Guus Sliepen
d74b81b61e
Fix node name check for "connect" and "disconnect" commands.
2012-08-30 14:00:34 +02:00
Guus Sliepen
5567c0d410
Quit when "exit" or "quit" commands are used in tincctl's shell.
2012-08-05 17:25:31 +02:00
Guus Sliepen
d18519ae21
Fix segfault when using tincctl's shell without readline.
2012-08-05 17:03:57 +02:00
Guus Sliepen
a57db1dfe0
Fork when using the "start" command in tincctl.
...
This allows the command to be given in its shell without immediatly exiting tincctl.
2012-08-03 14:15:50 +02:00
Guus Sliepen
36c6afede3
Add readline completion for tincctl config and tincctl info.
2012-08-03 13:23:07 +02:00
Guus Sliepen
73348be58e
Have tincctl act as a shell when no command is given.
...
By default it uses readline to read commands. If the input and output are not a
tty, no prompt is shown.
2012-08-02 17:24:42 +02:00
Guus Sliepen
6396f42d74
Stricter checks for netname and node names.
...
- Node names should not be empty.
- Net names should not contain slashes or start with a dot, because they are
used in pathnames.
2012-08-01 16:51:59 +02:00
Guus Sliepen
61006ced88
Add missing configuration variables.
2012-08-01 16:13:23 +02:00
Guus Sliepen
b0f3a76e9b
Add the ability to query configuration variables to tincctl.
2012-08-01 15:53:20 +02:00
Guus Sliepen
a9caa2a6ea
tincctl restart should work even if no tincd is running.
2012-08-01 15:15:37 +02:00
Guus Sliepen
07980b056c
Try sending SIGTERM if we cannot connect to a tincd but we know its PID.
2012-08-01 15:14:48 +02:00
Guus Sliepen
2b97a7d7cf
tincctl init now also creates a template tinc-up script.
2012-07-22 12:52:31 +02:00
Guus Sliepen
e5e96882c3
Windows doesn't like quotes around "edit" when calling it through system().
...
Even though that works fine on the command line.
2012-07-21 16:33:09 +02:00
Guus Sliepen
18237e1f2d
Use backslashes on Windows.
...
Although Windows itself supports the forward slash, some programs may not.
2012-07-21 16:26:55 +02:00
Guus Sliepen
09a8ff649c
Don't try to mkdir(CONFDIR) on Windows when there is a registry key for tinc.
2012-07-21 15:58:16 +02:00
Guus Sliepen
ed8ce60845
Fix crash when no netname is specified.
2012-07-21 15:51:15 +02:00
Guus Sliepen
7303b512b0
Fix some compiler warnings.
2012-07-21 15:50:50 +02:00
Guus Sliepen
33521eabd4
Have tincd and tincctl use the same method of determining netname.
2012-07-21 15:15:04 +02:00
Guus Sliepen
1d322d2eda
Add a newline to a configuration file if it is missing.
2012-07-21 15:02:44 +02:00
Guus Sliepen
dea722c4ac
Add some checks when changing configuration.
2012-07-21 15:02:17 +02:00
Guus Sliepen
4e0fc52197
Fix various compiler warnings.
2012-07-21 13:53:22 +02:00
Guus Sliepen
5eeed38b8e
Make sure tinc compiles on Windows.
2012-07-21 12:51:53 +02:00
Guus Sliepen
68de7b481e
When exporting configuration files, don't copy Name variables.
...
These interfere with tincctl import. Besides, host configuration files should
not contain Name at all.
2012-07-16 18:49:39 +02:00
Guus Sliepen
c52c46f871
Add an easy way to export and import host configuration files.
2012-07-16 16:48:24 +02:00
Guus Sliepen
53735a9d96
"tincctl info" gives more human readable information about nodes or subnets.
2012-07-16 01:05:25 +02:00
Guus Sliepen
e72e6febfe
Fix tincctl dump.
2012-07-15 22:53:03 +02:00
Guus Sliepen
9be8980a2b
Let tincctl ignore tincd options, so they will be passed on.
2012-07-15 21:17:10 +02:00
Guus Sliepen
36dee4c539
Fix tincctl start.
2012-07-15 21:15:35 +02:00
Guus Sliepen
439069bda6
Have tincctl notify a running tincd of configuration file changes.
2012-07-15 20:59:17 +02:00
Guus Sliepen
eb01fd9625
Add an easy way to edit a configuration file.
2012-07-15 20:37:38 +02:00
Guus Sliepen
cedfeccb24
Stricter checks for node names.
2012-07-15 20:22:21 +02:00
Guus Sliepen
03f72c6173
Allow configuration variables to be added/removed using tincctl.
2012-07-15 18:16:35 +02:00
Guus Sliepen
dd102efd24
Put every command in its own function.
2012-07-15 15:46:16 +02:00
Guus Sliepen
a444ec3964
"tincctl init" creates initial directory structure, tinc.conf and keypairs.
2012-07-15 14:49:36 +02:00
Guus Sliepen
8ac096b5bf
Allow log messages to be captured by tincctl.
