src - OpenBSD base system

Age	Commit message (Expand)	Author
2020-11-25	Fix proposal error handling. If a proposal contains an unknown transform	tobhe
2020-11-23	Ignore duplicate sigsha2 notify, don't fail the exchange.	tobhe
2020-11-22	Fix comment typo.	tobhe
2020-11-21	Clean up NATT hack. Pass 'frompeer' as parameter instead of manipulating	tobhe
2020-11-19	More sa cleanup + constify.	tobhe
2020-11-18	Constify sa in ikev2_pld_eap(). The parser code must not change any	tobhe
2020-10-29	Add initial support to request IP addresses as IKEv2 initiator.	tobhe
2020-10-24	Don't modify sa in ikev2_pld_cp. Store cp_type in msg until message has	tobhe
2020-10-22	Handle NO_PROPOSAL_CHOSEN for initiator in IKE_SA_INIT exchange.	tobhe
2020-10-22	Add missing break.	tobhe
2020-10-19	Handle NO_PROPOSAL_CHOSEN as IKE_AUTH initiator.	tobhe
2020-10-09	More unused headers.	tobhe
2020-10-09	Remove unused "wait.h" includes.	tobhe
2020-10-03	React to DELETE notifications only in INFORMATIONAL messages	tobhe
2020-10-01	Skip DELETE payload responses only after they are validated.	tobhe
2020-09-30	Don't accept AUTH payloads with invalid auth_method 0.	tobhe
2020-09-30	Don't accept ID payloads with ID type IKEV2_ID_NONE.	tobhe
2020-09-29	Check ibuf_seek() return value.	tobhe
2020-09-21	Fix reassembly of out-of-order fragments. Always take the nextpld field	tobhe
2020-09-16	Move all the EAP logic from a single branch in the message parsing code to	tobhe
2020-08-20	Remove redundant variable.	tobhe
2020-08-19	Restructure traffic selector payload parsing. Add additional size and	tobhe
2020-08-16	Clean up unused parameters.	tobhe
2020-08-11	Prioritize incoming certificate requests by the order of CERTEQ payloads	tobhe
2020-08-10	Reduce log spam.	tobhe
2020-08-10	Remove unused argument.	tobhe
2020-07-21	Handle TEMPORARY_FAILURE notification on IKESA rekeying.	tobhe
2020-06-09	Move AUTH_REQUEST SA state change from parser to IKE_AUTH exchange handler.	tobhe
2020-05-11	Fix policy lookup edge case for simultaneous transport and tunnel mode SAs.	tobhe
2020-04-27	Log with SPI_SA().	tobhe
2020-04-18	SPI_SA(sa, NULL) already prints a colon.	tobhe
2020-04-16	Print SPI value of deleted SA.	tobhe
2020-04-11	DELETE payloads are common. Log with log_info instead of log_warnx.	tobhe
2020-04-08	Prevent multiple ibuf leaks. Clean up on proccess shutdown.	tobhe
2020-04-02	Store USE_TRANSPORTMODE in iked_message until the full message was parsed	tobhe
2020-03-16	Handle allocation failure in reallocarry. Print errors with log_info.	tobhe
2020-03-10	Fix memory leak of 'cr' if allocation of 'cr->data' fails.	tobhe
2020-02-21	Add transport mode for child SAs. This is useful for GRE over IPsec and	tobhe
2019-11-28	Move Notify and Certreq payload handlers after the parser. Modify SA state	tobhe
2019-11-13	Log reason whenever a child SA is freed. This makes it easier to	tobhe
2019-08-24	Fix conflict when IKE SA and Child SA rekeying happen at the same time.	tobhe
2019-08-14	Fix NAT traversal detection bug when "local" option is not explicitly	tobhe
2019-08-12	Prepend SPI to send and recv log messages to see which line belongs to	tobhe
2019-05-11	Add support for IKEv2 Message Fragmentation as defined in RFC 7383.	Patrick Wildt
2018-03-22	The iked(8) fuzzer did not fuzz encrypted payloads. With that changed	Patrick Wildt
2017-12-07	Change the SA payload parser to parse more than the first proposal. This	Patrick Wildt
2017-12-04	Remove duplicate check that never could execute because the exact same	Patrick Wildt
2017-12-04	Consistently log "malformed payload" instead of "payload malformed", and	Patrick Wildt
2017-12-04	Remove check that is now a duplicate due to recent refactoring.	Patrick Wildt
2017-12-04	The payloads are layered like onions, so you can validate one layer and	Patrick Wildt