Age | Commit message (Expand) | Author |
2015-12-09 | Remove plain DES encryption from IPsec. | Christian Weisgerber |
2015-08-20 | <stdlib.h> is included, so do not need to cast result from | Theo de Raadt |
2014-10-09 | obvious reallocarray() conversions | Theo de Raadt |
2014-01-23 | Remove a mid-layer which acts like arc4random isn't fairly standard. | Theo de Raadt |
2014-01-22 | improve randomization. remove some junk debugging features that are | Theo de Raadt |
2013-11-21 | Keep the flow until last IPsec SA is deleted, if the flow is shared by | YASUOKA Masahiko |
2012-06-30 | enable use of AES-{192,256}-CTR, and explicitly of AES-128-CTR, for IPsec ESP | Christian Weisgerber |
2012-01-16 | import (and fix) net_addrcmp() from libc as a static function. | Eric Faurot |
2010-12-09 | When looking up an SA based on peer address, also check the port | Martin Hedenfal |
2010-09-22 | Support for use of AES-GCM-16 (as AESGCM) and ENCR_NULL_AUTH_AES_GMAC | Mike Belopuhov |
2007-09-02 | use calloc() to avoid malloc(n * m) overflows; checked by djm canacar jsg | Theo de Raadt |
2007-06-02 | safer snprintf construct with more paranoid length calculation | Peter Valchev |
2007-04-16 | There's no point in checking ptr for NULL before doing free(ptr) | Moritz Jodeit |
2006-11-24 | add support to tag ipsec traffic belonging to specific IKE-initiated | Reyk Floeter |
2006-08-30 | Back out r1.103, which caused SA's to leak until memory was exhausted. | Chad Loder |
2006-06-02 | Big spelling cleanup, no binary change. From david@ | Hans-Joerg Hoexer |
2006-05-31 | Make sure, that phase 1 SAs of active connections stay alive. Fixes a DPD | Hans-Joerg Hoexer |
2006-05-29 | Do not use C++ comments. Noticed by markus. | Hans-Joerg Hoexer |
2006-05-29 | Oops, return after calling sa_release() | Ryan Thomas McBride |
2006-05-28 | Assign a finalization event to the exchange initiated on soft expiry. | Ryan Thomas McBride |
2006-05-28 | also report SA flags. | Hans-Joerg Hoexer |
2005-09-23 | Provide UI commands to delete phase 1 SAs. | Hans-Joerg Hoexer |
2005-08-09 | Normalize attribute values before comparison. Unbreaks interop with netscreen. | Hans-Joerg Hoexer |
2005-07-25 | output some more information on UI command "S" | Hans-Joerg Hoexer |
2005-07-22 | spacing and tiny knf | Hans-Joerg Hoexer |
2005-04-08 | get rid of sysdep_sa_len | Hans-Joerg Hoexer |
2005-04-08 | Make deterministic randomness (only ever used for testing) a compile-time | Chad Loder |
2005-04-08 | keynote and policy always compiled in | Theo de Raadt |
2005-04-08 | always enable aggressive, dpd, and isakmp_cfg | Theo de Raadt |
2005-04-08 | nat-traversal always | Theo de Raadt |
2005-04-06 | knf, ok cloder | Theo de Raadt |
2005-04-06 | Always print transport information correctly. | Chad Loder |
2005-04-04 | spacing; ok cloder | Theo de Raadt |
2005-02-27 | where possible, use bzero instead of memset | Hans-Joerg Hoexer |
2005-02-24 | disable the SA dpd timer on sa_free(). this avoid a race | Markus Friedl |
2005-02-16 | On shutdown also send delete messages for isakmp SAs. | Hans-Joerg Hoexer |
2005-01-30 | Avoid null pointer dereference when deleting not fully established SAs. | Hans-Joerg Hoexer |
2004-08-10 | Better implementation of the Dead Peer Detection protocol, RFC 3706. | Hakan Olsson |
2004-08-08 | spacing | Theo de Raadt |
2004-08-02 | Do not expire unestablished phase 2 SAs on SIGHUP. | Hans-Joerg Hoexer |
2004-06-21 | Implement NAT-T keepalive messages. | Hakan Olsson |
2004-05-23 | More KNF. Mainly spaces and line-wraps, no binary change. | Hans-Joerg Hoexer |
2004-05-13 | Extensions to the FIFO interface: | Hakan Olsson |
2004-04-15 | partial move to KNF. More to come. This has happened because there | Theo de Raadt |
2004-04-07 | -Wsign-compare nits. hshoexer@ ok. | Hakan Olsson |
2004-04-07 | More careful when walking LIST queues. hshoexer@, david@ ok. | Hakan Olsson |
2004-03-19 | Add missing bits to make already present privsep code work. Enable privsep. | Hans-Joerg Hoexer |
2004-02-27 | (C)-2004 | Hakan Olsson |
2004-02-27 | Follow RFC 2408 more closely regarding how to better check the proposal | Hakan Olsson |
2004-01-06 | small typos fixed. | Hans-Joerg Hoexer |