summaryrefslogtreecommitdiff
path: root/sbin/isakmpd
AgeCommit message (Expand)Author
2005-03-05No need to allocate a local digest buffer. Cleanup error path. hshoexer@ ok.Hakan Olsson
2005-03-05No need to use a local hashsize. hshoexer@ ok.Hakan Olsson
2005-03-05Silence a couple of annoying gcc3 warnings. hshoexer@ ok.Hakan Olsson
2005-03-05Add RFC3947 NAT-T vendor ID string. hshoexer@ ok.Hakan Olsson
2005-03-05No need for err.h. hshoexer@ okHakan Olsson
2005-03-04remove unused variable.Hans-Joerg Hoexer
2005-03-04cleanup binding and cloning functions, use text2port(), correctlyHans-Joerg Hoexer
2005-03-04remove unused function udp_decode_port(), add modified version as text2port() toHans-Joerg Hoexer
2005-03-04remove unused stuff.Hans-Joerg Hoexer
2005-03-04remove unused variable.Hans-Joerg Hoexer
2005-03-04fix leak when a phase 2 SA cannot create an exchange for the matching phase 1Markus Friedl
2005-03-03fix typo in log msg.Moritz Jodeit
2005-03-03handle return value of snprintf more carefullyHans-Joerg Hoexer
2005-03-02correct function name in log messageHans-Joerg Hoexer
2005-03-02knf, linewrapping, whitespaces, no binary changeHans-Joerg Hoexer
2005-02-27cleanup correctly in some error paths.Patrick Latifi
2005-02-27where possible, use bzero instead of memsetHans-Joerg Hoexer
2005-02-25forgot to remove -P from getopt().Hans-Joerg Hoexer
2005-02-25Zap -P option. It has never done anything. While there tweak descripton ofHans-Joerg Hoexer
2005-02-25Fix an obviously incorrect call to memset. '0' and 0 are not the sameChad Loder
2005-02-24disable the SA dpd timer on sa_free(). this avoid a raceMarkus Friedl
2005-02-24dpd_find_sa: only ready SAs, otherwise DPD will delete SAs owned byMarkus Friedl
2005-02-24Add -N switch to select port for udpencap. Thus it's possible to run multipleHans-Joerg Hoexer
2005-02-24Never respond to 0-length UDP packets. Reduces, but does not eliminateChad Loder
2005-02-22fix wrong line break in comment.Moritz Jodeit
2005-02-22build delete messages for isakmp sa correctly.Hans-Joerg Hoexer
2005-02-22better error messagesHans-Joerg Hoexer
2005-02-16On shutdown also send delete messages for isakmp SAs.Hans-Joerg Hoexer
2005-02-10Also add DPD.Hakan Olsson
2005-02-10Make it compile.Hakan Olsson
2005-02-10Add NAT-T here too.Hakan Olsson
2005-02-10ignore_policy should be ifdef USE_POLICY. hshoexer@ okHakan Olsson
2005-01-31Avoid dereferencing a NULL pointerHans-Joerg Hoexer
2005-01-31Remove unused stuff.Hans-Joerg Hoexer
2005-01-30Avoid null pointer dereference when deleting not fully established SAs.Hans-Joerg Hoexer
2005-01-29some knf and space killing, no binary change.Hans-Joerg Hoexer
2005-01-29Handle some pointers more carefully. From pat@ some while ago.Hans-Joerg Hoexer
2005-01-05kill whitespace;Jason McIntyre
2005-01-05Discourage using aggressive mode.Hans-Joerg Hoexer
2004-12-28proper portable C; ok hshoexerTheo de Raadt
2004-12-28Correctly determine length of rsa key passed by the kernel to userland. FoundHans-Joerg Hoexer
2004-12-27Fix broken pointer arithmetic when receiving a RSA key from the kernel. FoundHans-Joerg Hoexer
2004-12-22Fix parenthesis mismatch, from Stefan Miltchev. Thanks!Hans-Joerg Hoexer
2004-12-14Reword comment a bit for clarity. hshoexer@ ok.Hakan Olsson
2004-12-14Allow the Address, Network, or Netmask values of the <IPsec-ID> to beRyan Thomas McBride
2004-12-13make sure the isakmpd_s has id_r/s set; ok hshoexer, hoMarkus Friedl
2004-12-10check msg->isakmp_sa != NULL before the transport gets updated; ok hshoexerMarkus Friedl
2004-12-081. allow up to DPD_RETRANS_MAX retransmitted R_U_THERE messages.Markus Friedl
2004-12-08NAT/T: replace the isakmpd SA transport with the transport from theMarkus Friedl
2004-12-06RFC2409 mandates min and max nonce lengths. hshoexer@ ok.Hakan Olsson