| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | Fix various API doc issues and typos | Tobias Brunner | 2013-07-18 | 1 | -1/+1 |
| | | | | | Partially based on an old patch by Adrian-Ken Rueegsegger. | ||||
| * | bus: raise certificate validation alerts using credential manager hook | Martin Willi | 2013-07-18 | 2 | -0/+43 |
| | | |||||
| * | syslog: setlogmask() to include LOG_INFO | Martin Willi | 2013-07-18 | 1 | -0/+1 |
| | | | | | LOG_INFO seems to be excluded by default on some systems (OS X). | ||||
| * | Raise an alert if the responding peer narrowed traffic selectors | Martin Willi | 2013-06-19 | 1 | -0/+4 |
| | | |||||
| * | Raise LOCAL_AUTH_FAILED alert after receiving AUTHENTICATION_FAILURE | Martin Willi | 2013-05-15 | 1 | -1/+1 |
| | | |||||
| * | Introduce an optional logger_t.vlog() method with format string and arguments | Martin Willi | 2013-05-06 | 2 | -16/+85 |
| | | | | | | | | To have more flexibility in the logging backend, receiving the original format string and do printf() substitution in the logger may be preferable. An additional but optional logger method does not touch the behavior of existing loggers. | ||||
| * | emit a single assig_vips bus message for all VIPs | Andreas Steffen | 2013-04-06 | 3 | -13/+9 |
| | | |||||
| * | ifmap plugin subscribes to assing_vip bus signal | Andreas Steffen | 2013-04-06 | 3 | -0/+53 |
| | | |||||
| * | When IKEv1 DPD times out, raise missing SEND_RETRANSMIT_TIMOUT alert | Martin Willi | 2013-03-14 | 1 | -1/+1 |
| | | |||||
| * | Raise an alert if an IKE_SA could not have been reauthenticated and expires | Martin Willi | 2013-03-14 | 1 | -0/+2 |
| | | |||||
| * | Fixed some typos, courtesy of codespell | Tobias Brunner | 2012-12-20 | 1 | -1/+1 |
| | | |||||
| * | Raise an alert if IKE SA is kept | Adrian-Ken Rueegsegger | 2012-12-20 | 1 | -0/+2 |
| | | | | | | This alert is raised when the establishment of a child SA fails but the IKE SA is kept. | ||||
| * | Raise an alert if half-open timeout limit reached | Martin Willi | 2012-12-19 | 1 | -0/+2 |
| | | |||||
| * | Raise an alert if an authorize() hook fails | Martin Willi | 2012-12-19 | 2 | -0/+6 |
| | | |||||
| * | Raise an alert if allocating virtual IPs fails | Martin Willi | 2012-12-19 | 1 | -0/+2 |
| | | |||||
| * | Raise an alert if kernel policy installation fails | Martin Willi | 2012-12-19 | 1 | -0/+2 |
| | | |||||
| * | Raise an alert if kernel SA installation fails | Martin Willi | 2012-12-19 | 1 | -0/+2 |
| | | |||||
| * | Raise an alert on traffic selector mismatch | Martin Willi | 2012-12-19 | 1 | -0/+3 |
| | | |||||
| * | Raise alerts when enforcing IKE_SA unique policy | Martin Willi | 2012-12-19 | 1 | -0/+4 |
| | | |||||
| * | Raise an alert if CHILD_SA proposals mismatch | Martin Willi | 2012-12-19 | 1 | -0/+2 |
| | | |||||
| * | Raise an alert if IKE proposals mismatch | Martin Willi | 2012-12-19 | 1 | -0/+2 |
| | | |||||
| * | Raise an alert of generating local authentication data fails | Martin Willi | 2012-12-19 | 1 | -0/+2 |
| | | |||||
| * | Add alerts for sent/received message retransmissions and timeout | Martin Willi | 2012-11-29 | 1 | -0/+6 |
| | | |||||
| * | Fixed output of longer debug messages | Tobias Brunner | 2012-11-07 | 1 | -0/+1 |
| | | | | | | (v)snprintf(3) returns the length without terminating null byte but the length given as parameter must include it. | ||||
| * | Moved debug.[ch] to utils folder | Tobias Brunner | 2012-10-24 | 1 | -1/+1 |
| | | |||||
| * | Raise a bus alert when IKE message body parsing fails | Martin Willi | 2012-10-24 | 1 | -0/+3 |
| | | |||||
| * | Raise a bus alert when IKE message header parsing fails | Martin Willi | 2012-10-24 | 1 | -0/+2 |
| | | |||||
| * | Raise a bus alert when a received message contains unknown SPIs | Martin Willi | 2012-10-24 | 1 | -0/+2 |
| | | |||||
| * | Make syslog and file loggers configurable at runtime | Tobias Brunner | 2012-10-18 | 4 | -21/+157 |
