aboutsummaryrefslogtreecommitdiffstats
path: root/src/swanctl
Commit message (Collapse)AuthorAgeFilesLines
...
* Support manually-set IPsec policy prioritiesAndreas Steffen2016-04-091-0/+7
|
* swanctl: Fix documented directory name for remote pubkeysTobias Brunner2016-03-221-1/+1
|
* vici: Order auth rounds by optional `round` parameter instead of by position ↵Tobias Brunner2016-03-081-0/+10
| | | | in the request
* Display IKE ports with swanctl --list-sasAndreas Steffen2016-03-051-4/+9
|
* swanctl: Document signature scheme constraintsTobias Brunner2016-03-041-1/+30
|
* vici: Match subnets and ranges against peer IP in redirect commandTobias Brunner2016-03-041-1/+1
|
* vici: Match identity with wildcards against remote ID in redirect commandTobias Brunner2016-03-041-1/+1
|
* swanctl: Add --redirect commandTobias Brunner2016-03-044-1/+138
|
* swanctl: Fix minor typos in documentationChris Patterson2016-02-291-3/+3
| | | | | | "UPD" should be "UDP". Signed-off-by: Chris Patterson <pattersonc@ainfosec.com>
* swanctl: Load pubkeys with load-credsAndreas Steffen2016-01-091-0/+1
|
* vici: list-cert sends subject, not-before and not-after attributes for pubkeysAndreas Steffen2016-01-091-5/+36
|
* vici: Support of raw public keysAndreas Steffen2016-01-092-11/+35
|
* swanctl.conf: IKEv2 fragmentation supportedAndreas Steffen2016-01-091-8/+9
|
* swanctl: Slightly change usage summary for --list-certsTobias Brunner2015-12-161-4/+3
|
* swanctl: Never print more than MAX_LINES of usage summaryTobias Brunner2015-12-161-1/+10
| | | | Print a warning if a registered command exceeds that limit.
* swanctl --stats lists loaded pluginsAndreas Steffen2015-12-131-0/+12
|
* Refactored certificate management for the vici and stroke interfaces5.4.0dr1Andreas Steffen2015-12-123-59/+61
|
* Removed VICI protocol versioningAndreas Steffen2015-12-111-14/+7
|
* Use of certificate_printer by swanctl --list-certs commandAndreas Steffen2015-12-112-496/+25
|
* Share vici_cert_info.c with vici_cred.cAndreas Steffen2015-12-113-6/+38
|
* Use VICI 2.0 protocol version for certificate queriesAndreas Steffen2015-12-112-80/+124
|
* swanctl: Explicitly link against -lpthread and -ldl if requiredMartin Willi2015-12-041-1/+2
| | | | | We already do this for charon, as some toolchains require an explicit link even if libstrongswan already depends on it.
* swanctl: Add --list-algs command to query loaded algorithmsTobias Brunner2015-11-304-2/+110
|
* swanctl: Add option to query leases with --get-poolsTobias Brunner2015-11-101-3/+29
|
* swanctl: List virtual IPs in --list-sasTobias Brunner2015-11-101-1/+11
|
* swanctl: Correctly build man page in out-of-tree builds from the repositoryTobias Brunner2015-08-271-1/+1
|
* vici: Add option to disable policy installation for CHILD_SAsTobias Brunner2015-08-171-0/+6
|
* Improved legibility of swanctl CRL listings5.3.3dr1Andreas Steffen2015-07-221-1/+4
|
* vici: Certification Authority support added.Andreas Steffen2015-07-219-4/+610
| | | | | | CDP and OCSP URIs for a one or multiple certification authorities can be added via the VICI interface. swanctl allows to read definitions from a new authorities section.
* swanctl: Fix --uri optionMartin Willi2015-05-051-9/+36
| | | | | | | As we now pass the vici connection to the command dispatcher callback, we can't parse the --uri option to create the connection from the same callback. Instead pre-process the common command options in a separate loop, and ignore the same options while processing the actual command.
* swanctl: Implement monitoring of IKE_SA and CHILD_SA changesTimo Teräs2015-05-042-2/+84
| | | | Signed-off-by: Timo Teräs <timo.teras@iki.fi>
* swanctl: Add missing unit in install-time logRomain Francoise2015-05-041-1/+1
|
* swanctl: Append /ESN to proposal for a CHILD_SA using Extended Sequence NumbersMartin Willi2015-03-231-1/+1
| | | | | | | We previously printed just the value for the "esn" keyword, which is "1", and not helpful as such. Fixes #904.
* vici: Return authentication rounds with unique namesMartin Willi2015-03-181-2/+3
| | | | | | To simplify handling of authentication rounds in dictionaries/hashtables on the client side, we assign unique names to each authentication round when listing connection.
* swanctl: Cache entered PKCS#12 decryption secretMartin Willi2015-03-181-6/+23
| | | | | It is usually used more than once, but most likely the same for decryption and MAC verification.
* swanctl: Support loading PKCS#12 containers from a pkcs12 swanctl directoryMartin Willi2015-03-184-0/+128
|
* swanctl: Generalize private key decryption to support other credential typesMartin Willi2015-03-181-55/+97
|
* vici: If a IKE reauth_time is configured, disable the default rekey_timeMartin Willi2015-03-031-1/+3
|
* ipsec-types: Support the %unique mark valueMartin Willi2015-02-201-4/+6
|
* swanctl: List CHILD_SA unique ID as the primary identifier, but print reqid, tooMartin Willi2015-02-201-2/+2
|
* swanctl: Fail loading a connection if loading a cacert constraint failsMartin Willi2014-12-121-10/+37
|
* vici: Add support for address range definitions of poolsTobias Brunner2014-10-301-4/+4
|
* swanctl: Document identity type prefixesMartin Willi2014-10-301-3/+18
|
* swanctl: Fix man page build on FreeBSDTobias Brunner2014-10-141-1/+1
| | | | | BSD make seems to only evaluate $< for certain rules (like the suffix rule used to generate the config template).
* swanctl: Fix exit codes based on errnoMartin Willi2014-10-1013-20/+45
| | | | | As fprintf() most likely sets errno, we should save it before printing the error message.
* Don't fail to install if sysconfdir isn't writableShea Levy2014-09-261-1/+1
|
* swanctl: Complete --load-creds command summaryMartin Willi2014-09-221-1/+1
|
* swanctl: Fix description of load-pools command summaryMartin Willi2014-09-221-1/+1
|
* swanctl: Add a --load-all command, performing --load-{creds,pools,conns}Martin Willi2014-09-2210-97/+329
|
* swanctl: Add a --reload-settings commandMartin Willi2014-09-225-2/+93
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-02 04:37:14 +0000