aboutsummaryrefslogtreecommitdiffstats
path: root/src/libstrongswan/library.c
Commit message (Collapse)AuthorAgeFilesLines
* library: Allow specifying the path to strongswan.conf in the STRONGSWAN_CONF ↵Shea Levy2014-10-021-1/+1
| | | | env var
* library: Store the used root strongswan.conf configurationMartin Willi2014-09-221-7/+7
|
* diffie-hellman: Explicitly initialize DH exponent sizes during initializationMartin Willi2014-08-251-0/+2
| | | | | | | | To avoid any race conditions when multiple threads call and initialize diffie_hellman_get_params(), explicitly examine the optimum DH exponent size during library initialization. Fixes #655.
* unit-tests: Seed chunk_hash() only once, but before creating any hashtablesMartin Willi2014-06-041-8/+1
| | | | | | | Due to the removal of pthread_once, we manually create the seed for chunk_hash(). With the new testable functions interface, this won't work for the hashtable initiated using __attribute__((constructor)). Enforce seeding before creating that hashtable.
* library: Change init/deinit order to allow utils to depend on threadingMartin Willi2014-06-041-4/+5
|
* chunk: Don't depend on pthread directlyMartin Willi2014-06-041-0/+9
|
* windows: Add utils_init/deinit functions to initialize Winsock2Martin Willi2014-06-041-0/+2
|
* settings: strongswan.conf must be loaded explicitlyTobias Brunner2014-05-151-0/+7
|
* leak-detective: LEAK_DETECTIVE_DISABLE completely disables LDTobias Brunner2014-04-031-2/+5
| | | | | If lib->leak_detective is non-null some code parts (e.g. the plugin loader) assume LD is actually used.
* array: Add fallback for qsort_r using thread-local valueTobias Brunner2014-02-121-0/+3
| | | | Cygwin for example does not support qsort_r.
* lib: All settings use configured namespaceTobias Brunner2014-02-121-2/+2
|
* lib: Add default config fallback for configured namespaceTobias Brunner2014-02-121-0/+3
| | | | All settings in the configured global namespace fall back to libstrongswan.
* lib: Add global config namespaceTobias Brunner2014-02-121-1/+3
|
* leak-detective: Use callback functions to report leaks and usage informationMartin Willi2013-11-061-0/+35
| | | | This is more flexible than printing reports to a FILE.
* stream: create library instance of stream-managerMartin Willi2013-07-181-0/+2
|
* watcher: add a centralized an generic facility to monitor file descriptorsMartin Willi2013-07-181-0/+2
|
* capabilities: Move global capabilities_t instance to libstrongswanTobias Brunner2013-06-251-0/+2
|
* Strictly memwipe_check() for magic only in the affected bufferMartin Willi2013-06-051-25/+8
| | | | | | | Passing back the buffer address we memwipe() is not ideal, as it could, in theory, change the behavior of the compiler and not-optimize memwipe(). But as checking a larger stack is very difficult for different architectures and compilers, we do it nonetheless for now.
* In memwipe_check(), don't put magic on stack when calling do_magic()Martin Willi2013-05-031-3/+3
| | | | Otherwise the magic might be on the stack while checking it.
* Dump stack if memwipe() check failsMartin Willi2013-05-031-3/+19
|
* During libstrongswan initialization, check if memwipe() works as expectedMartin Willi2013-04-181-1/+51
|
* Added manager for DNS resolversReto Guadagnini2013-02-191-0/+2
|
* libstrongswan can be initialized more than onceMartin Willi2012-11-141-4/+27
|
* Moved debug.[ch] to utils folderTobias Brunner2012-10-241-1/+1
|
* Moved data structures to new collections subfolderTobias Brunner2012-10-241-1/+1
|
* Moved host_t and host_resolver_t to a new networking subfolderTobias Brunner2012-10-241-1/+1
|
* Terminate unused resolver threads after a timeoutTobias Brunner2012-10-181-2/+1
|
* Resolve hosts by DNS name in separate threads so we can cancel themTobias Brunner2012-10-181-0/+3
| | | | | | | | | | getaddrinfo(3) may block a long time so proper termination of the daemon may block if DNS servers are not reachable. getaddrinfo(3) is an optional cancellation point in posix threads so it might still block a shutdown but at least on Android (with the signal based pthread_cancel implementation) it works, on Linux starter will kill charon anyway after a while.
