aboutsummaryrefslogtreecommitdiffstats
path: root/src/libstrongswan/library.c
Commit message (Collapse)AuthorAgeFilesLines
* stream: create library instance of stream-managerMartin Willi2013-07-181-0/+2
|
* watcher: add a centralized an generic facility to monitor file descriptorsMartin Willi2013-07-181-0/+2
|
* capabilities: Move global capabilities_t instance to libstrongswanTobias Brunner2013-06-251-0/+2
|
* Strictly memwipe_check() for magic only in the affected bufferMartin Willi2013-06-051-25/+8
| | | | | | | Passing back the buffer address we memwipe() is not ideal, as it could, in theory, change the behavior of the compiler and not-optimize memwipe(). But as checking a larger stack is very difficult for different architectures and compilers, we do it nonetheless for now.
* In memwipe_check(), don't put magic on stack when calling do_magic()Martin Willi2013-05-031-3/+3
| | | | Otherwise the magic might be on the stack while checking it.
* Dump stack if memwipe() check failsMartin Willi2013-05-031-3/+19
|
* During libstrongswan initialization, check if memwipe() works as expectedMartin Willi2013-04-181-1/+51
|
* Added manager for DNS resolversReto Guadagnini2013-02-191-0/+2
|
* libstrongswan can be initialized more than onceMartin Willi2012-11-141-4/+27
|
* Moved debug.[ch] to utils folderTobias Brunner2012-10-241-1/+1
|
* Moved data structures to new collections subfolderTobias Brunner2012-10-241-1/+1
|
* Moved host_t and host_resolver_t to a new networking subfolderTobias Brunner2012-10-241-1/+1
|
* Terminate unused resolver threads after a timeoutTobias Brunner2012-10-181-2/+1
|
* Resolve hosts by DNS name in separate threads so we can cancel themTobias Brunner2012-10-181-0/+3
| | | | | | | | | | getaddrinfo(3) may block a long time so proper termination of the daemon may block if DNS servers are not reachable. getaddrinfo(3) is an optional cancellation point in posix threads so it might still block a shutdown but at least on Android (with the signal based pthread_cancel implementation) it works, on Linux starter will kill charon anyway after a while.
* Added possibility to register custom proposal keywordsTobias Brunner2012-09-131-0/+2
| | | | Keyword lookup and registration are handled via the new lib->proposal object.
* With --enable-bfd-backtraces, use binutils libbfd to resolve backtracesMartin Willi2012-07-131-0/+4
| | | | | | | | The invocation of addr2line to resolve backtrace source locations is slow and cumbersome. When using libbfd directly, we can eliminate the overhead of the process invocation. Even better, we can cache library symbol names, bringing wicked fast lookups. As a neat bonus, we can resolve static function names.
* Make sure the certificate cache is flushed when plugins are unloaded.Tobias Brunner2011-12-151-0/+3
| | | | | This avoids segmentation faults when plugins implementing cert_t are already unloaded when the cache is flushed during destruction.
* Destroy objects hashtable after plugin_manager.Tobias Brunner2011-10-261-1/+1
| | | | | | If plugins are not explicitly unloaded before library_deinit is called there could have been a segfault because some plugins might unregister objects during unloading/destruction.
* Provide generic object registration by name on libstrongswanMartin Willi2011-08-081-7/+55
|
* Don't install the libraries directly in lib/.Tobias Brunner2011-07-051-1/+1
| | | | | Instead use a subdirectory (prefix/lib/ipsec by default). Also moved the plugins from libexec to a subdirectory of that dir.
* Make leak detective publicMartin Willi2011-05-161-15/+5
|
* Moved scheduler and thread pool to libstrongswan.Tobias Brunner2010-09-021-0/+4
|
* Renamed key_encod{ing,der}_t and constants, prepare for generic credential ↵Martin Willi2010-07-131-1/+1
| | | | encoding
* Moved credential manager to libstrongswanMartin Willi2010-07-131-0/+2
|
* traffic_selector_t is gone into libstrongswan, migrate printf hook ↵Martin Willi2010-06-071-5/+8
| | | | registration, too.
* Option to skip slow addr2line resolution in leak-detectiveMartin Willi2010-05-201-0/+5
|
* Adding DBG_LIB to all calls of libstrongswan's version of DBG*.Tobias Brunner2010-04-061-2/+2
|
* Attributes moved from libstrongswan to libhydra.Tobias Brunner2010-03-241-2/+0
| | | | | The attribute_manager_t instance is now located on the new hydra object instead of the lib object.
* Fixing some includes by replacing <> with "".Tobias Brunner2010-03-021-7/+5
| | | | I changed only the includes needed to fix the build on Android, which has an utils.h system header file, but we should probably change all the local includes in libstrongswan to "" and relative paths.
* Using the thread wrapper in charon, libstrongswan and their plugins.Tobias Brunner2009-12-231-0/+6
|
* moved attribute_manager to libstrongswanAndreas Steffen2009-10-131-0/+2
|
* removed trailing spaces ([[:space:]]+$)Martin Willi2009-09-041-6/+6
|
* added a facility to hand out fingerprinting/key encoding to the ↵Martin Willi2009-08-261-0/+2
| | | | pkcs1/pgp/... plugins
* announce integrity testing only onceMartin Willi2009-07-211-1/+0
|
* indicate use if integrity testing at startupMartin Willi2009-06-221-0/+1
|
* build integrity_checker.c only if --enable-integrity-test setMartin Willi2009-06-221-0/+5
|
* check on-disk and loaded segment integrity of libstrongswanMartin Willi2009-06-221-2/+1
|
* library initialization fails if libstrongswan checksum is invalidMartin Willi2009-06-221-1/+3
|
* integrity checker accepts an option checksum library on constructionMartin Willi2009-06-221-1/+3
|
* check integrity of libstrongswanMartin Willi2009-06-221-0/+5
|
* check integrity of plugins before loadingMartin Willi2009-06-221-0/+12
|
* make use of the crypto_tester in the crypto_factoryMartin Willi2009-06-111-1/+1
| | | | | libstrongswan.crypto.test.on_add to test algorithms during initialization libstrongswan.crypto.test.on_create to test algorithms on each instantiation
* removing svn keyword $Id$ from all filesTobias Brunner2009-04-301-2/+0
|
* merging changes from portability branch back to trunkTobias Brunner2009-04-301-2/+2
| | | | | important change for developers: %Y replaces %D to print identities!
* printf hooks refactored to increase portability (i.e. support for platforms ↵Tobias Brunner2009-03-121-7/+19
| | | | without glibc-compatible customizable printf - the Vstr string library is currently required on such platforms).
* capability API to allow plugin-controlled capability setMartin Willi2008-08-281-0/+2
|
* do not build leak_detective.o if not enabledMartin Willi2008-04-041-0/+2
|
* merged the modularization branch (credentials) back to trunkMartin Willi2008-03-131-152/+68
|
* implemented RFC4478 (repeated authentication)Martin Willi2007-11-201-5/+14
| | | | | changed %V printf handler to take a time delta, %#V now takes two arguments
* fixed delta time format: 2 seconds, 1 second, 0 secondsAndreas Steffen2007-03-281-4/+4
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-05 05:25:25 +0000