08 +02:00
Tobias Brunner
44c8580ebe android: Show confirmation dialog also when connecting 2016-05-02 18:35:04 +02:00
Tobias Brunner
6e398a81f2 android: Avoid ProgressDialogs in VPN state fragment 
Instead we use a ProgressBar directly in the fragment and use the
existing button to cancel the process.
 2016-05-02 16:43:15 +02:00
Tobias Brunner
353526601a android: Fix display of remediation instructions with support library 
Because the support library creates its own layout manually and uses
different IDs than the list_content layout we can't use the method we
used previously (and which is actually recommended in the docs).
 2016-05-02 16:41:50 +02:00
Tobias Brunner
7c5fec3a5a android: Use Fragment class from the support library to avoid deprecation warnings 
For instance, onAttach() with an Activitiy as first argument was deprecated
with API level 23.  However, the overload with a Context as first argument
does obviously not get called on older API levels.  Luckily, the classes
provided by the support library handle that for us.
 2016-05-02 16:41:50 +02:00
Tobias Brunner
3256fe9ebb android: Update README.ndk 2016-05-02 16:41:50 +02:00
Tobias Brunner
1bd213db79 android: Use relative path for strongSwan sources 
This avoids issues with recursion, which could have happened if the
strongswan directory was a symlink.
 2016-05-02 16:41:49 +02:00
Tobias Brunner
d9c5e6d786 android: Fix handling of redirects during IKE_AUTH 2016-05-02 16:41:25 +02:00
Tobias Brunner
1dabd0fb1c Merge branch 'android-tabs' 
This migrates some deprecated Android APIs to replacements provided by
the support library.  This also changes the theme slightly.
 2016-04-27 14:38:08 +02:00
Tobias Brunner
90172b66c4 android: Fix color of lists and buttons on older platforms 
This adds a workaround for an issue on older platforms where the list is
not properly styled with colorAccent.  Similarly applies to borderless buttons.
 2016-04-27 14:24:27 +02:00
Tobias Brunner
2a68938b2e android: Use Activity as context for VpnProfileAdapter to fix theme 
When using the application context theme customizations wouldn't get
applied for some reason.
 2016-04-27 14:24:27 +02:00
Tobias Brunner
19e22af199 android: Use "server" instead of "gateway" in profile editor 
The term "gateway" is unfamiliar for most new users (or they confuse it
with the default gateway of their network) but they usually know that
they want to connect to a "server".
 2016-04-27 14:24:27 +02:00
Tobias Brunner
61ac729662 android: Define a new color scheme 
This mainly changes the color of the appbar (colorPrimary), the color
of the status bar (colorPrimaryDark) is black like the default.
The accent color (colorAccent) used for controls like buttons and check
boxes is a slightly toned down version of the default.
 2016-04-27 14:24:27 +02:00
Tobias Brunner
8e71dd9e82 android: Get a warning on use of deprecated features 2016-04-27 14:24:27 +02:00
Tobias Brunner
4c5f4a3d2a android: Replace use of deprecate getColor() method overload 2016-04-27 14:24:26 +02:00
Tobias Brunner
48123633cc android: Make font in log view monospace again on Android 5+ 2016-04-27 14:24:26 +02:00
Tobias Brunner
de2fbd0e3f android: Avoid deprecated tabs in the ActionBar in TrustedCertificatesActivity 
Instead we use TabLayout and ViewPager from the support libraries.
 2016-04-27 14:24:26 +02:00
Tobias Brunner
b9f79bc431 android: Automatically reload certificates if manager is reset 
No need to manually reset the fragments anymore.
 2016-04-27 14:24:26 +02:00
Tobias Brunner
01bade451f android: Make TrustedCertificateManager an Observable 
Observers are notified when the manager is reset (and initially when the
certificates are first loaded).
 2016-04-27 14:24:26 +02:00
Tobias Brunner
77c1c28d74 android: Switch to AppCompat/Material theme for dialogs 
There is no AppCompatProgressDialog class as the use of ProgressDialog
is discouraged (instead progress bars should be placed in the layout directly).
To display the current ProgressDialog instances correctly on systems < 21 we
modify the window background color.
 2016-04-27 14:24:25 +02:00
Tobias Brunner
6b31828269 android: Switch to AppCompat/Material theme and use custom Toolbar as AppBar 
Also includes some whitespace/formatting changes due to the switch to
Android Studio.
 2016-04-27 14:24:25 +02:00
Tobias Brunner
9dd6d1e6db android: Ignore build/ in project directory 2016-04-27 14:24:25 +02:00
Tobias Brunner
10d0de0c9a android: Update platform tools and pull in support libs 
We'll have to change some stuff that Google deprecated (e.g. the tabs in
the ActionBar) and that requires changing the theme at least in activities.
Since that would look a bit inconsistent we'll change it globally and
use parts of the support library.
 2016-04-27 14:24:25 +02:00
Tobias Brunner
9ab746cb0f android: Update Android Gradle plugin and wrapper 2016-04-27 14:24:25 +02:00
Andreas Steffen
278497f2ba testing: Use absolute path of imv_policy_manager 2016-04-26 17:15:37 +02:00
Andreas Steffen
ef84ad0e11 Updated products in IMV database 2016-04-26 17:15:37 +02:00
Andreas Steffen
afcd466192 swanctl: list EAP type in --list-conns 2016-04-26 17:15:37 +02:00
Andreas Steffen
b85422b90c testing: -D and -u options in sfdisk are not supported any more 2016-04-26 17:15:37 +02:00
Yannick Cann
49fa6ebf1c identification: Add support for dmdName RDN (2.5.4.54) 
It's listed in RFC 2256 but was later removed with RFC 4519, but there
are still some certs that use it.

