aboutsummaryrefslogtreecommitdiffstats
path: root/src/libstrongswan
Commit message (Collapse)AuthorAgeFilesLines
...
* dhcp: Require CAP_NET_BIND_SERVICE and CAP_NET_RAW to open/bind socketsTobias Brunner2013-06-251-0/+3
|
* socket-default: Require CAP_NET_BIND_SERVICE for ports < 1024Tobias Brunner2013-06-251-1/+4
| | | | | Since we don't know which ports are used with socket-dynamic we can't demand the capability there, but it might still be required.
* capabilities: Only plugins that require CAP_NET_ADMIN demand itTobias Brunner2013-06-251-0/+4
| | | | The daemon as such does not require this capability.
* capabilities: Move global capabilities_t instance to libstrongswanTobias Brunner2013-06-253-2/+10
|
* capabilities: Ensure required capabilities are actually held by the process/userTobias Brunner2013-06-252-4/+58
|
* tun-device: Packets sent over utun devices on Mac OS X have the protocol ↵Tobias Brunner2013-06-211-0/+11
| | | | family prepended
* tun-device: Avoid opening /dev/tunX multiple times (e.g. on FreeBSD)Tobias Brunner2013-06-211-2/+6
|
* printf-hook: Avoid double-free when freeing Vstr configTobias Brunner2013-06-211-1/+0
| | | | | | | Thread-specific objects get freed when the thread value object is destroyed (wasn't the case earlier, i.e. before 2b19dd35), which may cause the second call to vstr_free_conf() to fail in an assert in Vstr (depending on how it was built).
* plugin-loader: Move logging of failed features to status()Tobias Brunner2013-06-211-7/+11
| | | | | | | | | Still log an error message if critical features fail, as loaded plugins/features are not logged in that case. This way loaded plugins are printed before failed features and the relation is easier to make for users. It also allows programs to log this message on a different level.
* plugin-loader: Add method to print loaded plugins on a given log levelTobias Brunner2013-06-212-0/+18
|
* plugin-loader: Collect statistics while loading features, print them in case ↵Tobias Brunner2013-06-211-69/+40
| | | | | | | features failed to load There is no need to explicitly search for failed features in critical plugins as this is now detected while loading the features.
* plugin-loader: Use different log level if failed feature is in critical pluginTobias Brunner2013-06-211-2/+16
|
* plugin-loader: Log message when failing to load pluginTobias Brunner2013-06-211-0/+8
|
* plugin-loader: Reduce verbosity while loading pluginsTobias Brunner2013-06-211-4/+4
|
* leak-detective: (re-)whitelist some OpenSSL functionsMartin Willi2013-06-211-0/+5
| | | | | | | Some static allocations in plugins won't get freed, because in the test case process the plugins are not destroyed. If a plugin would clean up allocations done while just using the plugin, these show up as leak in the child process, letting tests fail.
* unit-tests: load plugins in test-runner from build directoryMartin Willi2013-06-212-1/+30
|
* unit-tests: link test-runner against -lpthreadMartin Willi2013-06-211-0/+1
|
* unit-tests: add RSA test cases, very similar to ECDSAMartin Willi2013-06-214-1/+400
|
* unit-tests: test with /dev/urandom if random plugin is in useMartin Willi2013-06-211-0/+6
|
* unit-tests: test supported ECDSA schemes onlyMartin Willi2013-06-211-0/+14
|
* Move test-runners has_feature() function to plugin loaderMartin Willi2013-06-213-32/+40
|
* unit-tests: enforce CET/CEST timezone to properly test non-UTC time formattingMartin Willi2013-06-211-0/+6
|
* unit-tests: don't use ck_assert() to test a cleared chunk, as it allocates dataMartin Willi2013-06-211-3/+10
| | | | The new allocation might be in the freed area, affecting the test result.
* unit-tests: define 64-bit constats with ULL, fixing compiler warning on 32-bitMartin Willi2013-06-211-2/+2
|
* unit-tests: test some zeroed ECDSA signatures that never should succeedMartin Willi2013-06-211-0/+63
|
* unit-tests: perform signing/validation with keys ECDSA keys generated or loadedMartin Willi2013-06-211-0/+47
|
* unit-tests: add an ECDSA test case loading keysMartin Willi2013-06-211-0/+61
|
* unit-tests: perform a first ECDSA test case if ECDSA is supportedMartin Willi2013-06-214-1/+58
|
* unit-tests: add a helper function checking if a plugin feature is availableMartin Willi2013-06-211-0/+32
|
* unit-tests: add a test case checking if all test vectors have been passedMartin Willi2013-06-214-1/+44
|
* crypto-factory: count the number of test vector failures during registrationMartin Willi2013-06-212-30/+73
|
* unit-tests: load all libstrongswan plugins in test-runnerMartin Willi2013-06-212-0/+7
|
* pubkey: Improve comparison of raw public key certificate objectsTobias Brunner2013-06-211-1/+11
|
* backtrace: use backtrace_symbols() only if we have backtrace() and dladdr() ↵Martin Willi2013-06-191-5/+16
| | | | fails
* utils: Remove volatile qualifier from refcount_t typedefTobias Brunner2013-06-191-2/+1
| | | | | It's not really required anymore (if it ever was) and may cause compiler warnings when using the non atomic versions of ref_get/ref_put.
* utils: ref_get() returns the new value of the reference counterMartin Willi2013-06-112-4/+9
| | | | This allows us to use ref_get() for getting unique values.
* curl: add an option to fetch bound to a local source addressMartin Willi2013-06-113-0/+23
|
* fetcher: add missing "continue" when handling FETCH_CALLBACKMartin Willi2013-06-111-1/+1
|
* leak-detective: Resolve hooked functions during initializationTobias Brunner2013-06-111-1/+4
| | | | | | | | | If uses of dlopen(), e.g. when loading plugins, produce errors an error string could get allocated dynamically. At this point realloc() might not yet be resolved and when dlsym() is later called by leak detective to do so the error string might get freed while leak detective is disabled and real_free() will be called with a pointer into one of leak detective's memory blocks instead of a pointer to the block itself, causing a SIGSEGV.
* Refactored plugin-loader with improved dependency resolutionTobias Brunner2013-06-112-238/+479
| | | | | | With the new implementation the plugins don't have to be listed in any special order, dependencies are properly resolved. The order only matters if two plugins provide the same feature.
* test-vectors: Use plugin featuresTobias Brunner2013-06-111-1/+12
|
* revocation: Use plugin features with soft dependencies on fetcher and ↵Tobias Brunner2013-06-111-3/+35
| | | | en-/decoding
* padlock: Use plugin features to properly register algorithmsTobias Brunner2013-06-111-39/+43
|
* pkcs11: Use plugin_features_add() in get_features()Tobias Brunner2013-06-111-21/+8
|
* plugin-feature: Added helper function to extend arrays of plugin featuresTobias Brunner2013-06-111-0/+21
|
* constraints: Use plugin features with soft dependency on X.509 decodingTobias Brunner2013-06-111-3/+31
|
* blowfish: Use plugin features to properly register crypterTobias Brunner2013-06-111-8/+13
|
* unbound: Use plugin features and provide RESOLVERTobias Brunner2013-06-111-3/+12
|
* plugin-feature: Add feature for DNSSEC-enabled resolversTobias Brunner2013-06-112-0/+15
|
* plugin-feature: Function added to exactly compare plugin featuresTobias Brunner2013-06-113-4/+66
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 09:20:58 +0000