aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon/plugins/whitelist
Commit message (Collapse)AuthorAgeFilesLines
* libcharon: Use lib->ns instead of charon->nameTobias Brunner2014-02-122-2/+2
|
* whitelist: Read multiple commands until client closes connectionMartin Willi2013-10-291-30/+28
| | | | | This restores the same behavior we had before e11c02c8, and fixes the whitelist add/remove-from command.
* whitelist: Fix compilation on FreeBSDTobias Brunner2013-07-311-0/+2
|
* stream-service: move CAP_CHOWN check from plugins to service constructorMartin Willi2013-07-181-6/+0
| | | | | A plugin service can be a TCP socket now, so it does not make much sense to strictly check for CAP_CHOWN.
* whitelist: use a read-copy when listing entriesMartin Willi2013-07-181-19/+44
| | | | | While this requires a little more overhead, we can free the lock should the stream block, allowing other threads to add/remove entries.
* whitelist: fix error handling when creating the socket failsMartin Willi2013-07-181-0/+6
|
* whitelist: use a stream service to accept client connectionsMartin Willi2013-07-183-121/+106
| | | | | Use SOCK_STREAM, as we don't have SOCK_SEQPACKET on TCP. To have network transparency, the message now uses network byte order.
* capabilities: Some plugins don't actually require capabilities at runtimeTobias Brunner2013-07-181-1/+1
|
* automake: replace INCLUDES by AM_CPPFLAGSMartin Willi2013-07-181-5/+7
| | | | | | INCLUDES are now deprecated and throw warnings when using automake 1.13. We now also differentiate AM_CPPFLAGS and AM_CFLAGS, where includes and defines are passed to AM_CPPFLAGS only.
* capabilities: CAP_CHOWN might be required by many plugins opening UNIX socketsTobias Brunner2013-06-251-0/+6
| | | | | But as the sockets will be created with the user/group of the running process this might not be required as no change may be needed.
* capabilities: Move global capabilities_t instance to libstrongswanTobias Brunner2013-06-251-2/+2
|
* whitelist: Use plugin features to register listenerTobias Brunner2013-06-111-4/+29
|
* Moved data structures to new collections subfolderTobias Brunner2012-10-241-1/+1
|
* Refactored heavily #ifdefd capability code to its own libstrongswan classMartin Willi2012-07-041-1/+2
|
* Centralized thread cancellation in processor_tTobias Brunner2012-06-251-9/+3
| | | | | | | | | | This ensures that no threads are active when plugins and the rest of the daemon are unloaded. callback_job_t was simplified a lot in the process as its main functionality is now contained in processor_t. The parent-child relationships were abandoned as these were only needed to simplify job cancellation.
* whitelist: Make sure listed IDs are null-terminated.Tobias Brunner2012-05-181-0/+1
|
* Use name from initialization to access settings in libcharon.Tobias Brunner2012-05-031-1/+1
| | | | Also fixes several whitespace errors.
* Use CRITICAL job priority class for long running dispatcher jobsMartin Willi2011-05-161-2/+2
|
* fixed whitelist enablingAndreas Steffen2011-05-141-2/+3
|
* Disable whitelist plugin by defaultMartin Willi2011-05-121-1/+1
|
* Added a (not yet implemented) plugin_t method to reload plugin configurationMartin Willi2011-04-151-0/+1
|
* Added a get_name() function to plugin_t, create_plugin_enumerator enumerates ↵Martin Willi2011-04-151-0/+7
| | | | over plugin_t
* Increase whitelist message identity buffer to 128 bytesMartin Willi2011-03-231-1/+1
|
* Added strongswan.conf and runtime option to enable/disable whitelist pluginMartin Willi2011-03-175-1/+43
|
* Added a whitelist command line utility to control whitelist pluginMartin Willi2011-02-283-0/+184
|
* Added a UNIX socket based control backend to whitelist pluginMartin Willi2011-02-285-2/+337
|
* Implemented a in-memory peer identity whitelist pluginMartin Willi2011-02-285-0/+402
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-02 02:29:44 +0000