aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
| * Added a method to bio_writer_t that allows to extract the internal bufferTobias Brunner2012-08-082-0/+29
| |
| * Added methods to bio_reader_t to read data from end of bufferTobias Brunner2012-08-082-24/+204
| |
| * Increase log verbosity when sending NAT keep-alivesTobias Brunner2012-08-081-1/+1
| |
| * Only log the sending of regular packets in sender_tTobias Brunner2012-08-081-1/+2
| | | | | | | | | | | | | | | | When sender_t is used to send ESP packets this would otherwise cause an extreme amount of debug messages. With this change all messages sent via sender_t.send_no_marker() cause no extra DBG1 log message, but for debugging purposes the socket plugins do log the same message again with DBG2 for all packets.
* | Merge branch 'android-ndk'Tobias Brunner2012-08-1382-328/+1458
|\| | | | | | | | | | | | | | | | | | | | | | | This branch comes with some preliminary changes for the user-land IPsec implementation and the Android App. One important change is that the UDP ports used by the socket-default plugin were made configurable (either via ./configure or strongswan.conf). Also, the plugin does randomly allocate a port if it is configured to 0, which is useful for client implementations. A consequence of these changes is that the local UDP port used when creating ike_cfg_t objects has to be fetched from the socket.
| * Added option to prevent socket-default from setting the source address on ↵Tobias Brunner2012-08-082-1/+12
| | | | | | | | outbound packets
| * Allocate UDP ports randomly in Android NDK build.Tobias Brunner2012-08-081-1/+2
| |
| * socket-default plugin allocates random ports if configured to 0.Tobias Brunner2012-08-083-39/+96
| | | | | | | | Also added strongswan.conf options to change the ports.
| * Replaced usages of CHARON_*_PORT with calls to get_port().Tobias Brunner2012-08-0814-20/+33
| |
| * Added get_port() method to socket_t to learn the listening port.Tobias Brunner2012-08-086-5/+59
| |
| * Added ESP log group for libipsec log messages.Tobias Brunner2012-08-086-3/+12
| |
| * Use send_no_marker to send NAT keepalives.Tobias Brunner2012-08-082-9/+4
| |
| * Avoid double-free when prepending Non-ESP marker.Tobias Brunner2012-08-081-1/+1
| |
| * Function added to send packets without Non-ESP marker.Tobias Brunner2012-08-082-20/+36
| |
| * Avoid unnecessary copy of packet data when removing Non-ESP marker.Tobias Brunner2012-08-081-2/+1
| |
| * Added packet_t.skip_bytes method to skip bytes at the start of a packet.Tobias Brunner2012-08-082-3/+26
| |
| * Improved how NAT-T keepalives are handled in sockets/receiver.Tobias Brunner2012-08-084-24/+16
| |
| * Let kernel interfaces decide how to enable UDP decapsulation of ESP packets.Tobias Brunner2012-08-0810-90/+133
| |
| * Callback for ESP packets added to receiver.Tobias Brunner2012-08-082-6/+86
| |
| * Add Non-ESP marker in sender and not individual socket plugins.Tobias Brunner2012-08-085-39/+23
| |
| * Handle Non-ESP marker in receiver and not individual socket plugins.Tobias Brunner2012-08-084-40/+34
| |
| * Java code style fixed (analogous to C code).Tobias Brunner2012-08-082-14/+28
| |
| * Load libipsec in Android app.Tobias Brunner2012-08-084-1/+15
| |
| * Stub library for user space IPsec implementation added.Tobias Brunner2012-08-088-0/+187
| |
| * Some NDK build info updated.Tobias Brunner2012-08-081-4/+7
| |
| * Changed minimal SDK/API level to 14.Tobias Brunner2012-08-083-4/+4
| |
| * Added android.net.VpnService wrapper around charon (loaded via JNI).Tobias Brunner2012-08-086-6/+228
| |
| * Added Android shell app created with Android SDK.Tobias Brunner2012-08-0811-0/+118
| |
| * Android.mk for NDK build added.Tobias Brunner2012-08-084-0/+96
| |
| * Extracted some parts from Android.mk.in which can be used for NDK builds.Tobias Brunner2012-08-084-18/+25
| |
| * Use filter instead of findstring to check for enabled plugins in Android.mk.Tobias Brunner2012-08-081-1/+1
| | | | | | | | | | | | findstring is not prefix-safe (i.e. android matches android-log). On the other hand filter matches words separated by whitespace and if no wildcard (%) is used the full word has to match.
| * Moved Android specific logger to separate plugin.Tobias Brunner2012-08-0812-36/+175
| | | | | | | | | | | | This is mainly because the other parts of the existing android plugin can not be built in the NDK (access to keystore and system properties are not part of the stable NDK libraries).
| * Link android plugin against liblog in the NDK.Tobias Brunner2012-08-081-0/+1
| | | | | | | | Doesn't seem to hurt the build within the source tree.
| * Make the UDP ports charon listens for packets on (and uses as source ports) ↵Tobias Brunner2012-08-0818-48/+89
| | | | | | | | configurable.
| * Make path to Android OpenSSL headers configurable.Tobias Brunner2012-08-082-1/+2
| |
| * Don't require STRONGSWAN_CONF to be defined.Tobias Brunner2012-08-081-2/+9
| |
| * Don't require PLUGINDIR to be defined.Tobias Brunner2012-08-081-6/+15
| | | | | | | | If it is not available, we just load monolithically built plugins.
* | Doxygen fixTobias Brunner2012-08-111-1/+1
| |
* | Avoid problems with Doxygen by adding warn_unused_result attribute at the ↵Tobias Brunner2012-08-119-61/+57
| | | | | | | | end of method signatures
* | Add warn_unused_result attributes to rng_(get|allocate)_bytes_not_zeroTobias Brunner2012-08-111-5/+6
| | | | | | | | Also fixed Doxygen comments.
* | Documentation fixes regarding xauth-pam/eap-gtc pluginsTobias Brunner2012-08-112-4/+6
| |
* | If _POSIX_SPIN_LOCKS is defined as -1, it is not availableMartin Willi2012-08-101-0/+4
| |
* | If vstr printf functions are #defined, undef them before redefinitionMartin Willi2012-08-101-0/+31
| | | | | | | | | | At least Mountain Lion seems to have them #defined to secure _chk variants.
* | Use actual daemon name to enable XAuth/PSK with aggressive modeMartin Willi2012-08-101-2/+3
| |
* | Add xauth-pam/eap-gtc NEWSMartin Willi2012-08-101-0/+5
| |
* | EAP-GTC can use any XAuth backend, including xauth-pamMartin Willi2012-08-102-88/+45
| | | | | | | | | | | | | | This makes EAP-GTC a generic plain password authentication method, as it is used with XAuth. Instead of verifying credentials with PAM, any backend can be configured. The default is xauth-pam, providing the same functionality as EAP-GTC in strongSwan 4.x.
* | Add xauth-pam, an XAuth backend verifying credentials with PAMMartin Willi2012-08-107-1/+395
| |
* | Add getspnam_r() to leak detective whitelistMartin Willi2012-08-101-0/+1
| |
* | make max_message_size parameter consistent with similar optionsAndreas Steffen2012-08-093-4/+4
| |
* | Check if TLS handshake received Finished before processing application dataMartin Willi2012-08-091-0/+6
|/
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-16 18:25:19 +0000