summaryrefslogtreecommitdiff
path: root/sbin/isakmpd
AgeCommit message (Expand)Author
2016-04-04Fix memory leak. Call proto_free() always to free proto.YASUOKA Masahiko
2016-04-02Another use for fcntl() and thus of the superfluous 3rd parameterKenneth R Westerback
2016-03-16More "(<blah> *)0" -> NULL, avoiding any stdarg functions.Kenneth R Westerback
2016-03-10Don't retransmit responses for unauthenticated messages.YASUOKA Masahiko
2016-03-05fix steps for cert creation;Jason McIntyre
2016-02-29Print ssize_t with %zd; ok deraadt@ mmcc@Jeremie Courreges-Anglas
2016-01-11typo fix; from julian hsiaoJason McIntyre
2016-01-08tweak; from julian hsiaoJason McIntyre
2015-12-10Remove NULL-checks before free(). ok tb@mmcc
2015-12-09Remove plain DES encryption from IPsec.Christian Weisgerber
2015-10-15A classic case for bzero() -> explicit_bzero()mmcc
2015-09-25drop useless .Xo and .Bk, and shorten by avoiding some .SmIngo Schwarze
2015-08-20Do not cast a size_t to (unsigned long) to pass it as an argument to malloc.Theo de Raadt
2015-08-20<stdlib.h> is included, so do not need to cast result fromTheo de Raadt
2015-06-03Do not assume that asprintf() clears the pointer on failure, whichTodd C. Miller
2015-04-21No need to do "size = (size_t)sb.st_size" both before and afterJonathan Gray
2015-04-20Log if we refuse to continue the exchange when another one that correspondsMike Belopuhov
2015-04-17Remove unsupported SADB_X_IDENTTYPE_CONNECTION; OK markus, hshoexerMike Belopuhov
2015-04-14Remove support for storing credentials and auth information in the kernel.Mike Belopuhov
2015-03-26Remove bits of unfinished IPsec proxy support. DNS' KX records, anyone?Mike Belopuhov
2015-02-15convert bcmp to memcmpTed Unangst
2015-02-07When getopt processing flags, many should be flag=1 instead of flag++Theo de Raadt
2015-01-16Arguments are just ".Ar", not ".Brq Ar" or even ".Ns { Ns Ar ... Ns }".Ingo Schwarze
2015-01-16Tweak previous: Do not put punctuation on its own line, put it at the endIngo Schwarze
2015-01-16Clean up macros in isakmpd(8).Anthony J. Bentley
2015-01-16Replace <sys/param.h> with <limits.h> and other less dirty headers whereTheo de Raadt
2015-01-13-/* Backwards compatibility. */Theo de Raadt
2014-12-01memcpy abort found an overlap. from dsp at 2f30. ok deraadtTed Unangst
2014-11-19Nuke yet more obvious #include duplications.Kenneth R Westerback
2014-10-29convert simple cases of select() to poll()Theo de Raadt
2014-10-25Remove unnecessary netinet/in_systm.h include.Lawrence Teo
2014-10-22Fix error reporting when reallocarray() fails. OK miod@Todd C. Miller
2014-10-18Convert malloc() with a size var using multiplication to reallocarray().Doug Hogan
2014-10-12DH_compute_key() returns -1 on error but this was notJonathan Gray
2014-10-09obvious reallocarray() conversionsTheo de Raadt
2014-08-25Sync dh.[ch] from iked. The files are identical, so any change inReyk Floeter
2014-08-25Fix a few fd leaks in isakmpd.Doug Hogan
2014-08-23Fix double free in ike_auth.cdoug
2014-08-22fix memory leak in isakmpddoug
2014-07-11add additional includes required to build with -DOPENSSL_NO_DEPRECATEDJonathan Gray
2014-05-01Correct a test for X509_get_notAfter() failing or returningJonathan Gray
2014-03-11For CA generation, go back to using a two-step procedure to create a CSR andStuart Henderson
2014-03-07If allocation of 'id' fails, don't try to deref it after 'goto fail'.Gerhard Roth
2014-01-23Remove a mid-layer which acts like arc4random isn't fairly standard.Theo de Raadt
2014-01-22regrand can die, from millertTheo de Raadt
2014-01-22improve randomization. remove some junk debugging features that areTheo de Raadt
2013-11-22Whole bunch of (unsigned char) casts carefully added for ctype calls.Theo de Raadt
2013-11-21Keep the flow until last IPsec SA is deleted, if the flow is shared byYASUOKA Masahiko
2013-11-14fix parameter types for x509 routinesTheo de Raadt
2013-11-14Add STANDARDS section to isakmpd(8).Anthony J. Bentley