aboutsummaryrefslogtreecommitdiffstats
path: root/src/swanctl/commands
Commit message (Collapse)AuthorAgeFilesLines
* swanctl: indicate initiator and responder in --list-sasAndreas Steffen2016-05-071-2/+5
|
* swanctl: Do not display rekey times for shuntsAndreas Steffen2016-05-051-3/+5
|
* vici list-conns sends reauthentication and rekeying time informationAndreas Steffen2016-05-041-2/+71
|
* swanctl: --list-conns shows eap_id, xauth_id and aaa_idAndreas Steffen2016-05-041-0/+13
|
* swanctl: list EAP type in --list-connsAndreas Steffen2016-04-261-3/+10
|
* swanctl: log errors to stderrAndreas Steffen2016-04-243-3/+3
|
* Include manual policy priorities and restriction to interfaces in vici ↵Andreas Steffen2016-04-091-0/+13
| | | | list-conn command
* Display IKE ports with swanctl --list-sasAndreas Steffen2016-03-051-4/+9
|
* vici: Match subnets and ranges against peer IP in redirect commandTobias Brunner2016-03-041-1/+1
|
* vici: Match identity with wildcards against remote ID in redirect commandTobias Brunner2016-03-041-1/+1
|
* swanctl: Add --redirect commandTobias Brunner2016-03-041-0/+132
|
* swanctl: Load pubkeys with load-credsAndreas Steffen2016-01-091-0/+1
|
* vici: list-cert sends subject, not-before and not-after attributes for pubkeysAndreas Steffen2016-01-091-5/+36
|
* vici: Support of raw public keysAndreas Steffen2016-01-091-1/+8
|
* swanctl: Slightly change usage summary for --list-certsTobias Brunner2015-12-161-4/+3
|
* swanctl --stats lists loaded pluginsAndreas Steffen2015-12-131-0/+12
|
* Refactored certificate management for the vici and stroke interfaces5.4.0dr1Andreas Steffen2015-12-122-52/+59
|
* Removed VICI protocol versioningAndreas Steffen2015-12-111-14/+7
|
* Use of certificate_printer by swanctl --list-certs commandAndreas Steffen2015-12-111-495/+19
|
* Share vici_cert_info.c with vici_cred.cAndreas Steffen2015-12-111-6/+17
|
* Use VICI 2.0 protocol version for certificate queriesAndreas Steffen2015-12-112-80/+124
|
* swanctl: Add --list-algs command to query loaded algorithmsTobias Brunner2015-11-301-0/+104
|
* swanctl: Add option to query leases with --get-poolsTobias Brunner2015-11-101-3/+29
|
* swanctl: List virtual IPs in --list-sasTobias Brunner2015-11-101-1/+11
|
* Improved legibility of swanctl CRL listings5.3.3dr1Andreas Steffen2015-07-221-1/+4
|
* vici: Certification Authority support added.Andreas Steffen2015-07-214-1/+567
| | | | | | CDP and OCSP URIs for a one or multiple certification authorities can be added via the VICI interface. swanctl allows to read definitions from a new authorities section.
* swanctl: Implement monitoring of IKE_SA and CHILD_SA changesTimo Teräs2015-05-041-1/+83
| | | | Signed-off-by: Timo Teräs <timo.teras@iki.fi>
* swanctl: Add missing unit in install-time logRomain Francoise2015-05-041-1/+1
|
* swanctl: Append /ESN to proposal for a CHILD_SA using Extended Sequence NumbersMartin Willi2015-03-231-1/+1
| | | | | | | We previously printed just the value for the "esn" keyword, which is "1", and not helpful as such. Fixes #904.
* vici: Return authentication rounds with unique namesMartin Willi2015-03-181-2/+3
| | | | | | To simplify handling of authentication rounds in dictionaries/hashtables on the client side, we assign unique names to each authentication round when listing connection.
* swanctl: Cache entered PKCS#12 decryption secretMartin Willi2015-03-181-6/+23
| | | | | It is usually used more than once, but most likely the same for decryption and MAC verification.
* swanctl: Support loading PKCS#12 containers from a pkcs12 swanctl directoryMartin Willi2015-03-181-0/+113
|
* swanctl: Generalize private key decryption to support other credential typesMartin Willi2015-03-181-55/+97
|
* swanctl: List CHILD_SA unique ID as the primary identifier, but print reqid, tooMartin Willi2015-02-201-2/+2
|
* swanctl: Fail loading a connection if loading a cacert constraint failsMartin Willi2014-12-121-10/+37
|
* swanctl: Fix exit codes based on errnoMartin Willi2014-10-1012-19/+43
| | | | | As fprintf() most likely sets errno, we should save it before printing the error message.
* swanctl: Complete --load-creds command summaryMartin Willi2014-09-221-1/+1
|
* swanctl: Fix description of load-pools command summaryMartin Willi2014-09-221-1/+1
|
* swanctl: Add a --load-all command, performing --load-{creds,pools,conns}Martin Willi2014-09-227-93/+321
|
* swanctl: Add a --reload-settings commandMartin Willi2014-09-221-0/+87
|
* swanctl: Add a --stats command to print daemon infos and statisticsMartin Willi2014-06-171-0/+118
|
* swanctl: Support private key decryption passhprases in swanctl.confMartin Willi2014-06-171-19/+108
| | | | | | | While there is no real security benefit of storing private keys encrypted if the passphrase is stored along with it, there still seems to be demand for this functionality. We add it for compatibility with ipsec.secrets, even if it is not really recommended.
* Split swanctl --raw mode into single-line and --pretty modeAndreas Steffen2014-06-1413-153/+229
|
* Added missing units (s = seconds)Andreas Steffen2014-06-101-1/+1
|
* swanctl: Stop logging with Ctrl+C on Windows as wellMartin Willi2014-06-041-4/+5
|
* swanctl: Concatenate relative certificate paths correctly on WindowsMartin Willi2014-06-041-3/+5
|
* Make sure getpass() is availableTobias Brunner2014-05-291-1/+3
| | | | It's not on Android for example.
* enum: Return boolean result for enum_from_name() lookupMartin Willi2014-05-161-3/+3
| | | | | | | | | | | Handling the result for enum_from_name() is difficult, as checking for negative return values requires a cast if the enum type is unsigned. The new signature clearly differentiates lookup result from lookup value. Further, this actually allows to convert real -1 enum values, which could not be distinguished from "not-found" and the -1 return value. This also fixes several clang warnings where enums are unsigned.
* swanctl: Properly initialize return value of --install commandMartin Willi2014-05-161-1/+1
|
* swanctl: By default print local swanctl version with --versionMartin Willi2014-05-071-2/+12
| | | | But add a --daemon option to query the IKE daemon for its version.
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-02 18:04:37 +0000