...
This allows tincctl to receive log messages from a running tincd,
independent of what is logged to syslog or to file. Tincctl can receive
debug messages with an arbitrary level.
2012-02-26 18:37:36 +01:00
Guus Sliepen
344d6b9ac3
Let tincctl use the NETNAME environment variable if no -n option is given.
...
This allows administrators who frequently want to work with one tinc
network to omit the -n option. Since the NETNAME variable is set by
tincd when executing scripts, this makes it slightly easier to use
tincctl from within scripts.
2012-02-26 13:08:34 +01:00
Guus Sliepen
b50d6a7f2a
Fix compiler warnings.
2011-12-26 23:04:40 +01:00
Michael Tokarev
bbc0ba9e87
use execvp() not execve() in tincctl start
...
sometimes argv[0] will have directory-less name (when the
command is started by shell searching in $PATH for example).
For tincctl start we want the same rules to run tincd as for
tincctl itself (having full path is better but if shell does
not provide one we've no other choice). Previous code tried
to run ./tincd in this case, which is obviously wrong.
This is a fix for the previous commit.
Signed-off-by: Michael Tokarev <mjt@tls.msk.ru>
2011-08-07 10:51:21 +02:00
Michael Tokarev
a7556a9d2c
run tincd from the same directory as tincctl and pass all options to it
...
For tincctl start, run tincd from dirname($0) not SBINDIR -
this allows painless alternative directory installation and
running from build directory too.
Also while at it, pass the rest of command line to tincd, not
only options before "start" argument. This way it's possible
to pass options to tincd like this:
tincctl -n net start -- -d 1 -R -U tincuser ...
And also add missing newline at the end of error message there.
Signed-Off-By: Michael Tokarev <mjt@tls.msk.ru>
2011-08-07 10:12:43 +02:00
Michael Tokarev
2696ad2cca
don't mention reload twice in tincctl help
...
Signed-Off-By: Michael Tokarev <mjt@tls.msk.ru>
2011-08-07 10:12:38 +02:00
Guus Sliepen
c259d552fa
Add missing newline.
2011-07-17 20:06:06 +02:00
Guus Sliepen
25091454da
"tincctl stop" now removes the tinc service on Windows.
2011-07-17 19:23:52 +02:00
Guus Sliepen
303dd1e702
Fix compiler warnings.
2011-07-13 22:52:52 +02:00
Guus Sliepen
9708bbfa8e
Add a minor number to the protocol version.
2011-07-05 21:19:48 +02:00
Guus Sliepen
80b81c00b1
Have tincctl generate ECDSA keys.
...
The generate-keys command now generates both an RSA and an ECDSA keypair,
but one can generate-rsa-keys or generate-ecdsa-keys to just generate one type.
2011-07-03 22:25:29 +02:00
Guus Sliepen
ab4d289faf
Make pid files backwards compatible and add address of listening socket.
...
The pid is now written first, so that a version 1.0.x tincd can be used to stop
a running version 1.1 tincd. Getsockname() is used to determine the address of
the first listening socket, so that tincctl can connect to the local tincd even
if AddressFamily = ipv6, or if BindToAddress or BindToInterface is used.
2011-06-25 21:35:27 +02:00
Guus Sliepen
a05fa7f882
Rename controlcookie file to pidfile.
2011-06-25 21:21:36 +02:00
Guus Sliepen
2bda2aa885
Fix some compiler and cppcheck warnings.
2011-06-02 18:22:26 +02:00
Guus Sliepen
af2e0c9a32
Remove unused functions and variables.
2011-06-02 17:57:53 +02:00
Guus Sliepen
b3aeaf0f91
Show hostname and port in error message when connecting to a running tincd.
2011-05-29 22:10:54 +02:00
Guus Sliepen
5bc957074a
Allow tincctl to connect to something besides localhost.
...
This would allow tincctl to connect to a remote tincd, or to a local tincd that
isn't listening on localhost, for example if it is using the BindToInterface or
BindToAddress options.
2011-05-29 14:41:05 +02:00
Sven-Haegar Koch
e6b21e1a51
fgets() returns NULL on error, not < 0
2011-05-28 15:24:39 +02:00
Sven-Haegar Koch
d772289f6d
sparse fixup: warning: symbol '...' was not declared. Should it be static?
2011-05-28 15:24:39 +02:00
Guus Sliepen
453c44e7b2
Add the ability to dump all traffic going through route() over a control connection.
...
One can get the packet stream in pcap format, which can be decoded using
tcpdump, for example:
tincctl -n <netname> pcap | tcpdump -r -
2011-05-22 14:17:30 +02:00
Guus Sliepen
8de8f1d9e2
Fix some compiler warnings.
2011-05-17 10:58:22 +02:00
Guus Sliepen
97355690b9
Add a very primitive "top" command to tincctl.
2011-05-15 13:16:48 +02:00
Guus Sliepen
55ef2f806f
Allow connections to be closed.
...
