summaryrefslogtreecommitdiff
path: root/sbin/isakmpd
AgeCommit message (Expand)Author
2004-06-22kn_get_string() may return NULL on failure. Handle this corrctly.Hans-Joerg Hoexer
2004-06-22The NAT-T drafts suggest we should drop incoming messages arriving onHakan Olsson
2004-06-21Describe the [Default]:NAT-T-Keepalive configuration parameter.Hakan Olsson
2004-06-21Enable NAT-T support.Hakan Olsson
2004-06-21Implement NAT-T keepalive messages.Hakan Olsson
2004-06-21udpencap_port should be taken from dst transportHakan Olsson
2004-06-21When switching from main to encap transport, copy dst port ifHakan Olsson
2004-06-21Strip away umask bits in monitor_fopen(). hshoexer@ ok.Hakan Olsson
2004-06-21style nitHakan Olsson
2004-06-21undo double-patch; Dries SchellekensMarkus Friedl
2004-06-21Don't write too much IKE data in packet captureHakan Olsson
2004-06-21Packet capture should add the ESP-marker when NAT-T is active.Hakan Olsson
2004-06-21Tell the kernel to enable ESP-in-UDP encapsulation when we haveHakan Olsson
2004-06-21Port floating (500->4500) for p1 and p2 exchanges.Hakan Olsson
2004-06-20message_parse_payloads should accept payloads in the private range.Hakan Olsson
2004-06-20Make the payload array in struct message dynamic, since we need to handleHakan Olsson
2004-06-20NAT-Traversal for isakmpd. Work in progress...Hakan Olsson
2004-06-20A start towards Dead Peer Detection (DPD) support, as specified in RFC 3706Hakan Olsson
2004-06-20Some vendors send the last Aggressive Mode message unencrypted, which weHakan Olsson
2004-06-20To make debugging the unprivileged child process easier, make 'isakmpd -dd'Hakan Olsson
2004-06-17Yet another bunch of memleask found and fixed by Patrick Latifi. Thanks!Hans-Joerg Hoexer
2004-06-17Plug a memleak. Found and fixed (and some cleanup) by Patrick Latifi.Hans-Joerg Hoexer
2004-06-17Evaluate result of X509_verify_cert() more carefully.Hans-Joerg Hoexer
2004-06-16Fix wrong pointer dereference and plug memleak. Found and patch byHans-Joerg Hoexer
2004-06-16fix ipv6-address and ipv6-address-mask mixup.Hans-Joerg Hoexer
2004-06-15also use MSG_AUTHENTICATED flag.Hans-Joerg Hoexer
2004-06-14avoid stat before openHans-Joerg Hoexer
2004-06-14added a missing message_free().Hans-Joerg Hoexer
2004-06-14KNF, style, 80c, etc. hshoexer@ okHakan Olsson
2004-06-11typo in commentBrad Smith
2004-06-10Mark authenticated messages explicitly. Better check for authentication beforeHans-Joerg Hoexer
2004-06-09Style nits. hshoexer@ okHakan Olsson
2004-06-09only accept DELETEs during an authenticated INFORMATIONAL exchange.Hans-Joerg Hoexer
2004-06-06Style (KNF, 80c). No binary change.Hakan Olsson
2004-06-02remove unused BIO-functions.Hans-Joerg Hoexer
2004-05-26do not leak fd on error path.Hans-Joerg Hoexer
2004-05-24Use correct function names in log messages. Kill some spaces.Hans-Joerg Hoexer
2004-05-23More KNF. Mainly spaces and line-wraps, no binary change.Hans-Joerg Hoexer
2004-05-23remove excessive monitor_ prefixesTheo de Raadt
2004-05-23stat before open is flawedTheo de Raadt
2004-05-23greater care with argumentsTheo de Raadt
2004-05-19Permit symbolic protocol and service names, such as "Protocol= tcp", in theHakan Olsson
2004-05-14Some more KNF, no binary change.Hans-Joerg Hoexer
2004-05-13Extensions to the FIFO interface:Hakan Olsson
2004-05-1064bit gcc saw missing castTheo de Raadt
2004-05-06KNF cleanup. hshoexer@ okHakan Olsson
2004-05-06Obsolete. jakob@ ok.Hakan Olsson
2004-05-03KNF. ok ho@Hans-Joerg Hoexer
2004-04-29Better checking of minimum payload lengths. Drop out safely when an unknownHans-Joerg Hoexer
2004-04-28remove unused variable and shorten names of two other. Removed some spacesHans-Joerg Hoexer