| Age | Commit message (Expand) | Author |
|---|
| 2022-11-26 | Bump to 7.2 | Tobias Heider |
| 2022-11-18 | Revert my last two changes. | Moritz Buhl |
| 2022-11-13 | Make sure csa->csa_bundled is NULL after freeing to prevent a | Moritz Buhl |
| 2022-11-11 | Make sure csa->csa_bundled is NULL after freeing to prevent a | Moritz Buhl |
| 2022-11-11 | In case of an invalid SA resp is passed to ikev2_msg_cleanup without | Moritz Buhl |
| 2022-11-07 | Free objects that were dynamically allocated in libcrypto with OPENSSL_free(). | Tobias Heider |
| 2022-11-06 | Fix out-of-order string operations resulting in a wrongly calculated | Tobias Heider |
| 2022-10-24 | Fix DH group lookup when checking if PFS is required. Compare ID | Tobias Heider |
| 2022-10-10 | Move enabling the policy refcounting from policy_ref() to config_free_policy(). | Tobias Heider |
| 2022-09-21 | Distinguish between retransmit ok and nothing to retransmit. This makes | Tobias Heider |
| 2022-09-19 | Add iked connection statistics for successful and failed connections, common | Tobias Heider |
| 2022-09-14 | Compare 'srcnat' when comparing policies. Fixes a bug where policy lookup could | Tobias Heider |
| 2022-07-22 | add missing full stop; | Jason McIntyre |
| 2022-07-22 | Include an OpenIKED Vendor ID payload in the initial handshake. This will | Tobias Heider |
| 2022-07-22 | Fix potential leak of reply in error case. | Tobias Heider |
| 2022-07-18 | Check if there is a locally cached nameserver to send before responding | Tobias Heider |
| 2022-07-08 | Support sending certificate chains with intermediate CAs in multiple CERT | Tobias Heider |
| 2022-07-04 | Ignore any CERT payload after the first instead of failing the exchange | Tobias Heider |
| 2022-07-04 | Fix error in the comparison of the Child SA nonces to decide which | Tobias Heider |
| 2022-05-28 | Since 'sa' can be freed inside the loop, RB_FOREACH_SAFE is required. | Gerhard Roth |
| 2022-05-17 | Move towards OpenIKED 7.1 | Tobias Heider |
| 2022-05-08 | Move ikev2_reset_alive_timer() to a place where it makes more sense. The idea | Tobias Heider |
| 2022-04-13 | IKED_LIFETIME_BYTES is > 2GB, and potentially used in strange place, | Theo de Raadt |
| 2022-04-13 | Document sntrup761x25519 key exchange. | Tobias Heider |
| 2022-04-11 | Fix leak of esnxf if esn ore noesn are configured explicitly. | Tobias Heider |
| 2022-03-16 | Make sure contents of vroute messages are aligned properly. | Tobias Heider |
| 2022-03-14 | Improve retransmission of message fragments. RFC 7383 states that loss of | Tobias Heider |
| 2022-02-13 | SKEEYSEED -> SKEYSEED | mbuhl |
| 2022-02-06 | remove please from manual pages | Jonathan Gray |
| 2022-01-28 | When it's the possessive of 'it', it's spelled "its", without the | Philip Guenther |
| 2021-12-23 | fix off by one in bounds test | Jonathan Gray |
| 2021-12-14 | Move raw pubkey bytes to EVP_PKEY conversion to common function. | Tobias Heider |
| 2021-12-13 | Fix asprintf() error check. Portable code should check the return | Theo Buehler |
| 2021-12-13 | Fix a few leaks due to X509_NAME_oneline(name, NULL, 0) dynamically | Theo Buehler |
| 2021-12-13 | Avoid a potential double free in group_free() | Theo Buehler |
| 2021-12-13 | Cleanup libcrypto memory management. Remove redundant NULL checks | Tobias Heider |
| 2021-12-09 | Properly enable NAT-T without udpencap if mobike was negotiated without NAT. | Tobias Heider |
| 2021-12-09 | Move switch to NAT-T port and udpencap activation to ikev2_enable_natt(). | Tobias Heider |
| 2021-12-08 | The /etc/iked/certs/ directory is used for both local and peer | Tobias Heider |
| 2021-12-07 | Fix locally stored peer certificates in /etc/iked/certs as documented in | Tobias Heider |
| 2021-12-06 | Logging received addresses and DNS configuration only makes sense for | Tobias Heider |
| 2021-12-04 | Send out dstid as initiator if configured. This makes it easier for | Tobias Heider |
| 2021-12-01 | whitespace cleanup during review read | Theo de Raadt |
| 2021-11-30 | whitespace | Tobias Heider |
| 2021-11-29 | add -V to usage(), and list it before -v in both SYNOPSIS and the | Jason McIntyre |
| 2021-11-29 | Add command line option to show the version | Tobias Heider |
| 2021-11-29 | sys/param.h was included for MAX(), MIN() and roundup(). make local | Theo de Raadt |
| 2021-11-27 | Rename msg_id to msg_peerid now that we also have msg_localid. | Tobias Heider |
| 2021-11-26 | A peer sends both his local id and remote id he expects us to be. So far we | Patrick Wildt |
| 2021-11-26 | Fix ikev2_child_sa_rekey() warnings. The SPI can't be printed without a | Tobias Heider |
