index
:
src
cvs/HEAD
kms/intel
kms/radeon
master
OpenBSD base system
summary
refs
log
tree
commit
diff
log msg
author
committer
range
path:
root
/
sbin
/
iked
Age
Commit message (
Expand
)
Author
2020-12-29
getifaddrs() can return entries where ifa_addr is NULL. Check for this
Sebastian Benoit
2020-12-28
Add back keyword "any" to match any IP address, which actually works
tobhe
2020-12-27
Fix "any" and "dynamic" keywords for flows and add proper IPv6 support.
tobhe
2020-12-22
Log SPI with SPI_SH() wherever possible.
tobhe
2020-12-21
Use policy_test() to reassign existing SAs to updated policies after
tobhe
2020-12-20
Don't leak ipsec_hosts when building hosts_list.
tobhe
2020-12-17
Use strtonum() instead of atoi() to parse port option.
tobhe
2020-12-17
Sort command line options.
tobhe
2020-12-15
Fix leak of REQUEST string.
tobhe
2020-12-13
Make sure flow src and dst addresses have the same address family.
tobhe
2020-12-11
The keyword "any" does not actually work properly for traffic selectors.
tobhe
2020-12-10
Print valid ikesa/childsa configuration at startup. Comma seperated
tobhe
2020-12-06
Add support for RSASSA-PSS signature verification (RFC 7427).
tobhe
2020-12-05
Make len unsigned.
tobhe
2020-12-04
Log pfkey type and message length on write failure.
tobhe
2020-12-03
Fix type mismatch. auth_method should be uint8_t.
tobhe
2020-12-02
The skip steps must be set up for each attribute independently
tobhe
2020-12-01
Don't log ESRCH as warning.
tobhe
2020-11-30
We need to rekey every child SA (even if acquired): Otherwise we can
tobhe
2020-11-29
Add 'set stickyaddress' option. If this option is enabled, iked will try
tobhe
2020-11-28
Add support for multiple address pools. The parser already allows
tobhe
2020-11-27
Remove redundant state change. ikev2_ikesa_delete() sets the correct state.
tobhe
2020-11-26
Use a counter instead of random IV for AES-GCM. Security depends on
tobhe
2020-11-25
Fix proposal error handling. If a proposal contains an unknown transform
tobhe
2020-11-24
Fix duplicate sa->sa_cp assignment.
tobhe
2020-11-23
Ignore duplicate sigsha2 notify, don't fail the exchange.
tobhe
2020-11-22
Fix comment typo.
tobhe
2020-11-21
Clean up NATT hack. Pass 'frompeer' as parameter instead of manipulating
tobhe
2020-11-20
add -s to synopsis and usage; -S before -s in options list;
Jason McIntyre
2020-11-20
Add -s socket option to specify control socket. This can be useful if
tobhe
2020-11-19
More sa cleanup + constify.
tobhe
2020-11-18
Constify sa in ikev2_pld_eap(). The parser code must not change any
tobhe
2020-11-17
Remove redundant indirection via msg_parent. This is only needed in
tobhe
2020-11-16
Reenable ikev2_init_auth() return value check. Make sure sa_stateok()
tobhe
2020-11-16
Backout ikev2_init_auth() return check to fix regression with
tobhe
2020-11-15
Document new 'dynamic' keyword to create flows from or to a dynamically
tobhe
2020-11-14
Make sure not to replace 0.0.0.0 with dynamic address if it is a a network
tobhe
2020-11-13
addr_net is already checked in ikev2_cp_setaddr() before sessing
tobhe
2020-11-12
Close SA if ikev2_init_auth() fails.
tobhe
2020-11-12
Fail if ikev2_init_ike_auth() is entered with invalid state.
tobhe
2020-11-11
Cleanup after proc_init() in proc_close().
tobhe
2020-11-07
Implement 'from dynamic', which installs flows where 'dynamic' is replaced
tobhe
2020-11-06
Set correct netmask on patched addresses for debug printing.
tobhe
2020-11-05
Enable support for ASN1_DN ipsec identifiers.
Peter Hessler
2020-11-04
Add check for static id size.
tobhe
2020-11-03
Add 'any' keyword for request to allow 'request address any'.
tobhe
2020-11-01
Add 'dynamic' keyword to configure flows to dynamically assigned addresses.
tobhe
2020-10-30
Add missing bits to make 'request addr 0.0.0.0' accept ANY dynamic address.
tobhe
2020-10-30
style(9)
tobhe
2020-10-30
Whitespace fixes.
tobhe
[next]