Closes strongswan/strongswan#43.
 2016-04-25 17:06:04 +02:00
Andreas Steffen
c87f428836 leak-detective: added _IO_file_doallocate to whitelist 2016-04-24 23:34:44 +02:00
Andreas Steffen
4e3234afb4 swanctl: log errors to stderr 2016-04-24 23:33:23 +02:00
Andreas Steffen
029d3a0ce6 testing: updated testing.conf 2016-04-24 13:36:31 +02:00
Tobias Brunner
61587aa6fc pool: Use correct name to remove index for CHILD_SA TS in SQLite script 
Fixes #1415.
 2016-04-18 10:08:44 +02:00
Tobias Brunner
254726b59e kernel-pfkey: Add support for manual priorities 
Also orders policies with equals priorities by their automatic priority.
 2016-04-15 10:39:01 +02:00
Tobias Brunner
4e59618382 kernel-pfkey: Update priority calculation formula to the new one in kernel-netlink 
Since the selectors are not exactly the same (no port masks, no interface)
some small tweaks have been applied.
 2016-04-15 10:39:00 +02:00
Tobias Brunner
869f4e90b1 kernel-netlink: Order policies with equal priorities by their automatic priority 
This allows using manual priorities for traps, which have a lower
base priority than the resulting IPsec policies.  This could otherwise
be problematic if, for example, swanctl --install/uninstall is used while
an SA is established combined with e.g. IPComp, where the trap policy does
not look the same as the IPsec policy (which is now otherwise often the case
as the reqids stay the same).

It also orders policies by selector size if manual priorities are configured
and narrowing occurs.
 2016-04-15 10:39:00 +02:00
Tobias Brunner
ea27163ee1 Merge branch 'boringssl' 
Adds some fixes to the openssl plugin to build against BoringSSL.

Fixes #1374.
 2016-04-15 10:34:27 +02:00
Tobias Brunner
689bb34958 curl: Add TLS support if libcurl is built against BoringSSL 
We don't have to rely on the openssl plugin and its threading
initialization as BoringSSL is thread-safe out of the box.
 2016-04-15 10:32:53 +02:00
Tobias Brunner
47a46be597 openssl: BoringSSL does not support configuration 
The other initialization functions are still defined but many are
apparently no-ops (this is also true for the threading initialization).
 2016-04-15 10:32:53 +02:00
Tobias Brunner
c8a219a28d openssl: The member storing the DH exponent length has been renamed in BoringSSL 2016-04-15 10:32:53 +02:00
Tobias Brunner
77df573a95 openssl: Use proper EVP macro to determine size of a hash 2016-04-15 10:32:52 +02:00
Tobias Brunner
9b85a6853b android: Remove OPENSSL_NO_EC* defines 
Current versions of OpenSSL/BoringSSL shipped with Android support ECC.
 2016-04-15 10:32:52 +02:00
Tobias Brunner
cb65e95d4a android: OPENSSL_NO_ENGINE is now properly defined in the headers 2016-04-15 10:32:36 +02:00
Tobias Brunner
de9b3491ad curl: Handle LibreSSL like OpenSSL in regards to multi-threading 
LibreSSL is API compatible so our openssl plugin does not need any
changes and it works fine with the curl plugin.
 2016-04-15 10:31:19 +02:00
Tobias Brunner
e8c73c1cf0 configure: Replace two remaining usages of AC_HAVE_LIBRARY with AC_CHECK_LIB 2016-04-15 10:31:19 +02:00
Tobias Brunner
960632ffb0 thread: Don't hold mutex when calling cleanup handlers while terminating 
This could interfere with cleanup handlers that try to acquire
mutexes while other threads holding these try to e.g. cancel the threads.

As cleanup handlers are only queued by the threads themselves we don't need
any synchronization to access the list.

Fixes #1401.
 2016-04-13 13:55:20 +02:00
Andreas Steffen
0ff486f507 testing: Added swanctl/rw-multi-ciphers-ikev1 scenario 2016-04-12 18:50:58 +02:00
Tobias Brunner
4af7aa18f0 Ignore Qt Creator project files 
Closes strongswan/strongswan#32.
 2016-04-11 16:16:57 +02:00
Andreas Steffen
c407f163e6 Version bump to 5.4.1dr1 5.4.1dr1 2016-04-11 10:24:12 +02:00
Andreas Steffen
b1c89bb0f9 Merge branch 'kernel-policies' 2016-04-11 10:19:21 +02:00