summaryrefslogtreecommitdiff
path: root/sbin/isakmpd/message.c
AgeCommit message (Expand)Author
2005-04-08always enable aggressive, dpd, and isakmp_cfgTheo de Raadt
2005-04-08nat-traversal alwaysTheo de Raadt
2005-04-07small cleanup, no binary changeHans-Joerg Hoexer
2005-04-07Plug memleak.Hans-Joerg Hoexer
2005-04-06knf, ok cloderTheo de Raadt
2005-04-04spacing; ok cloderTheo de Raadt
2005-03-05No need to allocate a local digest buffer. Cleanup error path. hshoexer@ ok.Hakan Olsson
2005-03-05Silence a couple of annoying gcc3 warnings. hshoexer@ ok.Hakan Olsson
2005-02-27where possible, use bzero instead of memsetHans-Joerg Hoexer
2005-02-24Never respond to 0-length UDP packets. Reduces, but does not eliminateChad Loder
2005-02-22build delete messages for isakmp sa correctly.Hans-Joerg Hoexer
2005-01-29Handle some pointers more carefully. From pat@ some while ago.Hans-Joerg Hoexer
2004-12-14Reword comment a bit for clarity. hshoexer@ ok.Hakan Olsson
2004-12-10check msg->isakmp_sa != NULL before the transport gets updated; ok hshoexerMarkus Friedl
2004-12-08NAT/T: replace the isakmpd SA transport with the transport from theMarkus Friedl
2004-09-17Permit next payload type NAT-OA. Noted by Kamel Messaoudi.Hakan Olsson
2004-08-17check for msg->isakmpg_sa being NULL before referencingHans-Joerg Hoexer
2004-08-10Better implementation of the Dead Peer Detection protocol, RFC 3706.Hakan Olsson
2004-08-08spacingTheo de Raadt
2004-07-07plug memleak when receiving an INVALID_HASH_INFORMATION notify.Hans-Joerg Hoexer
2004-06-21Packet capture should add the ESP-marker when NAT-T is active.Hakan Olsson
2004-06-20message_parse_payloads should accept payloads in the private range.Hakan Olsson
2004-06-20Make the payload array in struct message dynamic, since we need to handleHakan Olsson
2004-06-20NAT-Traversal for isakmpd. Work in progress...Hakan Olsson
2004-06-20Some vendors send the last Aggressive Mode message unencrypted, which weHakan Olsson
2004-06-14added a missing message_free().Hans-Joerg Hoexer
2004-06-14KNF, style, 80c, etc. hshoexer@ okHakan Olsson
2004-06-11typo in commentBrad Smith
2004-06-10Mark authenticated messages explicitly. Better check for authentication beforeHans-Joerg Hoexer
2004-06-09Style nits. hshoexer@ okHakan Olsson
2004-06-09only accept DELETEs during an authenticated INFORMATIONAL exchange.Hans-Joerg Hoexer
2004-05-23More KNF. Mainly spaces and line-wraps, no binary change.Hans-Joerg Hoexer
2004-04-29Better checking of minimum payload lengths. Drop out safely when an unknownHans-Joerg Hoexer
2004-04-15partial move to KNF. More to come. This has happened because thereTheo de Raadt
2004-04-07-Wsign-compare nits. hshoexer@ ok.Hakan Olsson
2004-03-10Fix payload handling flaws found by cloder@. Based on initial patch byHans-Joerg Hoexer
2004-03-10Plug up memory leak.Hans-Joerg Hoexer
2004-03-10Reduce some noise on receipt of an invalid spi.Hans-Joerg Hoexer
2004-03-09Plug memleaks, found by cloder@.Hans-Joerg Hoexer
2003-12-05Style nitsHakan Olsson
2003-12-04Validate SPIs presented in DELETE messages of the informational exchange.Hans-Joerg Hoexer
2003-11-06Style nits.Hakan Olsson
2003-11-06Require encrypted messages are soon as we have the keystate for it.Hakan Olsson
2003-09-02Require ISAKMP_FLAGS_ENC on phase 2 messages. ok markus@, deraadt@.Hakan Olsson
2003-06-14allocate payload_node with calloc instead of mallocHakan Olsson
2003-06-04Remove the rest of clauses 3 and 4. Approved by Niklas Hallqvist, AngelosHakan Olsson
2003-06-03Cleanup. Use 'sizeof variable' instead of magic constants.Hakan Olsson
2002-09-11signed vs unsigned, some void * arithmetic, from -pedantic. niklas@ ok.Hakan Olsson
2002-07-09HASH payload validation does not require an exchange.Hakan Olsson
2002-07-04Do not assume we have an active exchange during payload validation.Hakan Olsson