| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2007-06-02 | safer snprintf construct with more paranoid length calculation | Peter Valchev | |
| ok millert | |||
| 2007-04-16 | There's no point in checking ptr for NULL before doing free(ptr) | Moritz Jodeit | |
| since free(NULL) is just fine. ok hshoexer@ | |||
| 2007-04-15 | Fix interop-issue with vpn peers that start reyking on port 4500 when | Hans-Joerg Hoexer | |
| NAT-T is used. Solves problems with cisco and openswan. Tested by todd@ (cisco interop), ok ho@ Original fix with Stefan Roth (stefan dot roth at siemens dot com), thanks! | |||
| 2006-12-05 | plug memleak, noticed by jesus@mxtelecom.com | Hans-Joerg Hoexer | |
| ok moritz@, tested by jesus@mxtelecom.com (thanks!) | |||
| 2006-12-05 | Don't leak message structures, when we see unsupported payloads | Moritz Jodeit | |
| or if the payload node allocation fails. Also adjust a comment to make it more clear, who's responsible for freeing the message structs. Input from cloder@. OK hshoexer@ | |||
| 2006-10-29 | Fix TAILQ usage, preventing crashes | Pedro Martelletto | |
| Okay henning@ krw@ millert@ hshoexer@ | |||
| 2006-07-02 | Let isakmpd send out a vendor ID announcing isamkpds release version. | Hans-Joerg Hoexer | |
| Will be handy for release specific bug fixes, etc. Suggested by markus@ quite some time ago. ok markus@ | |||
| 2006-06-02 | Big spelling cleanup, no binary change. From david@ | Hans-Joerg Hoexer | |
| 2006-05-31 | Make sure, that phase 1 SAs of active connections stay alive. Fixes a DPD | Hans-Joerg Hoexer | |
| breakage noticed and reported by Mitja Muzenic. ok markus@ ho@, testing by Mitja and cloder@, discussed with Nathanael. | |||
| 2006-05-30 | fix SA grouping. Now, esp+ah and ah+esp works again. | Hans-Joerg Hoexer | |
| ok markus@ | |||
| 2005-10-25 | Do not send a message when no transport is available. | Hans-Joerg Hoexer | |
| ok cloder ho | |||
| 2005-09-23 | Provide UI commands to delete phase 1 SAs. | Hans-Joerg Hoexer | |
| Looks good mortiz@ | |||
| 2005-07-20 | revert one TAILQ_FOREACH conversion from r1.112 which was | Moritz Jodeit | |
| wrong and broke some isakmpd setups. ok hshoexer@ | |||
| 2005-06-26 | indentation/white space cleanup, no binary change | Hans-Joerg Hoexer | |
| 2005-05-26 | Use TAILQ_FOREACH where possible, remove payload_last() | Hans-Joerg Hoexer | |
| ok markus | |||
| 2005-05-26 | get rid of payload mapping | Hans-Joerg Hoexer | |
| ok markus ho cloder | |||
| 2005-05-25 | Fix a comment | Hans-Joerg Hoexer | |
| 2005-05-18 | allow payload types 20 and 21 for nat-t | Hans-Joerg Hoexer | |
| ok ho | |||
| 2005-04-09 | knf | Theo de Raadt | |
| 2005-04-08 | get rid of sysdep_sa_len | Hans-Joerg Hoexer | |
| ok cloder@ | |||
| 2005-04-08 | move __inline to right place | Theo de Raadt | |
| 2005-04-08 | USE_DEBUG is bye bye | Theo de Raadt | |
| 2005-04-08 | always enable aggressive, dpd, and isakmp_cfg | Theo de Raadt | |
| 2005-04-08 | nat-traversal always | Theo de Raadt | |
| 2005-04-07 | small cleanup, no binary change | Hans-Joerg Hoexer | |
| 2005-04-07 | Plug memleak. | Hans-Joerg Hoexer | |
| ok cloder ho markus | |||
| 2005-04-06 | knf, ok cloder | Theo de Raadt | |
| 2005-04-04 | spacing; ok cloder | Theo de Raadt | |
| 2005-03-05 | No need to allocate a local digest buffer. Cleanup error path. hshoexer@ ok. | Hakan Olsson | |
| 2005-03-05 | Silence a couple of annoying gcc3 warnings. hshoexer@ ok. | Hakan Olsson | |
| 2005-02-27 | where possible, use bzero instead of memset | Hans-Joerg Hoexer | |
| ok cloder henning | |||
| 2005-02-24 | Never respond to 0-length UDP packets. Reduces, but does not eliminate | Chad Loder | |
| probability that isakmp service will be detected during port scans. OK hoexer@ | |||
| 2005-02-22 | build delete messages for isakmp sa correctly. | Hans-Joerg Hoexer | |
| ok and help ho@ | |||
| 2005-01-29 | Handle some pointers more carefully. From pat@ some while ago. | Hans-Joerg Hoexer | |
| ok ho@ | |||
| 2004-12-14 | Reword comment a bit for clarity. hshoexer@ ok. | Hakan Olsson | |
| 2004-12-10 | check msg->isakmp_sa != NULL before the transport gets updated; ok hshoexer | Markus Friedl | |
| 2004-12-08 | NAT/T: replace the isakmpd SA transport with the transport from the | Markus Friedl | |
| message (only during phase 1). this avoids DPD messages to the 'wrong' port. ok hshoexer | |||
| 2004-09-17 | Permit next payload type NAT-OA. Noted by Kamel Messaoudi. | Hakan Olsson | |
| 2004-08-17 | check for msg->isakmpg_sa being NULL before referencing | Hans-Joerg Hoexer | |
| ok ho@ | |||
| 2004-08-10 | Better implementation of the Dead Peer Detection protocol, RFC 3706. | Hakan Olsson | |
| hshoexer@ ok. | |||
| 2004-08-08 | spacing | Theo de Raadt | |
| 2004-07-07 | plug memleak when receiving an INVALID_HASH_INFORMATION notify. | Hans-Joerg Hoexer | |
| Found by Patrick Latifi, thanks! ok ho@ | |||
| 2004-06-21 | Packet capture should add the ESP-marker when NAT-T is active. | Hakan Olsson | |
| 2004-06-20 | message_parse_payloads should accept payloads in the private range. | Hakan Olsson | |
| While here, also cleanup some messages. | |||
| 2004-06-20 | Make the payload array in struct message dynamic, since we need to handle | Hakan Olsson | |
| payloads in the private range, such as the pre-RFC NAT-D/NAT-OA. Replace TAILQ_FIRST(&msg->payload[i]) instances with function calls. | |||
| 2004-06-20 | NAT-Traversal for isakmpd. Work in progress... | Hakan Olsson | |
| hshoexer@ ok. | |||
| 2004-06-20 | Some vendors send the last Aggressive Mode message unencrypted, which we | Hakan Olsson | |
| should accept. Problem noted by alex at vbone.net. hshoexer@ ok. | |||
| 2004-06-14 | added a missing message_free(). | Hans-Joerg Hoexer | |
| ok ho@ | |||
| 2004-06-14 | KNF, style, 80c, etc. hshoexer@ ok | Hakan Olsson | |
| 2004-06-11 | typo in comment | Brad Smith | |
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |