summaryrefslogtreecommitdiff
path: root/sbin/isakmpd
AgeCommit message (Expand)Author
2006-12-05some carp/sasyncd bits from msf and myself;Jason McIntyre
2006-12-05Don't leak message structures, when we see unsupported payloadsMoritz Jodeit
2006-11-30new ui command 'rmv': removes an entry from a list, thus reversing anMarkus Friedl
2006-11-29no need to document generation of local.key 3 times;Jason McIntyre
2006-11-29zap trailing spaces;Jason McIntyre
2006-11-29Document the new location of local.pub, and clarify the fact that local.keyRyan Thomas McBride
2006-11-28do not re-add existing entries; ok hshoexerMarkus Friedl
2006-11-24add support to tag ipsec traffic belonging to specific IKE-initiatedReyk Floeter
2006-11-09support public keys w/o SubjectPublicKeyInfo (format: BEGIN RSA PUBLIC KEY)Markus Friedl
2006-10-29Fix TAILQ usage, preventing crashesPedro Martelletto
2006-10-18do not name FILE * variables "fd" since it is confusingTheo de Raadt
2006-10-05Reword sentence to fix grammar nit.Tom Cosgrove
2006-09-19Use S_IS* macros insted of masking with S_IF* flags. The latter mayOtto Moerbeek
2006-09-15Remove "Delete-SAs" config option. This was needed for interactionHans-Joerg Hoexer
2006-09-09point people towards ipsec.conf.5; after some discussion w/ reykJason McIntyre
2006-09-01use shell-independent examples;Jason McIntyre
2006-09-01Add a new UI command to force isakmpd into passive only mode.Marco Pfatschbacher
2006-08-31document an issue with subjectAltName found by reyk;Jason McIntyre
2006-08-31remove a confusing sentence; ok hshoexer hoJason McIntyre
2006-08-30fix isakmpd -Ka, as used by bgpd, or acquire flows set up via ipsecctl.Henning Brauer
2006-08-30rewording; from reyk cloder hshoexerJason McIntyre
2006-08-30need to retry writing to pfkey socket on EAGAIN, ok theo hshoexerHenning Brauer
2006-08-30Make SA deletion on shutdown the default again. Use -S for failoverHans-Joerg Hoexer
2006-08-30Back out r1.103, which caused SA's to leak until memory was exhausted.Chad Loder
2006-08-30do not call pf_key_v2_disable_sa twice; ok hshoexer, hoMarkus Friedl
2006-08-29Properly define quick mode suites for AH. With naddy.Hans-Joerg Hoexer
2006-08-22correct function name in log message.Hans-Joerg Hoexer
2006-07-24Style; return is not a function. hshoexer@ ok.Hakan Olsson
2006-07-02Let isakmpd send out a vendor ID announcing isamkpds release version.Hans-Joerg Hoexer
2006-06-29Document that pcap files can only be writen to the /var/run directory.Hans-Joerg Hoexer
2006-06-18clean up some gotos. Originally from Andrey Matveev <evol at onlineHans-Joerg Hoexer
2006-06-17Do not leak file descriptor in error path. From Andrey MatveevHans-Joerg Hoexer
2006-06-14indentation.Hans-Joerg Hoexer
2006-06-11Document AESCTR for quick mode and SHA2-* for main mode. Help by jmc.Hans-Joerg Hoexer
2006-06-11tweaks;Jason McIntyre
2006-06-10Document -S and the "Delete-SAs" tag. Those will enable SA deletionHans-Joerg Hoexer
2006-06-10Make deletion of SAs on shutdown optional. The default behaviourHans-Joerg Hoexer
2006-06-10Allow isakmpd to use a different private rsa key per isakmp ID. Hans wrote th...Mathieu Sauve-Frankel
2006-06-10This shouldn't have been commited yet.Hans-Joerg Hoexer
2006-06-10support sha2 for main mode hmacs and aesctr for quick mode encryption.Hans-Joerg Hoexer
2006-06-09Allow for AH the use of the authentication algorithms added a while ago.Christian Weisgerber
2006-06-02Big spelling cleanup, no binary change. From david@Hans-Joerg Hoexer
2006-06-02Big whitespace cleanup.Hans-Joerg Hoexer
2006-06-01Fix a commentHans-Joerg Hoexer
2006-05-31tiny KNFHans-Joerg Hoexer
2006-05-31Make sure, that phase 1 SAs of active connections stay alive. Fixes a DPDHans-Joerg Hoexer
2006-05-30fix SA grouping. Now, esp+ah and ah+esp works again.Hans-Joerg Hoexer
2006-05-29Do not use C++ comments. Noticed by markus.Hans-Joerg Hoexer
2006-05-29export pf_key_v2_disable_sa() (unbreaks build)Markus Friedl
2006-05-29Oops, return after calling sa_release()Ryan Thomas McBride