index
:
src
cvs/HEAD
kms/intel
kms/radeon
master
OpenBSD base system
summary
refs
log
tree
commit
diff
log msg
author
committer
range
path:
root
/
sbin
/
iked
Age
Commit message (
Expand
)
Author
2010-07-01
Add support for the tap extension (ikev2 ... tap "enc1") that will
Reyk Floeter
2010-06-29
add code to lookup the RSA public keys in /etc/iked/pubkeys/ as an
Reyk Floeter
2010-06-29
Add missing frees.
Reyk Floeter
2010-06-27
When a peer requests a certificate from the local gateway, we first
Reyk Floeter
2010-06-27
fix possible double free of the initiator cert
Reyk Floeter
2010-06-27
fix the length check for ASN1_ID Ids.
Reyk Floeter
2010-06-27
Verify that the subjectAltName extension is present and matches the
Reyk Floeter
2010-06-27
Instead of modifying and fiddling with the IKE SA in the payload
Reyk Floeter
2010-06-27
print the required bits as a string
Reyk Floeter
2010-06-27
cycle static buffers in print_bits()
Reyk Floeter
2010-06-26
revert the files that have been accidentally committed with my
Reyk Floeter
2010-06-26
mixing any (AF_UNSPEC) with AF_INET/INET6 is not an address family mismatch
Reyk Floeter
2010-06-26
Include the Id type in the generated SA tag that is passed to the
Reyk Floeter
2010-06-24
unbreak the ikectl log verbose/brief commands.
Reyk Floeter
2010-06-23
rename the ec groups to either ec2n or ecp (eg. ec155 -> ec2n155 or
Reyk Floeter
2010-06-23
further cleanup of the dh code:
Reyk Floeter
2010-06-15
fix keyword sort order
Reyk Floeter
2010-06-15
only compare the SPIi in the SA tree
Reyk Floeter
2010-06-14
check if cert is available and valid
Reyk Floeter
2010-06-14
Initiator mode with certificates; needs more work but works.
Reyk Floeter
2010-06-14
Initial support for initiator mode which allows to run iked as a
Reyk Floeter
2010-06-14
the ikesa prf config option is currently broken
Reyk Floeter
2010-06-14
fix block length for AES
Reyk Floeter
2010-06-14
fix EAP responder mode
Reyk Floeter
2010-06-14
NAT detection again: make it work in initiator and responder mode
Reyk Floeter
2010-06-14
remove policy lookup debug message
Reyk Floeter
2010-06-14
NAT detection with SPIr is always 0
Reyk Floeter
2010-06-14
restructure code a bit to move closer to initiator mode:
Reyk Floeter
2010-06-14
cleanup messages and parsed information correctly
Reyk Floeter
2010-06-14
add define for saproto 0
Reyk Floeter
2010-06-14
More code for initiator mode (not finished yet)
Reyk Floeter
2010-06-11
add some infrastructure to support timers and initiator mode later.
Reyk Floeter
2010-06-11
tweak the code slightly so we can remove -lssl
Jonathan Gray
2010-06-10
don't print keywords as underlined arguments.
Reyk Floeter
2010-06-10
update usage()
Reyk Floeter
2010-06-10
Add the -S flag which does the same as "set passive" but matches the
Reyk Floeter
2010-06-10
move a bzero of the x509 store context higher up so the
Jonathan Gray
2010-06-10
add new commands: the couple/decouple commands will set loading of the
Reyk Floeter
2010-06-10
Add another tree to lookup policy SAs by peer address.
Reyk Floeter
2010-06-10
simplify the pfkey code by adding a pfkey_write() function
Reyk Floeter
2010-06-10
small fix for sockaddr_cmp()
Reyk Floeter
2010-06-10
i don't like splitting source code in too many source files but ikev2.c
Reyk Floeter
2010-06-10
only call RB_REMOVE once when removing an SA.
Reyk Floeter
2010-06-07
switch iked pki files to /etc/iked, discussed with reyk.
Jonathan Gray
2010-06-07
various small tweaks; ok reyk
Jason McIntyre
2010-06-07
various tweaks; ok reyk
Jason McIntyre
2010-06-04
Fix NAT-T detection to enable UDP encapsulation. It was done before,
Reyk Floeter
2010-06-03
manpage tweaks
Reyk Floeter
2010-06-03
Add a new _iked user with uid 101 instead of (ab)using the _isakmpd user.
Reyk Floeter
2010-06-03
remove my BINDIR override, pointed out by deraadt@
Reyk Floeter
[next]