summaryrefslogtreecommitdiff
path: root/sbin/iked
AgeCommit message (Expand)Author
2020-08-18Add optional time-stamp validaten for ocsp. The new optional 'tolerate'tobhe
2020-08-17Fix possible leak of ocsp_id.tobhe
2020-08-16Clean up unused parameters.tobhe
2020-08-15Remove dead assignments.tobhe
2020-08-14Clean up unused variables.tobhe
2020-08-14Delete unused variable 'policy'.tobhe
2020-08-14Print local 'sa' variable instead of 'msg->msg_sa'.tobhe
2020-08-14Delete unused variable 'idtype'.tobhe
2020-08-14Delete unused variable 'certid'.tobhe
2020-08-13Properly set flow_saproto for aquire.tobhe
2020-08-12style(9).tobhe
2020-08-11Prioritize incoming certificate requests by the order of CERTEQ payloadstobhe
2020-08-10Reduce log spam.tobhe
2020-08-10Remove unused argument.tobhe
2020-08-06Delete commented out code.tobhe
2020-07-27Fix return value check for openssl API used during pubkey validation.tobhe
2020-07-23Fix ibuf leak in sa_localauth when SA is freed.tobhe
2020-07-21Provide GRE over transport mode examplekn
2020-07-21Handle TEMPORARY_FAILURE notification on IKESA rekeying.tobhe
2020-07-20Fix dst/src port configuration bug with multiple flows.tobhe
2020-07-20iked: fix typo in fatalxStuart Henderson
2020-07-19Try to deal with no reply from PF_KEY on pfkey_sa_add.tobhe
2020-07-16Remove unused assignment.tobhe
2020-07-16Make sure to update policy dependant SA fields after policy_lookup().tobhe
2020-07-15Make CERT and CERTREQ payloads optional for public key authentication.tobhe
2020-07-14Properly clean up and dereference 'old' policy after failed lookup.tobhe
2020-07-10table fix;Jason McIntyre
2020-07-10Document which crypto transforms are enabled by default.tobhe
2020-07-08Always try to retransmit on sendtofrom() errors to ensure the SAtobhe
2020-06-26Replace SIMPLEQ concatenation loop with SIMPLEQ_CONCATbket
2020-06-25Silence ca_validate_pubkey() error message for cert typetobhe
2020-06-25Rework 'ikeauth' configuration option. The key and cert checks in the configtobhe
2020-06-18Fix handling of short EAP-MSCHAP messages.tobhe
2020-06-17Fix length check in ca_getreq().tobhe
2020-06-15Log errors with log_info and SPI prepended.tobhe
2020-06-09Move AUTH_REQUEST SA state change from parser to IKE_AUTH exchange handler.tobhe
2020-06-05Add default proposals for AES-GCM ciphers in IKE and ESP.tobhe
2020-06-03Pass sockaddr instead of sockaddr_storage to sa_address.tobhe
2020-06-02Don't leak authmsg.tobhe
2020-05-30Indentation style(9).tobhe
2020-05-28Move duplicate SA negotiation code to ikev2_sa_negotiate_common().tobhe
2020-05-26Add AES-GCM mode ciphers (IANA IDs 19 and 20) for IKEv2.tobhe
2020-05-14Stricter return value checking for EVP_Cipher* calls.tobhe
2020-05-13Remove unnecessary logging messages.tobhe
2020-05-13Remove dead 'iked_flow' member 'flow_type'.tobhe
2020-05-11Fix policy lookup edge case for simultaneous transport and tunnel mode SAs.tobhe
2020-05-09Log error notifications other than NO_PROPOSAL_CHOSENtobhe
2020-05-08Remove unneccessary X509_NAME_oneline wrapper. Passing NULL as buftobhe
2020-05-02Use gettimeofday() instead of CLOCK_MONOTONIC in gettime(). The return valuetobhe
2020-05-01When initiating IKE SA rekeying, make sure to send a key from a mutualtobhe
generated by cgit v1.2.3 (git 2.25.1) at 2025-01-24 05:03:40 +0000