summaryrefslogtreecommitdiff
path: root/sbin/iked
AgeCommit message (Expand)Author
2020-05-14Stricter return value checking for EVP_Cipher* calls.tobhe
2020-05-13Remove unnecessary logging messages.tobhe
2020-05-13Remove dead 'iked_flow' member 'flow_type'.tobhe
2020-05-11Fix policy lookup edge case for simultaneous transport and tunnel mode SAs.tobhe
2020-05-09Log error notifications other than NO_PROPOSAL_CHOSENtobhe
2020-05-08Remove unneccessary X509_NAME_oneline wrapper. Passing NULL as buftobhe
2020-05-02Use gettimeofday() instead of CLOCK_MONOTONIC in gettime(). The return valuetobhe
2020-05-01When initiating IKE SA rekeying, make sure to send a key from a mutualtobhe
2020-05-01Clarify global 'set active' and 'set passive' options and how theytobhe
2020-04-30Add ECDH groups and higher order MODP DH groups to default proposal.tobhe
2020-04-29Remove trailing tabtobhe
2020-04-29Missing whitespace.tobhe
2020-04-28The order of arguments to proposals_negotiate makes a difference.tobhe
2020-04-28Remove support for insecure EC2N groups. Clarify which Diffie-Hellmantobhe
2020-04-27Add curve25519 IANA group number.tobhe
2020-04-27Log with SPI_SA().tobhe
2020-04-26Fix leak of temporary ID ibufs on IKE SA rekey.tobhe
2020-04-26Only print valid rdomains. '-1' is used as default value and shouldtobhe
2020-04-24Add some useful log messages for the IKE handshake.tobhe
2020-04-24Log INFORMATIONAL messages with LOG_DEBUG. They are rarely useful fortobhe
2020-04-23 ce examples of "Ar arg Ar arg" with "Ar arg arg" and stop the spread;Jason McIntyre
2020-04-23Add support for switching rdomain on IPsec encryption/decryption.tobhe
2020-04-22Fix leaks in signature validation.tobhe
2020-04-22Log authentication verification failure with "info" priority.tobhe
2020-04-20Remove unused 'dsa_cert' variable.tobhe
2020-04-18SPI_SA(sa, NULL) already prints a colon.tobhe
2020-04-17Log retransmits of sent requests and responses.tobhe
2020-04-16Print SPI value of deleted SA.tobhe
2020-04-15Remove redundant 'sa == NULL' check.tobhe
2020-04-14Print 'ipcomp' in print_policy() if configured.tobhe
2020-04-13Try to send a DELETE message if the SA is reset with 'ikectl reset id'.tobhe
2020-04-12No need to call lc_idtype(). idstr does not contain a leading typetobhe
2020-04-12"could not open public key" is an error and should be log_info.tobhe
2020-04-11DELETE payloads are common. Log with log_info instead of log_warnx.tobhe
2020-04-11If we haven't received any IKE message from our partner for sometobhe
2020-04-10Only make the type part of the idstring lowercase when looking for certs intobhe
2020-04-09Simplify socket creation logic. Normally iked needs two sockets, onetobhe
2020-04-08Prevent multiple ibuf leaks. Clean up on proccess shutdown.tobhe
2020-04-07Always prefer generic signature authentication (RFC 7427) , not just for RSA.tobhe
2020-04-06Fix pubkey leak in CA process for ASN1_DN IDs.tobhe
2020-04-05Fix size checks in ikev2_getimsgdata().tobhe
2020-04-04It makes no sense to fall back to original policy if the relookup with thetobhe
2020-04-03Port set in 'sin_port' should be htons() not ntohs().tobhe
2020-04-03Don't fallthrough in IMSG_CTL_RESET_ID case.tobhe
2020-04-02Store USE_TRANSPORTMODE in iked_message until the full message was parsedtobhe
2020-04-01Properly handle multiple CERTREQ payloads in CA process. Only for thetobhe
2020-03-31Log summary of certificates in cert store when iked fails to find atobhe
2020-03-30Log the received cryptographic proposal when the handshake fails becausetobhe
2020-03-30Log summary of IKE SA for established policy.tobhe
2020-03-28Plug some memory leaks.tobhe
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-23 01:58:00 +0000