summaryrefslogtreecommitdiff
path: root/sbin
AgeCommit message (Expand)Author
2010-06-27fix the length check for ASN1_ID Ids.Reyk Floeter
2010-06-27Verify that the subjectAltName extension is present and matches theReyk Floeter
2010-06-27Instead of modifying and fiddling with the IKE SA in the payloadReyk Floeter
2010-06-27print the required bits as a stringReyk Floeter
2010-06-27cycle static buffers in print_bits()Reyk Floeter
2010-06-26malloc/strlcpy -> strdup. Apparently I forgot to commit this one withKenneth R Westerback
2010-06-26Whitespace.Kenneth R Westerback
2010-06-26revert the files that have been accidentally committed with myReyk Floeter
2010-06-26Add a way to enable and set the keepalive parameters for gre(4).Claudio Jeker
2010-06-26mixing any (AF_UNSPEC) with AF_INET/INET6 is not an address family mismatchReyk Floeter
2010-06-26Include the Id type in the generated SA tag that is passed to theReyk Floeter
2010-06-26allow a user to set a -c count of 0.Peter Hessler
2010-06-25remove -m (merge).Henning Brauer
2010-06-24unbreak the ikectl log verbose/brief commands.Reyk Floeter
2010-06-23rename the ec groups to either ec2n or ecp (eg. ec155 -> ec2n155 orReyk Floeter
2010-06-23further cleanup of the dh code:Reyk Floeter
2010-06-22rename devname->devicename to prevent shadowing devname(3). ok marco jsingDarren Tucker
2010-06-18Make bioctl(8) disklabel UID friendly by attempting to open the deviceJoel Sing
2010-06-15When fsck_ffs is used with disklabel UIDs the hot root test fails inJoel Sing
2010-06-15fix keyword sort orderReyk Floeter
2010-06-15only compare the SPIi in the SA treeReyk Floeter
2010-06-14check if cert is available and validReyk Floeter
2010-06-14Initiator mode with certificates; needs more work but works.Reyk Floeter
2010-06-14Initial support for initiator mode which allows to run iked as aReyk Floeter
2010-06-14the ikesa prf config option is currently brokenReyk Floeter
2010-06-14fix block length for AESReyk Floeter
2010-06-14fix EAP responder modeReyk Floeter
2010-06-14NAT detection again: make it work in initiator and responder modeReyk Floeter
2010-06-14remove policy lookup debug messageReyk Floeter
2010-06-14NAT detection with SPIr is always 0Reyk Floeter
2010-06-14restructure code a bit to move closer to initiator mode:Reyk Floeter
2010-06-14cleanup messages and parsed information correctlyReyk Floeter
2010-06-14add define for saproto 0Reyk Floeter
2010-06-14More code for initiator mode (not finished yet)Reyk Floeter
2010-06-11add some infrastructure to support timers and initiator mode later.Reyk Floeter
2010-06-11tweak the code slightly so we can remove -lsslJonathan Gray
2010-06-10don't print keywords as underlined arguments.Reyk Floeter
2010-06-10update usage()Reyk Floeter
2010-06-10Add the -S flag which does the same as "set passive" but matches theReyk Floeter
2010-06-10move a bzero of the x509 store context higher up so theJonathan Gray
2010-06-10add new commands: the couple/decouple commands will set loading of theReyk Floeter
2010-06-10Add another tree to lookup policy SAs by peer address.Reyk Floeter
2010-06-10simplify the pfkey code by adding a pfkey_write() functionReyk Floeter
2010-06-10small fix for sockaddr_cmp()Reyk Floeter
2010-06-10i don't like splitting source code in too many source files but ikev2.cReyk Floeter
2010-06-10only call RB_REMOVE once when removing an SA.Reyk Floeter
2010-06-09add missing headers needed for opendev() and close()Charles Longeau
2010-06-07$OpenBSD$Jonathan Gray
2010-06-07Oups, an unused prototype sneaked into ifconfig. Found by jsg@Claudio Jeker
2010-06-07switch iked pki files to /etc/iked, discussed with reyk.Jonathan Gray
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-23 09:23:17 +0000