summaryrefslogtreecommitdiff
path: root/sbin
AgeCommit message (Expand)Author
2020-12-22Log SPI with SPI_SH() wherever possible.tobhe
2020-12-21Use policy_test() to reassign existing SAs to updated policies aftertobhe
2020-12-20Don't leak ipsec_hosts when building hosts_list.tobhe
2020-12-17Use strtonum() instead of atoi() to parse port option.tobhe
2020-12-17Sort command line options.tobhe
2020-12-16Fail to parse rules with invalid rangeskn
2020-12-16Reject rules with invalid port rangeskn
2020-12-15Fix leak of REQUEST string.tobhe
2020-12-13Make sure flow src and dst addresses have the same address family.tobhe
2020-12-11The keyword "any" does not actually work properly for traffic selectors.tobhe
2020-12-11Introduce query_imsg2str() to simplify printing "qname class type".Florian Obser
2020-12-11The recent fix to handle large answers in unwind (errata #5 for 6.8)Florian Obser
2020-12-11Warning: arithmetic on a pointer to void is a GNU extension; mergedFlorian Obser
2020-12-11Sprinkle in some static to prevent missing prototype warnings; mergedFlorian Obser
2020-12-11sync to libunbound 1.13.0Florian Obser
2020-12-11pass down the `skip' flag to the mountfs() function in the case ofRobert Nagy
2020-12-10Simplify '-i' handling, failing immediately during command line parsingKenneth R Westerback
2020-12-10Print valid ikesa/childsa configuration at startup. Comma seperatedtobhe
2020-12-07synproxy should be processing incoming SYN packets only.Alexandr Nedvedicky
2020-12-06Oops. Missed chunk in previous.Kenneth R Westerback
2020-12-06Add support for RSASSA-PSS signature verification (RFC 7427).tobhe
2020-12-06fatal() immediately whem parsing command line option '-c' reveals a non-existantKenneth R Westerback
2020-12-05Make len unsigned.tobhe
2020-12-04Log pfkey type and message length on write failure.tobhe
2020-12-03Fix type mismatch. auth_method should be uint8_t.tobhe
2020-12-02The skip steps must be set up for each attribute independentlytobhe
2020-12-01Don't log ESRCH as warning.tobhe
2020-12-01Sync get_ifrdomain() to rad(8) version by removing a useles (void)Florian Obser
2020-12-01Extract another couple of chunks from main() into helper functions,Kenneth R Westerback
2020-11-30We need to rekey every child SA (even if acquired): Otherwise we cantobhe
2020-11-29Add 'set stickyaddress' option. If this option is enabled, iked will trytobhe
2020-11-29Fix previous; we need to set the icmp6ev in the interface to NULLFlorian Obser
2020-11-28improve legibility of the newly introduced unref_icmp6ev() before thisChristian Weisgerber
2020-11-28Add support for multiple address pools. The parser already allowstobhe
2020-11-28An interface might have disappeared or switched rdomains while weFlorian Obser
2020-11-28Reduce code duplication by introducing unref_icmp6ev().Florian Obser
2020-11-28Handle the case of an autoconf interface changing its rdomain.Florian Obser
2020-11-27Remove redundant state change. ikev2_ikesa_delete() sets the correct state.tobhe
2020-11-27Shuffle code relating to initializing the physical interface and theKenneth R Westerback
2020-11-26Use a counter instead of random IV for AES-GCM. Security depends ontobhe
2020-11-25Fix proposal error handling. If a proposal contains an unknown transformtobhe
2020-11-25Teach route(8) about the names of the IEEE80211_F_* flags.Kenneth R Westerback
2020-11-25When processing proposed static routes (inc. default route) ignoreKenneth R Westerback
2020-11-24Fix duplicate sa->sa_cp assignment.tobhe
2020-11-23Ignore duplicate sigsha2 notify, don't fail the exchange.tobhe
2020-11-22Fix comment typo.tobhe
2020-11-21No need to update ifi->state just before setting quit to TERMINATE.Kenneth R Westerback
2020-11-21Clean up NATT hack. Pass 'frompeer' as parameter instead of manipulatingtobhe
2020-11-21No need to update resolv.conf when renewing a lease does not result in anyKenneth R Westerback
2020-11-21When REBOOT'ing it is necessary to apply_defaults() to the recordedKenneth R Westerback
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-23 04:32:19 +0000