| Commit message (Collapse) | Author | Age | Files | Lines | ||
|---|---|---|---|---|---|---|
| ... | ||||||
| * | vici: Support referencing external named pools for peer configs | Martin Willi | 2014-05-07 | 1 | -0/+14 | |
| | | ||||||
| * | vici: Actually add configured virtual IPs to peer config | Martin Willi | 2014-05-07 | 1 | -0/+5 | |
| | | ||||||
| * | vici: Use a default rand_time of the difference between hard and soft lifetimes | Martin Willi | 2014-05-07 | 1 | -0/+26 | |
| | | ||||||
| * | vici: Use a default hard lifetime of 110% of the soft lifetime | Martin Willi | 2014-05-07 | 1 | -0/+37 | |
| | | ||||||
| * | vici: Make unit-tests independent from libcharon and libhydra | Martin Willi | 2014-05-07 | 3 | -11/+1 | |
| | | | | | Fixes monolithic build, as we can't depend on the not yet built libcharon. | |||||
| * | vici: Don't compare unsigned certificate_type_t to -1 | Martin Willi | 2014-05-07 | 1 | -1/+1 | |
| | | ||||||
| * | vici: Use non-blocking first read when receiving message during client on_read() | Martin Willi | 2014-05-07 | 1 | -1/+15 | |
| | | | | | | | As select() and finally the watcher may signal an FD even if it does not actually have data, we must make a non-block read to avoid hanging in the read callback. | |||||
| * | vici: Perform specified start_action on connection load, undo it on unload | Martin Willi | 2014-05-07 | 1 | -2/+185 | |
| | | ||||||
| * | vici: Add a generic log event to raise events for log messages | Martin Willi | 2014-05-07 | 4 | -0/+195 | |
| | | ||||||
| * | vici: Be less verbose about client connections | Martin Willi | 2014-05-07 | 2 | -5/+31 | |
| | | | | | Instead, log the explicit commands at a higher level. | |||||
| * | vici: Add a list-certs command to query different certificate types | Martin Willi | 2014-05-07 | 1 | -0/+102 | |
| | | ||||||
| * | vici: Support pinning end entity and CA certificates to connections | Martin Willi | 2014-05-07 | 2 | -0/+62 | |
| | | ||||||
| * | vici: Support missing groups option in auth config | Martin Willi | 2014-05-07 | 2 | -1/+36 | |
| | | ||||||
| * | vici: Add a load-shared command to load shared IKE and EAP secrets | Martin Willi | 2014-05-07 | 1 | -0/+68 | |
| | | ||||||
| * | vici: Add a load-key command to load private keys | Martin Willi | 2014-05-07 | 1 | -0/+50 | |
| | | ||||||
| * | vici: Support loading of different certificate types | Martin Willi | 2014-05-07 | 1 | -0/+93 | |
| | | ||||||
| * | vici: Add a credential backend | Martin Willi | 2014-05-07 | 4 | -0/+159 | |
| | | ||||||
| * | vici: Add a command listing all or specific loaded connections using events | Martin Willi | 2014-05-07 | 1 | -0/+167 | |
| | | ||||||
| * | vici: Add unload-conn and get-conns commands to manage loaded connections | Martin Willi | 2014-05-07 | 1 | -0/+62 | |
| | | ||||||
| * | vici: Make dispatcher a little more verbose | Martin Willi | 2014-05-07 | 1 | -0/+10 | |
| | | ||||||
| * | vici: Add backend providing in-memory connections | Martin Willi | 2014-05-07 | 4 | -0/+1607 | |
| | | ||||||
| * | vici: Add generic callback based vici message parsing | Martin Willi | 2014-05-07 | 2 | -0/+139 | |
| | | ||||||
| * | vici: Add a list-policy command to query trap and shunt policies | Martin Willi | 2014-05-07 | 1 | -0/+147 | |
| | | ||||||
| * | vici: Add install/uninstall commands to manage trap and shunt policies | Martin Willi | 2014-05-07 | 1 | -0/+112 | |
| | | ||||||
| * | vici: Extract CHILD_SA config lookup method | Martin Willi | 2014-05-07 | 1 | -14/+26 | |
| | | ||||||
| * | vici: Refactor socket to clean up locking | Martin Willi | 2014-05-07 | 1 | -87/+233 | |
| | | | | | | | | Uses separate locks for socket read and write operations. While holding the socket reader lock, a different thread can still claim the socket write lock. This allows to asynchronously send event messages while holding the read lock. | |||||
| * | vici: Fix dispatcher leak when handling unknown request | Martin Willi | 2014-05-07 | 1 | -10/+11 | |
| | | ||||||
