aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
...
* android: Target latest SDK versionTobias Brunner2014-07-222-2/+2
|
* android: Add utility method to convert a byte array to a hex stringTobias Brunner2014-07-221-0/+40
|
* android: Remove unused hash argument from getTrustedCertificates()Tobias Brunner2014-07-222-25/+6
|
* android: Use correct tag to define category for CREATE_SHORTCUT intent-filterTobias Brunner2014-07-221-1/+1
|
* starter: Fix memory leaks and warn if conn/ca sections are ignored due to ↵Tobias Brunner2014-07-181-2/+8
| | | | parse errors
* receiver: Send a single INVALID_MAJOR_VERSION notify for IKE version > 2Martin Willi2014-07-171-3/+1
| | | | | | | | | We sent both a notify using IKEv1 and IKEv2. This is a little more aggressive than required, RFC 5996 says we "SHOULD send an unauthenticated Notify message of type INVALID_MAJOR_VERSION containing the highest (closest) version number it supports". Fixes #657.
* Determine type of unsupported PA-TNC attribute in error messageAndreas Steffen2014-07-163-47/+84
|
* Replaced Tag File Path by Instance ID fieldAndreas Steffen2014-07-167-49/+49
| | | | | This update reflects the latest changes in the TCG TNC SWID Messages and Attributes for IF-M specification
* swanctl: Fix the swanctl.conf cacerts option name in the manpage and templateMartin Willi2014-07-141-1/+1
|
* dumm: Undefine _GNU_SOURCE before including <ruby.h>, as it usually redefines itMartin Willi2014-07-091-0/+2
|
* settings: Allow spaces in time settings before the optional unitMartin Willi2014-07-072-2/+7
|
* settings: Be more strict in converting settings to specific data typesMartin Willi2014-07-072-25/+30
| | | | | | | As the behavior was inconsistent for empty strings or strings with characters appended to a number, testing the code failed on some platforms. The new rules are more strict, returning the default if additional characters or an empty string was found for a setting.
* utils: Undefine mem{cpy,move,set} if set before defining themMartin Willi2014-07-071-0/+9
| | | | | Some platforms, such as OS X, use macros for these functions. Undefine them to avoid compiler warnings.
* enumerator: Enumerate glob(3) matches using gl_pathcMartin Willi2014-07-071-9/+6
| | | | | | | While glob should return a NULL terminated gl_pathv when having no matches, at least on OS X this is not true when using GLOB_DOOFFS. Rely on the number of matches returned in gl_pathc, which seems to be more reliable in error cases.
* xauth-pam: Add workaround for null-terminated passwordsTobias Brunner2014-07-071-1/+6
| | | | Fixes #631.
* kernel-netlink: Rename algorithm identifier from cast128 to cast5Martin Willi2014-07-041-1/+1
| | | | | | | | | | | Even if the XFRM identifier was named cast128 in the kernel before 2.6.31, it actually never worked, because there is no such crypto algorithm. The identifier has been changed to cast5 in https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=245acb87 to make it work, so we should use that. Fixes #633.
* winhttp: Do not use countof() on pointer argumentTobias Brunner2014-07-021-1/+1
|
* optionsfrom: Properly handle errors when determining file sizeTobias Brunner2014-07-021-2/+7
|
* windows: Fix off-by-one error in strerror_s_extended()Tobias Brunner2014-07-021-1/+1
|
* windows: accept() socket handle could theoretically be 0Tobias Brunner2014-07-021-1/+1
|
* windows: Close correct socket when opening second socket fails in socketpair()Tobias Brunner2014-07-021-1/+1
|
* windows: Make sure the string returned from ReadConsole() is null terminatedTobias Brunner2014-07-021-0/+2
|
* windows: Remove useless assignment in put_thread()Tobias Brunner2014-07-021-1/+1
|
* backtrace: Remove name checks after SymFromAddr() callsTobias Brunner2014-07-021-9/+5
| | | | The Name member is an array whose address is always defined.
