summaryrefslogtreecommitdiff
path: root/sbin/iked/ikev2.c
AgeCommit message (Expand)Author
2023-08-11Add iked support for route based sec(4) tunnels.Tobias Heider
2023-08-04Convert calls to ibuf_length() where it is clear that the ibuf is notClaudio Jeker
2023-07-28Implement print_hexbuf() to hexdump the contents of an ibuf.Claudio Jeker
2023-07-28Use ibuf_data() instead of accessing the ibuf buf pointer directly.Claudio Jeker
2023-07-18Kill ibuf_cat() since there is now ibuf_add_buf() in the official API.Claudio Jeker
2023-07-16Merge ibuf_get() with ibuf_getdata() and rename it to ibuf_getdata().Claudio Jeker
2023-06-28Add support to verify X509 chain from CERT payloads.Tobias Heider
2023-06-14Replace the last few print_host() calls with print_addr() ones.Claudio Jeker
2023-06-13iked: introduce and use print_addr()Theo Buehler
2023-06-13Fix FILE leak in error path.Claudio Jeker
2023-06-12Use stdio open_memstream(3) to build up log strings instead of trying toClaudio Jeker
2023-05-23Replace ibuf_advance() with ibuf_reserve().Claudio Jeker
2023-05-23Replace ibuf_release() with ibuf_free() since the former just calls the latterClaudio Jeker
2023-03-10Fix possible leak of spibuf and flowbuf in error case.Tobias Heider
2023-03-05Fix clean process shutdown by storing env globally like vmd and httpd doTobias Heider
2023-03-04Sync proc.c from vmd(8) to enabled fork + exec for all processes. This givesTobias Heider
2023-02-08iked: remove another unused variableTheo Buehler
2022-12-06Print size_t with %zu.Tobias Heider
2022-12-03Include endian.h where needed for betohXX functions.Tobias Heider
2022-11-18Revert my last two changes.Moritz Buhl
2022-11-11Make sure csa->csa_bundled is NULL after freeing to prevent aMoritz Buhl
2022-11-07Free objects that were dynamically allocated in libcrypto with OPENSSL_free().Tobias Heider
2022-11-06Fix out-of-order string operations resulting in a wrongly calculatedTobias Heider
2022-10-24Fix DH group lookup when checking if PFS is required. Compare IDTobias Heider
2022-10-10Move enabling the policy refcounting from policy_ref() to config_free_policy().Tobias Heider
2022-09-21Distinguish between retransmit ok and nothing to retransmit. This makesTobias Heider
2022-09-19Add iked connection statistics for successful and failed connections, commonTobias Heider
2022-09-14Compare 'srcnat' when comparing policies. Fixes a bug where policy lookup couldTobias Heider
2022-07-22Include an OpenIKED Vendor ID payload in the initial handshake. This willTobias Heider
2022-07-08Support sending certificate chains with intermediate CAs in multiple CERTTobias Heider
2022-07-04Fix error in the comparison of the Child SA nonces to decide whichTobias Heider
2022-05-28Since 'sa' can be freed inside the loop, RB_FOREACH_SAFE is required.Gerhard Roth
2022-03-14Improve retransmission of message fragments. RFC 7383 states that loss ofTobias Heider
2022-02-13SKEEYSEED -> SKEYSEEDmbuhl
2021-12-09Properly enable NAT-T without udpencap if mobike was negotiated without NAT.Tobias Heider
2021-12-09Move switch to NAT-T port and udpencap activation to ikev2_enable_natt().Tobias Heider
2021-12-06Logging received addresses and DNS configuration only makes sense forTobias Heider
2021-12-04Send out dstid as initiator if configured. This makes it easier forTobias Heider
2021-12-01whitespace cleanup during review readTheo de Raadt
2021-11-30whitespaceTobias Heider
2021-11-29sys/param.h was included for MAX(), MIN() and roundup(). make localTheo de Raadt
2021-11-27Rename msg_id to msg_peerid now that we also have msg_localid.Tobias Heider
2021-11-26Fix ikev2_child_sa_rekey() warnings. The SPI can't be printed without aTobias Heider
2021-11-24Pass env to pfkey API. Consistently call pfkey file descriptor fd.Tobias Heider
2021-11-23Add logging for rekey failures.Tobias Heider
2021-11-22MOBIKE is RFC 4555.Tobias Heider
2021-11-16Zero all copies of pre-shared key.Tobias Heider
2021-11-15styleTobias Heider
2021-11-10Look for INVALID_KE group from IKE_SA_INIT in IKE transforms,Tobias Heider
2021-10-12Change responder to prefer DH group from KE payload.Tobias Heider
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-23 00:29:32 +0000