aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* windows: Make sure the string returned from ReadConsole() is null terminatedTobias Brunner2014-07-021-0/+2
|
* windows: Remove useless assignment in put_thread()Tobias Brunner2014-07-021-1/+1
|
* backtrace: Remove name checks after SymFromAddr() callsTobias Brunner2014-07-021-9/+5
| | | | The Name member is an array whose address is always defined.
* pts: Avoid integer overflow when reading file names in the old IMA formatTobias Brunner2014-07-011-1/+1
|
* imv-attestation: Avoid memory leak when skipping unsupported work itemsTobias Brunner2014-07-011-0/+1
|
* pts: Use memchr(3) instead of strchr(3) to extract hash algorithm nameTobias Brunner2014-07-011-1/+1
| | | | The string read with read(2) might not be null terminated.
* swid: fgets(3) returns a pointer to the read string or NULLTobias Brunner2014-07-011-3/+3
|
* parser-helper: Ensure file_next() does not remove the sentinel itemTobias Brunner2014-07-011-1/+1
|
* gcrypt: Use predefined pthread locking functions instead of custom hooksMartin Willi2014-07-011-50/+4
| | | | | | | | | | | | | Starting with libgcrypt 1.6, it seems that custom locking functions are not supported anymore. Instead, the user has to select from one of the pre-defined set of locking functions. Given that we have a proper threading abstraction API with optional profiling on all platforms, this is somewhat annoying. However, there does not seem to be a way to use custom functions, and we have no other choice than using the provided macro magic to support all libgcrypt versions. Fixes #630.
* man: Document replay_window ipsec.conf optionTobias Brunner2014-06-301-0/+9
|
* stroke: Don't log unspecified options of conn and ca sectionsTobias Brunner2014-06-301-37/+50
|
* utils: Helper macros to define overloaded macros based on number of argumentsTobias Brunner2014-06-301-0/+26
|
* pki: Document --online option for pki --verify and all exit codesTobias Brunner2014-06-301-5/+11
|
* conf: Document load-tester.crl optionTobias Brunner2014-06-301-0/+4
|
* conf: Document charon.*-scripts optionsTobias Brunner2014-06-301-0/+8
|
* conf: Document swanctl optionsTobias Brunner2014-06-303-0/+4
|
* conf: Document aikgen optionsTobias Brunner2014-06-303-0/+4
|
* autoconf: Replace --disable-tools option with --disable-scepclientTobias Brunner2014-06-309-23/+23
| | | | | Since using a separate option for pki this was the only tool that was still enabled by that option.
* checksum: Fix checksum generation for pki if tools are disabledTobias Brunner2014-06-301-0/+3
|
* doc: Remove obsolete architecture description and empty known bugs listTobias Brunner2014-06-302-61/+0
|
* apidoc: Include *.md and files from the complete source directory (not only src)Tobias Brunner2014-06-301-2/+2
|
* Converted existing README to MarkdownTobias Brunner2014-06-301-741/+525
|
* Move README to README.md so it gets evaluated as MarkdownTobias Brunner2014-06-302-1514/+1515
|
* swid: Fix parameter documentation in Doxygen commentsTobias Brunner2014-06-302-2/+2
|
* windows: Fix parameter name in Doxygen commentTobias Brunner2014-06-301-1/+1
|
* enum: Replace þ with p in Doxygen commentsTobias Brunner2014-06-301-2/+2
|
* libvici: Add missing argument to Doxygen commentTobias Brunner2014-06-301-0/+1
|
* starter: Add starter group and fix formatting of conf_parser_section_t enumTobias Brunner2014-06-301-2/+4
| | | | Make use of the Markdown support in recent Doxygen versions.
* swanctl: Fix Doxygen group assignmentTobias Brunner2014-06-301-1/+1
|
* apidoc: Updated Doxyfile.inTobias Brunner2014-06-301-915/+1427
|
* Fixed some typosTobias Brunner2014-06-305-5/+5
|
* Update KVM test framework to 3.15 guest kernel5.2.0rc1Andreas Steffen2014-06-272-3/+2086
|
* Added Android 4.4.4 to IMV databaseAndreas Steffen2014-06-271-0/+12
|
* testing: Add sql/shunt-policies-nat-rw scenarioTobias Brunner2014-06-2618-0/+740
|
* testing: Add pfkey/shunt-policies-nat-rw scenarioTobias Brunner2014-06-2613-0/+175
|
* kernel-pfkey: Use address in TS to determine interface for shunt routesTobias Brunner2014-06-261-6/+9
|
* kernel-pfkey: Use subnet and prefix when determining nexthop for shunt ↵Tobias Brunner2014-06-261-2/+12
| | | | | | policy routes This is basically the same as 88f125f5605e54b38cf8913df79e32ec6bddff10.
* kernel-pfkey: Install routes for shunt policiesTobias Brunner2014-06-261-4/+4
|
* testing: Remove obsolete shunt-policies scenariosTobias Brunner2014-06-2624-688/+0
|
* starter: Ingore %default conn and ca sectionsTobias Brunner2014-06-262-0/+60
|
* Updated build-database.sh to 3.13.0-30-generic Ubuntu kernelAndreas Steffen2014-06-261-1/+1
|
* Updated description of TNC scenarios concerning RFC 7171 PT-EAP supportAndreas Steffen2014-06-266-24/+30
|
* Removed django.db from swid scenariosAndreas Steffen2014-06-262-0/+0
|
* updown: Force subnet address to be numericTobias Brunner2014-06-251-2/+2
|
* windows: Include <sys/stat.h> explicitly before overloading memset()/memcpy()Martin Willi2014-06-251-0/+1
| | | | | | fstat() in newer MinGWs is defined as non-static inline. With our new static inline memset()/memcpy() overloads, this raises a warning. To avoid it, explicitly include <sys/stat.h> once before defining these overloads.
* eap-radius: Increase buffer for accounting attributes to maximum attribute sizeMartin Willi2014-06-251-1/+1
| | | | Fixes #624.
* kernel-netlink: Cast IPv6 address blobs to the proper typeTobias Brunner2014-06-241-3/+3
| | | | On Android these macros are defined as functions.
* android: Define HAVE_DLADDR as plugin loader checks for itTobias Brunner2014-06-243-2/+2
|
* android: Update Android.mk files to match changes due to the Windows portTobias Brunner2014-06-242-7/+19
| | | | Makes them easier to compare to the original Makefile.am.
* charon: Set CLOEXEC flag on daemon PID file and /dev/(u)random source FDsMartin Willi2014-06-242-0/+15
| | | | | | | | | | | | | On Fedora, SELinux complains about these open file descriptors when the updown script invokes iptables. While it seems difficult to set the flag on all file descriptors, this at least fixes those covered by the SELinux policy. As these two cases are in code executed while the daemon is still single threaded, we avoid the use of atomic but not fully portable fdopen("e") or open(O_CLOEXEC) calls. Fixes #519.
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-03 08:36:41 +0000