aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
| * tun-device: use host_create_netmask() to calculate interface netmaskMartin Willi2013-05-061-49/+12
| |
| * host: add a netmask constructor taking the number of network bitsMartin Willi2013-05-062-0/+57
| |
| * host: remove unused host_t.get_differences() methodMartin Willi2013-05-062-39/+0
| |
| * host: print %#H format specifiers not as %any, but with the portMartin Willi2013-05-061-1/+1
| |
| * host: initialize sockaddr->sa_len if it is availableMartin Willi2013-05-061-0/+14
| |
| * child-sa: pass traffic selector to add_sa() regardless of IPsec modeMartin Willi2013-05-061-14/+11
| | | | | | | | | | This lets the kernel backend decide what to do with it, and in fact all kernel interfaces already handle this correctly.
| * socket-default: to bind to one dynamic port on OS X, create v4 socket before v6Martin Willi2013-05-061-1/+7
| | | | | | | | | | It seems that the order of binding sockets of different address families to the same dynamic port must be v6-before-v4 on Linux, but v4-before-v6 on OS X.
| * socket-default: refactor socket pair opening to a functionMartin Willi2013-05-061-27/+23
| |
| * socket-default: Don't try to send packet if we haven't a socket for given familyMartin Willi2013-05-061-3/+4
| |
| * socket-default: Use -1 if socket is not available, as 0 is actually a valid fdMartin Willi2013-05-061-20/+23
| |
| * semaphore: similar to thread_create(), semaphore_create() is used by MachMartin Willi2013-05-061-0/+5
| | | | | | | | | | | | The compiler spits no warning, but the wrong symbol is used when calling semaphore_create() from strongSwan. Override the name with a #define to force the use of our semaphore_create().
| * .gitignore: add OS X .DS_Store filesMartin Willi2013-05-061-0/+1
|/
* Merge branch 'charon-cmd'Martin Willi2013-05-0617-80/+1454
|\ | | | | | | | | | | Introduce a simple IKEv1/IKEv2 command line client, charon-cmd. It does not need any configuration files at all, but takes a few command line arguments to establish connections as a road warrior.
| * charon-cmd: add an option to set a different server identityMartin Willi2013-05-063-1/+19
| |
| * proposals: try next if IKEv2 algorithm could not be mapped to IKEv1Martin Willi2013-05-061-2/+4
| |
| * charon-cmd: add support for different IKEv1/IKEv2 authentication profilesMartin Willi2013-05-064-17/+170
| |
| * charon-cmd: support multi-line help text for each option in usageMartin Willi2013-05-062-2/+12
| |
| * charon-cmd: add --local/remote-ts options to set traffic selectorsMartin Willi2013-05-063-4/+64
| |
| * charon-cmd: Use dynamic ports with the socket-default pluginMartin Willi2013-05-061-0/+2
| |
| * settings: Add a set_default_str() to set a different default for a keyMartin Willi2013-05-062-0/+31
| | | | | | | | | | The value is set only if it is not configured in strongswan.conf or has not been set() otherwise.
| * charon-cmd: prompt for EAP passwords on-demand using a callback credential setMartin Willi2013-05-061-0/+49
| |
| * charon-cmd: authenticate with EAP if no private key is givenMartin Willi2013-05-061-1/+18
| |
| * charon-cmd: pass arguments to all handlers, even if already handledMartin Willi2013-05-061-2/+5
| |
| * charon-cmd: build long_opts only once when reading arguments in charon-cmdMartin Willi2013-05-061-10/+9
| |
| * charon-cmd: add support for using dynamic ports in charon-cmdMartin Willi2013-05-062-5/+9
| |
| * socket-dynamic: when sending from port zero, allocate a free port dynamicallyMartin Willi2013-05-061-26/+101
| |
| * controller: clean up job data if a thread gets cancelled waiting in a functionMartin Willi2013-05-061-3/+6
| | | | | | | | | | Controller functions are thread cancellation points, so register a cancellation handler cleaning up job data.
