aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
...
* settings: Don't overwrite values in-placeTobias Brunner2014-05-154-36/+52
| | | | | | | This is not thread safe. If threads are reading from pointers to existing values they could get a partially updated invalid value. Refactored assignment to a separate function.
* settings: Add functions to add sections and key/value pairs to a sectionTobias Brunner2014-05-154-68/+82
|
* unit-tests: Update settings tests to match new parserTobias Brunner2014-05-151-59/+124
| | | | | Empty settings are now ignored, strings are supported, newlines are handled properly (e.g. at the end of files) etc.
* settings: Don't enumerate key/value pairs with NULL valueTobias Brunner2014-05-151-1/+1
|
* settings: Use generated parser instead of our ownTobias Brunner2014-05-151-566/+53
|
* settings: Optionally keep track of removed/replaced valuesTobias Brunner2014-05-153-16/+45
|
* settings: Add flex/bison based parser for strongswan.confTobias Brunner2014-05-155-1/+501
| | | | | | | | | | | This parser features several improvements over the existing one. For instance, quoted strings (with escape sequences), unlimited includes, relaxed newline handling (e.g. at the end of files or before/after { and }), and the difference between empty and unset values (key = vs. key = ""). It also complains a lot more about invalid syntax. The current one accepts pretty odd stuff (like settings or sections without name) without any errors or warnings.
* settings: Extract section and key/value pair types and helper functionsTobias Brunner2014-05-154-6/+294
| | | | This allows us to use them in the upcoming parser.
* parser-helper: Add utility class for flex/bison based parsersTobias Brunner2014-05-154-3/+408
|
* settings: Use glob enumerator to load included filesTobias Brunner2014-05-151-32/+13
|
* enumerator: Add enumerator to enumerate files matching a patternTobias Brunner2014-05-152-3/+140
| | | | | | | | | | | | This enumerator is a wrapper around glob(3). If that function is not supported NULL is returned. If no files match or an error occurs during the pattern expansion an error is logged and the enumerator simply returns no items. RFC: if GLOB_ERR is not supplied glob returns GLOB_NOMATCH if e.g. the base directory of the pattern does not exist, which would otherwise result in an error. This way there is at least a clear error message in case of a typo.
* settings: Move to a separate folderTobias Brunner2014-05-156-13/+15
|
* array: Allocate initial data properly if esize is 0Tobias Brunner2014-05-151-1/+1
|
* swanctl: Increase default debug level to 1Martin Willi2014-05-141-1/+1
| | | | | We initially intended to silence debugging only during thread initialization, not for swanctl in general.
* vici: Support the close_action keyword, as we have it documentedMartin Willi2014-05-141-1/+6
|
* ikev1: Fix debugging log when remote traffic selector selection failsMartin Willi2014-05-141-1/+1
|
* result destructor at the wrong levelAndreas Steffen2014-05-141-1/+1
|
* build-database.sh finds all *.so files in /usr/libAndreas Steffen2014-05-131-46/+5
|
* Defined BIOS and EFI event types and log event infoAndreas Steffen2014-05-131-4/+105
| | | | | On debug level 2 log EV_ACTION and EV_EFI_ACTION strings and on level 3 dump raw event information
* libpts: Updated Android.mkTobias Brunner2014-05-121-0/+2
|
* Implemented PT-EAP protocol (RFC 7171)Andreas Steffen2014-05-128-79/+170
|
* Extended build-database.shAndreas Steffen2014-05-121-2/+25
|
* attest now maintains multiple versions of a file hashAndreas Steffen2014-05-106-95/+86
|
* Changed default value to libimcv.imc-attestation.pcr_info = noAndreas Steffen2014-05-101-1/+1
|
* child-sa: Reclaim old state if SA updating is not supportedMartin Willi2014-05-091-0/+2
| | | | | If the state stays at UPDATING, the fallback using IKEv1 rekeying fails as the task manager refuses to rekey a CHILD_SA in non-INSTALLED state.
* swanctl: By default print local swanctl version with --versionMartin Willi2014-05-071-2/+12
| | | | But add a --daemon option to query the IKE daemon for its version.
* swanctl: Install empty credential folders with appropriate permissionsMartin Willi2014-05-071-0/+8
|
* swanctl: Document most swanctl.conf options in manpageMartin Willi2014-05-072-130/+693
|
* swanctl: Keep swanctl.conf man/template section order as definedMartin Willi2014-05-071-2/+2
|
* swanctl: Add a swanctl command overview manpageMartin Willi2014-05-073-0/+85
|
* swanctl: Generate swanctl.conf(5) man pageTobias Brunner2014-05-074-0/+34
|
* swanctl: Generate man page snippet with config optionsTobias Brunner2014-05-071-3/+7
|
* swanctl: Convert swanctl.conf to an options file and generate configTobias Brunner2014-05-074-126/+198
|
* swanctl: Install swanctl.conf if it does not exist yetTobias Brunner2014-05-071-2/+6
|
* swanctl: Change syntax of secrets to accept identities with special charsMartin Willi2014-05-072-46/+55
| | | | | | | | | | | Having identity strings in the settings key is problematic, as the parser can't handle arbitrary characters in it. Further, the space separation makes it impossible to define identities with spaces. The new format uses key prefixes, similar to those used in local/remote auth sections of connections. The secrets section takes subsections with type prefixes, and each subsection uses "id" prefixes to define an arbitrary number of identities.
* swanctl: List local and remote addresses in list-connsMartin Willi2014-05-071-1/+18
|
* swanctl: Add a list-pools command to summarize pool statusMartin Willi2014-05-073-1/+98
|
* swanctl: Add a load-pools command to (re-)load pool configurations from fileMartin Willi2014-05-073-1/+285
|
* swanctl: Encode connection "pools" as list itemsMartin Willi2014-05-071-0/+1
|
* swanctl: Fix enumeration of registered commands if MAX_COMMANDS is hitMartin Willi2014-05-071-3/+3
|
* swanctl: Implement a --log command to trace debugging logMartin Willi2014-05-073-1/+98
|
* swanctl: Add a swanctl.conf template fileMartin Willi2014-05-072-0/+124
|
* swanctl: Implement a --list-certs command to print or export daemon certificatesMartin Willi2014-05-073-1/+670
|
* swanctl: Be more verbose while loading connections and credentialsMartin Willi2014-05-072-2/+26
|
* swanctl: Add a list-conns command to query loaded connectionsMartin Willi2014-05-072-0/+220
|
* swanctl: Register --version as last commandMartin Willi2014-05-071-1/+1
|
* swanctl: Support groups, certs and cacerts keywordsMartin Willi2014-05-071-0/+70
|
* swanctl: Load shared secrets from the swanctl.conf secrets sectionMartin Willi2014-05-071-1/+96
|
* swanctl: Load different private keys with load-credsMartin Willi2014-05-072-1/+197
|
* swanctl: Add a command to (re-)load credentialsMartin Willi2014-05-073-0/+197
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 18:02:03 +0000