summaryrefslogtreecommitdiff
path: root/sbin/isakmpd
AgeCommit message (Expand)Author
2005-10-27Do not touch LIST_* macro internals.Hans-Joerg Hoexer
2005-10-26don't send DPD messages before the exchange is finialized, otherwiseMarkus Friedl
2005-10-25some small knf, ok ho@Hans-Joerg Hoexer
2005-10-25Do not send a message when no transport is available.Hans-Joerg Hoexer
2005-10-06improve examples and show how to use KEY_LENGTH. Slightly different fix thanHans-Joerg Hoexer
2005-09-23Document new UI commandsHans-Joerg Hoexer
2005-09-23Provide UI commands to delete phase 1 SAs.Hans-Joerg Hoexer
2005-08-25read the information from the INADDR_ANY socket and do not loop ifMarkus Friedl
2005-08-23note that RSA_SIG should be part of the "Transforms" tag when settingJason McIntyre
2005-08-23`DSS' is unsupported, so remove references to it;Jason McIntyre
2005-08-09Normalize attribute values before comparison. Unbreaks interop with netscreen.Hans-Joerg Hoexer
2005-08-02Make sure to always load at least the default configuration values. Fixes aHans-Joerg Hoexer
2005-07-25Use payload NAT-D or NAT-D-DRAFT according to NAT-T vendor ID advertised by theHans-Joerg Hoexer
2005-07-25output some more information on UI command "S"Hans-Joerg Hoexer
2005-07-22spacing and tiny knfHans-Joerg Hoexer
2005-07-20revert one TAILQ_FOREACH conversion from r1.112 which wasMoritz Jodeit
2005-07-14fix some memleaks. ok hshoexer@Moritz Jodeit
2005-07-05fix commentHans-Joerg Hoexer
2005-07-05use correct function name in log message, tiny KNFHans-Joerg Hoexer
2005-06-26indentation/white space cleanup, no binary changeHans-Joerg Hoexer
2005-06-25/* Fallthrough. */ -> /* FALLTHROUGH */Hans-Joerg Hoexer
2005-06-25typo in commentHans-Joerg Hoexer
2005-06-25Use correct local ID in phase 1 when using IPV[46]_ADDR.Hans-Joerg Hoexer
2005-06-14add ENCAP_UDP_{TUNNEL,TRANSPORT} types according to rfc 3947Hans-Joerg Hoexer
2005-06-13Allow isakmpd to write a pid file when /var is a subdir (e.g. /usr/var)Todd C. Miller
2005-06-11grammar;Jason McIntyre
2005-06-04undo last commit, all memory is already freed by udp_remove()Hans-Joerg Hoexer
2005-06-04Clarify that for -i/-R only paths beginning with /var/run are valid.Hans-Joerg Hoexer
2005-06-02unbreak port floating, noticed by sean at obstacle9 dot comHans-Joerg Hoexer
2005-06-02expand the section on pki:Jason McIntyre
2005-06-01Fix memory leak. OK hshoexerChad Loder
2005-06-01Fix memory leaks. OK hshoexerChad Loder
2005-06-01This file is outdated, everything needed for setting up PKI is in the man pagesHans-Joerg Hoexer
2005-05-31certpatch is gone, noticed by david@Hans-Joerg Hoexer
2005-05-28ooopsHans-Joerg Hoexer
2005-05-28Remove current state code, it's bogus. We'll redo this.Hans-Joerg Hoexer
2005-05-28do sanity checking on directoy entries. ok hshoexer@Moritz Jodeit
2005-05-28Cleanup sample configurations a bit; more AES, less MD5, remove fields weHakan Olsson
2005-05-28introduce new readdir implementation for the monitor.Moritz Jodeit
2005-05-28make path checking in the monitor a lot easier. ok hshoexer@Moritz Jodeit
2005-05-27Make monitor.c use unsigned lengths in messages. Makes this compileChad Loder
2005-05-27Additional paranoia. OK hshoexerChad Loder
2005-05-27o only pass signals from monitor to slave when pid is validMoritz Jodeit
2005-05-27move m_state.s directly into must_{read,write} instead of passingMoritz Jodeit
2005-05-27guarantee nul-termination in the monitor, we must. ok cloder@ hshoexer@Moritz Jodeit
2005-05-26simplify read/write between child and monitorHans-Joerg Hoexer
2005-05-26Add ARGSUSED for lint, one comment for meHans-Joerg Hoexer
2005-05-26Use TAILQ_FOREACH where possible, remove payload_last()Hans-Joerg Hoexer
2005-05-26add log_errorx() which doesn't print the errno value. ok hshoexer@Moritz Jodeit
2005-05-26introduce ISAKMP_PAYLOAD_MAXHans-Joerg Hoexer