Age | Commit message (Collapse) | Author | |
---|---|---|---|
2004-06-20 | message_parse_payloads should accept payloads in the private range. | Hakan Olsson | |
While here, also cleanup some messages. | |||
2004-06-20 | Make the payload array in struct message dynamic, since we need to handle | Hakan Olsson | |
payloads in the private range, such as the pre-RFC NAT-D/NAT-OA. Replace TAILQ_FIRST(&msg->payload[i]) instances with function calls. | |||
2004-06-20 | NAT-Traversal for isakmpd. Work in progress... | Hakan Olsson | |
hshoexer@ ok. | |||
2004-06-20 | Some vendors send the last Aggressive Mode message unencrypted, which we | Hakan Olsson | |
should accept. Problem noted by alex at vbone.net. hshoexer@ ok. | |||
2004-06-14 | added a missing message_free(). | Hans-Joerg Hoexer | |
ok ho@ | |||
2004-06-14 | KNF, style, 80c, etc. hshoexer@ ok | Hakan Olsson | |
2004-06-11 | typo in comment | Brad Smith | |
2004-06-10 | Mark authenticated messages explicitly. Better check for authentication before | Hans-Joerg Hoexer | |
deleteing SAs. This fix is needed to solve the problems reported by Thomas Walpuski, previous diff was not sufficient. Pointed out by Thomas. Thanks! ok ho@ niklas@, testing and spellcheck by todd@ msf@ | |||
2004-06-09 | Style nits. hshoexer@ ok | Hakan Olsson | |
2004-06-09 | only accept DELETEs during an authenticated INFORMATIONAL exchange. | Hans-Joerg Hoexer | |
Fix for recent problem disclosed by Thomas Walpuski. ok ho@ | |||
2004-05-23 | More KNF. Mainly spaces and line-wraps, no binary change. | Hans-Joerg Hoexer | |
ok ho@ | |||
2004-04-29 | Better checking of minimum payload lengths. Drop out safely when an unknown | Hans-Joerg Hoexer | |
payload type is encountered. While around, do some KNF. ok ho@ | |||
2004-04-15 | partial move to KNF. More to come. This has happened because there | Theo de Raadt | |
are a raft of source code auditors who are willing to help improve this code only if this is done, and hey, isakmpd does need our standard auditing process. ok ho hshoexer | |||
2004-04-07 | -Wsign-compare nits. hshoexer@ ok. | Hakan Olsson | |
2004-03-10 | Fix payload handling flaws found by cloder@. Based on initial patch by | Hans-Joerg Hoexer | |
cloder@. Testing by markus@ cloder@ hshoexer@. ok ho@ | |||
2004-03-10 | Plug up memory leak. | Hans-Joerg Hoexer | |
ok ho@ | |||
2004-03-10 | Reduce some noise on receipt of an invalid spi. | Hans-Joerg Hoexer | |
ok ho@ | |||
2004-03-09 | Plug memleaks, found by cloder@. | Hans-Joerg Hoexer | |
ok ho@ | |||
2003-12-05 | Style nits | Hakan Olsson | |
2003-12-04 | Validate SPIs presented in DELETE messages of the informational exchange. | Hans-Joerg Hoexer | |
ok markus@ | |||
2003-11-06 | Style nits. | Hakan Olsson | |
2003-11-06 | Require encrypted messages are soon as we have the keystate for it. | Hakan Olsson | |
Require DELETE payloads to be accompanied by HASHes, and add validation for HASH payloads without active exchanges. From Hans-Joerg Hoexer with various modifications and suggestions from me and markus@. Ok markus@. | |||
2003-09-02 | Require ISAKMP_FLAGS_ENC on phase 2 messages. ok markus@, deraadt@. | Hakan Olsson | |
2003-06-14 | allocate payload_node with calloc instead of malloc | Hakan Olsson | |
2003-06-04 | Remove the rest of clauses 3 and 4. Approved by Niklas Hallqvist, Angelos | Hakan Olsson | |
