Age | Commit message (Expand) | Author |
2017-02-28 | Depending on the addresses, ipsecctl(8) automatically groups sa | Alexander Bluhm |
2017-02-03 | Stop assuming that in_{addr,port}_t are typedefed in <sys/types.h> and | Philip Guenther |
2017-01-04 | Remove modular exponential groups specified in RFC5114 | Mike Belopuhov |
2017-01-01 | Hyphenate compound adjectives 'up-to-date', 'out-of-date' and 'well-known' | Theo Buehler |
2016-09-03 | A commented block starts with | Theo de Raadt |
2016-09-02 | move links from http to https://www.openbsd.org/ | Theo Buehler |
2016-08-26 | Pull in <sys/select.h> for fd_set | Philip Guenther |
2016-04-04 | Fix memory leak. Call proto_free() always to free proto. | YASUOKA Masahiko |
2016-04-02 | Another use for fcntl() and thus of the superfluous 3rd parameter | Kenneth R Westerback |
2016-03-16 | More "(<blah> *)0" -> NULL, avoiding any stdarg functions. | Kenneth R Westerback |
2016-03-10 | Don't retransmit responses for unauthenticated messages. | YASUOKA Masahiko |
2016-03-05 | fix steps for cert creation; | Jason McIntyre |
2016-02-29 | Print ssize_t with %zd; ok deraadt@ mmcc@ | Jeremie Courreges-Anglas |
2016-01-11 | typo fix; from julian hsiao | Jason McIntyre |
2016-01-08 | tweak; from julian hsiao | Jason McIntyre |
2015-12-10 | Remove NULL-checks before free(). ok tb@ | mmcc |
2015-12-09 | Remove plain DES encryption from IPsec. | Christian Weisgerber |
2015-10-15 | A classic case for bzero() -> explicit_bzero() | mmcc |
2015-09-25 | drop useless .Xo and .Bk, and shorten by avoiding some .Sm | Ingo Schwarze |
2015-08-20 | Do not cast a size_t to (unsigned long) to pass it as an argument to malloc. | Theo de Raadt |
2015-08-20 | <stdlib.h> is included, so do not need to cast result from | Theo de Raadt |
2015-06-03 | Do not assume that asprintf() clears the pointer on failure, which | Todd C. Miller |
2015-04-21 | No need to do "size = (size_t)sb.st_size" both before and after | Jonathan Gray |
2015-04-20 | Log if we refuse to continue the exchange when another one that corresponds | Mike Belopuhov |
2015-04-17 | Remove unsupported SADB_X_IDENTTYPE_CONNECTION; OK markus, hshoexer | Mike Belopuhov |
2015-04-14 | Remove support for storing credentials and auth information in the kernel. | Mike Belopuhov |
2015-03-26 | Remove bits of unfinished IPsec proxy support. DNS' KX records, anyone? | Mike Belopuhov |
2015-02-15 | convert bcmp to memcmp | Ted Unangst |
2015-02-07 | When getopt processing flags, many should be flag=1 instead of flag++ | Theo de Raadt |
2015-01-16 | Arguments are just ".Ar", not ".Brq Ar" or even ".Ns { Ns Ar ... Ns }". | Ingo Schwarze |
2015-01-16 | Tweak previous: Do not put punctuation on its own line, put it at the end | Ingo Schwarze |
2015-01-16 | Clean up macros in isakmpd(8). | Anthony J. Bentley |
2015-01-16 | Replace <sys/param.h> with <limits.h> and other less dirty headers where | Theo de Raadt |
2015-01-13 | -/* Backwards compatibility. */ | Theo de Raadt |
2014-12-01 | memcpy abort found an overlap. from dsp at 2f30. ok deraadt | Ted Unangst |
2014-11-19 | Nuke yet more obvious #include duplications. | Kenneth R Westerback |
2014-10-29 | convert simple cases of select() to poll() | Theo de Raadt |
2014-10-25 | Remove unnecessary netinet/in_systm.h include. | Lawrence Teo |
2014-10-22 | Fix error reporting when reallocarray() fails. OK miod@ | Todd C. Miller |
2014-10-18 | Convert malloc() with a size var using multiplication to reallocarray(). | Doug Hogan |
2014-10-12 | DH_compute_key() returns -1 on error but this was not | Jonathan Gray |
2014-10-09 | obvious reallocarray() conversions | Theo de Raadt |
2014-08-25 | Sync dh.[ch] from iked. The files are identical, so any change in | Reyk Floeter |
2014-08-25 | Fix a few fd leaks in isakmpd. | Doug Hogan |
2014-08-23 | Fix double free in ike_auth.c | doug |
2014-08-22 | fix memory leak in isakmpd | doug |
2014-07-11 | add additional includes required to build with -DOPENSSL_NO_DEPRECATED | Jonathan Gray |
2014-05-01 | Correct a test for X509_get_notAfter() failing or returning | Jonathan Gray |
2014-03-11 | For CA generation, go back to using a two-step procedure to create a CSR and | Stuart Henderson |
2014-03-07 | If allocation of 'id' fails, don't try to deref it after 'goto fail'. | Gerhard Roth |