strongSwan

h1. Version 5.3.4

* Fixed an authentication bypass vulnerability in the _eap-mschapv2_ plugin that

  was caused by insufficient verification of the internal state when handling

  EAP-MSCHAPv2 Success messages received by the client.

  This vulnerability has been registered as "CVE-2015-8023":http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2015-8023.

  Please refer to "our blog":https://www.strongswan.org/blog/2015/11/16/strongswan-vulnerability-(cve-2015-8023).html for details.

* The _sha3_ plugin implements the SHA3 Keccak-F1600 hash algorithm family.

  Within the strongSwan framework SHA3 is currently used for [[BLISS]] signatures

  only because the OIDs for other signature algorithms haven't been defined

  yet. Also the use of SHA3 for IKEv2 has not been standardized yet.

* The EAP-MSCHAPv2 username now replaces the identity of any previous EAP-Identity

  exchange (#1182).

* Fixed several issues with IKEv1 Phase 2 message handling (#1076, #1128, #1130, #1198).

* A bug with setting the source IP for IKE packets was fixed that caused problems with

  newer compilers (#1171).

* The [[ipsecstroke|ipsec stroke down-nb]] command is now actually non-blocking (#1191).

* Some [[VICI]] commands received updates: NAT information and virtual IPs are listed for

  IKE_SAs (commit:04f22cdabc, commit:bdb8b76515), IP address leases are optionally listed

  for pools defined via VICI (commit:f4641f9e45).

* The [[LoggerConfiguration|file-logger]] now optionally logs the milliseconds within the current second (commit:548b993488).

* Fetching CRLs in PEM format is now supported and using the _curl_ plugin to fetch CRLs

  from @file://@ URIs has also been fixed (#1203).

* CRLs added via [[VICI]] are now properly added to the credential set (commit:e5e352e631).

* IKEv2 NAT-D payloads are now created in a more static way, which ensures they stay the

  same when retrying to establish an IKE_SA (e.g. due to INVALID_KEY_PAYLOAD notifies, #1131).

* Fixed _compress=yes_ (IPComp) with IPv6 and _leftfirewall=yes_ (commit:382f8a334a).

* Fixed a deadlock in duplicate checking for IKEv1 SAs (commit:758b1caa0e, commit:1d528cfb8d).

* The @del_policy@ method of @kernel_ipsec_t@ now receives the same information originally

  passed to @add_policy@ (commit:a6e0f14fd2).

* The _kernel-netlink_ plugin allows IPsec policies to replace shunt policies, which allows

  configuring matching _type=drop_ policies along side _auto=add_ connections.

* To debug custom plugins they can now optionally be loaded with @RTLD_NOW@ so missing

  symbols are revealed immediately (via _charon.dlopen_use_rtld_now_).  The same applies

  for custom IMVs/IMCs.

* The runtime for [[TestingEnvironment|our regression tests]] has been reduced significantly (by about 75%).

* The [[AndroidVPNClient|Android app]] has been updated to use the Gradle build system.