index
:
src
cvs/HEAD
kms/intel
kms/radeon
master
OpenBSD base system
summary
refs
log
tree
commit
diff
log msg
author
committer
range
path:
root
/
sbin
/
iked
/
parse.y
Age
Commit message (
Expand
)
Author
2021-09-18
upon length check or other failure, explicit_bzero an object, because it may
Theo de Raadt
2021-05-28
Add experimental post-quantum hybrid key exchange method
tobhe
2021-03-16
Add 'grp31' alias for curve25519 as documented in iked.conf(5).
tobhe
2021-03-05
Move policy printing code from parse.y to new print.c
tobhe
2021-02-13
Add dynamic address configuration for roadwarrior clients.
tobhe
2021-02-09
Add optional 'group none' transform for child SAs and fix handling of
tobhe
2021-02-07
Fix address leaks in expand_flows().
tobhe
2021-02-01
Whitespace
tobhe
2020-12-29
getifaddrs() can return entries where ifa_addr is NULL. Check for this
Sebastian Benoit
2020-12-27
Fix "any" and "dynamic" keywords for flows and add proper IPv6 support.
tobhe
2020-12-20
Don't leak ipsec_hosts when building hosts_list.
tobhe
2020-12-15
Fix leak of REQUEST string.
tobhe
2020-12-13
Make sure flow src and dst addresses have the same address family.
tobhe
2020-12-10
Print valid ikesa/childsa configuration at startup. Comma seperated
tobhe
2020-11-29
Add 'set stickyaddress' option. If this option is enabled, iked will try
tobhe
2020-11-03
Add 'any' keyword for request to allow 'request address any'.
tobhe
2020-11-01
Add 'dynamic' keyword to configure flows to dynamically assigned addresses.
tobhe
2020-10-29
Add initial support to request IP addresses as IKEv2 initiator.
tobhe
2020-09-23
Add new 'set cert_partial_chain' config option to allow verification of
tobhe
2020-09-19
Add SHA2_384 and SHA2_512 to default proposals.
tobhe
2020-09-18
Fix memory leak in 'n->name'.
tobhe
2020-09-16
Fix EAP authentication if the initiator sends no certificate
tobhe
2020-09-05
Initialize flow_dir and flow_saproto so policy_test() can find the policy
tobhe
2020-08-25
Fix undefined symbol.
tobhe
2020-08-25
Add dpd_check_interval configuration option. If for any IKE SA no IPsec
tobhe
2020-08-23
Add a new configuration option to limit the number of connections for
tobhe
2020-08-18
Add optional time-stamp validaten for ocsp. The new optional 'tolerate'
tobhe
2020-08-14
Delete unused variable 'idtype'.
tobhe
2020-07-20
Fix dst/src port configuration bug with multiple flows.
tobhe
2020-07-20
iked: fix typo in fatalx
Stuart Henderson
2020-06-25
Rework 'ikeauth' configuration option. The key and cert checks in the config
tobhe
2020-06-05
Add default proposals for AES-GCM ciphers in IKE and ESP.
tobhe
2020-05-26
Add AES-GCM mode ciphers (IANA IDs 19 and 20) for IKEv2.
tobhe
2020-04-30
Add ECDH groups and higher order MODP DH groups to default proposal.
tobhe
2020-04-29
Remove trailing tab
tobhe
2020-04-29
Missing whitespace.
tobhe
2020-04-28
Remove support for insecure EC2N groups. Clarify which Diffie-Hellman
tobhe
2020-04-26
Only print valid rdomains. '-1' is used as default value and should
tobhe
2020-04-23
Add support for switching rdomain on IPsec encryption/decryption.
tobhe
2020-04-14
Print 'ipcomp' in print_policy() if configured.
tobhe
2020-04-12
No need to call lc_idtype(). idstr does not contain a leading type
tobhe
2020-04-10
Only make the type part of the idstring lowercase when looking for certs in
tobhe
2020-03-28
Plug some memory leaks.
tobhe
2020-02-21
Add transport mode for child SAs. This is useful for GRE over IPsec and
tobhe
2019-12-03
Correctly represent flows as traffic selectors as described in RFC 7296. This
tobhe
2019-11-28
Merge host_v{4,6}() into host_ip(), simplify host()
kn
2019-11-28
Introduce copy_sockaddrtoipa() and set_ipmask() bits from pfctl
kn
2019-11-12
Add configuration options to explicitly specify ESN support for child SAs.
tobhe
2019-09-26
Fix leaks by cleaning up after configuration parser.
tobhe
2019-08-26
Fix file descriptor leak in config parser. Inspired by bgpd parse.y.
tobhe
[next]