aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
* kernel-iph: Create and maintain a cache of interfaces and associated addressesMartin Willi2014-06-041-0/+328
|
* kernel-iph: Add a stub for a Windows IP Helper based networking backendMartin Willi2014-06-046-0/+306
|
* kernel-wfp: Disable IPsec policy updatesMartin Willi2014-06-041-4/+11
| | | | | It seems that WFP requires an update of the SA context only, but not for the filters. This allows us to omit support for (fallback) drop policies.
* kernel-interface: Add a flag to indicate no policy updates requiredMartin Willi2014-06-042-3/+16
|
* kernel-wfp: Increment SPIs properly, that is while in host orderMartin Willi2014-06-041-2/+2
|
* kernel-wfp: Triggering expire events for SAs to rekey/deleteMartin Willi2014-06-041-0/+108
|
* kernel-wfp: Enforce hard lifetimes of SAsMartin Willi2014-06-041-0/+8
|
* kernel-wfp: Add some notes about query_sa/policy() supportMartin Willi2014-06-041-0/+5
|
* kernel-wfp: Reference SA/SP sets by SPI and destination, not reqidMartin Willi2014-06-041-255/+149
| | | | | This allows us to have multiple CHILD_SAs for the same reqid, and brings rekeying support.
* kernel-wfp: Add support for tunnel mode connectionsMartin Willi2014-06-042-25/+215
|
* kernel-wfp: Register a WFP provider to manage IPsec tunnelsMartin Willi2014-06-041-0/+22
|
* kernel-wfp: Preliminary support for transport mode connectionsMartin Willi2014-06-042-3/+698
|
* kernel-wfp: Fix/Complete some fwpuclnt functionality in MinGWMartin Willi2014-06-044-3/+133
| | | | | | | | | While MinGW declares all the required symbols, some of them are missing in the library files. We provide missing variables locally, functions get a stub that call the GetProcAddress()ed function from the DLL. Also some MinGW headers define some enum values incorrectly, we overload these using defines.
* kernel-wfp: Open and close a WFP engineMartin Willi2014-06-041-1/+33
|
* kernel-wfp: Create userland state for SAs/policies to install in kernelMartin Willi2014-06-041-5/+364
|
* kernel-wfp: Add a stub for a Windows Filtering Platform based IPsec backendMartin Willi2014-06-046-0/+361
|
* socket-win: Implement a Windows socket plugin using Winsock2Martin Willi2014-06-046-0/+697
|
* charon-svc: Register for stop events not before reaching STATUS_RUNNINGMartin Willi2014-06-041-60/+92
| | | | | MSDN SetServiceStatus(): "Do not register to accept controls while the status is SERVICE_START_PENDING or the service can crash."
* charon-svc: Check if daemon has been initialized before invoking shutdown alertMartin Willi2014-06-041-2/+10
|
* swanctl: Stop logging with Ctrl+C on Windows as wellMartin Willi2014-06-041-4/+5
|
* vici: Add Windows supportMartin Willi2014-06-047-13/+54
|
* windows: Provide POSIX supplement errno values missing in MinGWMartin Willi2014-06-042-23/+147
| | | | | MinGW headers do not define these values, but Windows system headers do. Windows defines them for POSIX compatibility, we do the same locally.
* windows: Provide shutdown(2) operation aliases mapping to those on WindowsMartin Willi2014-06-041-0/+7
|
* x509: Check return value when signing attribute certificatesMartin Willi2014-06-041-9/+16
| | | | | | In addition that this lets AC generation fail properly if private key signing fails, it also fixes an issue when compiling on Windows with MinGW 4.8.1, where for some reason the attributeCertificateInfo got encoded incorrectly.
* unit-tests: Support testable functions on Windows, avoid weak GCC symbolsMartin Willi2014-06-043-61/+61
| | | | | | | Instead of using weak symbols, we use dlsym() on Windows to find an arbitrary symbol in libtest to detect its linkage. Instead of creating the associated hashtable in the test runner, we maintain it in libstrongswan, making it significantly simpler.
