Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | ipsec: Only allow specific commands to be executed via ipsec script | Tobias Brunner | 2017-01-18 | 1 | -12/+20 |
| | | | | | The previous fallback allowed running any executable as root if executing ipsec via sudo was allowed, by using e.g. `sudo ipsec ../../../bin/sh`. | ||||
* | ipsec: Fix stop command on systems where sleep(1) only supports integers | Tobias Brunner | 2015-12-10 | 1 | -2/+7 |
| | | | | Fixes #1231. | ||||
* | ipsec: Quit script quicker for ipsec stop | Tobias Brunner | 2015-11-09 | 1 | -2/+2 |
| | | | | | | | It rarely takes 1 second or longer to terminate the daemon. This decreases the runtime of the post test step a lot where `ipsec stop` is called for multiple hosts in each test case (10-15 minutes over all test cases). | ||||
* | ipsec: Update rereadcacerts/aacerts command description in manpage | Martin Willi | 2015-03-03 | 1 | -6/+9 |
| | |||||
* | ipsec: Remove unsupported listcards and rereadgroups commands | Tobias Brunner | 2014-10-08 | 1 | -10/+0 |
| | |||||
* | ipsec: Document missing commands | Tobias Brunner | 2014-10-08 | 1 | -1/+11 |
| | |||||
* | ipsec: Update usage output | Tobias Brunner | 2014-10-08 | 1 | -18/+17 |
| | |||||
* | ipsec: Remove duplicate check for internal commands | Tobias Brunner | 2014-10-08 | 1 | -4/+0 |
| | |||||
* | ipsec: Only set PATH if it is not already set | Tobias Brunner | 2014-10-08 | 1 | -1/+1 |
| | | | | | | | | | | The comment indicated this but it was always set anyway. All internal commands are called via their absolute paths, so the script only uses PATH for the uname command, but if that is not located in one of the configured directories the script will fail. Also, since the internal commands are called via their absolute paths there is no need to add the directories to PATH. | ||||
* | aikgen generates AIK private/public key pairs | Andreas Steffen | 2014-05-03 | 1 | -1/+5 |
| | | | | | | aikgen outputs a binary AIK private key blob and the AIK public key. Optionally the Identity Request encrypted with the public key of the Privacy CA can be output. | ||||
* | openac: Remove obsolete openac utility | Martin Willi | 2014-03-31 | 1 | -1/+0 |
| | | | | The same functionality is now provided by the pki --acert subcommand. | ||||
* | ipsec: Updated ipsec(8) | Tobias Brunner | 2013-10-29 | 2 | -97/+126 |
| | |||||
* | ipsec: Remove unused distro.txt | Tobias Brunner | 2013-10-29 | 1 | -2/+0 |
| | |||||
* | pki: Install pki(1) as utility directly in $prefix/bin | Tobias Brunner | 2013-09-13 | 3 | -2/+9 |
| | | | | ipsec pki is maintained as alias. | ||||
* | ipsec: Add --piddir to retrieve the PID/socket directory | Tobias Brunner | 2013-07-22 | 2 | -3/+11 |
| | |||||
* | Use the GEN silent rule when generating files with sed | Martin Willi | 2013-05-06 | 1 | -0/+2 |
| | |||||
* | android: Fix Android.mk for ipsec script | Tobias Brunner | 2013-03-20 | 1 | -1/+2 |
| | |||||
* | starter: Make daemon name configurable | Adrian-Ken Rueegsegger | 2013-03-19 | 1 | -3/+6 |
| | | | | | | | | A daemon can be specified using the '--daemon' command line parameter. This tells starter to invoke a daemon other than 'charon'. Additionally the ipsec script uses the environment variable DAEMON_NAME to tell the starter which daemon to use. | ||||
* | Add a "resetcounters" command to ipsec, clearing global or connection counters | Martin Willi | 2013-03-15 | 1 | -3/+4 |
| | |||||
* | Add "listcounters" command to ipsec.8 manpage | Martin Willi | 2012-10-24 | 1 | -0/+4 |
| | |||||
* | Add a "ipsec listcounters" command to stroke | Martin Willi | 2012-10-24 | 1 | -2/+2 |
| | |||||
* | The use of $< in Makefiles is not portable | Tobias Brunner | 2012-07-27 | 3 | -5/+5 |
