index
:
src
cvs/HEAD
kms/intel
kms/radeon
master
OpenBSD base system
summary
refs
log
tree
commit
diff
log msg
author
committer
range
path:
root
/
sbin
/
iked
/
ikev2_msg.c
Age
Commit message (
Expand
)
Author
2019-05-11
Add support for IKEv2 Message Fragmentation as defined in RFC 7383.
Patrick Wildt
2019-05-10
Enforce messages after IKE_SA_INIT exchange to contain only
Patrick Wildt
2017-11-27
Implement MOBIKE (RFC 4555) support in iked(8), with us acting as
Patrick Wildt
2017-04-26
cope with IP address changes. before, we were trying to resend the msg
Henning Brauer
2017-03-27
Add support to reflect the responder IKEv2 COOKIE.
Reyk Floeter
2017-03-27
Add support for RFC4754 (ECDSA) and RFC7427 authentication.
Reyk Floeter
2017-03-13
NAT-T improvements
Reyk Floeter
2017-01-20
Reset various pointers in ikev2_msg_cleanup
Mike Belopuhov
2017-01-20
Closed SAs should never be treated as valid
Mike Belopuhov
2016-09-04
Now that we have IP_SENDSRCADDR, add sendtofrom().
Vincent Gross
2015-10-19
Remove the ikev1 stub - Since I started iked, it has an empty privsep
Reyk Floeter
2015-10-15
Remove some unnecessary NULL-checks before free(). Change two bzero()
mmcc
2015-08-21
Switch iked to C99-style fixed-width integer types.
Reyk Floeter
2015-03-26
initial support for RFC 7427 signatures, so we are no longer
Markus Friedl
2015-02-15
convert bcmp to memcmp
Ted Unangst
2015-02-06
unneeded getopt.h
Theo de Raadt
2015-01-19
Remove unnecessary <netinet/ip_ipsp.h> includes
Mike Belopuhov
2015-01-16
Replace <sys/param.h> with <limits.h> and other less dirty headers where
Theo de Raadt
2014-11-07
Repair initiator with PSK auth
Mike Belopuhov
2014-08-25
Delete secret or secret-derived data with explicit_bzero.
Doug Hogan
2014-05-07
print msgid for debugging; ok reyk & mikeb
Markus Friedl
2014-05-06
initiate ike sa rekeying (ikesalifetime keyword), re-queue pfkey
Markus Friedl
2014-05-05
the caller of ikev2_msg_retransmit_response already frees the sa; ok mikeb
Markus Friedl
2014-04-29
make sure the state machine only advances if the AUTH payload has
Markus Friedl
2014-04-22
Update iked to use the same proc.c that relayd uses.
Reyk Floeter
2014-04-10
Add validation routines to ikev2_pld.c: For each payload type overall
Reyk Floeter
2014-02-17
Fix compiler warnings in the format strings: use %zd for ssize_t and
Reyk Floeter
2014-01-24
use a bit saner timer api
Mike Belopuhov
2013-12-03
never cast to sockaddr_storage, always cast to the abstract 'class' sockaddr
Markus Friedl
2013-09-26
After some manipulations with the buffer, ike message header (hdr)
Mike Belopuhov
2013-03-21
remove excessive includes
Theo de Raadt
2013-01-08
Remove private CVS tag from an obsolete repository and bump copyright
Reyk Floeter
2012-12-15
Remove unused variables.
Reyk Floeter
2012-10-22
Fix NAT-T support in iked, both on the initiator and the responder
Reyk Floeter
2012-09-18
update email addresses to match reality.
Reyk Floeter
2012-06-27
leftover code re-enqueued the same item on the list multiple times
Mike Belopuhov
2012-06-27
prevent an endless loop
Mike Belopuhov
2012-06-26
improve ikev2_msg_retransmit_timeout
Mike Belopuhov
2012-06-26
compare exchange types as well when looking up a message;
Mike Belopuhov
2012-06-22
Add initial support for retransmition timeouts and response retries.
Mike Belopuhov
2012-05-30
pass a file descriptor in the msg_fd instead of a function argument
Mike Belopuhov
2012-05-24
don't increment the next expected message id when sending a response back.
Mike Belopuhov
2012-05-07
Sync up several defines with RFC 5996. IANA has changed the existing
Mike Belopuhov
2011-05-09
rename functions in proc.c to proc_* and move some code from imsg_util.c to
Reyk Floeter
2011-01-21
handle empty encrypted payloads (might happen with some informationals)
Reyk Floeter
2011-01-21
Reimplement the iked(8) policy evaluation for incoming connections to
Reyk Floeter
2010-12-22
child sa rekeying revamp plus numerous bugfixes;
Mike Belopuhov
2010-09-30
disable padding correctly. therefore we no longer need to supply
Mike Belopuhov
2010-06-27
Instead of modifying and fiddling with the IKE SA in the payload
Reyk Floeter
2010-06-14
check if cert is available and valid
Reyk Floeter
[next]