index
:
src
cvs/HEAD
kms/intel
kms/radeon
master
OpenBSD base system
summary
refs
log
tree
commit
diff
log msg
author
committer
range
path:
root
/
sbin
/
iked
/
ikev2.c
Age
Commit message (
Expand
)
Author
2020-06-15
Log errors with log_info and SPI prepended.
tobhe
2020-06-09
Move AUTH_REQUEST SA state change from parser to IKE_AUTH exchange handler.
tobhe
2020-06-03
Pass sockaddr instead of sockaddr_storage to sa_address.
tobhe
2020-06-02
Don't leak authmsg.
tobhe
2020-05-30
Indentation style(9).
tobhe
2020-05-28
Move duplicate SA negotiation code to ikev2_sa_negotiate_common().
tobhe
2020-05-26
Add AES-GCM mode ciphers (IANA IDs 19 and 20) for IKEv2.
tobhe
2020-05-11
Fix policy lookup edge case for simultaneous transport and tunnel mode SAs.
tobhe
2020-05-09
Log error notifications other than NO_PROPOSAL_CHOSEN
tobhe
2020-05-02
Use gettimeofday() instead of CLOCK_MONOTONIC in gettime(). The return value
tobhe
2020-05-01
When initiating IKE SA rekeying, make sure to send a key from a mutual
tobhe
2020-04-26
Fix leak of temporary ID ibufs on IKE SA rekey.
tobhe
2020-04-24
Add some useful log messages for the IKE handshake.
tobhe
2020-04-24
Log INFORMATIONAL messages with LOG_DEBUG. They are rarely useful for
tobhe
2020-04-23
Add support for switching rdomain on IPsec encryption/decryption.
tobhe
2020-04-22
Log authentication verification failure with "info" priority.
tobhe
2020-04-15
Remove redundant 'sa == NULL' check.
tobhe
2020-04-13
Try to send a DELETE message if the SA is reset with 'ikectl reset id'.
tobhe
2020-04-11
If we haven't received any IKE message from our partner for some
tobhe
2020-04-09
Simplify socket creation logic. Normally iked needs two sockets, one
tobhe
2020-04-08
Prevent multiple ibuf leaks. Clean up on proccess shutdown.
tobhe
2020-04-05
Fix size checks in ikev2_getimsgdata().
tobhe
2020-04-04
It makes no sense to fall back to original policy if the relookup with the
tobhe
2020-04-02
Store USE_TRANSPORTMODE in iked_message until the full message was parsed
tobhe
2020-04-01
Properly handle multiple CERTREQ payloads in CA process. Only for the
tobhe
2020-03-31
Log summary of certificates in cert store when iked fails to find a
tobhe
2020-03-30
Log the received cryptographic proposal when the handshake fails because
tobhe
2020-03-30
Log summary of IKE SA for established policy.
tobhe
2020-03-27
Copy EAP ID to new SA when rekeying IKE SA.
tobhe
2020-03-27
Fix use of 'idstr' and 'idstrlen' arguments in print_static_id().
tobhe
2020-03-24
Add ikev2_print_static_id() to print static IDs in log_debug() output.
tobhe
2020-03-24
Always clear sa_simult when initiating a new CREATE_CHILD_SA exchange, not
tobhe
2020-03-24
The certreq payload has no use in PSK authenticated exchanges. Once we are
tobhe
2020-03-22
Add 'ikectl show sa' command to print information about the state of
tobhe
2020-03-20
Unset 'sa->sa_simult' when the exchange fails with CHILD_SA_NOT_FOUND.
tobhe
2020-03-18
Add 'ikectl reset id <ID>' command to reset all SAs from policies with
tobhe
2020-03-16
Correctly calculate IPv6 address leases from small address pools.
tobhe
2020-03-10
Relookup policy based on received cryptographic parameter proposal.
tobhe
2020-03-10
Make sure 'pooladdr' is zero initialized.
tobhe
2020-03-10
Make sure ikev2_next_payload() is only called when there is a previous
tobhe
2020-03-10
Return when SA lookup fails in ikev2_init_recv().
tobhe
2020-03-09
Use TAILQ_FOREACH_SAFE instead of hand rolled loops.
tobhe
2020-03-01
When the proposals are first matched the responder does
tobhe
2020-02-21
Add transport mode for child SAs. This is useful for GRE over IPsec and
tobhe
2020-01-16
Add '-p' command line option which allows to configure
tobhe
2020-01-08
Unify duplicate NOTIFY payload construction code in ikev2_add_notify and
tobhe
2020-01-07
Link ESP-SA and IPcomp-SA using GRPSPIS instead of using a self-built
tobhe
2019-12-28
Refactor child SA cleanup.
tobhe
2019-12-10
We can receive a delete and free an SA that is referenced in sa_nextr.
tobhe
2019-12-03
Correctly represent flows as traffic selectors as described in RFC 7296. This
tobhe
[next]