D. Keromytis and Niels Provos. | |||
2003-06-03 | Cleanup. Use 'sizeof variable' instead of magic constants. | Hakan Olsson | |
2002-09-11 | signed vs unsigned, some void * arithmetic, from -pedantic. niklas@ ok. | Hakan Olsson | |
2002-07-09 | HASH payload validation does not require an exchange. | Hakan Olsson | |
2002-07-04 | Do not assume we have an active exchange during payload validation. | Hakan Olsson | |
2002-06-09 | rm trailing whitespace | Todd T. Fries | |
2002-06-06 | better format/type | Hakan Olsson | |
2002-06-06 | Style, and a few additional format/type mods. | Hakan Olsson | |
2002-06-01 | size_t must be cast to (unsigned long) and printed using %lu | Theo de Raadt | |
2002-05-28 | Proper types in format strings. From <greg@nest.cx> | Hakan Olsson | |
2002-03-26 | Don't message_dump_raw() bad length messages, i.e too short. | Hakan Olsson | |
Should solve PR 2474 (unconfirmed). niklas@, me. | |||
2002-01-23 | the last few sprintf -> snprintf | Hakan Olsson | |
2001-10-26 | Change to use sysdep_sa_len() function. | Hakan Olsson | |
2001-10-26 | Sometimes the daemon will not die promptly on SIGTERM, even though | Hakan Olsson | |
all DELETE notifications is sent out. Create a prioritized send-queue for the DELETE messages to solve this. Some (C)-2001. niklas@ ok. | |||
2001-07-01 | ISAKMP configuration, a.k.a IKECFG or "mode-config", protocol implementation. | Niklas Hallqvist | |
Disabled, has no configuration mechanism yet. This will be used for roaming users, who are going to get parameters like IP-address and nameserver from its peer, very much like DHCP, but securily inside an ISAKMP connection and still in time before negotiation of IPsec connections. You may see stylistic fixes in this commit too. Add some not yet used Makefile magic to deal with DNSSEC- enabled OpenSSL too. The IKECFG code work was sponsered by Gatespace Inc. Thank you! Configuration will come very soon, btw. | |||
2001-07-01 | Eliminate IPv4 dependency. | Angelos D. Keromytis | |
2001-06-29 | Change get_src/get_dst API as we get the length with sa_len. | Hakan Olsson | |
2001-04-24 | Correct SA refcounting. Fixes a bug where isakmpd could die when a peer was | Niklas Hallqvist | |
discovered to have rebooted, and old now invalid SAs had to be garbage- collected. | |||
2001-04-14 | Minor cleanup. | Hakan Olsson | |
2001-04-12 | Don't put the same message on the sendq twice. By niklas and me. | Hakan Olsson | |
2001-04-09 | More style fixes... | Hakan Olsson | |
2001-04-09 | isakmpd can now capture un-encrypted IKE negotiation packets to a | Hakan Olsson | |
file. In pcap(3) format, so tcpdump(8) can read it. Idea by Tim Newsham <newsham@lava.net>, work by him and me. Ok angelos@, niklas@ | |||
2001-03-13 | Add logging classes for Negotiation and Policy, and change a number of | Hakan Olsson | |
debug messages to use these instead. Change a number of 'log_print' to debug messages to keep the noise down. Use 'log_error' instead of 'log_print' in some cases when we have errno. Some indentation fixes. (niklas@ ok) | |||
2001-01-27 | (c) 2001 | Niklas Hallqvist | |
2001-01-26 | Pedantic style police | Niklas Hallqvist | |
2000-10-10 | message.c: Merge with EOM 1.156 | Niklas Hallqvist | |
message.h: Merge with EOM 1.51 transport.c: Merge with EOM 1.43 author: provos use message_send_expire for timeouts. okay niklas@ |