aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* kernel-libipsec: Fail route installation if remote TS matches peerTobias Brunner2013-07-181-0/+9
|
* capabilities: Some plugins don't actually require capabilities at runtimeTobias Brunner2013-07-1813-14/+17
|
* capabilities: Add function to check if a capability is held, without keeping itTobias Brunner2013-07-182-45/+75
| | | | | This can be useful if capabilities are not required anymore after dropping privileges.
* NEWS: leak-detective improvementsMartin Willi2013-07-181-0/+4
|
* NEWS: add keychain pluginMartin Willi2013-07-181-1/+2
|
* autoconf: replace autogen.sh custom script with a call to autoreconf -iMartin Willi2013-07-181-18/+1
|
* automake: replace INCLUDES by AM_CPPFLAGSMartin Willi2013-07-18149-546/+746
| | | | | | INCLUDES are now deprecated and throw warnings when using automake 1.13. We now also differentiate AM_CPPFLAGS and AM_CFLAGS, where includes and defines are passed to AM_CPPFLAGS only.
* autoconf: rename configure.in to configure.acMartin Willi2013-07-182-2/+2
| | | | | | configure.ac has been the recommended name for autoconf input for several years now. Newer autotools start to complain about the configure.in, so we finally change it.
* eap-sim-pcsc: fix compiler warningMartin Willi2013-07-181-2/+1
|
* nm: omit deprecated g_type_init() when using >= GLIB 2.36Martin Willi2013-07-181-0/+2
|
* soup: omit deprecated g_type_init() when using >= GLIB 2.36Martin Willi2013-07-181-0/+2
|
* libfast: cancel thread if it fails to accept fcgi sessionsMartin Willi2013-07-181-1/+5
|
* libfast: add a fast_ prefix to all classes, avoiding namespace clashesMartin Willi2013-07-1834-369/+372
|
* Merge branch 'charon-xpc'Martin Willi2013-07-1825-40/+2358
|\ | | | | | | | | | | Implement a charon daemon controlled by the Apple specific XPC mechanism, acting as a backend for a yet to build unprivileged GUI. The keychain plugin coming with this merge provides certificates from the OS X keychain service.
| * xpc: allow easy copy & pase of ./configure instructionsMartin Willi2013-07-181-9/+9
| |
| * xpc: use -idirafter to build against openssl headers from /usr/includeMartin Willi2013-07-181-4/+4
| |
| * xpc: forward some risen alerts over XPC to AppMartin Willi2013-07-181-0/+57
| |
| * xpc: enable close_ike_on_child_failureMartin Willi2013-07-181-0/+2
| |
| * xpc: send a "connecting" event when establishing a connection startsMartin Willi2013-07-181-0/+27
| |
| * xpc: use osx-attr plugin to install configuration attributesMartin Willi2013-07-182-3/+6
| |
| * xpc: update README with new events, markdown style fixesMartin Willi2013-07-181-21/+31
| |
| * xpc: send child_updown events over XPC channelMartin Willi2013-07-181-0/+43
| |
| * xpc: support termination of IKE_SAs using XPC RPC on connection channelMartin Willi2013-07-181-8/+102
| |
| * xpc: move XPC RPC reply creation to command dispatchingMartin Willi2013-07-181-24/+16
| |
| * xpc: terminate daemon when last XPC connection to App goneMartin Willi2013-07-181-0/+28
| |
| * xpc: fix some refcounting issues related to XPC connectionsMartin Willi2013-07-182-26/+15
| |
| * xpc: no need to clear channel table, they are bound to IKE_SA lifetimeMartin Willi2013-07-181-8/+0
| |
| * xpc: add support for logging over XPC channelsMartin Willi2013-07-184-1/+174
| |
| * xpc: don't warn about pointer signedness mismatch (-Wno-pointer-sign)Martin Willi2013-07-181-0/+2
| |
| * xpc: add a description of the basic XPC protocol to READMEMartin Willi2013-07-181-1/+48
| |
| * xpc: use the same XPC message "type" mechanism on Mach service as on channelsMartin Willi2013-07-181-11/+32
| |
| * xpc: ask App for passwords using connection specific channelMartin Willi2013-07-181-0/+90
| |
| * xpc: use IKE_SA specific XPC return channels for further communicationMartin Willi2013-07-184-12/+320
| |
| * xpc: don't send certificate requests, there are too many when using keychainMartin Willi2013-07-181-1/+1
| |
| * xpc: build with support for the keychain pluginMartin Willi2013-07-183-2/+4
| |
| * xpc: add support for initiate simple IKEv2 EAP connectionsMartin Willi2013-07-181-0/+126
| |
| * xpc: move dispatching to dedicated class, using dedicated threadMartin Willi2013-07-184-86/+304
| |
| * xpc: use non-inlining variant of vstr, compiler does not like itMartin Willi2013-07-181-0/+2
| |
| * xpc: add Xcode project for a charon controlled through XPCMartin Willi2013-07-186-0/+584
| |
| * syslog: setlogmask() to include LOG_INFOMartin Willi2013-07-181-0/+1
| | | | | | | | LOG_INFO seems to be excluded by default on some systems (OS X).
| * keychain: flush certificate cache after reloading System keychainMartin Willi2013-07-181-0/+2
| |
| * keychain: monitor changes in the system keychain, reload when necessaryMartin Willi2013-07-181-0/+65
| |
| * keychain: use SearchCopyNext keychain enumeration for System certs as wellMartin Willi2013-07-181-71/+12
| | | | | | | | | | | | | | SecItemCopyMatching seems to be problematic regarding memory management. And as there does not seem to be a good alternative to enumerate the System Roots keychain using the SecItemCopyMatching API, we stick to the deprecated enumeration functions for now.
| * keychain: load certificates from System Roots KeychainMartin Willi2013-07-181-0/+65
| |
| * keychain: load certificates only once during startup, improving performanceMartin Willi2013-07-183-111/+78
| |
| * keychain: support on-the-fly enumeration of trusted/untrusted certificatesMartin Willi2013-07-182-1/+118
| |
| * keychain: add a stub for a credential plugin using OS X Keychain ServicesMartin Willi2013-07-187-0/+258
| |
| * credmgr: stop querying for secrets once we get a perfect matchMartin Willi2013-07-181-0/+4
| |
| * credmgr: don't use pointers for id_match_t enum valuesMartin Willi2013-07-181-2/+2
| |
| * openssl: parse X.509 extended key usage from extension parsing loopMartin Willi2013-07-181-33/+38
| | | | | | | | | | Otherwise parsing gets aborted if unknown critical extensions are handled as error.
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 16:52:23 +0000