Age | Commit message (Expand) | Author |
2017-02-28 | Depending on the addresses, ipsecctl(8) automatically groups sa | Alexander Bluhm |
2017-02-24 | In a scenario where a config reload happens during an IKE_AUTH exchange, | Patrick Wildt |
2017-02-03 | Stop assuming that in_{addr,port}_t are typedefed in <sys/types.h> and | Philip Guenther |
2017-01-20 | Add a warning when the address pool is exhausted | Mike Belopuhov |
2017-01-20 | Constify the data argument for ibuf_new | Mike Belopuhov |
2017-01-20 | Reset various pointers in ikev2_msg_cleanup | Mike Belopuhov |
2017-01-20 | Make sure to free reference to the public key after decoding | Mike Belopuhov |
2017-01-20 | Closed SAs should never be treated as valid | Mike Belopuhov |
2017-01-20 | Check bounds of the flows array when configuring traffic selectors | Mike Belopuhov |
2017-01-20 | Verify the certificate imsg payload size | Mike Belopuhov |
2017-01-20 | Include only found SPIs into the PAYLOAD_DELETE message | Mike Belopuhov |
2017-01-20 | Minor formatting fix | Mike Belopuhov |
2017-01-20 | New RFC7383 define | Mike Belopuhov |
2017-01-17 | Nuke some whitespace that keeps poking me in the eye as I try to | Kenneth R Westerback |
2017-01-09 | Stop accessing verbose and debug variables from log.c directly. | Reyk Floeter |
2017-01-09 | Replace hand-rolled for(;;) traversal of ctl_conns TAILQ with | Kenneth R Westerback |
2017-01-08 | Sync log.c with the latest version from vmd/log.c that preserves errno | Reyk Floeter |
2017-01-05 | Replace symset()'s hand-rolled for(;;) traversal of 'symhead' TAILQ | Kenneth R Westerback |
2017-01-04 | Remove modular exponential groups specified in RFC5114 | Mike Belopuhov |
2017-01-03 | Fix pledge of the ca process by calling the right function on startup. | Reyk Floeter |
2016-11-28 | ikelifetime time spec is the same the one for lifetime | Mike Belopuhov |
2016-10-12 | copy updated log.c from vmd: for correctness, save errno when doing | Reyk Floeter |
2016-09-26 | Pass the flags argument of recvfromto down to the underlying recvmsg | Jeremie Courreges-Anglas |
2016-09-13 | Disable the timer event before attempting to change it | Mike Belopuhov |
2016-09-04 | Forward IMSG_CTL_VERBOSE via the parent; this fixes a crash when doing | Reyk Floeter |
2016-09-04 | Now that we have IP_SENDSRCADDR, add sendtofrom(). | Vincent Gross |
2016-09-03 | Add the missing bits to have NAT on enc(4) support in iked. | Vincent Gross |
2016-08-06 | Unbreak PSK authentication, broken by previous. | Pascal Stumpf |
2016-07-20 | When parsing the configuration. initialize the auth structure | Reyk Floeter |
2016-06-21 | do not allow whitespace in macro names, i.e. "this is" = "a variable". | Sebastian Benoit |
2016-06-02 | Use the last 32-bits of the IPv6 address to dynamically assign | Patrick Wildt |
2016-06-01 | Implement a second address pool specifically for IPv6, so that | Patrick Wildt |
2016-06-01 | ikev2_cp_fixaddr() is called to replace unspecified (e.g. 0.0.0.0) | Patrick Wildt |
2016-03-07 | http -> https for IETF/IANA URLs in comments | mmcc |
2016-01-27 | fyx typo. s,dynanic,dynamic, | Gleydson Soares |
2015-12-10 | comment typo | mmcc |
2015-12-09 | Remove plain DES encryption from IPsec. | Christian Weisgerber |
2015-12-07 | Add imsg "peerid" to debug messages (only within -DDEBUG). | Reyk Floeter |
2015-12-07 | Sync proc.c, use shorter proc_compose[v]() | Reyk Floeter |
2015-12-07 | sync with vmd | Reyk Floeter |
2015-12-05 | EAGAIN handling for imsg_read. OK henning@ benno@ | Claudio Jeker |
2015-12-02 | remove unimplemented PF_KEY algorithms; ok sthen@ mpi@ mikeb@ | Christian Weisgerber |
2015-11-23 | Replace socket_set_blockmode() and fcntl(fd, F_SETFL, O_NONBLOCK) calls | Reyk Floeter |
2015-11-22 | Update log.c: change fatal() and fatalx() into variadic functions, | Reyk Floeter |
2015-11-21 | Once again, fix the license text. After many years, we just cannot | Reyk Floeter |
2015-11-21 | Move local logging functions to util.c (which is shared with ikectl), | Reyk Floeter |
2015-11-19 | Simplify all instances of get_string() and get_data() using malloc() and | mmcc |
2015-11-18 | pledge exposed a simple bug: the unprivileged child tried to print the | Reyk Floeter |
2015-11-04 | Support Chacha20-Poly1305 for Child SAs; ok reyk | Mike Belopuhov |
2015-11-01 | replace "can not" with "cannot"; | Jason McIntyre |