* Added possibility to register custom proposal keywordsTobias Brunner2012-09-131-0/+2
| | | | Keyword lookup and registration are handled via the new lib->proposal object.
* With --enable-bfd-backtraces, use binutils libbfd to resolve backtracesMartin Willi2012-07-131-0/+4
| | | | | | | | The invocation of addr2line to resolve backtrace source locations is slow and cumbersome. When using libbfd directly, we can eliminate the overhead of the process invocation. Even better, we can cache library symbol names, bringing wicked fast lookups. As a neat bonus, we can resolve static function names.
* Make sure the certificate cache is flushed when plugins are unloaded.Tobias Brunner2011-12-151-0/+3
| | | | | This avoids segmentation faults when plugins implementing cert_t are already unloaded when the cache is flushed during destruction.
* Destroy objects hashtable after plugin_manager.Tobias Brunner2011-10-261-1/+1
| | | | | | If plugins are not explicitly unloaded before library_deinit is called there could have been a segfault because some plugins might unregister objects during unloading/destruction.
* Provide generic object registration by name on libstrongswanMartin Willi2011-08-081-7/+55
|
* Don't install the libraries directly in lib/.Tobias Brunner2011-07-051-1/+1
| | | | | Instead use a subdirectory (prefix/lib/ipsec by default). Also moved the plugins from libexec to a subdirectory of that dir.
* Make leak detective publicMartin Willi2011-05-161-15/+5
|
* Moved scheduler and thread pool to libstrongswan.Tobias Brunner2010-09-021-0/+4
|
* Renamed key_encod{ing,der}_t and constants, prepare for generic credential ↵Martin Willi2010-07-131-1/+1
| | | | encoding
* Moved credential manager to libstrongswanMartin Willi2010-07-131-0/+2
|
* traffic_selector_t is gone into libstrongswan, migrate printf hook ↵Martin Willi2010-06-071-5/+8
| | | | registration, too.
* Option to skip slow addr2line resolution in leak-detectiveMartin Willi2010-05-201-0/+5
|
* Adding DBG_LIB to all calls of libstrongswan's version of DBG*.Tobias Brunner2010-04-061-2/+2
|
* Attributes moved from libstrongswan to libhydra.Tobias Brunner2010-03-241-2/+0
| | | | | The attribute_manager_t instance is now located on the new hydra object instead of the lib object.
* Fixing some includes by replacing <> with "".Tobias Brunner2010-03-021-7/+5
| | | | I changed only the includes needed to fix the build on Android, which has an utils.h system header file, but we should probably change all the local includes in libstrongswan to "" and relative paths.
* Using the thread wrapper in charon, libstrongswan and their plugins.Tobias Brunner2009-12-231-0/+6
|
* moved attribute_manager to libstrongswanAndreas Steffen2009-10-131-0/+2
|
* removed trailing spaces ([[:space:]]+$)Martin Willi2009-09-041-6/+6
|
* added a facility to hand out fingerprinting/key encoding to the ↵Martin Willi2009-08-261-0/+2
| | | | pkcs1/pgp/... plugins
* announce integrity testing only onceMartin Willi2009-07-211-1/+0
|
* indicate use if integrity testing at startupMartin Willi2009-06-221-0/+1
|
* build integrity_checker.c only if --enable-integrity-test setMartin Willi2009-06-221-0/+5
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-05 06:40:02 +0000