index
:
src
cvs/HEAD
kms/intel
kms/radeon
master
OpenBSD base system
summary
refs
log
tree
commit
diff
log msg
author
committer
range
path:
root
/
sbin
/
iked
/
parse.y
Age
Commit message (
Expand
)
Author
2023-04-19
remove duplicate includes
Jonathan Gray
2022-07-22
Include an OpenIKED Vendor ID payload in the initial handshake. This will
Tobias Heider
2022-04-11
Fix leak of esnxf if esn ore noesn are configured explicitly.
Tobias Heider
2021-12-23
fix off by one in bounds test
Jonathan Gray
2021-12-01
whitespace cleanup during review read
Theo de Raadt
2021-11-20
Fix some strdup() leaks in ocsp config option.
Tobias Heider
2021-11-16
Zero all copies of pre-shared key.
Tobias Heider
2021-10-26
Make proto config option accept a list to allow specifying multiple
Tobias Heider
2021-10-15
Don't declare variables as "unsigned char *" that are passed to
Christian Weisgerber
2021-10-12
Make sure all copies of MSCHAPv2 passphrase are zeroed after use.
Tobias Heider
2021-09-18
upon length check or other failure, explicit_bzero an object, because it may
Theo de Raadt
2021-05-28
Add experimental post-quantum hybrid key exchange method
tobhe
2021-03-16
Add 'grp31' alias for curve25519 as documented in iked.conf(5).
tobhe
2021-03-05
Move policy printing code from parse.y to new print.c
tobhe
2021-02-13
Add dynamic address configuration for roadwarrior clients.
tobhe
2021-02-09
Add optional 'group none' transform for child SAs and fix handling of
tobhe
2021-02-07
Fix address leaks in expand_flows().
tobhe
2021-02-01
Whitespace
tobhe
2020-12-29
getifaddrs() can return entries where ifa_addr is NULL. Check for this
Sebastian Benoit
2020-12-27
Fix "any" and "dynamic" keywords for flows and add proper IPv6 support.
tobhe
2020-12-20
Don't leak ipsec_hosts when building hosts_list.
tobhe
2020-12-15
Fix leak of REQUEST string.
tobhe
2020-12-13
Make sure flow src and dst addresses have the same address family.
tobhe
2020-12-10
Print valid ikesa/childsa configuration at startup. Comma seperated
tobhe
2020-11-29
Add 'set stickyaddress' option. If this option is enabled, iked will try
tobhe
2020-11-03
Add 'any' keyword for request to allow 'request address any'.
tobhe
2020-11-01
Add 'dynamic' keyword to configure flows to dynamically assigned addresses.
tobhe
2020-10-29
Add initial support to request IP addresses as IKEv2 initiator.
tobhe
2020-09-23
Add new 'set cert_partial_chain' config option to allow verification of
tobhe
2020-09-19
Add SHA2_384 and SHA2_512 to default proposals.
tobhe
2020-09-18
Fix memory leak in 'n->name'.
tobhe
2020-09-16
Fix EAP authentication if the initiator sends no certificate
tobhe
2020-09-05
Initialize flow_dir and flow_saproto so policy_test() can find the policy
tobhe
2020-08-25
Fix undefined symbol.
tobhe
2020-08-25
Add dpd_check_interval configuration option. If for any IKE SA no IPsec
tobhe
2020-08-23
Add a new configuration option to limit the number of connections for
tobhe
2020-08-18
Add optional time-stamp validaten for ocsp. The new optional 'tolerate'
tobhe
2020-08-14
Delete unused variable 'idtype'.
tobhe
2020-07-20
Fix dst/src port configuration bug with multiple flows.
tobhe
2020-07-20
iked: fix typo in fatalx
Stuart Henderson
2020-06-25
Rework 'ikeauth' configuration option. The key and cert checks in the config
tobhe
2020-06-05
Add default proposals for AES-GCM ciphers in IKE and ESP.
tobhe
2020-05-26
Add AES-GCM mode ciphers (IANA IDs 19 and 20) for IKEv2.
tobhe
2020-04-30
Add ECDH groups and higher order MODP DH groups to default proposal.
tobhe
2020-04-29
Remove trailing tab
tobhe
2020-04-29
Missing whitespace.
tobhe
2020-04-28
Remove support for insecure EC2N groups. Clarify which Diffie-Hellman
tobhe
2020-04-26
Only print valid rdomains. '-1' is used as default value and should
tobhe
2020-04-23
Add support for switching rdomain on IPsec encryption/decryption.
tobhe
2020-04-14
Print 'ipcomp' in print_policy() if configured.
tobhe
[next]