* unit-tests: Seed chunk_hash() only once, but before creating any hashtablesMartin Willi2014-06-044-9/+14
| | | | | | | Due to the removal of pthread_once, we manually create the seed for chunk_hash(). With the new testable functions interface, this won't work for the hashtable initiated using __attribute__((constructor)). Enforce seeding before creating that hashtable.
* pki: Provide a fallback if strptime() not supportedMartin Willi2014-06-041-9/+63
| | | | | For simplicity, we support the default pki datetime format only, but optionally accept four digit years for longer lifetimes.
* openssl: Don't re-enter FIPS mode if we are already using itMartin Willi2014-06-041-2/+3
| | | | | | If FIPS mode has been enabled by other means, under some environments it can't be entered again. It fails with "FIPS mode already set". To avoid it, we first check the mode before changing it.
* unit-tests: Force a CET/CEST timezone Windows understandsMartin Willi2014-06-041-0/+4
| | | | | | As it is currently unclear what the "three-letter-timezone" for CEST is, we use the German timezone, which actually is CET/CEST. SetEnvironmentVariable() "TZ" does not seem to affect localtime(), so we use _putenv() instead.
* utils: Add a wait_sigint() function to wait for SIGINT or equivalentMartin Willi2014-06-042-0/+88
|
* pki: Switch to binary mode on Windows when reading/writing DER to FDsMartin Willi2014-06-0413-1/+49
|
* pki: Stop prompting for password when entering empty stringMartin Willi2014-06-041-1/+1
|
* chunk: On Windows, use binary mode in chunk_write()Martin Willi2014-06-041-1/+8
|
* imv: Provide database table scheme for MySQLMartin Willi2014-06-042-1/+201
|
* libpts: Respect path separators when concatenating database filenamesMartin Willi2014-06-041-6/+15
| | | | | As we can't use the system native directory separator on cross-platform measurements, we determine the path separator from the base directory format.
* attest: Properly separate and build absolute path names on WindowsMartin Willi2014-06-041-13/+28
|
* libimcv: Pass TNC_SESSION_ID as argument instead as a environment variableMartin Willi2014-06-044-23/+16
| | | | Doing so works on Windows as well.
* libimcv: Be a little more verbose about the Windows system reportedMartin Willi2014-06-041-8/+10
|
* imv: Return an empty enumerator instead of null, as expected by callersMartin Willi2014-06-041-1/+1
|
* imc-os: Add missing TNC_IMC_API definitions, fixes warnings on WindowsMartin Willi2014-06-041-28/+27
|
* imv-os: Don't build pacman on WindowsMartin Willi2014-06-041-0/+2
|
* file-logger: Emulate setlinebuf() if not supported by using fflush()Martin Willi2014-06-041-0/+12
|
* charon-svc: When running as service, change working directory to executableMartin Willi2014-06-041-1/+30
| | | | | Services get executed with system32 as current working directory. This does not work for us, as we expect paths to be relative to the executable.
* openssl: Be less verbose about FIPS mode when not running as daemonMartin Willi2014-06-041-2/+2
| | | | | While this is valuable information, printing it for pki and other tools is annoying.
* unit-tests: Adapt settings tests for WindowsMartin Willi2014-06-041-2/+13
|
* swanctl: Concatenate relative certificate paths correctly on WindowsMartin Willi2014-06-041-3/+5
|
* parser-helper: Detect absolute pathnames and concatenate paths on WindowsMartin Willi2014-06-041-2/+3
|
* utils: Provide a path_absolute() function to check path for non-relativenessMartin Willi2014-06-043-38/+88
| | | | The usually used trivial '/' check won't work on Windows platforms.
* utils: Return plain drive letter as base/pathname for drive letters on WindowsMartin Willi2014-06-041-0/+9
|
* utils: Support Windows path separators in path_basename/dirnameMartin Willi2014-06-042-9/+28
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-07-25 06:03:25 +0000