Age | Commit message (Expand) | Author |
2011-04-16 | Allow -v (verbose logging) to work if a -D option is supplied. | Stuart Henderson |
2011-04-06 | Avoid using NULL in non-pointer contexts: use 0 for integer values and '\0' | Miod Vallat |
2011-02-03 | When binding to addresses, ignore any IP address not in the current | Peter Hessler |
2010-12-09 | When looking up an SA based on peer address, also check the port | Martin Hedenfal |
2010-11-29 | make key exchange faster by not checking the predefined groups with DH_check() | Markus Friedl |
2010-10-19 | convert to fuse cast from the libcrypto. with a simplification nit from | Mike Belopuhov |
2010-10-18 | as determined 4 years ago, FortiGate needs DOI of 0 responses to DPD | Todd T. Fries |
2010-10-15 | Switch the remaining users of libdes in src to libcrypto, | Jonathan Gray |
2010-09-22 | Support for use of AES-GCM-16 (as AESGCM) and ENCR_NULL_AUTH_AES_GMAC | Mike Belopuhov |
2010-08-04 | fixup keylength for aes-128-cbc in quickmode | Theo de Raadt |
2010-06-29 | Replace the hand-crafted Diffie-Hellman implementation in isakmpd with | Reyk Floeter |
2010-06-07 | make clearer the relationship between isakmpd and ikev1; and iked and ikev2; | Jason McIntyre |
2010-06-03 | update the manpages for isakmpd(8) and ipsec.conf(5) to point to iked(8) | Reyk Floeter |
2010-05-10 | Various comment typos. 'wether' -> 'whether' (most popular), 'possiblity' -> | Kenneth R Westerback |
2010-04-15 | Log when isakmpd starts - patch from Toni Mueller | lum |
2010-04-06 | fix some more dodgy "-indent"; aucat.1 has some too, but i'll leave that for | Jason McIntyre |
2010-03-26 | dispense with some wacky escape sequences; | Jason McIntyre |
2010-03-04 | don't crash on invalid phase 2 IDs; from hshoexer; ok sthen@ | Markus Friedl |
2010-01-10 | only substract ISAKMP_ID_DATA_OFF once. otherwise 'buf' might overflow | Markus Friedl |
2010-01-03 | Neither .Pp nor unqualified text are allowed at the top level of .Bl; | Ingo Schwarze |
2009-11-13 | fix a few memory leaks found by parfait; ok hshoexer | Theo de Raadt |
2009-06-25 | Add missing RTM_VERSION check. This is needed before accessing other data | Claudio Jeker |
2009-06-05 | rtm->rtm_hdrlen conversion | Chris Cappuccio |
2009-01-29 | Improve logging: | Hans-Joerg Hoexer |
2009-01-28 | cleaning up my tree: trivial KNF and a comment fix. | Hans-Joerg Hoexer |
2009-01-28 | Remove some dead (#if 0) code. | Hans-Joerg Hoexer |
2009-01-20 | Add support to isakmpd(8) and ipsecctl(8) to install SA's with a | Marco Pfatschbacher |
2008-12-22 | mark log_fatal() and monitor_exit() as __dead, as they do not return. | Hans-Joerg Hoexer |
2008-11-11 | Use rfc2409 conform notification message when client identities are | Hans-Joerg Hoexer |
2008-10-21 | do not listen on tentative (during DAD), duplicated (after DAD) or | Markus Friedl |
2008-09-06 | adapt to API changes in OpenSSL 0.9.8h | Damien Miller |
2008-09-06 | adapt to sha2(3) API changes; ok millert@ | Damien Miller |
2008-07-22 | If isakmpd is started with -4 or -6, virtual_get_default() may | Alexander Bluhm |
2008-07-01 | Isakmpd acquire mode did not work with a config generated from | Alexander Bluhm |
2008-06-10 | Arguments to fifo commands were limited to 80 bytes. That is too | Alexander Bluhm |
2008-06-10 | Fix implementation of IN6_IS_ADDR_FULL so that IPV6_ADDR is used | Alexander Bluhm |
2008-05-12 | Error out with usage line if additional arguments are given after the | Pierre-Yves Ritschard |
2008-03-24 | msg_controllen has to be CMSG_SPACE so that the kernel can account for | Theo de Raadt |
2008-03-15 | Repair the simple cases for msg_controllen where it should just be | Theo de Raadt |
2008-03-13 | Correct CMSG_SPACE and CMSG_LEN usage everywhere in the tree. Due to | Theo de Raadt |
2008-03-02 | Use a union to ensure alignment of the cmsg. | Hans-Joerg Hoexer |
2008-02-17 | Define default configurations for AES-192 and AES-256. From Mitja Muzenic | Hans-Joerg Hoexer |
2008-02-06 | Fix possible memory leaks when sending phase 1 IDs. | Moritz Jodeit |
2008-01-29 | fix race in makefile | Marc Espie |
2007-09-02 | more malloc(n * m) -> calloc(n, m); from Igor Zinovik | Theo de Raadt |
2007-09-02 | use calloc() to avoid malloc(n * m) overflows; checked by djm canacar jsg | Theo de Raadt |
2007-08-15 | Remove a superflous debug fprintf. | Hans-Joerg Hoexer |
2007-08-11 | Do not complain about being not able to read non-existing files. Minor | Hans-Joerg Hoexer |
2007-08-07 | m_priv_req_readdir(): check file type after fstat, since d_type | Markus Friedl |
2007-08-05 | Allow key exchange with RSA signature authentication to work with | Tom Cosgrove |