summaryrefslogtreecommitdiff
path: root/sbin/isakmpd/exchange.c
AgeCommit message (Expand)Author
2016-03-10Don't retransmit responses for unauthenticated messages.YASUOKA Masahiko
2015-12-10Remove NULL-checks before free(). ok tb@mmcc
2015-04-20Log if we refuse to continue the exchange when another one that correspondsMike Belopuhov
2014-01-23Remove a mid-layer which acts like arc4random isn't fairly standard.Theo de Raadt
2011-04-23Indicate which side of the connection responded during phase 1 while using -v.lum
2009-01-28Remove some dead (#if 0) code.Hans-Joerg Hoexer
2007-09-02more malloc(n * m) -> calloc(n, m); from Igor ZinovikTheo de Raadt
2007-08-05Allow key exchange with RSA signature authentication to work withTom Cosgrove
2007-04-16There's no point in checking ptr for NULL before doing free(ptr)Moritz Jodeit
2007-03-03Make sure we can't accidentally free() a pointer that's been acceptedTom Cosgrove
2006-09-01Add a new UI command to force isakmpd into passive only mode.Marco Pfatschbacher
2006-06-02Big spelling cleanup, no binary change. From david@Hans-Joerg Hoexer
2006-05-31Make sure, that phase 1 SAs of active connections stay alive. Fixes a DPDHans-Joerg Hoexer
2005-11-16Avoid printing a NULL string. ok hshoexerChad Loder
2005-10-26don't send DPD messages before the exchange is finialized, otherwiseMarkus Friedl
2005-07-05use correct function name in log message, tiny KNFHans-Joerg Hoexer
2005-06-25/* Fallthrough. */ -> /* FALLTHROUGH */Hans-Joerg Hoexer
2005-05-26Use TAILQ_FOREACH where possible, remove payload_last()Hans-Joerg Hoexer
2005-05-26get rid of payload mappingHans-Joerg Hoexer
2005-04-08Make deterministic randomness (only ever used for testing) a compile-timeChad Loder
2005-04-08USE_DEBUG is bye byeTheo de Raadt
2005-04-08missing includesHans-Joerg Hoexer
2005-04-08remove leftoversHans-Joerg Hoexer
2005-04-08always enable aggressive, dpd, and isakmp_cfgTheo de Raadt
2005-04-08nat-traversal alwaysTheo de Raadt
2005-04-06knf, ok cloderTheo de Raadt
2005-04-04spacing; ok cloderTheo de Raadt
2005-03-10Avoid crash on finalization. We have been using this diffChad Loder
2005-03-05Silence a couple of annoying gcc3 warnings. hshoexer@ ok.Hakan Olsson
2005-03-04fix leak when a phase 2 SA cannot create an exchange for the matching phase 1Markus Friedl
2005-03-02correct function name in log messageHans-Joerg Hoexer
2005-02-27where possible, use bzero instead of memsetHans-Joerg Hoexer
2005-01-31Avoid dereferencing a NULL pointerHans-Joerg Hoexer
2004-12-06RFC2409 mandates min and max nonce lengths. hshoexer@ ok.Hakan Olsson
2004-09-17Missing #ifdefs.Hakan Olsson
2004-08-23We need to set sa->initiator before checking if the newly created SAHakan Olsson
2004-08-10Better implementation of the Dead Peer Detection protocol, RFC 3706.Hakan Olsson
2004-08-08spacingTheo de Raadt
2004-07-09ansiTheo de Raadt
2004-06-21Port floating (500->4500) for p1 and p2 exchanges.Hakan Olsson
2004-06-20Make the payload array in struct message dynamic, since we need to handleHakan Olsson
2004-06-20A start towards Dead Peer Detection (DPD) support, as specified in RFC 3706Hakan Olsson
2004-06-14KNF, style, 80c, etc. hshoexer@ okHakan Olsson
2004-06-09Style nits. hshoexer@ okHakan Olsson
2004-05-06KNF cleanup. hshoexer@ okHakan Olsson
2004-05-03KNF. ok ho@Hans-Joerg Hoexer
2004-03-31-Wsign-compare nits. hshoexer@ ok.Hakan Olsson
2004-02-16check for isakmp_sa->transport != NULL; noticed by bluhm at genua.de ok hshoe...Markus Friedl
2004-02-05small logging cleanup and improvement requested by markusHans-Joerg Hoexer
2004-01-16Added -v option. Enables logging of successful exchange completion.Hans-Joerg Hoexer