index
:
src
cvs/HEAD
kms/intel
kms/radeon
master
OpenBSD base system
summary
refs
log
tree
commit
diff
log msg
author
committer
range
path:
root
/
sbin
/
iked
/
pfkey.c
Age
Commit message (
Expand
)
Author
2023-08-14
Improve error message when if_indextoname() fails.
Tobias Heider
2023-08-11
Add iked support for route based sec(4) tunnels.
Tobias Heider
2023-06-13
iked: introduce and use print_addr()
Theo Buehler
2022-07-22
Fix potential leak of reply in error case.
Tobias Heider
2021-11-25
Remove unused variable fd.
Tobias Heider
2021-11-24
Unregister event on pfkey socket during pfkey_reply(). Using events
Tobias Heider
2021-11-24
Pass env to pfkey API. Consistently call pfkey file descriptor fd.
Tobias Heider
2021-03-02
Increase the size of iov in pfkey_sa() to be large enough for all
Jonathan Gray
2021-01-29
Add proper padding for pfkey messages. Use ROUNDUP() for auth and
tobhe
2021-01-23
Fix typos.
tobhe
2020-12-04
Log pfkey type and message length on write failure.
tobhe
2020-12-01
Don't log ESRCH as warning.
tobhe
2020-11-05
Enable support for ASN1_DN ipsec identifiers.
Peter Hessler
2020-09-09
Delete dead code.
tobhe
2020-08-28
Rename ikev2_*_sa() functions to make clear they handle Child SAs.
tobhe
2020-08-13
Properly set flow_saproto for aquire.
tobhe
2020-07-21
Handle TEMPORARY_FAILURE notification on IKESA rekeying.
tobhe
2020-07-19
Try to deal with no reply from PF_KEY on pfkey_sa_add.
tobhe
2020-06-26
Replace SIMPLEQ concatenation loop with SIMPLEQ_CONCAT
bket
2020-05-13
Remove dead 'iked_flow' member 'flow_type'.
tobhe
2020-04-23
Add support for switching rdomain on IPsec encryption/decryption.
tobhe
2020-01-14
Remove IPsec flow blocking unencrypted IPv6 traffic which was
tobhe
2020-01-07
Link ESP-SA and IPcomp-SA using GRPSPIS instead of using a self-built
tobhe
2019-11-29
Change the default security level for incoming IPsec flows from
tobhe
2018-12-07
Make sure the TAP extension is only added to the vector when needed.
Martin Pieuchot
2017-11-27
Implement MOBIKE (RFC 4555) support in iked(8), with us acting as
Patrick Wildt
2017-04-18
use freezero()
Theo de Raadt
2017-03-27
spacing
Reyk Floeter
2017-03-27
Fix another iked leak of SAs in pfkey_sa(), copy tags correctly.
Reyk Floeter
2017-03-13
NAT-T improvements
Reyk Floeter
2017-03-13
When setting up IPcomp flows for the networks 'A' and 'B' between
Patrick Wildt
2017-02-28
Depending on the addresses, ipsecctl(8) automatically groups sa
Alexander Bluhm
2016-09-03
Add the missing bits to have NAT on enc(4) support in iked.
Vincent Gross
2016-03-07
http -> https for IETF/IANA URLs in comments
mmcc
2015-12-10
comment typo
mmcc
2015-12-09
Remove plain DES encryption from IPsec.
Christian Weisgerber
2015-12-02
remove unimplemented PF_KEY algorithms; ok sthen@ mpi@ mikeb@
Christian Weisgerber
2015-11-04
Support Chacha20-Poly1305 for Child SAs; ok reyk
Mike Belopuhov
2015-10-15
Remove some unnecessary NULL-checks before free(). Change two bzero()
mmcc
2015-08-26
use 0xffff not 0xfffff for a 16 bit port constant
Jonathan Gray
2015-08-21
Switch iked to C99-style fixed-width integer types.
Reyk Floeter
2015-07-17
Assign correct destination port value for the destination netmask.
Mike Belopuhov
2015-06-05
Fix coupling and decoupling operations.
vgross
2015-01-16
Replace <sys/param.h> with <limits.h> and other less dirty headers where
Theo de Raadt
2014-10-29
convert simple cases of select() to poll()
Theo de Raadt
2014-10-18
Simple malloc() to reallocarray() conversion to potentially avoid integer
Doug Hogan
2014-07-09
expire IPcomp SAs too; ok mikeb (some time ago)
Markus Friedl
2014-05-09
get rid of redundant {csa,flow}_{src,dst}id pointers, so we don't need
Markus Friedl
2014-05-09
replace iked_transform pointer with xform id, since target of pointer
Markus Friedl
2014-05-07
try postponed requests first, so we do in-order processing; ok mikeb@
Markus Friedl
[next]