index
:
src
cvs/HEAD
kms/intel
kms/radeon
master
OpenBSD base system
summary
refs
log
tree
commit
diff
log msg
author
committer
range
path:
root
/
sbin
/
iked
Age
Commit message (
Expand
)
Author
2020-09-19
Add SHA2_384 and SHA2_512 to default proposals.
tobhe
2020-09-18
Fix memory leak in 'n->name'.
tobhe
2020-09-17
Set retransmit timeout for DELETE message on the replaced SA, not on
tobhe
2020-09-17
Do not send DELETE messages for closing SAs.
tobhe
2020-09-17
Merge IKEV2_EXCHANGE_CREATE_CHILD_SA and IKEV2_EXCHANGE_INFORMATIONAL
tobhe
2020-09-16
Move all the EAP logic from a single branch in the message parsing code to
tobhe
2020-09-16
Fix EAP authentication if the initiator sends no certificate
tobhe
2020-09-09
Delete dead code.
tobhe
2020-09-08
Fix auth method negotiation for IKEV2_CERT_X509_CERT. If a cert matching
tobhe
2020-09-06
Drop redundant else for readability.
tobhe
2020-09-05
Use peer from policy, not from the acquire message.
tobhe
2020-09-05
Initialize flow_dir and flow_saproto so policy_test() can find the policy
tobhe
2020-09-04
INFORMATIONAL and CREATE_CHILD_SA exchanges cannot be initiated at the
tobhe
2020-09-03
Log OCSP url on connection failure.
tobhe
2020-09-02
Add 30s timeout for OCSP requests.
tobhe
2020-09-01
Log SPIs to make it easier to map OCSP messages to SAs.
tobhe
2020-09-01
Make OCSP response status logging less verbose.
tobhe
2020-08-31
Do not register a read/write callback on fd -1 (e.g. if connection failed).
tobhe
2020-08-31
Both ocsp_req_ctx and ocsp_req must be freed. Don't free ocsp_id as it
tobhe
2020-08-31
Use SA header (SPIs) to map OCSP connect requests to their respective
tobhe
2020-08-28
Rename ikev2_*_sa() functions to make clear they handle Child SAs.
tobhe
2020-08-27
Make sure to save certificate in the CERTINVALID case to fix
tobhe
2020-08-26
Allow disabling DPD liveness checks by setting dpd_check_interval to 0.
tobhe
2020-08-25
Fix undefined symbol.
tobhe
2020-08-25
Add dpd_check_interval configuration option. If for any IKE SA no IPsec
tobhe
2020-08-24
Reduce the amount of boilerplate code and imsgs for config options by
tobhe
2020-08-23
Add a new configuration option to limit the number of connections for
tobhe
2020-08-23
Rename natt_mode to sc_nattmode for consistency.
tobhe
2020-08-22
Prevent concurrent CREATE_CHILD_SA and INFORMATIONAL exchanges.
tobhe
2020-08-21
Use trusted CA from /etc/iked/ca/ as OCSP issuer to get rid of
tobhe
2020-08-20
Remove redundant variable.
tobhe
2020-08-19
Restructure traffic selector payload parsing. Add additional size and
tobhe
2020-08-18
Add optional time-stamp validaten for ocsp. The new optional 'tolerate'
tobhe
2020-08-17
Fix possible leak of ocsp_id.
tobhe
2020-08-16
Clean up unused parameters.
tobhe
2020-08-15
Remove dead assignments.
tobhe
2020-08-14
Clean up unused variables.
tobhe
2020-08-14
Delete unused variable 'policy'.
tobhe
2020-08-14
Print local 'sa' variable instead of 'msg->msg_sa'.
tobhe
2020-08-14
Delete unused variable 'idtype'.
tobhe
2020-08-14
Delete unused variable 'certid'.
tobhe
2020-08-13
Properly set flow_saproto for aquire.
tobhe
2020-08-12
style(9).
tobhe
2020-08-11
Prioritize incoming certificate requests by the order of CERTEQ payloads
tobhe
2020-08-10
Reduce log spam.
tobhe
2020-08-10
Remove unused argument.
tobhe
2020-08-06
Delete commented out code.
tobhe
2020-07-27
Fix return value check for openssl API used during pubkey validation.
tobhe
2020-07-23
Fix ibuf leak in sa_localauth when SA is freed.
tobhe
2020-07-21
Provide GRE over transport mode example
kn
[next]