Commit Graph

67 Commits

Author SHA1 Message Date
Adrian-Ken Rueegsegger 4dc3ef94a1 starter: Make daemon name configurable
A daemon can be specified using the '--daemon' command line parameter. This
tells starter to invoke a daemon other than 'charon'.

Additionally the ipsec script uses the environment variable DAEMON_NAME to tell
the starter which daemon to use.
2013-03-19 15:23:45 +01:00
Adrian-Ken Rueegsegger 113ff13322 starter: Add --attach-gdb option to usage text 2013-01-22 11:03:19 +01:00
Tobias Brunner f05b427265 Moved debug.[ch] to utils folder 2012-10-24 16:00:51 +02:00
Tobias Brunner a5436657e9 Starter ignores non-fatal errors when reloading config 2012-10-18 14:42:11 +02:00
Tobias Brunner 9e730ef9df Starter unroutes removed or changed connections before loading and routing new ones 2012-10-18 14:42:11 +02:00
Tobias Brunner dc80ef0cde starter: Added --nolog option to suppress logging in starter itself
Fixes #224.
2012-09-12 17:15:14 +02:00
Tobias Brunner 4c91845452 starter: Load config again when restarting charon
This got lost in 041e763b.
2012-09-05 16:43:34 +02:00
Tobias Brunner 71b89d6722 Only load kernel plugins in starter when flushing SAD/SPD entries
This avoids keeping the kernel sockets open when they are not actually
needed, which could lead to resource problems (in particular with PF_KEY
where all open sockets receive all messages).

