diff options
| author | Rene Mayrhofer <rene@mayrhofer.eu.org> | 2007-04-12 20:41:31 +0000 |
|---|---|---|
| committer | Rene Mayrhofer <rene@mayrhofer.eu.org> | 2007-04-12 20:41:31 +0000 |
| commit | 774a362e87feab25f1be16fbca08269ddc7121a4 (patch) | |
| tree | cf71f4e7466468ac3edc2127125f333224a9acfb /programs/starter/confread.h | |
| parent | c54a140a445bfe7aa66721f68bb0781f26add91c (diff) | |
| download | vyos-strongswan-774a362e87feab25f1be16fbca08269ddc7121a4.tar.gz vyos-strongswan-774a362e87feab25f1be16fbca08269ddc7121a4.zip | |
Major new upstream release, just ran svn-upgrade for now (and wrote some
debian/changelong entries).
Diffstat (limited to 'programs/starter/confread.h')
| -rw-r--r-- | programs/starter/confread.h | 200 |
1 files changed, 0 insertions, 200 deletions
diff --git a/programs/starter/confread.h b/programs/starter/confread.h deleted file mode 100644 index 052f5d527..000000000 --- a/programs/starter/confread.h +++ /dev/null @@ -1,200 +0,0 @@ -/* strongSwan IPsec config file parser - * Copyright (C) 2001-2002 Mathieu Lafon - Arkoon Network Security - * - * This program is free software; you can redistribute it and/or modify it - * under the terms of the GNU General Public License as published by the - * Free Software Foundation; either version 2 of the License, or (at your - * option) any later version. See <http://www.fsf.org/copyleft/gpl.txt>. - * - * This program is distributed in the hope that it will be useful, but - * WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY - * or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License - * for more details. - * - * RCSID $Id: confread.h,v 1.24 2006/10/19 15:01:05 as Exp $ - */ - -#ifndef _IPSEC_CONFREAD_H_ -#define _IPSEC_CONFREAD_H_ - -#ifndef _FREESWAN_H -#include <freeswan.h> -#include "../pluto/constants.h" -#endif - -#include "parser.h" -#include "interfaces.h" - -typedef enum { - STARTUP_NO, - STARTUP_ADD, - STARTUP_ROUTE, - STARTUP_START -} startup_t; - -typedef enum { - STATE_IGNORE, - STATE_TO_ADD, - STATE_ADDED, - STATE_REPLACED, - STATE_INVALID -} starter_state_t; - -typedef struct starter_end starter_end_t; - -struct starter_end { - lset_t seen; - char *id; - char *rsakey; - char *cert; - char *ca; - char *groups; - char *iface; - ip_address addr; - ip_address nexthop; - ip_address srcip; - ip_subnet subnet; - bool has_client; - bool has_client_wildcard; - bool has_port_wildcard; - bool has_srcip; - bool has_natip; - bool modecfg; - certpolicy_t sendcert; - bool firewall; - bool hostaccess; - char *updown; - u_int16_t port; - u_int8_t protocol; -#ifdef VIRTUAL_IP - char *virt; -#endif -}; - -typedef struct also also_t; - -struct also { - char *name; - bool included; - also_t *next; -}; - -typedef struct starter_conn starter_conn_t; - -struct starter_conn { - lset_t seen; - char *name; - also_t *also; - kw_list_t *kw; - u_int visit; - startup_t startup; - starter_state_t state; - - int keyexchange; - lset_t policy; - time_t sa_ike_life_seconds; - time_t sa_ipsec_life_seconds; - time_t sa_rekey_margin; - unsigned long sa_keying_tries; - unsigned long sa_rekey_fuzz; - sa_family_t addr_family; - sa_family_t tunnel_addr_family; - - starter_end_t left, right; - - unsigned long id; - - char *esp; - char *ike; - char *pfsgroup; - - time_t dpd_delay; - time_t dpd_timeout; - dpd_action_t dpd_action; - int dpd_count; - - starter_conn_t *next; -}; - -typedef struct starter_ca starter_ca_t; - -struct starter_ca { - lset_t seen; - char *name; - also_t *also; - kw_list_t *kw; - u_int visit; - startup_t startup; - starter_state_t state; - - char *cacert; - char *ldaphost; - char *ldapbase; - char *crluri; - char *crluri2; - char *ocspuri; - - bool strict; - - starter_ca_t *next; -}; - -typedef struct starter_config starter_config_t; - -struct starter_config { - struct { - lset_t seen; - char **interfaces; - char *dumpdir; - - /* pluto keywords */ - char **plutodebug; - char *prepluto; - char *postpluto; - bool uniqueids; - u_int overridemtu; - u_int crlcheckinterval; - bool cachecrls; - bool strictcrlpolicy; - bool nocrsend; - bool nat_traversal; - u_int keep_alive; - char *virtual_private; - char *pkcs11module; - bool pkcs11keepstate; - bool pkcs11proxy; - - /* KLIPS keywords */ - char **klipsdebug; - bool fragicmp; - char *packetdefault; - bool hidetos; - } setup; - - /* information about the default route */ - defaultroute_t defaultroute; - - /* number of encountered parsing errors */ - u_int err; - - /* do we parse also statements */ - bool parse_also; - - /* ca %default */ - starter_ca_t ca_default; - - /* connections list (without %default) */ - starter_ca_t *ca_first, *ca_last; - - /* conn %default */ - starter_conn_t conn_default; - - /* connections list (without %default) */ - starter_conn_t *conn_first, *conn_last; -}; - -extern starter_config_t *confread_load(const char *file); -extern void confread_free(starter_config_t *cfg); - -#endif /* _IPSEC_CONFREAD_H_ */ - |