From fc46ecd8c9cde2cf24c1d3bdec3556ea1cc83ad9 Mon Sep 17 00:00:00 2001
From: RMT <d.rong@outlook.com>
Date: Sun, 1 Dec 2024 18:40:49 +0800
Subject: [PATCH] nixos/strongswan: update start_action option

---
 .../services/networking/strongswan-swanctl/swanctl-params.nix | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/nixos/modules/services/networking/strongswan-swanctl/swanctl-params.nix b/nixos/modules/services/networking/strongswan-swanctl/swanctl-params.nix
index 1ad5fdbcef02..e74b3cae7c78 100644
--- a/nixos/modules/services/networking/strongswan-swanctl/swanctl-params.nix
+++ b/nixos/modules/services/networking/strongswan-swanctl/swanctl-params.nix
@@ -1035,7 +1035,7 @@ in {
         all kernel interfaces.
       '';
 
-      start_action = mkEnumParam ["none" "trap" "start"] "none" ''
+      start_action = mkEnumParam ["none" "trap" "start" "trap|start" ] "none" ''
         Action to perform after loading the configuration.
 
         - The default of `none` loads the connection only, which
@@ -1043,6 +1043,8 @@ in {
         - The value `trap` installs a trap policy, which triggers
           the tunnel as soon as matching traffic has been detected.
         - The value `start` initiates the connection actively.
+        - Since version 5.9.6 two modes above can be combined with `trap|start`,
+          to immediately initiate a connection for which trap policies have been installed.
 
         When unloading or replacing a CHILD_SA configuration having a
         {option}`start_action` different from `none`,