* pts: Avoid integer overflow when reading file names in the old IMA formatTobias Brunner2014-07-011-1/+1
|
* imv-attestation: Avoid memory leak when skipping unsupported work itemsTobias Brunner2014-07-011-0/+1
|
* pts: Use memchr(3) instead of strchr(3) to extract hash algorithm nameTobias Brunner2014-07-011-1/+1
| | | | The string read with read(2) might not be null terminated.
* swid: fgets(3) returns a pointer to the read string or NULLTobias Brunner2014-07-011-3/+3
|
* parser-helper: Ensure file_next() does not remove the sentinel itemTobias Brunner2014-07-011-1/+1
|
* gcrypt: Use predefined pthread locking functions instead of custom hooksMartin Willi2014-07-011-50/+4
| | | | | | | | | | | | | Starting with libgcrypt 1.6, it seems that custom locking functions are not supported anymore. Instead, the user has to select from one of the pre-defined set of locking functions. Given that we have a proper threading abstraction API with optional profiling on all platforms, this is somewhat annoying. However, there does not seem to be a way to use custom functions, and we have no other choice than using the provided macro magic to support all libgcrypt versions. Fixes #630.
* stroke: Don't log unspecified options of conn and ca sectionsTobias Brunner2014-06-301-37/+50
|
* utils: Helper macros to define overloaded macros based on number of argumentsTobias Brunner2014-06-301-0/+26
|
* pki: Document --online option for pki --verify and all exit codesTobias Brunner2014-06-301-5/+11
|
* autoconf: Replace --disable-tools option with --disable-scepclientTobias Brunner2014-06-304-4/+4
| | | | | Since using a separate option for pki this was the only tool that was still enabled by that option.
* checksum: Fix checksum generation for pki if tools are disabledTobias Brunner2014-06-301-0/+3
|
* swid: Fix parameter documentation in Doxygen commentsTobias Brunner2014-06-302-2/+2
|
* windows: Fix parameter name in Doxygen commentTobias Brunner2014-06-301-1/+1
|
* enum: Replace þ with p in Doxygen commentsTobias Brunner2014-06-301-2/+2
|
* libvici: Add missing argument to Doxygen commentTobias Brunner2014-06-301-0/+1
|
* starter: Add starter group and fix formatting of conf_parser_section_t enumTobias Brunner2014-06-301-2/+4
| | | | Make use of the Markdown support in recent Doxygen versions.
* swanctl: Fix Doxygen group assignmentTobias Brunner2014-06-301-1/+1
|
* Fixed some typosTobias Brunner2014-06-305-5/+5
|
* Added Android 4.4.4 to IMV databaseAndreas Steffen2014-06-271-0/+12
|
* kernel-pfkey: Use address in TS to determine interface for shunt routesTobias Brunner2014-06-261-6/+9
|
* kernel-pfkey: Use subnet and prefix when determining nexthop for shunt ↵Tobias Brunner2014-06-261-2/+12
| | | | | | policy routes This is basically the same as 88f125f5605e54b38cf8913df79e32ec6bddff10.
* kernel-pfkey: Install routes for shunt policiesTobias Brunner2014-06-261-4/+4
|
* starter: Ingore %default conn and ca sectionsTobias Brunner2014-06-262-0/+60
|
* Updated build-database.sh to 3.13.0-30-generic Ubuntu kernelAndreas Steffen2014-06-261-1/+1
|
* updown: Force subnet address to be numericTobias Brunner2014-06-251-2/+2
|
* windows: Include <sys/stat.h> explicitly before overloading memset()/memcpy()Martin Willi2014-06-251-0/+1
| | | | | | fstat() in newer MinGWs is defined as non-static inline. With our new static inline memset()/memcpy() overloads, this raises a warning. To avoid it, explicitly include <sys/stat.h> once before defining these overloads.
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-05 13:57:42 +0000