summaryrefslogtreecommitdiff
path: root/sbin/iked/iked.h
AgeCommit message (Expand)Author
2024-03-02Trigger retransmission only for fragment 1/x, otherwise each receivedTobias Heider
2024-02-15Introduce new IMSG_CTL_PROCREADY which is used to signal that all pipesTobias Heider
2024-02-15Delay enabling sockets until ikev2 process is ready.Tobias Heider
2024-02-15Remove unused control_socks queue.Tobias Heider
2024-01-24Use per connection peerid for control repliesTobias Heider
2024-01-15Include cert_partial_chain in iked_static instead of sending a separateTobias Heider
2023-08-11Add iked support for route based sec(4) tunnels.Tobias Heider
2023-07-28Implement print_hexbuf() to hexdump the contents of an ibuf.Claudio Jeker
2023-07-18Kill ibuf_cat() since there is now ibuf_add_buf() in the official API.Claudio Jeker
2023-07-16Merge ibuf_get() with ibuf_getdata() and rename it to ibuf_getdata().Claudio Jeker
2023-06-28Add support to verify X509 chain from CERT payloads.Tobias Heider
2023-06-25remove ca_sslinit()Omar Polo
2023-06-19Improve the ibuf API by adding these functions:Claudio Jeker
2023-06-16Now that print_host() is unused, rename it to print_addr() and simplify.Theo Buehler
2023-06-13iked: introduce and use print_addr()Theo Buehler
2023-06-12Use stdio open_memstream(3) to build up log strings instead of trying toClaudio Jeker
2023-05-30Replace the one use of ibuf_prepend() using a similar ibuf_new() + ibuf_cat()Claudio Jeker
2023-05-23Replace ibuf_advance() with ibuf_reserve().Claudio Jeker
2023-05-23Replace ibuf_release() with ibuf_free() since the former just calls the latterClaudio Jeker
2023-05-23There is no need to ibuf_zero() or memset() any buffers.Claudio Jeker
2023-03-05Fix clean process shutdown by storing env globally like vmd and httpd doTobias Heider
2023-03-04Sync proc.c from vmd(8) to enabled fork + exec for all processes. This givesTobias Heider
2022-12-03Consistently use uintXX_t from <stdint.h> instead of u_intXX_t.Tobias Heider
2022-09-19Add iked connection statistics for successful and failed connections, commonTobias Heider
2022-07-22Include an OpenIKED Vendor ID payload in the initial handshake. This willTobias Heider
2022-07-08Support sending certificate chains with intermediate CAs in multiple CERTTobias Heider
2022-03-14Improve retransmission of message fragments. RFC 7383 states that loss ofTobias Heider
2021-12-09Properly enable NAT-T without udpencap if mobike was negotiated without NAT.Tobias Heider
2021-12-09Move switch to NAT-T port and udpencap activation to ikev2_enable_natt().Tobias Heider
2021-12-01whitespace cleanup during review readTheo de Raadt
2021-11-29sys/param.h was included for MAX(), MIN() and roundup(). make localTheo de Raadt
2021-11-27Rename msg_id to msg_peerid now that we also have msg_localid.Tobias Heider
2021-11-26A peer sends both his local id and remote id he expects us to be. So far wePatrick Wildt
2021-11-24Unregister event on pfkey socket during pfkey_reply(). Using eventsTobias Heider
2021-11-24Pass env to pfkey API. Consistently call pfkey file descriptor fd.Tobias Heider
2021-10-26Make proto config option accept a list to allow specifying multipleTobias Heider
2021-10-12Change responder to prefer DH group from KE payload.Tobias Heider
2021-09-01Add client side support for DNS configuration. Use RTM_PROPOSAL_STATICTobias Heider
2021-06-23Factor out vroute_addr().tobhe
2021-05-13Refactor iked process shutdown and cleanup. Remember configuredtobhe
2021-04-20Move TAILQ initialization to files where they are used.dv
2021-03-05Print PFS group for rekeyed Child SAs.tobhe
2021-03-05Move policy printing code from parse.y to new print.ctobhe
2021-02-25Constify cipher API.tobhe
2021-02-22Don't pass 'id' as argument to make function signature match similartobhe
2021-02-13Add dynamic address configuration for roadwarrior clients.tobhe
2021-02-04Rename 'struct group' to 'struct dh_group' for more clarity andtobhe
2021-02-01Take flows into consideration for policy lookup as initiator.tobhe
2021-01-28Extern privsep_process. Fixes compilation with -fno-common.mortimer
2021-01-26Add support for RSA-PSS PKCS1 signatures. Don't enable them bytobhe
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-23 13:35:39 +0000