summaryrefslogtreecommitdiff
path: root/sbin/isakmpd/ipsec.c
AgeCommit message (Expand)Author
2006-06-10support sha2 for main mode hmacs and aesctr for quick mode encryption.Hans-Joerg Hoexer
2006-06-09Allow for AH the use of the authentication algorithms added a while ago.Christian Weisgerber
2006-05-29Fix broken merge of patch. Pointed out by nathanael at polymorpheus dot com.Ryan Thomas McBride
2006-05-28Change the default replay window for SAs created by the isakmpd responderRyan Thomas McBride
2005-09-23Provide UI commands to delete phase 1 SAs.Hans-Joerg Hoexer
2005-06-25/* Fallthrough. */ -> /* FALLTHROUGH */Hans-Joerg Hoexer
2005-06-14add ENCAP_UDP_{TUNNEL,TRANSPORT} types according to rfc 3947Hans-Joerg Hoexer
2005-05-26Use TAILQ_FOREACH where possible, remove payload_last()Hans-Joerg Hoexer
2005-05-04clean up KEY_API() wrapper.Hans-Joerg Hoexer
2005-04-08get rid of sysdep_sa_lenHans-Joerg Hoexer
2005-04-08USE_DEBUG is bye byeTheo de Raadt
2005-04-08always enable aggressive, dpd, and isakmp_cfgTheo de Raadt
2005-04-08nat-traversal alwaysTheo de Raadt
2005-04-08kill USE_OLD_SOCKADDRTheo de Raadt
2005-04-06knf, ok cloderTheo de Raadt
2005-04-05Always compile X509 support. Almost everyone uses it. Makes the codeChad Loder
2005-04-04spacing; ok cloderTheo de Raadt
2005-04-04fix byteorder confusionHans-Joerg Hoexer
2005-03-29Always use network byte order when stuffing port numbers into IPSEC IDChad Loder
2005-03-18Back out a possible bogus minor diff until we investigate whatChad Loder
2005-03-05Always use correct byte order when stuffing port numbers into packets.Chad Loder
2004-12-14Allow the Address, Network, or Netmask values of the <IPsec-ID> to beRyan Thomas McBride
2004-09-17Missing #ifdefs.Hakan Olsson
2004-08-10Better implementation of the Dead Peer Detection protocol, RFC 3706.Hakan Olsson
2004-08-08spacingTheo de Raadt
2004-06-23Add commandline switch -a / config tag "Acquire-Only" to tell isakmpd to notHans-Joerg Hoexer
2004-06-21Implement NAT-T keepalive messages.Hakan Olsson
2004-06-21style nitHakan Olsson
2004-06-20Make the payload array in struct message dynamic, since we need to handleHakan Olsson
2004-06-20NAT-Traversal for isakmpd. Work in progress...Hakan Olsson
2004-06-17Yet another bunch of memleask found and fixed by Patrick Latifi. Thanks!Hans-Joerg Hoexer
2004-06-16fix ipv6-address and ipv6-address-mask mixup.Hans-Joerg Hoexer
2004-06-14KNF, style, 80c, etc. hshoexer@ okHakan Olsson
2004-06-10Mark authenticated messages explicitly. Better check for authentication beforeHans-Joerg Hoexer
2004-06-09Style nits. hshoexer@ okHakan Olsson
2004-05-23More KNF. Mainly spaces and line-wraps, no binary change.Hans-Joerg Hoexer
2004-05-19Permit symbolic protocol and service names, such as "Protocol= tcp", in theHakan Olsson
2004-04-15partial move to KNF. More to come. This has happened because thereTheo de Raadt
2004-04-07-Wsign-compare nits. hshoexer@ ok.Hakan Olsson
2004-03-10Fix payload handling flaws found by cloder@. Based on initial patch byHans-Joerg Hoexer
2004-02-27Remove dead code.Hans-Joerg Hoexer
2004-01-03Be more careful with INITIAL-CONTACT and do not delete SPIs when gettingHakan Olsson
2003-12-15Support for groups modp2048, modp3072, modp4096, modp6144 and modp8192 (IDs 14Hans-Joerg Hoexer
2003-11-06Style nits.Hakan Olsson
2003-11-06spis[] type tweak. From Hans-Joerg Hoexer.Hakan Olsson
2003-10-14constant_lookup() to constant_name() cleanup. markus@ ok.Hakan Olsson
2003-09-02A couple of nits. deraadt@ ok.Hakan Olsson
2003-08-08Be more careful when using constant_lookup() in messages. Pointed out byHakan Olsson
2003-07-25add sha2 support; ok ho@Markus Friedl
2003-06-10Do not crash on unsupported IPSec ID types, as noted by Eric Boudrand.Hakan Olsson
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-29 18:23:49 +0000