aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
| * swanctl: Generate man page snippet with config optionsTobias Brunner2014-05-071-3/+7
| |
| * conf: Properly propagate whether a section is commented or notTobias Brunner2014-05-071-3/+4
| |
| * swanctl: Convert swanctl.conf to an options file and generate configTobias Brunner2014-05-074-126/+198
| |
| * swanctl: Install swanctl.conf if it does not exist yetTobias Brunner2014-05-071-2/+6
| |
| * swanctl: Change syntax of secrets to accept identities with special charsMartin Willi2014-05-072-46/+55
| | | | | | | | | | | | | | | | | | | | | | Having identity strings in the settings key is problematic, as the parser can't handle arbitrary characters in it. Further, the space separation makes it impossible to define identities with spaces. The new format uses key prefixes, similar to those used in local/remote auth sections of connections. The secrets section takes subsections with type prefixes, and each subsection uses "id" prefixes to define an arbitrary number of identities.
| * swanctl: List local and remote addresses in list-connsMartin Willi2014-05-071-1/+18
| |
| * swanctl: Add a list-pools command to summarize pool statusMartin Willi2014-05-073-1/+98
| |
| * swanctl: Add a load-pools command to (re-)load pool configurations from fileMartin Willi2014-05-073-1/+285
| |
| * swanctl: Encode connection "pools" as list itemsMartin Willi2014-05-071-0/+1
| |
| * swanctl: Fix enumeration of registered commands if MAX_COMMANDS is hitMartin Willi2014-05-071-3/+3
| |
| * swanctl: Implement a --log command to trace debugging logMartin Willi2014-05-073-1/+98
| |
| * swanctl: Add a swanctl.conf template fileMartin Willi2014-05-072-0/+124
| |
| * swanctl: Implement a --list-certs command to print or export daemon certificatesMartin Willi2014-05-073-1/+670
| |
| * swanctl: Be more verbose while loading connections and credentialsMartin Willi2014-05-072-2/+26
| |
| * swanctl: Add a list-conns command to query loaded connectionsMartin Willi2014-05-072-0/+220
| |
| * swanctl: Register --version as last commandMartin Willi2014-05-071-1/+1
| |
| * swanctl: Support groups, certs and cacerts keywordsMartin Willi2014-05-071-0/+70
| |
| * swanctl: Load shared secrets from the swanctl.conf secrets sectionMartin Willi2014-05-071-1/+96
| |
| * swanctl: Load different private keys with load-credsMartin Willi2014-05-072-1/+197
| |
| * swanctl: Add a command to (re-)load credentialsMartin Willi2014-05-073-0/+197
| |
| * swanctl: Use a ./configure-able swanctl base directoryMartin Willi2014-05-074-6/+35
| |
| * swanctl: After loading connections, unload those that are not in config anymoreMartin Willi2014-05-071-7/+114
| |
| * swanctl: Implement a load-conn command to load connections from a fileMartin Willi2014-05-072-0/+229
| |
| * swanctl: Implement a list-pols command to query trap/shunt policiesMartin Willi2014-05-072-0/+205
| |
| * swanctl: Implement install/uninstall commands to manage shunt/trap policiesMartin Willi2014-05-072-0/+121
| |
| * swanctl: Add a version command to query daemon and OS infoMartin Willi2014-05-072-0/+82
| |
| * swanctl: Add a terminate commandMartin Willi2014-05-072-0/+154
| |
| * swanctl: Add a subcommand to initiate connections by nameMartin Willi2014-05-072-0/+129
| |
| * swanctl: Add a list-sas command to query active IKE_SAsMartin Willi2014-05-072-0/+360
| |
| * swanctl: Add a stub for a vici based configuration and control utilityMartin Willi2014-05-078-0/+496
| |
| * libcharon: Execute scripts defined in strongswan.conf during startup/shutdownMartin Willi2014-05-071-0/+52
|/
* Merge branch 'vici'Martin Willi2014-05-0742-6/+10401
|\ | | | | | | | | | | Introduces the vici plugin providing a Versatile IKE Configuration Interface to configure, monitor and control the IKE daemon charon over a stable IPC socket interface.
| * NEWS: Add vici plugin newsMartin Willi2014-05-071-0/+6
| |
| * vici: Check if header has been received before processing an empty messageMartin Willi2014-05-071-1/+2
| | | | | | | | | | | | If do_read() returns with EWOULDBLOCK, we must ensure that we actually have processed the full length header before checking the zero-initialized buffer length.
| * vici: Properly filter by CHILD_SA name while undoing start actionsMartin Willi2014-05-071-2/+5
| |
| * vici: Fallback to socket listening port if no explicit local port specifiedMartin Willi2014-05-071-1/+4
| |
| * vici: Support a "mtu" value for the tfc_padding optionMartin Willi2014-05-071-2/+16
| |
| * vici: Handle the "trap" action as an alias for "route"Martin Willi2014-05-071-0/+1
| |
| * vici: Document errno values to expect from libvici APIMartin Willi2014-05-072-9/+24
| |
| * vici: Log owners of a just loaded shared-secretMartin Willi2014-05-071-2/+18
| |
| * vici: Handle "xauth" as an alias for "eap" secretsMartin Willi2014-05-071-1/+1
| |
| * vici: Return number of matching and closed SAs in terminate commandMartin Willi2014-05-071-9/+12
| |
| * vici: Complete libvici doxygen commentsMartin Willi2014-05-071-2/+17
| |
| * vici: Ensure we have no active users before mangling event client registrationsMartin Willi2014-05-071-13/+35
| |
| * vici: Properly skip raise_event() for unknown event namesMartin Willi2014-05-071-13/+13
| |
| * vici: Increase vici message length header from 16 to 32 bitsMartin Willi2014-05-075-24/+43
| | | | | | | | | | | | | | | | | | While we currently have no need for messages larger than 65KB, we should design the protocol to be future-proof, as we plan to keep at least to lowest protocol layer stable. To avoid any allocation issues, we currently keep the message size limit at 512KB.
| * vici: Document strongswan.conf optionsMartin Willi2014-05-072-0/+3
| |
| * vici: Have an explicit "relaxed" keyword for the default revocation policyMartin Willi2014-05-071-1/+5
| |
| * vici: Use a default child rekey time of 1 hourMartin Willi2014-05-071-0/+6
| |
| * vici: Use a default IKE rekey time of 4 hoursMartin Willi2014-05-071-0/+6
| |
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-09 07:58:38 +0000