conf: Document libimcv options
authorTobias Brunner <tobias@strongswan.org>
Fri, 7 Feb 2014 13:20:53 +0000 (14:20 +0100)
committerTobias Brunner <tobias@strongswan.org>
Wed, 12 Feb 2014 13:34:34 +0000 (14:34 +0100)
conf/Makefile.am
conf/options/imcv.opt [new file with mode: 0644]
conf/options/pacman.opt [new file with mode: 0644]
conf/plugins/imc-os.opt [new file with mode: 0644]
conf/plugins/imc-scanner.opt [new file with mode: 0644]
conf/plugins/imc-test.opt [new file with mode: 0644]
conf/plugins/imv-os.opt [new file with mode: 0644]
conf/plugins/imv-scanner.opt [new file with mode: 0644]
conf/plugins/imv-test.opt [new file with mode: 0644]

index bb86aae..5c1932e 100644 (file)
@@ -10,6 +10,8 @@ pluginstemplatedir = $(templatesdir)/plugins
 options = \
        options/charon.opt \
        options/charon-logging.opt \
+       options/imcv.opt \
+       options/pacman.opt \
        options/tnc.opt
 
 plugins = \
@@ -35,6 +37,12 @@ plugins = \
        plugins/error-notify.opt \
        plugins/gcrypt.opt \
        plugins/ha.opt \
+       plugins/imc-os.opt \
+       plugins/imc-scanner.opt \
+       plugins/imc-test.opt \
+       plugins/imv-os.opt \
+       plugins/imv-scanner.opt \
+       plugins/imv-test.opt \
        plugins/ipseckey.opt \
        plugins/led.opt \
        plugins/kernel-klips.opt \
diff --git a/conf/options/imcv.opt b/conf/options/imcv.opt
new file mode 100644 (file)
index 0000000..aa512f4
--- /dev/null
@@ -0,0 +1,27 @@
+charon.imcv {}
+       Defaults for options in this section can be configured in the _libimcv_
+       section.
+
+charon.imcv.assessment_result = yes
+       Whether IMVs send a standard IETF Assessment Result attribute.
+
+charon.imcv.database =
+       Global IMV policy database URI.
+
+charon.imcv.os_info.name =
+       Manually set the name of the client OS (e.g. Ubuntu).
+
+charon.imcv.os_info.version =
+       Manually set the version of the client OS (e.g. 12.04 i686).
+
+charon.imcv.policy_script = ipsec _imv_policy
+       Script called for each TNC connection to generate IMV policies.
+
+libimcv.debug_level = 1
+       Debug level for a stand-alone _libimcv_ library.
+
+libimcv.load = random nonce gmp pubkey x509
+       Plugins to load in IMC/IMVs with stand-alone _libimcv_ library.
+
+libimcv.stderr_quiet = no
+       Disable output to stderr with a stand-alone _libimcv_ library.
diff --git a/conf/options/pacman.opt b/conf/options/pacman.opt
new file mode 100644 (file)
index 0000000..76eddf9
--- /dev/null
@@ -0,0 +1,5 @@
+pacman.database =
+       Database URI for the database that stores the package information.
+
+pacman.load =
+       Plugins to load in package manager.
diff --git a/conf/plugins/imc-os.opt b/conf/plugins/imc-os.opt
new file mode 100644 (file)
index 0000000..2a6333f
--- /dev/null
@@ -0,0 +1,2 @@
+charon.plugins.imc-os.push_info = yes
+       Send operating system info without being prompted.
diff --git a/conf/plugins/imc-scanner.opt b/conf/plugins/imc-scanner.opt
new file mode 100644 (file)
index 0000000..84e6dfa
--- /dev/null
@@ -0,0 +1,2 @@
+charon.plugins.imc-scanner.push_info = yes
+       Send open listening ports without being prompted.
diff --git a/conf/plugins/imc-test.opt b/conf/plugins/imc-test.opt
new file mode 100644 (file)
index 0000000..c3169b5
--- /dev/null
@@ -0,0 +1,14 @@
+charon.plugins.imc-test.additional_ids = 0
+       Number of additional IMC IDs.
+
+charon.plugins.imc-test.command = none
+       Command to be sent to the Test IMV.
+
+charon.plugins.imc-test.dummy_size = 0
+       Size of dummy attribute to be sent to the Test IMV (0 = disabled).
+
+charon.plugins.imc-test.retry = no
+       Do a handshake retry.
+
+charon.plugins.imc-test.retry_command =
+       Command to be sent to the Test IMV in the handshake retry.
diff --git a/conf/plugins/imv-os.opt b/conf/plugins/imv-os.opt
new file mode 100644 (file)
index 0000000..eab9262
--- /dev/null
@@ -0,0 +1,2 @@
+charon.plugins.imv-os.remediation_uri =
+       URI pointing to operating system remediation instructions.
diff --git a/conf/plugins/imv-scanner.opt b/conf/plugins/imv-scanner.opt
new file mode 100644 (file)
index 0000000..7af8749
--- /dev/null
@@ -0,0 +1,2 @@
+charon.plugins.imv-scanner.remediation_uri =
+       URI pointing to scanner remediation instructions.
diff --git a/conf/plugins/imv-test.opt b/conf/plugins/imv-test.opt
new file mode 100644 (file)
index 0000000..2cbddc8
--- /dev/null
@@ -0,0 +1,2 @@
+charon.plugins.imv-test.rounds = 0
+       Number of IMC-IMV retry rounds.