This only closes existing meta connections, it may not affect node
reachability.
2009-12-16 21:16:56 +01:00
Guus Sliepen
5d78e497f1
Fix compiler warnings.
2009-12-11 22:38:06 +01:00
Guus Sliepen
fec14791e8
Only call ioctlsocket() on Windows.
2009-12-11 22:24:07 +01:00
Guus Sliepen
edebf579f2
Use the TCP socket infrastructure for control sockets.
...
The control socket code was completely different from how meta connections are
handled, resulting in lots of extra code to handle requests. Also, not every
operating system has UNIX sockets, so we have to resort to another type of
sockets or pipes for those anyway. To reduce code duplication and make control
sockets work the same on all platforms, we now just connect to the TCP port
where tincd is already listening on.
To authenticate, the program that wants to control a running tinc daemon must
send the contents of a cookie file. The cookie is a random 256 bits number that
is regenerated every time tincd starts. The cookie file should only be readable
by the same user that can start a tincd.
Instead of the binary-ish protocol previously used, we now use an ASCII
protocol similar to that of the meta connections, but this can still change.
2009-11-07 23:43:25 +01:00
Guus Sliepen
c388527e34
Small fixes to get really working control sockets on Windows.
2009-11-07 16:09:56 +01:00
Guus Sliepen
075264a9e1
Make sure the 1.1 branch compiles in a MinGW environment.
...
UNIX domain sockets, of course, don't exist on Windows. For now, when compiling
tinc in a MinGW environment, try to use a TCP socket bound to localhost as an
alternative.
2009-11-05 23:29:28 +01:00
Guus Sliepen
761517c21c
Update FSF address in files not covered by the merge.
2009-09-29 15:33:58 +02:00
Guus Sliepen
07a560eab6
Drop localisation and checkpoint tracing in files not covered by the merge.
2009-09-29 15:19:55 +02:00
Guus Sliepen
4bdf0e80ee
Replace asprintf()s not covered by the merge to xasprintf().
2009-09-16 20:28:30 +02:00
Guus Sliepen
075e6828a7
Merge branch 'master' into 1.1
...
Conflicts:
have.h
lib/dropin.c
lib/fake-getaddrinfo.c
lib/pidfile.c
src/Makefile.am
src/bsd/device.c
src/conf.c
src/connection.c
src/connection.h
src/graph.c
src/mingw/device.c
src/net.c
src/net_setup.c
src/node.c
src/protocol_key.c
src/protocol_misc.c
src/tincd.c
2009-09-16 19:55:47 +02:00
Guus Sliepen
551cd19406
Move RSA key generation into the wrappers.
2008-12-14 12:47:26 +00:00
Guus Sliepen
636200d1a2
Remove unnecessary parentheses from sizeof, apply sizeof to variables instead of types whereever possible.
2008-12-11 15:56:18 +00:00
Guus Sliepen
a9bdfb424e
Fix compiler warnings.
2008-12-11 15:42:46 +00:00
Guus Sliepen
40bebbb19f
Look in the configured sbin directory for the tincd binary.
2008-12-11 13:59:46 +00:00
Scott Lamb
fe2f1fceb5
Use a control socket directory to restrict access
...
This provides reasonable security even on Solaris. The sysadmin is
responsible for securing the control socket's ancestors from the
grandparent on.
We could add a cryptographic handshake later if desired.
2007-11-08 19:18:44 +00:00
Scott Lamb
b1f8c65a2c
Coding style corrections
2007-11-07 06:45:28 +00:00
Scott Lamb
d82fcc88f3
Reload configuration through control socket
...
I also kept the SIGHUP handler, which many people will expect to see.
The control socket is better, though - it will tell you if there is a
problem.
2007-11-07 02:51:24 +00:00
Scott Lamb
f0a57eab4c
Retry connections through control socket
2007-11-07 02:50:58 +00:00
Scott Lamb
a62a6825a8
Alter debugging levels through control socket
2007-11-07 02:50:27 +00:00
Scott Lamb
1065879c8c
Purge through the control socket
2007-11-07 02:49:57 +00:00
Scott Lamb
6eaefb4dbc
Dump through control socket
...
Note this removes SIGUSR1, SIGUSR2, and the graph dumping config option.
It seems cleaner to do everything through the control socket.
2007-11-07 02:49:25 +00:00
Scott Lamb
50ad3f2a89
Fancier protocol for control socket
...
* pass error status back
* pass message boundaries
2007-11-07 02:48:33 +00:00
Guus Sliepen
8c6131deda
Implement "stop" command, and allow tincctl to retrieve a running tincd's PID.
2007-05-19 15:21:26 +00:00
Guus Sliepen
e9043e17c7
Move key generation to tincctl.
2007-05-19 14:55:35 +00:00
Guus Sliepen
bf8e3ce13d
Remove pidfile in favour of control socket.
2007-05-19 14:13:21 +00:00
Guus Sliepen
01f47c46af
Start of control socket implementation.
2007-05-18 16:52:34 +00:00