| * charon-cmd: load certificates and RSA private keysMartin Willi2013-05-066-14/+210
| |
| * charon-cmd: add a connection object and its initiation to charon-cmdMartin Willi2013-05-066-10/+313
| |
| * charon-cmd: move command line options to separate file, obsolete short optionsMartin Willi2013-05-064-54/+109
| |
| * charon-cmd: add a stub for charon-cmd, a simple command line IKE clientMartin Willi2013-05-066-48/+442
|/
* Merge branch 'leak-detective-dlsym'Martin Willi2013-05-067-149/+519
|\ | | | | | | | | | | | | | | | | | | | | | | Replaces the use of deprecated glibc malloc hooks by overloading malloc calls and find the originals using dlsym(RTLD_NEXT). On OS X, we now support the use of leak detective by changing the default malloc zone functions, backtraces get resolved using atos. It seems that the performance bottleneck now is stack unwinding. Unfortunately a new libunwind based backtrace() is not much faster than the libc variant; we keep that option nonetheless for platforms without backtrace().
| * scripts: add a simple test utility to do some malloc() benchmarking/profilingMartin Willi2013-05-063-1/+89
| |
| * backtrace: use atos instead of addr2line on OS X to resolve source linesMartin Willi2013-05-061-3/+11
| |
| * backtrace: add an alternative stack unwinding implementation using libunwindMartin Willi2013-05-063-6/+44
| |
| * leak-detective: add support for OS X by hooking default malloc zoneMartin Willi2013-05-061-5/+160
| |
| * leak-detective: remove unused malloc call countersMartin Willi2013-05-061-7/+0
| |
| * leak-detective: align allocations on both 32 and 64-bit systems to 32 bytesMartin Willi2013-05-061-0/+5
| |
| * leak-detective: call tzset() explicitly before enabling leak detectiveMartin Willi2013-05-061-6/+11
| | | | | | | | | | tzset() is hard to whitelist on some systems, as there is no symbol involved. Call tzset() explicitly before initialization to avoid false positives.
| * leak-detective: override malloc functions instead of using deprecated hooksMartin Willi2013-05-061-128/+206
|/ | | | | | | malloc hooks have become deprecated, and their use has always been problematic, especially in multi-threaded applications. Replace the functionality by overriding all malloc functions and query the system allocator functions using dlsym() with RTLD_NEXT.
* Merge branch 'silent-automake'Martin Willi2013-05-0612-5/+20
|\ | | | | | | | | | | Adds support for --enable/disable-silent-rules when building with Automake 1.11 or 1.12. make V=0 or V=1 can be used to build with a different verbosity than ./configured.
| * Add -s to make if --enable-silent-rules is ./configuredMartin Willi2013-05-062-0/+5
| |
| * Use the GEN silent rule when generating files with sedMartin Willi2013-05-067-2/+9
| |
| * Use the GEN silent rule when generating oid database with perlMartin Willi2013-05-062-2/+2
| |
| * Use the GEN silent rule when generating gperf filesMartin Willi2013-05-063-1/+3
| |
| * Provide the --enable-silent-rules ./configure option with automake 1.11 and 1.12Martin Willi2013-05-061-0/+1
|/
* Introduce an optional logger_t.vlog() method with format string and argumentsMartin Willi2013-05-062-16/+85
| | | | | | | To have more flexibility in the logging backend, receiving the original format string and do printf() substitution in the logger may be preferable. An additional but optional logger method does not touch the behavior of existing loggers.
* Raise an ALERT_PROPOSAL_MISMATCH_CHILD also when receiving NO_PROPOSAL_CHOSENMartin Willi2013-05-061-0/+20
|
* Raise an ALERT_PROPOSAL_MISMATCH_IKE also when receiving NO_PROPOSAL_CHOSENMartin Willi2013-05-061-0/+20
|
* eap-radius: add an option to disable accounting for tunnels without virtual IPMartin Willi2013-05-061-0/+30
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-17 00:52:34 +0000