Tobias Brunner
ff5cb888f6
Additional prompt keyword added to stroke.
2012-04-17 14:20:58 +02:00
Tobias Brunner
54d096a712
Added ASN debug group to log low-level encoding/decoding (ASN.1, X.509).
...
This will allow us to remove quite some clutter from the LIB debug group
for higher debug levels.
2011-12-16 16:44:38 +01:00
Martin Willi
2d2ffa58f6
Added a listplugins stroke command to show plugin features
2011-10-14 10:05:44 +02:00
Tobias Brunner
2421ac9e98
getpass(3) is not supported on Android.
...
No replacement yet.
2011-10-11 16:30:20 +02:00
Tobias Brunner
f7ce74983d
Removed unneeded include.
...
This is not available on Android and redirects to <fcntl.h> on Ubuntu.
2011-10-11 16:30:20 +02:00
Andreas Steffen
b9d61f78d3
added PTS debug class
2011-09-11 00:11:04 +02:00
Tobias Brunner
d30df6ff3d
stroke: Usage output updated.
2011-05-16 18:47:52 +02:00
Martin Willi
a694b481ee
Added a statusallnb stroke command to show status non-blocking
2011-05-16 15:24:14 +02:00
Martin Willi
dfe9bad981
Added a stroke memusage command to show memory usage
2011-05-16 15:22:21 +02:00
Martin Willi
fc2e43eb27
Fix order of PURGE_* flags to be compatible with STROKE_PURGE_* keywords
2011-03-23 09:28:40 +01:00
Martin Willi
cf5866b9c0
Renamed purgex509/crl to purgecerts/crls to be consistent with list commands
2010-12-10 11:21:55 +01:00
Martin Willi
6aa144ddb7
Added options to flush CRLs/X509 certs from the cert cache
2010-12-10 09:45:22 +01:00
Martin Willi
851d60484e
Added a stroke rekey command to trigger IKE/CHILD_SA rekeying manually
2010-11-03 15:12:05 +01:00
Martin Willi
3d711a68fb
Added a stroke command to export cached x509 certificates to the console
2010-08-10 18:46:30 +02:00
Martin Willi
70789d28a1
Handle PIN: as a magic keyword for prompt, use getpass() to silently read credentials
2010-08-04 09:26:21 +02:00
Tobias Brunner
1c31d34ed5
Initialize libstrongswan in stroke (fixes Vstr logging).
2010-04-29 14:51:44 +02:00
Tobias Brunner
037fb02493
Fixed compiler warning.
2010-03-24 12:03:08 +01:00
Martin Willi
667b73721a
Added left-/rightikeport ipsec.conf options to use custom IKE ports
2010-02-26 11:44:33 +01:00
Martin Willi
7daf5226b7
removed trailing spaces ([[:space:]]+$)
2009-09-04 13:46:09 +02:00
Martin Willi
750bbcf9a8
added support for %prompt-ing private key passhprases in strokes "ipsec secrets"
2009-08-26 11:23:50 +02:00
Martin Willi
832427064c
added a "purgeike" command to stroke, deleting all IKE_SAs without a CHILD_SA
2009-05-15 11:02:56 +02:00
Tobias Brunner
8c5d72cd0b
removing svn keyword $Id$ from all files
2009-04-30 13:19:35 +00:00
Tobias Brunner
d24a74c5b4
merging changes from portability branch back to trunk
...
important change for developers: %Y replaces %D to print identities!
2009-04-30 11:37:54 +00:00
Martin Willi
6b83549d1a
list assigned leases using "ipsec leases"
2008-12-10 13:00:02 +00:00
Andreas Steffen
d1cbe55127
implemented ipsec listalgs as a stroke command
2008-10-08 07:00:13 +00:00
Martin Willi
9482208633
crypto_factory algorithm enumeration API
...
