aboutsummaryrefslogtreecommitdiffstats
path: root/src/starter
Commit message (Collapse)AuthorAgeFilesLines
* starter: Load config again when restarting charonTobias Brunner2012-09-051-0/+16
| | | | This got lost in 041e763b.
* Merge branch 'multi-vip'Martin Willi2012-08-317-89/+8
|\ | | | | | | | | | | | | Brings support for multiple virtual IPs and multiple pools in left/rigthsourceip definitions. Also introduces the new left/rightdns options to configure requested DNS server address family and respond with multiple connection specific servers.
| * Support multiple addresses/pools in left/rightsourceipMartin Willi2012-08-303-55/+0
| |
| * Remove unused ipsec.conf left/rightnatip keywordMartin Willi2012-08-216-34/+0
| |
| * Add a left/rightdns keyword to configure connection specific DNS attributesMartin Willi2012-08-215-0/+8
| |
* | Removed deprecated options from ipsec.conf templateTobias Brunner2012-08-241-9/+1
|/
* starter: Restore original config in case also= is used (which reads the same ↵Tobias Brunner2012-08-161-20/+30
| | | | values)
* Only load kernel plugins in starter when flushing SAD/SPD entriesTobias Brunner2012-08-162-9/+8
| | | | | | | | This avoids keeping the kernel sockets open when they are not actually needed, which could lead to resource problems (in particular with PF_KEY where all open sockets receive all messages). Fixes #217.
* Add an ipsec.conf leftgroups2 parameter for the second authentication roundMartin Willi2012-07-265-0/+8
|
* Mask the configured mark value to ensure it is in rangeTobias Brunner2012-06-261-0/+2
|
* Removed -o argument when creating .../ipsec.d with installTobias Brunner2012-06-251-1/+1
| | | | This should have been removed with 2b52d5cb41.
* ldaphost and ldapbase ca section keywords are deprecatedTobias Brunner2012-06-254-8/+2
|
* starter: Fixed parsing of %defaultroute.Tobias Brunner2012-06-151-6/+12
|
* Print the kind of *Swan during starter startupMartin Willi2012-06-141-1/+4
|
* thanks to narrowing treat right|leftsubnetwithin as synonyms for ↵Andreas Steffen2012-06-141-2/+2
| | | | right|leftsubnet
* starter: Print additional help texts for selected deprecated keywords.Tobias Brunner2012-06-124-6/+25
|
* starter: Improved how deprecated keywords are handled.Tobias Brunner2012-06-124-7/+99
| | | | We only throw a warning now instead of rejecting the config.
* Revert "starter: Don't treat unsupported keywords as fatal errors just ↵Tobias Brunner2012-06-121-3/+3
| | | | | | report them." This reverts commit e55876a657ae9d4bbf14320e5a14f86cc5c31c7f.
* starter: Fixed parsing of left|right=%any.Tobias Brunner2012-06-121-1/+3
|
* starter: Fix comparison of connections.Tobias Brunner2012-06-111-3/+4
|
* starter: Removed all unsupported keywords.Tobias Brunner2012-06-117-203/+26
|
* starter: Don't treat unsupported keywords as fatal errors just report them.Tobias Brunner2012-06-111-3/+3
|
* Bye bye Pluto!Tobias Brunner2012-06-114-23/+1
| | | | | Charon will take over IKEv1 duties from here. This also removes libfreeswan and whack.
* starter: Remove all ties to pluto/libfreeswan.Tobias Brunner2012-06-1110-46/+25
| | | | Moved some types/constants in the process.
* starter: Use custom type for SA specific options (flags).Tobias Brunner2012-06-114-22/+36
|
* starter: Parse left|rightprotoport directly in confread.c.Tobias Brunner2012-06-113-6/+53
|
* starter: No special handling for left|rightsubnet, just pass it on as string.Tobias Brunner2012-06-114-39/+1
|
* starter: Use host_t to parse left|rightsourceip.Tobias Brunner2012-06-111-18/+17
| | | | Also for the yet unused natip option.
* starter: Remove left|rightsubnetwithin option (charon narrows ↵Tobias Brunner2012-06-116-25/+0
| | | | left|rightsubnet down accordingly).
* starter: Don't resolve any addresses in starter.Tobias Brunner2012-06-116-129/+10
| | | | Also removed remains of some unknown iface option.
* starter: Removed pfs and pfsgroup options (handled via esp option).Tobias Brunner2012-06-115-28/+2
|
* starter: Store mode of the IPsec SA/policy in a separate member.Tobias Brunner2012-06-114-51/+32
|
* starter: Use custom type to mark seen keywords.Tobias Brunner2012-06-113-23/+27
|
* starter: Remove left|rightnexthop option.Tobias Brunner2012-06-116-26/+0
| | | | Charon does this lookup dynamically.
* starter: Replaced all usages of clone_str() with strdupnull().Tobias Brunner2012-06-113-19/+19
|
* starter: Parse authby as string.Tobias Brunner2012-06-114-61/+29
|
* starter: Remove main parts of pluto support (invoke, whack).Tobias Brunner2012-06-117-966/+47
|
* starter: Drop support for %defaultroute.Tobias Brunner2012-06-119-336/+14
|
* starter: Migrated logging to libstrongswan.Tobias Brunner2012-06-1114-550/+285
|
* starter: Remove unneeded starter_exec function.Tobias Brunner2012-06-115-78/+4
|
* implemented the right|leftallowany featureAndreas Steffen2012-06-081-0/+1
|
* starter: Go back to single threaded mode.Tobias Brunner2012-06-082-22/+7
| | | | | Mixing multiple threads and fork(2) wasn't a very good idea it seems. At least in some environments this caused strange side-effects.
* starter: Only handle SIGCHLD asynchronously and the rest in pselect(2).Tobias Brunner2012-06-061-8/+17
|
* starter: (De-)Initialize logging when forking.Tobias Brunner2012-06-051-0/+2
|
* starter: Close open file descriptors when forking daemons.Tobias Brunner2012-06-042-0/+2
|
* starter: Changed signal handling now that starter is multi-threaded.Tobias Brunner2012-06-042-15/+57
|
* make IKEv1 DPD timeout configurable in charonAndreas Steffen2012-05-172-1/+2
|
* starter: Initialize thread pool so kernel events are consumed.Tobias Brunner2012-05-151-0/+9
|
* Explicitly cast from strict_t to crl_policy_tMartin Willi2012-05-141-1/+1
|
* Merge branch 'ikev1'Martin Willi2012-05-027-75/+58
|\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Conflicts: configure.in man/ipsec.conf.5.in src/libcharon/encoding/generator.c src/libcharon/encoding/payloads/notify_payload.c src/libcharon/encoding/payloads/notify_payload.h src/libcharon/encoding/payloads/payload.c src/libcharon/network/receiver.c src/libcharon/sa/authenticator.c src/libcharon/sa/authenticator.h src/libcharon/sa/ikev2/tasks/ike_init.c src/libcharon/sa/task_manager.c src/libstrongswan/credentials/auth_cfg.c
generated by cgit v1.2.3 (git 2.25.1) at 2024-09-20 22:41:15 +0000