Shrew Soft Inc : Changelog for ike-2.1.2-release

HOME

SOFTWARE

DOWNLOAD

SHOP

SUPPORT

CONTACT

ABOUT

------------------------------------------------------------------------
r518 | mgrooms | 2008-09-23 16:14:48 -0500 (Tue, 23 Sep 2008) | 1 line

Update the global versions to 2.1.2 release.
------------------------------------------------------------------------
r517 | mgrooms | 2008-09-23 16:05:11 -0500 (Tue, 23 Sep 2008) | 1 line

Branch for 2.1.2 release.
------------------------------------------------------------------------
r516 | mgrooms | 2008-09-23 15:58:21 -0500 (Tue, 23 Sep 2008) | 2 lines

Set the global version to 2.1 in the 2.1 branch.

------------------------------------------------------------------------
r515 | mgrooms | 2008-09-09 04:50:03 -0500 (Tue, 09 Sep 2008) | 1 line

Add RFC 3526 to our public docs directory. It describes additional MODP
Diffie-Hellman groups for use with IKE.
------------------------------------------------------------------------
r513 | mgrooms | 2008-09-02 00:45:03 -0500 (Tue, 02 Sep 2008) | 7 lines

Modify all IPROUTE consumers to pass the IPROUTE_ENTRY structure as a
parameter instead of passing many individual parameters.

Improve the Linux IPROUTE class. The netlink message parsing code was
barely working before. There may still be bugs lingering but its
difficult to say with the documentation being so impressively vague.

Modify the public LIBIP header to support some new vista related windows
SDK functions. In particular, we need the definitions required for
GetIpInterfaceEntry which can be used to obtain interface route metrics.

Perform some minor cleanup of the unix route code. Make the BSD and
Linux code more consistent.
------------------------------------------------------------------------
r507 | mgrooms | 2008-08-30 13:50:11 -0500 (Sat, 30 Aug 2008) | 1 line

Modify libith to honor the const char changes on windows platforms.
------------------------------------------------------------------------
r505 | mgrooms | 2008-08-30 12:54:56 -0500 (Sat, 30 Aug 2008) | 1 line

Improve the libip route class for unix platforms. The route increment
and decrement functions were previously unimplemented. BSD platforms
don't support multiple concurrent routes to the same destination
network. Any conflicting routes are now replaced and restored using
cached information when necessary. These functions are left as a no-op
on Linux since routes appear to be given preference. This should be
sufficient for our purposes.
------------------------------------------------------------------------
r500 | mgrooms | 2008-08-23 14:05:40 -0500 (Sat, 23 Aug 2008) | 1 line

Correct an issue in iked where NAT-T keep-alive packets were not being
identified correctly. Also correctly handle packets with malformed
ISAKMP headers.
------------------------------------------------------------------------
r498 | mgrooms | 2008-08-23 11:07:39 -0500 (Sat, 23 Aug 2008) | 2 lines

Use const char declarations where appropriate to silence gcc 4.2 compile
time warnings.

------------------------------------------------------------------------
r496 | mgrooms | 2008-08-23 01:34:37 -0500 (Sat, 23 Aug 2008) | 2 lines

Make sure we set the version number for new site configurations in the
unix access manager.

------------------------------------------------------------------------
r494 | mgrooms | 2008-08-23 01:15:42 -0500 (Sat, 23 Aug 2008) | 4 lines

Correct an issue with iked where the unix NAT-T socket option was not
being set correctly for v00-01 protocol versions. Also set the broadcast
address on tap adapters for platforms that don't set this correctly when
the netmask is applied.

Correct a problem with tap address configuration on FreeBSD 7.x and
later. Use SIOCAIFADDR instead of SIOCSIFADDR on BSD platforms to avoid
an issue where the local link route is irreversibly set to an 8 bit
netmask.

------------------------------------------------------------------------
r492 | mgrooms | 2008-08-22 17:09:07 -0500 (Fri, 22 Aug 2008) | 2 lines

Correct an issue in the unix vpn connect application. Check that a local
ID exists before blindly sending the value to iked. Without this patch,
the local ID would be transmitted as the remote ID if no remote ID
existed.

------------------------------------------------------------------------
r491 | mgrooms | 2008-08-22 16:50:12 -0500 (Fri, 22 Aug 2008) | 1 line

Improve iked phase1 identifier matching log output.
------------------------------------------------------------------------
r489 | mgrooms | 2008-08-21 11:03:15 -0500 (Thu, 21 Aug 2008) | 4 lines

Correct some issues with the unix access manager application. A bug was
preventing the use direct adapter mode from being selected. Thanks to
Prakash for reporting the problem and testing the patches.

Correct a buffer overflow issue with the unix connect application.
Submitted by Tai-hwa Liang.

------------------------------------------------------------------------