| | | |||||
| * | Added a new alert that is raised if peer does not respond to initial IKE message | Tobias Brunner | 2012-10-16 | 1 | -0/+2 |
| | | |||||
| * | Add a responder narrow() hook to change TS in the kernel, but not on the wire | Martin Willi | 2012-09-11 | 1 | -0/+2 |
| | | |||||
| * | Add ike_reestablish() event that is triggered when an IKE_SA is reestablished | Tobias Brunner | 2012-09-06 | 3 | -0/+48 |
| | | | | | | This is particularly useful during reauthentication to get the new IKE_SA. | ||||
| * | Don't modify the message string passed to logger, as it gets reused | Martin Willi | 2012-07-13 | 3 | -21/+25 |
| | | |||||
| * | Log to a malloc()ed buffer if the on-stack buffer is not large enough | Martin Willi | 2012-07-13 | 1 | -3/+23 |
| | | |||||
| * | Removed superfluous @param in bus.h. | Tobias Brunner | 2012-05-18 | 1 | -1/+0 |
| | | |||||
| * | Loggers specify what log messages they want to receive during registration. | Tobias Brunner | 2012-05-02 | 5 | -116/+261 |
| | | | | | | | | This also allows us to generate the log message only once for all loggers that need it (avoids calls to custom printf specifier callbacks). To update the log levels loggers can simply be registered again. | ||||
| * | Ensure that multi-line log messages are not torn apart. | Tobias Brunner | 2012-05-02 | 2 | -0/+20 |
| | | |||||
| * | Use a separate interface for loggers. | Tobias Brunner | 2012-05-02 | 8 | -247/+198 |
| | | | | | | | | | The new interface does not allow loggers to unregister themselves from the bus. This allows us to use a rwlock_t for them. The latter also means that loggers can now be called concurrently by multiple threads. | ||||
| * | Use a separate list and mutex for loggers. | Tobias Brunner | 2012-05-02 | 3 | -73/+168 |
| | | | | | | | | | | | | This avoids deadlocks caused by extensive listener_t implementations which might want to acquire a lock which is currently held by another thread wanting to log messages. Since the latter requires that thread to acquire the same lock the initial thread currently holds this previously resulted in a deadlock. With this change logging messages does not require threads to acquire the main lock in bus_t and thus avoids the deadlock. | ||||
| * | Removed remaining parts of controller_t.listen() implementation. | Tobias Brunner | 2012-05-02 | 1 | -39/+9 |
| | | |||||
| * | Remove obsolete bus_t.listen() method. | Tobias Brunner | 2012-05-02 | 2 | -82/+7 |
| | | |||||
| * | Invoke bus_t.message hook twice, once plain and parsed, once encoded and ↵ | Martin Willi | 2012-03-20 | 3 | -4/+13 |
| | | | | | encrypted | ||||
| * | Pass IKEv1 specific keymat to ike_keys hook | Martin Willi | 2012-03-20 | 3 | -7/+14 |
| | | |||||
| * | Properly remove listener when listen() times out | Martin Willi | 2011-08-31 | 1 | -0/+1 |
| | | |||||
| * | bus->listen() and the controller wrappers accept a timeout to wait for callbacks | Martin Willi | 2011-08-26 | 2 | -5/+29 |
| | | |||||
| * | Throw an alert if authentication of the peer fails (not only for initiator). | Tobias Brunner | 2011-08-12 | 1 | -2/+2 |
| | | |||||
| * | Throw an alert when the peer address cannot be resolved during initiation. | Tobias Brunner | 2011-08-12 | 1 | -0/+2 |
| | | |||||
| * | Throw an alert via bus_t when remote authentication fails. | Tobias Brunner | 2011-08-12 | 1 | -2/+4 |
| | | |||||
| * | Fixed common misspellings. | Tobias Brunner | 2011-07-20 | 2 | -2/+2 |
| | | | | | Mostly found by 'codespell'. | ||||
| * | Replaced ike_sa_t.create_child_sa_iterator with enumerator. | Tobias Brunner | 2011-07-06 | 1 | -4/+4 |
| | | | | | | This required two new methods on ike_sa_t. One returns the number of CHILD_SAs and one allows to remove a CHILD_SA. | ||||
 |
index : tteras/strongswan | |
| tteras' strongSwan tree | gitolite |
| aboutsummaryrefslogtreecommitdiffstats |