| | | | | | | It requires GNU make which is not what most people use on e.g. FreeBSD. Fixes #205. | ||||
* | Added an option to rename the ipsec script during installation | Tobias Brunner | 2012-06-25 | 4 | -38/+55 |
| | | | | | | | Also rename the man page and adjust all references in the script, the man page and other files. Closes #194. | ||||
* | Updated ipsec script man page after removing pluto | Tobias Brunner | 2012-06-25 | 1 | -85/+71 |
| | |||||
* | Removed pluto-specifics from ipsec script | Tobias Brunner | 2012-06-25 | 1 | -75/+1 |
| | |||||
* | Remove executable flag from source files. | Tobias Brunner | 2012-05-18 | 1 | -0/+0 |
| | |||||
* | Android 4 requires LOCAL_MODULE_TAGS to be set for all modules. | Tobias Brunner | 2012-01-12 | 1 | -0/+2 |
| | | | | | | | Because all packages are now marked as optional executables that are to be installed on the final system have to be added to PRODUCT_PACKAGES in build/target/product/core.mk. Dependencies (such as libraries) are installed automatically. | ||||
* | Added missing Android.mk files to distribution. | Tobias Brunner | 2011-11-22 | 1 | -1/+1 |
| | |||||
* | add listplugins to ipsec shell command | Andreas Steffen | 2011-10-26 | 1 | -2/+2 |
| | |||||
* | Build ipsec on Android. | Tobias Brunner | 2011-10-11 | 1 | -0/+31 |
| | | | | | Note: this does not fully work as [ (or even test) is not supported on Android by default. | ||||
* | ipsec: Allow the shell in the shebang to be changed. | Tobias Brunner | 2011-10-11 | 2 | -1/+2 |
| | |||||
* | auto-detect OS name | Riaan Kruger | 2011-08-23 | 1 | -1/+2 |
| | |||||
* | ipsec: Wait longer for starter to quit before killing it. | Tobias Brunner | 2011-05-26 | 1 | -1/+1 |
| | | | | | As starter waits up to 10 seconds for either daemon to quit, killing it already after 5 seconds is too early. | ||||
* | Renamed purgex509/crl to purgecerts/crls to be consistent with list commands | Martin Willi | 2010-12-10 | 1 | -3/+3 |
| | |||||
* | Added options to flush CRLs/X509 certs from the cert cache | Martin Willi | 2010-12-10 | 1 | -2/+2 |
| | |||||
* | Added generated manpages to .gitignore | Martin Willi | 2010-05-31 | 1 | -0/+1 |
| | |||||
* | IPSEC_CONFDIR in ipsec script fixed. | Tobias Brunner | 2010-05-30 | 1 | -1/+1 |
| | |||||
* | Adding the version number to the most relevant manual pages. | Tobias Brunner | 2010-05-30 | 2 | -3/+8 |
| | |||||
* | Updated and corrected the ipsec(8) manual page. | Tobias Brunner | 2010-05-30 | 1 | -206/+167 |
| | |||||
* | Added pluto/whack output to 'ipsec leases'. | Tobias Brunner | 2010-04-06 | 1 | -11/+20 |
| | |||||
* | recognize ipsec purgeike command | Andreas Steffen | 2009-05-22 | 1 | -1/+10 |
| | |||||
* | removing svn keyword $Id$ from all files | Tobias Brunner | 2009-04-30 | 2 | -3/+0 |
| | |||||
* | merging changes from portability branch back to trunk | Tobias Brunner | 2009-04-30 | 1 | -1/+1 |
| | | | | | important change for developers: %Y replaces %D to print identities! | ||||
* | added .gitignore files, ready for the switch | Martin Willi | 2009-04-30 | 1 | -0/+1 |
| | |||||
* | removed .cvsignore files | Martin Willi | 2009-04-27 | 1 | -1/+0 |
| | |||||
* | fixed usage of "leases" command | Martin Willi | 2008-12-11 | 1 | -1/+1 |
| | |||||
* | list assigned leases using "ipsec leases" | Martin Willi | 2008-12-10 | 1 | -0/+16 |
| | |||||
* | use busybox compatible kill | Martin Willi | 2008-10-10 | 1 | -4/+4 |
| | |||||
* | implemented ipsec listalgs as a stroke command | Andreas Steffen | 2008-10-08 | 1 | -8/+8 |
| | |||||
* | crypto_factory algorithm enumeration API | Martin Willi | 2008-08-28 | 1 | -8/+8 |
| | | | | implementation of "ipsec listalgs" |