151 lines
3.2 KiB
C
151 lines
3.2 KiB
C
/**
|
|
* @file stroke.h
|
|
*
|
|
* @brief Definition of stroke_msg_t.
|
|
*
|
|
*/
|
|
|
|
/*
|
|
* Copyright (C) 2006 Martin Willi
|
|
* Hochschule fuer Technik Rapperswil
|
|
*
|
|
* This program is free software; you can redistribute it and/or modify it
|
|
* under the terms of the GNU General Public License as published by the
|
|
* Free Software Foundation; either version 2 of the License, or (at your
|
|
* option) any later version. See <http://www.fsf.org/copyleft/gpl.txt>.
|
|
*
|
|
* This program is distributed in the hope that it will be useful, but
|
|
* WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
|
|
* or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
|
|
* for more details.
|
|
*/
|
|
|
|
#ifndef STROKE_H_
|
|
#define STROKE_H_
|
|
|
|
/**
|
|
* Socket which is used to communicate between charon and stroke
|
|
*/
|
|
#define STROKE_SOCKET "/var/run/charon.ctl"
|
|
|
|
#define STROKE_BUF_LEN 2048
|
|
|
|
/**
|
|
* Definition of the LIST flags
|
|
*/
|
|
#define LIST_NONE 0x0000 /* don't list anything */
|
|
#define LIST_CERTS 0x0001 /* list all host/user certs */
|
|
#define LIST_CACERTS 0x0002 /* list all ca certs */
|
|
#define LIST_CRLS 0x0004 /* list all crls */
|
|
#define LIST_ALL 0x0007 /* all list options */
|
|
|
|
/**
|
|
* Definition of the REREAD flags
|
|
*/
|
|
#define REREAD_NONE 0x0000 /* don't reread anything */
|
|
#define REREAD_CACERTS 0x0001 /* reread all ca certs */
|
|
#define REREAD_CRLS 0x0002 /* reread all crls */
|
|
#define REREAD_ALL 0x0003 /* all reread options */
|
|
|
|
typedef struct stroke_end_t stroke_end_t;
|
|
|
|
struct stroke_end_t {
|
|
char *id;
|
|
char *cert;
|
|
char *ca;
|
|
char *address;
|
|
char *subnet;
|
|
int subnet_mask;
|
|
certpolicy_t sendcert;
|
|
};
|
|
|
|
typedef struct stroke_msg_t stroke_msg_t;
|
|
|
|
/**
|
|
* @brief A stroke message sent over the unix socket.
|
|
*/
|
|
struct stroke_msg_t {
|
|
/* length of this message with all strings */
|
|
u_int length;
|
|
|
|
/* type of the message */
|
|
enum {
|
|
/* initiate a connection */
|
|
STR_INITIATE,
|
|
/* install SPD entries for a connection */
|
|
STR_INSTALL,
|
|
/* add a connection */
|
|
STR_ADD_CONN,
|
|
/* delete a connection */
|
|
STR_DEL_CONN,
|
|
/* terminate connection */
|
|
STR_TERMINATE,
|
|
/* show connection status */
|
|
STR_STATUS,
|
|
/* show verbose connection status */
|
|
STR_STATUS_ALL,
|
|
/* set a log type to log/not log */
|
|
STR_LOGTYPE,
|
|
/* set the verbosity of a logging context */
|
|
STR_LOGLEVEL,
|
|
/* list various objects */
|
|
STR_LIST,
|
|
/* reread various objects */
|
|
STR_REREAD
|
|
/* more to come */
|
|
} type;
|
|
|
|
union {
|
|
/* data for STR_INITIATE, STR_INSTALL, STR_UP, STR_DOWN, ... */
|
|
struct {
|
|
char *name;
|
|
} initiate, install, terminate, status, del_conn;
|
|
|
|
/* data for STR_ADD_CONN */
|
|
struct {
|
|
char *name;
|
|
bool ikev2;
|
|
struct {
|
|
char *ike;
|
|
char *esp;
|
|
} algorithms;
|
|
struct {
|
|
time_t ipsec_lifetime;
|
|
time_t ike_lifetime;
|
|
time_t margin;
|
|
unsigned long tries;
|
|
unsigned long fuzz;
|
|
} rekey;
|
|
stroke_end_t me, other;
|
|
} add_conn;
|
|
|
|
/* data for STR_LOGTYPE */
|
|
struct {
|
|
char *context;
|
|
char *type;
|
|
int enable;
|
|
} logtype;
|
|
|
|
/* data for STR_LOGLEVEL */
|
|
struct {
|
|
char *context;
|
|
int level;
|
|
} loglevel;
|
|
|
|
/* data for STR_LIST */
|
|
struct {
|
|
u_int flags;
|
|
bool utc;
|
|
} list;
|
|
|
|
/* data for STR_REREAD */
|
|
struct {
|
|
u_int flags;
|
|
} reread;
|
|
|
|
};
|
|
char buffer[STROKE_BUF_LEN];
|
|
};
|
|
|
|
#endif /* STROKE_H_ */
|