Age | Commit message (Expand) | Author |
2015-11-18 | pledge exposed a simple bug: the unprivileged child tried to print the | Reyk Floeter |
2015-11-04 | Support Chacha20-Poly1305 for Child SAs; ok reyk | Mike Belopuhov |
2015-11-01 | replace "can not" with "cannot"; | Jason McIntyre |
2015-10-31 | pasto | Christian Weisgerber |
2015-10-31 | RFC4754 specifies ECDSA-521 (sic), not -512. ok reyk@ | Christian Weisgerber |
2015-10-23 | push LDSTATIC line down so it's not overridden by makefile.inc. ok reyk | Ted Unangst |
2015-10-22 | iked hereby pledges that it will run with restricted system | Reyk Floeter |
2015-10-22 | Stop linking iked -static: It was inherited from isakmpd that is | Reyk Floeter |
2015-10-20 | Fix ocsp by adding a missing TAILQ_INIT(). | Reyk Floeter |
2015-10-19 | break long lines in examples; ok jmc@ | Christian Weisgerber |
2015-10-19 | Fix control_imsg_forward() by changing imsg_compose() to | Reyk Floeter |
2015-10-19 | Remove the ikev1 stub - Since I started iked, it has an empty privsep | Reyk Floeter |
2015-10-15 | Remove some unnecessary NULL-checks before free(). Change two bzero() | mmcc |
2015-10-02 | Curve25519 is now specified in draft-ietf-ipsecme-safecurves-00 (along | Reyk Floeter |
2015-10-02 | RFC7634 specifies ChaCha20-Poly1305 for IKEv2 and IPsec and IANA | Reyk Floeter |
2015-10-02 | Remove MD5 from the default proposals. At least SHA1 seems to be the | Reyk Floeter |
2015-10-02 | If the policy certreqtype is 0, use the global one instead. | Reyk Floeter |
2015-10-01 | Don't reject an "empty" CERTREQ (one with no CA hashes), instead treat it as | Stuart Henderson |
2015-10-01 | Fix interoperability with Apple iOS9: If we don't get a (valid) | Reyk Floeter |
2015-08-26 | use 0xffff not 0xfffff for a 16 bit port constant | Jonathan Gray |
2015-08-21 | Switch iked to C99-style fixed-width integer types. | Reyk Floeter |
2015-08-19 | Add missing OpenBSD CVS tag - no binary change | Reyk Floeter |
2015-08-19 | spacing (no binary change, verified with checksums) | Reyk Floeter |
2015-07-17 | Assign correct destination port value for the destination netmask. | Mike Belopuhov |
2015-07-14 | clarification from trondd; | Jason McIntyre |
2015-07-07 | repair policy-ikesa-linking by replacing the broken RB_TREE w/TAILQ | Markus Friedl |
2015-07-03 | Terminate 'config' keyword array with a NULL element. | Mike Belopuhov |
2015-06-11 | Use "compliant" header guards by avoiding the reserved '_' namespace. | Reyk Floeter |
2015-06-05 | Fix coupling and decoupling operations. | vgross |
2015-06-03 | Do not assume that asprintf() clears the pointer on failure, which | Todd C. Miller |
2015-03-26 | initial support for RFC 7427 signatures, so we are no longer | Markus Friedl |
2015-02-28 | Reduce usage of predefined strings in manpages. | Anthony J. Bentley |
2015-02-15 | convert bcmp to memcmp | Ted Unangst |
2015-02-08 | Use AI_ADDRCONFIG when resolv hosts on startup. | Reyk Floeter |
2015-02-06 | unneeded getopt.h | Theo de Raadt |
2015-01-19 | Remove unnecessary <netinet/ip_ipsp.h> includes | Mike Belopuhov |
2015-01-16 | Replace <sys/param.h> with <limits.h> and other less dirty headers where | Theo de Raadt |
2015-01-15 | tell the truth about DES. | Igor Sobrado |
2015-01-12 | Don't forget about protocol specification when configuring flows. | Mike Belopuhov |
2015-01-02 | PFS stands for Perfect Forward Secrecy. | Igor Sobrado |
2014-12-16 | Replace setpgrp(0, getpid()) with setpgid(0, 0). OK deraadt@ tedu@ | Todd C. Miller |
2014-12-05 | Store return value of i2d_X509_NAME in a signed integer to make | Mike Belopuhov |
2014-12-05 | Specify correct number of iovecs when sending replies to the ikev2 proc | Mike Belopuhov |
2014-12-03 | Init SPI using arc4random_buf, rather than (r << 32) | r | Theo de Raadt |
2014-11-20 | Don't allow embedded nul characters in strings. | Jonathan Gray |
2014-11-20 | remove nt and lanman functions which aren't used. ok reyk yasuoka | Ted Unangst |
2014-11-14 | Add gcc printf format attributes to iked's parse.y and remove unused | Doug Hogan |
2014-11-10 | tweak previous; ok mikeb | Jason McIntyre |
2014-11-10 | copy pubkey section from isakmpd(8); ok reyk | Mike Belopuhov |
2014-11-07 | Fixup a few problems with EAP state transition | Mike Belopuhov |