| Age | Commit message (Collapse) | Author |
|---|
|
author: niklas
style nits
author: angelos
Print and use correct port when looking at listening sockets.
Don't setup unnecessary flows on the receiver side.
author: angelos
Careful on the type used by inet_ntoa()
author: niklas
byte ordering
|
|
author: niklas
ifdef HAVE_GETNAMINFO
author: angelos
That comment doesn't justify an XXX mark :-)
|
|
transport.h: Merge with EOM 1.16
author: provos
provide transport dependent ID decoding; hope indentation is right now ;)
|
|
author: ho
Missing #ifndef linux
|
|
author: ho
Do not crash if user forgot address field.
|
|
regress/dh/Makefile: Merge with EOM 1.7
regress/group/Makefile: Merge with EOM 1.9
regress/prf/Makefile: Merge with EOM 1.4
regress/rsakeygen/Makefile: Merge with EOM 1.8
regress/x509/Makefile: Merge with EOM 1.10
Makefile: Merge with EOM 1.62
attribute.c: Merge with EOM 1.10
sa.c: Merge with EOM 1.99
conf.c: Merge with EOM 1.20
crypto.c: Merge with EOM 1.28
isakmpd.c: Merge with EOM 1.45
connection.c: Merge with EOM 1.19
doi.h: Merge with EOM 1.28
field.c: Merge with EOM 1.11
exchange.c: Merge with EOM 1.116
ike_auth.c: Merge with EOM 1.44
pf_key_v2.c: Merge with EOM 1.37
ike_phase_1.c: Merge with EOM 1.22
ipsec.c: Merge with EOM 1.118
isakmp_doi.c: Merge with EOM 1.40
log.c: Merge with EOM 1.26
log.h: Merge with EOM 1.18
math_group.c: Merge with EOM 1.23
message.c: Merge with EOM 1.144
pf_encap.c: Merge with EOM 1.70
policy.c: Merge with EOM 1.18
timer.c: Merge with EOM 1.13
transport.c: Merge with EOM 1.41
udp.c: Merge with EOM 1.47
ui.c: Merge with EOM 1.37
x509.c: Merge with EOM 1.36
author: niklas
Made debug logging a compile time selectable feature
|
|
apps/certpatch/certpatch.c: Merge with EOM 1.6
exchange.c: Merge with EOM 1.114
ike_quick_mode.c: Merge with EOM 1.110
ike_phase_1.c: Merge with EOM 1.16
ike_auth.c: Merge with EOM 1.41
ike_aggressive.c: Merge with EOM 1.4
libcrypto.c: Merge with EOM 1.10
libcrypto.h: Merge with EOM 1.10
isakmpd.8: Merge with EOM 1.19
isakmpd.c: Merge with EOM 1.42
ipsec.h: Merge with EOM 1.40
init.c: Merge with EOM 1.22
message.c: Merge with EOM 1.143
message.h: Merge with EOM 1.49
sa.c: Merge with EOM 1.98
sa.h: Merge with EOM 1.54
policy.c: Merge with EOM 1.14
pf_key_v2.c: Merge with EOM 1.36
x509.c: Merge with EOM 1.32
x509.h: Merge with EOM 1.9
udp.c: Merge with EOM 1.46
author: niklas
Angelos copyrights
|
|
date: 2000/01/25 06:51:20; author: angelos; state: Exp; lines: +2 -3
Unneeded variable.
date: 2000/01/25 06:50:51; author: angelos; state: Exp; lines: +1 -27
Didn't realize there was a sysdep_cleartext() for setting the BYPASS
flags for socket security levels. Remove reduntant setsockopt() code.
date: 2000/01/11 04:47:41; author: angelos; state: Exp; lines: +30 -4
Set IPSEC_LEVEL_BYPASS on all our sockets, so IKE packets don't
accidentally get encrypted.
|
|
author: niklas
Do not consider down interfaces or ones with bad addresses
|
|
|
|
not given, but Listen-on is.
|
|
author: niklas
inet_ntoa returns a static, do not call twice in an expression
|
|
author: niklas
reference transport when doing listen sockets. Style + remove old comment
|
|
Add LOG_REPORT to always go to logchannel regardless of level; misc small fixes
Move transport-independent reporting to transport_report instead. Also
report the socket fd for UDP transports. A derived transport class is always
aligned with the transport superclass, so there is no need to search for
the udp_transport that matches a given transport.
Add udp_report for transport_report
Garbage collect transports via refcounting. Fix commentary.
|
|
Mem leak plugging.
1999 copyrights
|
|
Implement Local-address binding
|
|
Deal with old socket APIs
udp.c: Merge with EOM 1.31
Deal with old socket APIs
message.c: Merge with EOM 1.107
Remove unnecessary system dependent include
|
|
| revision 1.30
| date: 1999/02/25 11:39:25; author: niklas; state: Exp; lines: +3 -1
| include sysdep.h everywhere
| ----------------------------
| revision 1.29
| date: 1999/02/24 15:45:38; author: niklas; state: Exp; lines: +17 -5
| Use correct socket options for sharing of ports
| ----------------------------
| revision 1.28
| date: 1999/02/24 12:17:02; author: niklas; state: Exp; lines: +2 -3
| Set extra transport flags after initialization
| ----------------------------
| revision 1.27
| date: 1999/02/14 00:16:07; author: niklas; state: Exp; lines: +51 -8
| New fd_set API. Listen on chosen interfaces only.
| ----------------------------
| revision 1.26
| date: 1999/01/31 01:23:22; author: niklas; state: Exp; lines: +3 -1
| commentary
| ----------------------------
|
|
|
|
|
|
|
|
|
|
|
|
OpenBSD IPSEC stack by me, Niklas Hallqvist and Niels Provos, funded by
Ericsson Radio Systems. It is not yet complete or usable in a real scenario
but the missing pieces will soon be there. The early commit is for people
who wants early access and who are not afraid of looking at source.
isakmpd interops with Cisco, Timestep, SSH & Pluto (Linux FreeS/WAN) so
far, so it is not that incomplete. It is really mostly configuration that
is lacking.
|