implementation of "ipsec listalgs"
2008-08-28 09:24:42 +00:00
Andreas Steffen
556e426fd8
renamed STROKE_DOWNSRCIP to STROKE_DOWN_SRCIP
2008-07-01 13:47:26 +00:00
Martin Willi
131064995a
added a "ipsec down-srcip <start> [<end>]" command to terminate IKE_SAs by remote virtual ip
2008-07-01 12:48:56 +00:00
Martin Willi
3444390241
supporting multiple comma seperated subnets in left/rightsubnet definition
...
e.g. leftsubnet=10.2.0.0/16,10.4.0.0/16
2008-04-25 12:41:37 +00:00
Martin Willi
cdcfe777f4
implementation of an CFG attribute framework, currently supporting virtual IPs
...
updated ipsec.conf sourceip parameter to support
CIDR notatation to serve from a pool
%poolname to query a separate (database?) pool
2008-04-09 12:54:47 +00:00
Tobias Brunner
dc04b7c743
mediation extension adapted to the naming convention of the current version of the draft. note: the external interface (config, autotools) has not yet been changed
2008-03-26 18:40:19 +00:00
Martin Willi
552cc11b1f
merged the modularization branch (credentials) back to trunk
2008-03-13 14:14:44 +00:00
Andreas Steffen
d41a77e45c
added RCSID
2007-10-08 20:12:25 +00:00
Tobias Brunner
d5cc175833
experimental P2P-NAT-T for IKEv2 merged back from branch
2007-10-03 15:10:41 +00:00
Martin Willi
9dae1bed00
implemented IKEv2 force_encap connection parameter
...
enforces UDP encapsulation by faking NAT detection payloads
to hurdle restrictive firewalls
2007-10-01 12:19:39 +00:00
Martin Willi
9164e49ac0
added mobike=yes|no connection option
...
yes: include mobike support notifies as initiator
no: only enable mobike as responder when initiator supports it
default: yes
2007-08-29 12:11:25 +00:00
Andreas Steffen
0dbc039ab5
added listaacerts,listacerts,rereadsecerts,rereadocspcerts,rereadaacerts,rereadacerts to stroke
2007-08-10 10:19:53 +00:00
Andreas Steffen
a74be4f7eb
set STROKE_REREAD_FIRST to STROKE_REREAD_SECRETS
2007-08-10 08:49:20 +00:00
Andreas Steffen
f9e0dc3e02
added listaacerts, listacerts, listgroups, rereadaacerts, and rereadacerts keywords
2007-04-14 17:33:02 +00:00
Martin Willi
0c8aba6771
added support for 0.0.0.0/0 traffic selectors
...
fixed routing to make correct 0.0.0.0/0 routes
2007-03-01 11:42:08 +00:00
Martin Willi
c60c7694d2
merged tasking branch into trunk
2007-02-28 14:04:36 +00:00
Andreas Steffen
34d7935ed4
added support of ca information records and ocsp keywords
2007-02-14 01:03:08 +00:00
Martin Willi
f27f6296e6
merged EAP framework from branch into trunk
...
includes a lot of other modifications
2007-02-12 15:56:47 +00:00
Martin Willi
7652be891c
added support for transport mode and (experimental!) BEET mode
...
support for the type=transport/tunnel parameter in charon
2006-12-21 14:35:17 +00:00
Martin Willi
6fe03b0af0
implemented reauthentication using the new reauth=yes|no parameter
2006-12-19 07:30:07 +00:00
Martin Willi
4dfb3cb0f5
fixed stddef.h include
2006-12-14 15:58:32 +00:00
Andreas Steffen
923ee10eef
solved 64 bit issue in push/pop stroke interface
2006-10-31 23:17:21 +00:00
Martin Willi
db7ef62494
better split up of library files "types.h" & "definitions.h"
...
centralized all printf specifier character definitions
reuse of arginfo handlers
more cleanups
fixed more AMD64 issues
added DEBUG_LEVEL compile flag to exclude DBGn() statements
2006-10-31 12:27:59 +00:00
Martin Willi
5c4cc9a4e3
added verbosity level to stroke
2006-10-24 08:44:47 +00:00
Martin Willi
0ae1deb887
updated stroke to allow run-time manipulation of debug levels
2006-10-18 11:47:26 +00:00