aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
...
* Refactored heavily #ifdefd capability code to its own libstrongswan classMartin Willi2012-07-0416-233/+393
|
* Use spin locks to update IKE_SAs in controller_tTobias Brunner2012-07-041-4/+38
| | | | | | This ensures the listeners don't miss any events after the SAs have been checked out in the asynchronously executed jobs. This is a matter of memory visibility and not primary a matter of exclusive access.
* Added wrapper for POSIX spin locksTobias Brunner2012-07-043-0/+191
|
* Fixed job handling in controller_tTobias Brunner2012-07-041-110/+128
| | | | Also IKE_SAs are now checked out in the jobs and not before.
* Add charon-nm to .gitignoreMartin Willi2012-07-031-0/+1
|
* Default to register_printf_specifier() if no printf hooking #definedMartin Willi2012-07-031-0/+7
| | | | | | This allows us to build (non-./configured) external tools against libstrongswan without explicitly specifiying the most commonly used printf hooking function.
* openssl: Ensure the thread ID is never zeroTobias Brunner2012-07-031-1/+3
| | | | | | This might otherwise cause problems because OpenSSL tries to lock mutexes recursively if it assumes the lock is held by a different thread e.g. during FIPS initialization.
* Accept non-"/0" subnet sizes for traffic selectors starting at 0.0.0.0Martin Willi2012-07-021-40/+9
|
* Added GPL header to AndroidConfigLocal.hTobias Brunner2012-06-291-0/+15
|
* Removed superfluous remove_hasher() call in md5 pluginTobias Brunner2012-06-291-2/+0
|
* Pass "lo" as faked tundev to NM, as it now needs a valid interface since 0.9Martin Willi2012-06-291-3/+4
|
* As a responder, don't start a TRANSACTION request if we expect one from the ↵Martin Willi2012-06-292-2/+4
| | | | initiator
* added Ubuntu 12.04 LTS i686 measurementsAndreas Steffen2012-06-281-0/+319
|
* IMCs and IMVs might depend on X.509 certificates or trusted public keysAndreas Steffen2012-06-282-0/+4
|
* Defined a macro to replace strerror(3) with calls to thread-safe wrapperTobias Brunner2012-06-282-0/+7
|
* Thread-safe wrapper around strerror(3)/strerror_r(3) addedTobias Brunner2012-06-282-4/+92
|
* Show some uname() info in "ipsec statusall"Martin Willi2012-06-281-3/+10
|
* Show some uname() info during charon startupMartin Willi2012-06-281-1/+8
|
* libcharon also requires kernel interfaces and a socket implementationTobias Brunner2012-06-271-0/+3
|
* Defer quick mode initiation if we expect a mode config requestMartin Willi2012-06-271-1/+20
|
* Queue a mode config task as responder if we need a virtual IPMartin Willi2012-06-272-4/+16
|
* Add basic support for XAuth responder authenticationMartin Willi2012-06-272-8/+10
|
* Map XAuth responder authentication methods between IKEv1 and IKEv2Martin Willi2012-06-271-1/+13
|
* Show remote EAP/XAuth identity in "statusall" on a separate lineMartin Willi2012-06-271-1/+12
|
* gcrypt: Register SHA1 first as HASH_PREFERRED depends on itTobias Brunner2012-06-271-1/+1
|
* Use static plugin features in libcharon to define essential dependenciesTobias Brunner2012-06-272-1/+11
|
* Use static plugin features in charon-nmTobias Brunner2012-06-273-22/+37
|
* Ignore a received %any virtual IP for installationMartin Willi2012-06-261-1/+2
|
* Mask the configured mark value to ensure it is in rangeTobias Brunner2012-06-261-0/+2
|
* Added MAC wrappers to Android.mkTobias Brunner2012-06-261-0/+3
|
* Also build charon's IKEv1 implementation on AndroidTobias Brunner2012-06-261-0/+23
|
* Build nonce plugin on AndroidTobias Brunner2012-06-261-0/+3
|
* Missing source file added to libcharon's Android.mkTobias Brunner2012-06-261-0/+1
|
* scepclient: Added support to build it on AndroidTobias Brunner2012-06-262-1/+29
|
* Added support for the curl plugin on AndroidTobias Brunner2012-06-261-0/+6
|
* Avoid SIGSEGV during shutdown if charon is not started as rootTobias Brunner2012-06-251-2/+2
|
* Make rescheduling a job more predictableTobias Brunner2012-06-254-49/+90
| | | | | | | | | | | | | This avoids race conditions between calls to cancel() and jobs that like to be rescheduled. If jobs were able to reschedule themselves it would theoretically be possible that two worker threads have the same job assigned (the one currently executing the job and the one executing the same but rescheduled job if it already is time to execute it), this means that cancel() could be called twice for that job. Creating a new job based on the current one and reschedule that is also OK, but rescheduling itself is more efficient for jobs that need to be executed often.
* Centralized thread cancellation in processor_tTobias Brunner2012-06-2531-475/+261
| | | | | | | | | | This ensures that no threads are active when plugins and the rest of the daemon are unloaded. callback_job_t was simplified a lot in the process as its main functionality is now contained in processor_t. The parent-child relationships were abandoned as these were only needed to simplify job cancellation.
* Give processor_t more control over the lifecycle of a jobTobias Brunner2012-06-2526-169/+236
| | | | | | | | | | | Jobs are now destroyed by the processor, but they are allowed to reschedule themselves. That is, parts of the reschedule functionality already provided by callback_job_t is moved to the processor. Not yet fully supported is JOB_REQUEUE_DIRECT and canceling jobs. Note: job_t.destroy() is now called not only for queued jobs but also after execution or cancellation of jobs. job_t.status can be used to decide what to do in said method.
* Added a method to plugin_loader_t to add 'static' plugin featuresTobias Brunner2012-06-252-0/+115
| | | | | | | | This allows daemons and other components to register plugin features like those provided by plugins (following the same lifecycle). The added features are internally handled like they were added by a plugin.
* Make sure that all features of critical plugins are loadedTobias Brunner2012-06-251-5/+64
|
* Added an option to rename the ipsec script during installationTobias Brunner2012-06-254-38/+55
| | | | | | | Also rename the man page and adjust all references in the script, the man page and other files. Closes #194.
* Removed -o argument when creating .../ipsec.d with installTobias Brunner2012-06-251-1/+1
| | | | This should have been removed with 2b52d5cb41.
* Updated ipsec script man page after removing plutoTobias Brunner2012-06-251-85/+71
|
* Use mac_t and PRF and signer wrappers in cmac pluginTobias Brunner2012-06-258-443/+82
|
* Use mac_t and PRF and signer wrappers in xcbc pluginTobias Brunner2012-06-258-452/+91
|
* Make the hmac_t interface a generic interface for message authentication codesTobias Brunner2012-06-2511-132/+131
|
* Simplified creation of PRFs and signers in openssl and hmac pluginsTobias Brunner2012-06-252-136/+10
|
* Function to convert PRFs to hash algorithms addedTobias Brunner2012-06-252-0/+39
|
* hasher_algorithm_from_integrity() optionally returns truncation lengthTobias Brunner2012-06-253-7/+45
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-22 11:31:35 +0000