sharpetronics/strongswan
1
0
Fork 0
mirror of https://github.com/strongswan/strongswan.git synced 2025-10-15 00:00:16 -04:00
Code Issues Projects Releases Wiki Activity
7,206 Commits 101 Branches 327 Tags
Commit Graph

7206 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Martin Willi
ba2201edf0 Added plugin stub of certexpire plugin 2011-08-22 18:42:32 +02:00
Martin Willi
bff1025201 Don't rekey but delete CHILD_SA to resying against NATed Windows clients 2011-08-19 09:16:17 +02:00
Martin Willi
f54bcf35af Sync newer IKE_SA condition/extension flags in ha plugin 2011-08-19 09:16:16 +02:00
Martin Willi
61cf9f512c Try to detect Windows Clients by looking for INTERNAL_IP4/6_SERVER attribute 2011-08-19 09:16:16 +02:00
Andreas Steffen
5c0ab65cae shortened XAUTH and UNITY attribute short names 2011-08-16 23:37:09 +02:00
Andreas Steffen
f69f067958 fix double delete of old IKE_SA during reauthentication 2011-08-16 23:25:45 +02:00
Andreas Steffen
a022f0863d increased message buffer to cope with NCP's innumerable UNITY Configuration Payloads 2011-08-16 23:22:20 +02:00
Andreas Steffen
65d5f6bc2b some more typos 2011-08-15 21:43:26 +02:00
Tobias Brunner
7ebf021d37 typos: initator->initiator, authenticaion->authentication. 2011-08-15 16:31:04 +02:00
Tobias Brunner
19e12db79c pluto: Some whitespace cleanup. 2011-08-15 15:53:26 +02:00
Andreas Steffen
6224a34481 converted libimcv into a dynamic library 2011-08-14 09:27:43 +02:00
Andreas Steffen
756fd15f55 version bump to 4.6.0dr3 2011-08-14 09:26:21 +02:00
Andreas Steffen
49c03672a3 updated strongswan.conf 2011-08-12 18:11:32 +02:00
Andreas Steffen
7e85bbda19 implement MAP client certificate authentication 2011-08-12 15:16:05 +02:00
Andreas Steffen
c7b8512cc0 cosmetics 2011-08-12 13:18:49 +02:00
Andreas Steffen
537205fa9d implemented enforcement-report metadata 2011-08-12 13:16:02 +02:00
Andreas Steffen
ae8a984b5a use EAP identity 2011-08-12 11:34:56 +02:00
Andreas Steffen
d6a69acba4 defined mapping of IKEv2 identity types to IF-MAP identity types 2011-08-12 11:07:29 +02:00
Tobias Brunner
9af9c6772b If we close a duplicate SA, it is also no authentication failure. 2011-08-12 10:11:39 +02:00
Tobias Brunner
d9eaecd373 If local authentication fails, it is not really a peer auth failure. 2011-08-12 10:04:02 +02:00
Tobias Brunner
ccbe380377 Throw an alert if authentication of the peer fails (not only for initiator). 2011-08-12 10:04:02 +02:00
Tobias Brunner
7ab19d571d Throw an alert when the peer address cannot be resolved during initiation. 2011-08-12 09:59:27 +02:00
Tobias Brunner
ff4b25f9b7 Throw an alert via bus_t when remote authentication fails. 2011-08-12 09:59:27 +02:00
Andreas Steffen
d0a9173ec9 support capability metadata 2011-08-11 15:06:19 +02:00
Tobias Brunner
45048eae23 Verify that executables are available and set (pluto|charon)start accordingly. 
Some distributions enable both daemons but then distribute the
executables in two separate packages.  If only one package is installed
but both daemons are enabled in ipsec.conf, starter will try to start
the non existing daemon over and over again, and will each time readd
the configs to the other daemon.
 2011-08-11 13:38:05 +02:00
Andreas Steffen
92a1b234b4 version bump to 4.6.0dr2 2011-08-11 07:56:42 +02:00
Andreas Steffen
535798cfe3 added tnc-ifmap attributes to manpage 2011-08-10 15:58:18 +02:00
Andreas Steffen
5a2e2e0b8c version bump to 4.6.0dr1 2011-08-10 09:29:35 +02:00
Andreas Steffen
3205e3be7a define server_cert in strongswan.conf 2011-08-10 09:29:35 +02:00
Andreas Steffen
dcae107b5a getting rid of axis2.html configuration 2011-08-10 09:29:34 +02:00
Andreas Steffen
9d690477c9 output PEP device addresses as metadata 2011-08-10 09:29:34 +02:00
Andreas Steffen
e37f1fd6b7 classify an EAP identity as a username 2011-08-10 09:29:34 +02:00
Andreas Steffen
e016913725 refactoring of tnc-ifmap plugin 2011-08-10 09:29:34 +02:00
Andreas Steffen
5144463634 publish all IKE_SA metadata after tnc-ifmap plugin reload 2011-08-10 09:29:34 +02:00
Andreas Steffen
8c78772a05 implemented tnc-ifmap reload method 2011-08-10 09:29:34 +02:00
Andreas Steffen
cc7cfbc16e moved ifmap code into tnc_ifmap_soap 2011-08-10 09:29:34 +02:00
Andreas Steffen
2c5e71b0c5 free device_name in destroy() 2011-08-10 09:29:34 +02:00
Andreas Steffen
1bae34e1a0 set device_name via strongswan.conf 2011-08-10 09:29:34 +02:00
Andreas Steffen
d0236f9353 fixed delete filters 2011-08-10 09:29:34 +02:00
Andreas Steffen
a3686ce33a check for publishReceived response 2011-08-10 09:29:34 +02:00
Andreas Steffen
046db4f242 added authenticated-by metadata 2011-08-10 09:29:34 +02:00
Andreas Steffen
55c0c5956c first working publish of metadata 2011-08-10 09:29:34 +02:00
Andreas Steffen
024d2522d5 added some XML syntax checking 2011-08-10 09:29:34 +02:00
Andreas Steffen
d13db9f99d implemented purgePublisher command 2011-08-10 09:29:34 +02:00
Andreas Steffen
875f217625 fixed typo 2011-08-10 09:29:34 +02:00
Andreas Steffen
9d267f7111 combined newSession and newSessionResult 2011-08-10 09:29:33 +02:00
Andreas Steffen
7ab854adf9 newSession and endSession work 2011-08-10 09:29:33 +02:00
Andreas Steffen
c77af76807 created tnc-ifmap plugin 2011-08-10 09:29:33 +02:00
Tobias Brunner
1d5aae4b53 Fixed syntax in MySQL script. 2011-08-08 16:15:28 +02:00
Martin Willi
18c4d010f4 Install and use libtls as dynamic library, as we have our private libdir now 2011-08-08 13:41:09 +02:00