Fixes #217.
2012-08-16 16:14:15 +02:00
Martin Willi e36497700c Print the kind of *Swan during starter startup 2012-06-14 10:25:48 +02:00
Tobias Brunner ee3026a1e2 starter: Remove all ties to pluto/libfreeswan.
Moved some types/constants in the process.
2012-06-11 17:33:32 +02:00
Tobias Brunner 041e763b77 starter: Remove main parts of pluto support (invoke, whack). 2012-06-11 17:33:30 +02:00
Tobias Brunner 95e41fb80a starter: Drop support for %defaultroute. 2012-06-11 17:33:29 +02:00
Tobias Brunner 163b227386 starter: Migrated logging to libstrongswan. 2012-06-11 17:33:29 +02:00
Tobias Brunner 4a10eda1a0 starter: Go back to single threaded mode.
Mixing multiple threads and fork(2) wasn't a very good idea it seems.
At least in some environments this caused strange side-effects.
2012-06-08 14:12:07 +02:00
Tobias Brunner b200fa573b starter: Only handle SIGCHLD asynchronously and the rest in pselect(2). 2012-06-06 14:23:25 +02:00
Tobias Brunner 18a3741042 starter: (De-)Initialize logging when forking. 2012-06-05 09:22:16 +02:00
Tobias Brunner 89c97952bd starter: Changed signal handling now that starter is multi-threaded. 2012-06-04 18:09:56 +02:00
Tobias Brunner d3590016e9 starter: Initialize thread pool so kernel events are consumed. 2012-05-15 08:55:19 +02:00
Martin Willi cf1772f685 Do not ignore configs for IKEv1 in charon anymore 2012-03-20 17:30:43 +01:00
Tobias Brunner adab84533e starter: Use kernel interfaces to flush SAD and SPD.
This now supports platforms where neither 'ip xfrm' nor 'setkey' are
available (like Android).
2011-10-21 14:24:34 +02:00
Tobias Brunner f3a682c1ff starter: Load plugins specific to starter. 2011-10-21 14:24:34 +02:00
Tobias Brunner d19eaf7457 starter: INFO_FILE is not used anymore. 2011-10-21 14:24:34 +02:00
Tobias Brunner 652ddf5ce2 starter: Close open file descriptors after forking.
This avoids problems with Android's adb which leaves several file
descriptors open when executing processes.
2011-10-13 11:19:17 +02:00
Tobias Brunner aa82ae3aa4 starter: Only create self-signed certificate if scepclient is built. 2011-10-12 16:37:21 +02:00
Tobias Brunner 0b706426a5 starter: Check for processes with PIDs stored in pid files. 2011-09-28 13:57:59 +02:00
Martin Willi 513701f41b Fix some warnings triggered by gcc 4.6 -Wunused-but-set-variable 2011-05-19 15:47:40 +02:00
Tobias Brunner 67ec2be665 IKEv2 was only partially the default for connections with auto=route and auto=start.
Connections with auto=route and auto=start that did not have
keyexchange=ikev2 explicitly specified did get added to charon,
but did not get routed or started by charon.
2011-04-27 11:33:06 +02:00
Andreas Steffen 3de510ca43 Warn about manual plugin load directives for pluto/charon with --disable-load-warning compile option 2010-07-15 06:29:26 +02:00
Martin Willi 83b957107f Revert "Warn about manual plugin load directives for pluto/charon"
This reverts commit 5c46726d0d.
2010-07-14 07:17:16 +02:00
Martin Willi 5c46726d0d Warn about manual plugin load directives for pluto/charon 2010-07-13 14:43:45 +02:00
Andreas Steffen 2724ae521e free config before exiting since library_deinit() calls leak detective 2010-05-02 11:00:21 +02:00
Tobias Brunner 26a3d7e78e Initialize libstrongswan in starter (fixes Vstr logging). 2010-04-29 14:33:29 +02:00
Martin Willi 7daf5226b7 removed trailing spaces ([[:space:]]+$) 2009-09-04 13:46:09 +02:00
Martin Willi 6180a55852 use time_monotonic() instead of time() for statistics and time difference calculations 2009-08-31 18:00:28 +02:00
Andreas Steffen 5d8306de68 use SS_RC_FIRST and SS_RC_LAST 2009-08-06 16:42:44 +02:00
Andreas Steffen 3646c8a159 abort pluto or charon if initialization fails 2009-08-06 16:32:52 +02:00
Andreas Steffen eab241fb56 stop strongswan if integrity check of libstrongswan or daemon fails 2009-07-17 20:33:19 +02:00
Andreas Steffen ca366aeea0 enforce strongSwan coding rules 2009-07-17 16:57:07 +02:00
Andreas Steffen ebde1a7ddd consistent display of strongSwan version 2009-06-13 16:03:08 +02:00
Tobias Brunner 8c5d72cd0b removing svn keyword $Id$ from all files 2009-04-30 13:19:35 +00:00
Tobias Brunner d24a74c5b4 merging changes from portability branch back to trunk
important change for developers: %Y replaces %D to print identities!
2009-04-30 11:37:54 +00:00
Andreas Steffen 65607eb370 cosmetics 2009-04-19 19:32:02 +00:00
Andreas Steffen 3d7a244b54 conversion from 8 spaces to 4 spaces per tab 2009-04-19 19:16:09 +00:00
Martin Willi a44bb9345f merged multi-auth branch back into trunk 2009-04-14 10:34:24 +00:00
Martin Willi 479f295049 fixed compiler warnings issued by:
gcc 4.3
	curl.h gcc type-checking
	glibc with enabled FORTIFY_SOURCE checking
2008-11-11 18:37:19 +00:00
Tobias Brunner ea625fabf9 merging kernel_klips plugin back into trunk 2008-11-11 09:22:00 +00:00
Andreas Steffen 1dec30625e check if parsing of ipsec update was successful 2008-07-02 05:51:49 +00:00
Martin Willi 25b12c696b replaced --with-gid/uid by --with-group/user
using named users, groups
fixed capability dropping in pluto
2008-05-08 10:58:04 +00:00
Martin Willi b360e3933d respecting ipsec.conf cachecrls= option 2008-04-17 15:01:57 +00:00
Martin Willi 552cc11b1f merged the modularization branch (credentials) back to trunk 2008-03-13 14:14:44 +00:00