summaryrefslogtreecommitdiff
path: root/sbin
AgeCommit message (Expand)Author
2020-12-16Reject rules with invalid port rangeskn
2020-12-15Fix leak of REQUEST string.tobhe
2020-12-13Make sure flow src and dst addresses have the same address family.tobhe
2020-12-11The keyword "any" does not actually work properly for traffic selectors.tobhe
2020-12-11Introduce query_imsg2str() to simplify printing "qname class type".Florian Obser
2020-12-11The recent fix to handle large answers in unwind (errata #5 for 6.8)Florian Obser
2020-12-11Warning: arithmetic on a pointer to void is a GNU extension; mergedFlorian Obser
2020-12-11Sprinkle in some static to prevent missing prototype warnings; mergedFlorian Obser
2020-12-11sync to libunbound 1.13.0Florian Obser
2020-12-11pass down the `skip' flag to the mountfs() function in the case ofRobert Nagy
2020-12-10Simplify '-i' handling, failing immediately during command line parsingKenneth R Westerback
2020-12-10Print valid ikesa/childsa configuration at startup. Comma seperatedtobhe
2020-12-07synproxy should be processing incoming SYN packets only.Alexandr Nedvedicky
2020-12-06Oops. Missed chunk in previous.Kenneth R Westerback
2020-12-06Add support for RSASSA-PSS signature verification (RFC 7427).tobhe
2020-12-06fatal() immediately whem parsing command line option '-c' reveals a non-existantKenneth R Westerback
2020-12-05Make len unsigned.tobhe
2020-12-04Log pfkey type and message length on write failure.tobhe
2020-12-03Fix type mismatch. auth_method should be uint8_t.tobhe
2020-12-02The skip steps must be set up for each attribute independentlytobhe
2020-12-01Don't log ESRCH as warning.tobhe
2020-12-01Sync get_ifrdomain() to rad(8) version by removing a useles (void)Florian Obser
2020-12-01Extract another couple of chunks from main() into helper functions,Kenneth R Westerback
2020-11-30We need to rekey every child SA (even if acquired): Otherwise we cantobhe
2020-11-29Add 'set stickyaddress' option. If this option is enabled, iked will trytobhe
2020-11-29Fix previous; we need to set the icmp6ev in the interface to NULLFlorian Obser
2020-11-28improve legibility of the newly introduced unref_icmp6ev() before thisChristian Weisgerber
2020-11-28Add support for multiple address pools. The parser already allowstobhe
2020-11-28An interface might have disappeared or switched rdomains while weFlorian Obser
2020-11-28Reduce code duplication by introducing unref_icmp6ev().Florian Obser
2020-11-28Handle the case of an autoconf interface changing its rdomain.Florian Obser
2020-11-27Remove redundant state change. ikev2_ikesa_delete() sets the correct state.tobhe
2020-11-27Shuffle code relating to initializing the physical interface and theKenneth R Westerback
2020-11-26Use a counter instead of random IV for AES-GCM. Security depends ontobhe
2020-11-25Fix proposal error handling. If a proposal contains an unknown transformtobhe
2020-11-25Teach route(8) about the names of the IEEE80211_F_* flags.Kenneth R Westerback
2020-11-25When processing proposed static routes (inc. default route) ignoreKenneth R Westerback
2020-11-24Fix duplicate sa->sa_cp assignment.tobhe
2020-11-23Ignore duplicate sigsha2 notify, don't fail the exchange.tobhe
2020-11-22Fix comment typo.tobhe
2020-11-21No need to update ifi->state just before setting quit to TERMINATE.Kenneth R Westerback
2020-11-21Clean up NATT hack. Pass 'frompeer' as parameter instead of manipulatingtobhe
2020-11-21No need to update resolv.conf when renewing a lease does not result in anyKenneth R Westerback
2020-11-21When REBOOT'ing it is necessary to apply_defaults() to the recordedKenneth R Westerback
2020-11-20The default lease rebind time is 7 * (expiry/8), not 8 * (expiry/7).Kenneth R Westerback
2020-11-20add -s to synopsis and usage; -S before -s in options list;Jason McIntyre
2020-11-20Add -s socket option to specify control socket. This can be useful iftobhe
2020-11-19Avoid spurious resolv.conf updates whenKenneth R Westerback
2020-11-19More sa cleanup + constify.tobhe
2020-11-18Constify sa in ikev2_pld_eap(). The parser code must not change anytobhe
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-30 03:37:54 +0000