aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon/plugins/vici/vici_query.c
Commit message (Collapse)AuthorAgeFilesLines
* vici list-conns sends reauthentication and rekeying time informationAndreas Steffen2016-05-041-0/+11
|
* Include manual policy priorities and restriction to interfaces in vici ↵Andreas Steffen2016-04-091-1/+14
| | | | list-conn command
* Use standard unsigned integer typesAndreas Steffen2016-03-241-5/+5
|
* vici: Correctly return IKE SPIs stored in network orderTobias Brunner2016-03-041-2/+4
|
* vici: Provide ports of local and remote IKE endpointsTobias Brunner2016-03-031-2/+7
|
* vici: list-cert sends subject, not-before and not-after attributes for pubkeysAndreas Steffen2016-01-091-1/+25
|
* vici: Enable transport encoding of CERT_TRUSTED_PUBKEY objectsAndreas Steffen2016-01-031-5/+8
|
* vici: Use correct constant when checking for integrity algorithmTobias Brunner2015-12-211-1/+1
| | | | Currently both have the value 1024 so no real harm done.
* vici: CHILD_SA proposals never contain a PRFTobias Brunner2015-12-211-5/+0
|
* vici: allow legacy shortcuts in cert queriesAndreas Steffen2015-12-191-10/+14
|
* Refactored certificate management for the vici and stroke interfaces5.4.0dr1Andreas Steffen2015-12-121-70/+30
|
* Share vici_cert_info.c with vici_cred.cAndreas Steffen2015-12-111-0/+5
|
* Use VICI 2.0 protocol version for certificate queriesAndreas Steffen2015-12-111-52/+43
|
* Sort certificate types during enumerationAndreas Steffen2015-12-111-39/+205
|
* vici: Don't report memory usage via leak-detectiveTobias Brunner2015-12-111-17/+0
| | | | | This slowed down the `swanctl --stats` calls in the test scenarios significantly, with not much added value.
* vici: Add get-algorithms command to query loaded algorithms and implementationsTobias Brunner2015-11-301-0/+106
|
* vici: Return local and remote virtual IPs when listing SAsTobias Brunner2015-11-101-0/+30
|
* vici: Add NAT information when listing IKE_SAsTobias Brunner2015-11-091-0/+17
| | | | | | | | | | The `nat-local` and `nat-remote` keys contain information on the NAT status of the local and remote IKE endpoints, respectively. If a responder did not detect a NAT but is configured to fake a NAT situation this is indicated by `nat-fake` (if an initiator fakes a NAT situation `nat-local` is set). If any NAT is detected or faked `nat-any` is set. Closes strongswan/strongswan#16.
* ike: Only consider number of half-open SAs as responder when deciding ↵Tobias Brunner2015-08-271-1/+1
| | | | whether COOKIEs are sent
* vici: Add ike/child-rekey eventsTobias Brunner2015-08-171-0/+72
|
* vici: Don't include a child-sas section in ike-updown eventTobias Brunner2015-08-171-2/+0
| | | | | | This makes it clearer that only the data concerning the IKE_SA is transmitted (there could be CHILD_SAs e.g. during IKEv1 reauthentication).
* vici: Explicitly notify listeners of the type of ike/child-updown eventTobias Brunner2015-08-171-0/+11
|
* vici: Add support for ike_sa and child_sa updown notificationsTimo Teräs2015-05-041-0/+85
| | | | | | Useful for monitoring and management purposes. Signed-off-by: Timo Teräs <timo.teras@iki.fi>
* child-sa: Add a new state to track rekeyed IKEv1 CHILD_SAsTobias Brunner2015-03-251-1/+2
| | | | | | This is needed to handle DELETEs properly, which was previously done via CHILD_REKEYING, which we don't use anymore since 5c6a62ceb6 as it prevents reauthentication.
* vici: Return authentication rounds with unique namesMartin Willi2015-03-181-1/+4
| | | | | | To simplify handling of authentication rounds in dictionaries/hashtables on the client side, we assign unique names to each authentication round when listing connection.
* vici: Use %u to print stats returned by mallinfo(3)Tobias Brunner2015-03-131-4/+4
| | | | Fixes #886.
* vici: Include the CHILD_SA unique ID in list-sa eventMartin Willi2015-02-201-0/+1
|
* vici: Support memory stats without leak-detective on WindowsMartin Willi2014-06-171-0/+53
|
* vici: Add a stats command returning various daemon infos and statisticsMartin Willi2014-06-171-0/+104
|
* vici: Add Windows supportMartin Willi2014-06-041-5/+33
|
* enum: Return boolean result for enum_from_name() lookupMartin Willi2014-05-161-2/+1
| | | | | | | | | | | Handling the result for enum_from_name() is difficult, as checking for negative return values requires a cast if the enum type is unsigned. The new signature clearly differentiates lookup result from lookup value. Further, this actually allows to convert real -1 enum values, which could not be distinguished from "not-found" and the -1 return value. This also fixes several clang warnings where enums are unsigned.
* vici: Don't compare unsigned certificate_type_t to -1Martin Willi2014-05-071-1/+1
|
* vici: Add a list-certs command to query different certificate typesMartin Willi2014-05-071-0/+102
|
* vici: Support pinning end entity and CA certificates to connectionsMartin Willi2014-05-071-0/+25
|
* vici: Support missing groups option in auth configMartin Willi2014-05-071-0/+12
|
* vici: Add a command listing all or specific loaded connections using eventsMartin Willi2014-05-071-0/+167
|
* vici: Add a list-policy command to query trap and shunt policiesMartin Willi2014-05-071-0/+147
|
* vici: Add a version command to print daemon and OS version infoMartin Willi2014-05-071-0/+23
|
* vici: Add a query class, currently implementing a list-sas commandMartin Willi2014-05-071-0/+379
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 10:04:06 +0000