aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
| * kernel-pfroute: fix length check when receiving PF_ROUTE messagesMartin Willi2013-05-061-1/+1
| |
| * kernel-pfkey: remove obsolete pluto specific behaviorMartin Willi2013-05-061-5/+1
| |
| * kernel-netlink: remove obsolete pluto specific behaviorMartin Willi2013-05-061-7/+1
| |
| * tun_device: add a getter for the address previously passed to set_address()Martin Willi2013-05-062-0/+32
| |
| * tun_device: add a getter for the underlying file descriptorMartin Willi2013-05-062-0/+14
| |
| * tun-device: use host_create_netmask() to calculate interface netmaskMartin Willi2013-05-061-49/+12
| |
| * host: add a netmask constructor taking the number of network bitsMartin Willi2013-05-062-0/+57
| |
| * host: remove unused host_t.get_differences() methodMartin Willi2013-05-062-39/+0
| |
| * host: print %#H format specifiers not as %any, but with the portMartin Willi2013-05-061-1/+1
| |
| * host: initialize sockaddr->sa_len if it is availableMartin Willi2013-05-061-0/+14
| |
| * child-sa: pass traffic selector to add_sa() regardless of IPsec modeMartin Willi2013-05-061-14/+11
| | | | | | | | | | This lets the kernel backend decide what to do with it, and in fact all kernel interfaces already handle this correctly.
| * socket-default: to bind to one dynamic port on OS X, create v4 socket before v6Martin Willi2013-05-061-1/+7
| | | | | | | | | | It seems that the order of binding sockets of different address families to the same dynamic port must be v6-before-v4 on Linux, but v4-before-v6 on OS X.
| * socket-default: refactor socket pair opening to a functionMartin Willi2013-05-061-27/+23
| |
| * socket-default: Don't try to send packet if we haven't a socket for given familyMartin Willi2013-05-061-3/+4
| |
| * socket-default: Use -1 if socket is not available, as 0 is actually a valid fdMartin Willi2013-05-061-20/+23
| |
| * semaphore: similar to thread_create(), semaphore_create() is used by MachMartin Willi2013-05-061-0/+5
| | | | | | | | | | | | The compiler spits no warning, but the wrong symbol is used when calling semaphore_create() from strongSwan. Override the name with a #define to force the use of our semaphore_create().
| * .gitignore: add OS X .DS_Store filesMartin Willi2013-05-061-0/+1
|/
* Merge branch 'charon-cmd'Martin Willi2013-05-0617-80/+1454
|\ | | | | | | | | | | Introduce a simple IKEv1/IKEv2 command line client, charon-cmd. It does not need any configuration files at all, but takes a few command line arguments to establish connections as a road warrior.
| * charon-cmd: add an option to set a different server identityMartin Willi2013-05-063-1/+19
| |
| * proposals: try next if IKEv2 algorithm could not be mapped to IKEv1Martin Willi2013-05-061-2/+4
| |
| * charon-cmd: add support for different IKEv1/IKEv2 authentication profilesMartin Willi2013-05-064-17/+170
| |
| * charon-cmd: support multi-line help text for each option in usageMartin Willi2013-05-062-2/+12
| |
| * charon-cmd: add --local/remote-ts options to set traffic selectorsMartin Willi2013-05-063-4/+64
| |
| * charon-cmd: Use dynamic ports with the socket-default pluginMartin Willi2013-05-061-0/+2
| |
| * settings: Add a set_default_str() to set a different default for a keyMartin Willi2013-05-062-0/+31
| | | | | | | | | | The value is set only if it is not configured in strongswan.conf or has not been set() otherwise.
| * charon-cmd: prompt for EAP passwords on-demand using a callback credential setMartin Willi2013-05-061-0/+49
| |
| * charon-cmd: authenticate with EAP if no private key is givenMartin Willi2013-05-061-1/+18
| |
| * charon-cmd: pass arguments to all handlers, even if already handledMartin Willi2013-05-061-2/+5
| |
| * charon-cmd: build long_opts only once when reading arguments in charon-cmdMartin Willi2013-05-061-10/+9
| |
| * charon-cmd: add support for using dynamic ports in charon-cmdMartin Willi2013-05-062-5/+9
| |
| * socket-dynamic: when sending from port zero, allocate a free port dynamicallyMartin Willi2013-05-061-26/+101
| |
| * controller: clean up job data if a thread gets cancelled waiting in a functionMartin Willi2013-05-061-3/+6
| | | | | | | | | | Controller functions are thread cancellation points, so register a cancellation handler cleaning up job data.
| * charon-cmd: load certificates and RSA private keysMartin Willi2013-05-066-14/+210
| |
| * charon-cmd: add a connection object and its initiation to charon-cmdMartin Willi2013-05-066-10/+313
| |
| * charon-cmd: move command line options to separate file, obsolete short optionsMartin Willi2013-05-064-54/+109
| |
| * charon-cmd: add a stub for charon-cmd, a simple command line IKE clientMartin Willi2013-05-066-48/+442
|/
* Merge branch 'leak-detective-dlsym'Martin Willi2013-05-067-149/+519
|\ | | | | | | | | | | | | | | | | | | | | | | Replaces the use of deprecated glibc malloc hooks by overloading malloc calls and find the originals using dlsym(RTLD_NEXT). On OS X, we now support the use of leak detective by changing the default malloc zone functions, backtraces get resolved using atos. It seems that the performance bottleneck now is stack unwinding. Unfortunately a new libunwind based backtrace() is not much faster than the libc variant; we keep that option nonetheless for platforms without backtrace().
| * scripts: add a simple test utility to do some malloc() benchmarking/profilingMartin Willi2013-05-063-1/+89
| |
| * backtrace: use atos instead of addr2line on OS X to resolve source linesMartin Willi2013-05-061-3/+11
| |
| * backtrace: add an alternative stack unwinding implementation using libunwindMartin Willi2013-05-063-6/+44
| |
| * leak-detective: add support for OS X by hooking default malloc zoneMartin Willi2013-05-061-5/+160
| |
| * leak-detective: remove unused malloc call countersMartin Willi2013-05-061-7/+0
| |
| * leak-detective: align allocations on both 32 and 64-bit systems to 32 bytesMartin Willi2013-05-061-0/+5
| |
| * leak-detective: call tzset() explicitly before enabling leak detectiveMartin Willi2013-05-061-6/+11
| | | | | | | | | | tzset() is hard to whitelist on some systems, as there is no symbol involved. Call tzset() explicitly before initialization to avoid false positives.
| * leak-detective: override malloc functions instead of using deprecated hooksMartin Willi2013-05-061-128/+206
|/ | | | | | | malloc hooks have become deprecated, and their use has always been problematic, especially in multi-threaded applications. Replace the functionality by overriding all malloc functions and query the system allocator functions using dlsym() with RTLD_NEXT.
* Merge branch 'silent-automake'Martin Willi2013-05-0612-5/+20
|\ | | | | | | | | | | Adds support for --enable/disable-silent-rules when building with Automake 1.11 or 1.12. make V=0 or V=1 can be used to build with a different verbosity than ./configured.
| * Add -s to make if --enable-silent-rules is ./configuredMartin Willi2013-05-062-0/+5
| |
| * Use the GEN silent rule when generating files with sedMartin Willi2013-05-067-2/+9
| |
| * Use the GEN silent rule when generating oid database with perlMartin Willi2013-05-062-2/+2
| |
| * Use the GEN silent rule when generating gperf filesMartin Willi2013-05-063-1/+3
| |
generated by cgit v1.2.3 (git 2.25.1) at 2025-03-04 21:19:19 +0000