| * | vici: Add a test case raising events during request, checks in-order delivery | Martin Willi | 2014-05-07 | 1 | -0/+76 | |
| | | ||||||
| * | vici: Avoid recursive control log invocations | Martin Willi | 2014-05-07 | 1 | -18/+24 | |
| | | ||||||
| * | vici: Add a callback based recursive parser function | Martin Willi | 2014-05-07 | 2 | -0/+136 | |
| | | ||||||
| * | vici: Add a version command to print daemon and OS version info | Martin Willi | 2014-05-07 | 1 | -0/+23 | |
| | | ||||||
| * | vici: Implement a terminate command to close IKE or CHILD_SAs | Martin Willi | 2014-05-07 | 1 | -0/+118 | |
| | | ||||||
| * | vici: Add a control backend, currently to initiate connections by name | Martin Willi | 2014-05-07 | 4 | -0/+275 | |
| | | ||||||
| * | vici: Support thread cancellation in command callbacks | Martin Willi | 2014-05-07 | 2 | -19/+53 | |
| | | ||||||
| * | vici: Move dumping to core message class, use it in libvici | Martin Willi | 2014-05-07 | 4 | -56/+81 | |
| | | ||||||
| * | vici: Add convenience value/string/integer getter to libvici | Martin Willi | 2014-05-07 | 2 | -0/+76 | |
| | | ||||||
| * | vici: Add some convenience getters on message | Martin Willi | 2014-05-07 | 3 | -1/+337 | |
| | | ||||||
| * | vici: Raise events with an optional identifier for specific connections | Martin Willi | 2014-05-07 | 4 | -9/+14 | |
| | | ||||||
| * | vici: Invoke dispatcher outside of connection log, allowing events from commands | Martin Willi | 2014-05-07 | 1 | -4/+13 | |
| | | ||||||
| * | vici: Add a query class, currently implementing a list-sas command | Martin Willi | 2014-05-07 | 4 | -1/+440 | |
| | | ||||||
| * | vici: Add a libvici low-level client library | Martin Willi | 2014-05-07 | 6 | -0/+1413 | |
| | | ||||||
| * | vici: Provide a command dispatcher handling request and event registration | Martin Willi | 2014-05-07 | 9 | -128/+1105 | |
| | | ||||||
| * | vici: Add a fully asynchronous IPC socket segmenting messages on/from stream | Martin Willi | 2014-05-07 | 8 | -0/+1538 | |
| | | ||||||
| * | vici: Add a test runner for plugin | Martin Willi | 2014-05-07 | 4 | -0/+87 | |
| | | ||||||
| * | vici: Add a plugin stub for the "Versatile IKE Control Interface" plugin | Martin Willi | 2014-05-07 | 4 | -0/+152 | |
| | | ||||||
| * | child-cfg: Fix removal of redundant traffic selectors | Tobias Brunner | 2014-04-25 | 1 | -1/+1 | |
| | | | | | | | | We have to make sure we compare every selected traffic selector with every other in the list. Fixes #577. | |||||
| * | libcharon: Added AEAD sources of libtls to Android.mk | Tobias Brunner | 2014-04-25 | 1 | -0/+1 | |
| | | ||||||
| * | bus: Add a fast-path if log messages don't have to be logged | Tobias Brunner | 2014-04-24 | 1 | -7/+53 | |
| | | | | | | | | For some rwlock_t implementations acquiring the read lock could be quite expensive even if there are no writers (e.g. because the implementation requires acquiring a mutex to check for writers) particularly if the lock is highly contended, like it is for the vlog() method. | |||||
| * | load-tester: Fix race condition issuing same SPI | Christophe Gouault | 2014-04-24 | 1 | -2/+2 | |
| | | | | | | | | | | | Due to an unprotected incrementation, two load-tester initiators occasionally use the same SPI under high load, and hence generate 2 IPsec SAs with the same identifier. The responder IPsec stack will refuse to configure the second SA. Use an atomic incrementation to avoid this race condition. Signed-off-by: Christophe Gouault <christophe.gouault@6wind.com> | |||||
| * | load-tester: Fix race condition issuing same identity | Christophe Gouault | 2014-04-24 | 1 | -2/+2 | |
| | | | | | | | | | | | Due to an unprotected incrementation, two load-tester initiators occasionally use the same identifier under high load. The responder typically drops one of the connections. Use an atomic incrementation to avoid this race condition. Signed-off-by: Christophe Gouault <christophe.gouault@6wind.com> | |||||
 |
index : tteras/strongswan | |
| tteras' strongSwan tree | gitolite |
| aboutsummaryrefslogtreecommitdiffstats |