| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2004-05-04 | remove unused var; henning ok | Theo de Raadt | |
| 2004-05-04 | Correctly plug the memory leak and fix a error message. | Claudio Jeker | |
| 2004-05-03 | little KNF issue | Henning Brauer | |
| 2004-04-30 | remove MAX_PREFIX_PER_AS debug gunk, claudio djm ok | Henning Brauer | |
| 2004-04-30 | plug memory leaks; henning ok | Theo de Raadt | |
| 2004-04-30 | spelling | Theo de Raadt | |
| 2004-04-29 | sock -> fd; ok henning | Theo de Raadt | |
| 2004-04-28 | rename sock to fd | Theo de Raadt | |
| 2004-04-28 | Pointer that are used later in the code should be initalized. Fixes a crash | Claudio Jeker | |
| noticed by Henning. OK henning@ | |||
| 2004-04-28 | if a peer follows the extremely misgiuded path that the RFCs just barely allow | Henning Brauer | |
| to send a NOTIFICATION and thus ternminating the session when it sees a capability it doesn't support (who would guess: zebra does so), parse the data section of the notifcication to find out what what capabilties it didn't like and do not advertise them the next time the session gets up. In case we get a notification about unsupported capabilities with an empty data part (don't ask for RFCs... and guess who does that), disable capabilty announcement alltogether. claudio ok | |||
| 2004-04-28 | FILE * leak; henning ja ja ja ja | Theo de Raadt | |
| 2004-04-28 | support for AH flows and SAs | Markus Friedl | |
| 2004-04-28 | Unbreak the stuff that I commited first that was totaly broken. OK henning@ | Claudio Jeker | |
| 2004-04-28 | allow ah/esp spec with IKE, markus ok | Henning Brauer | |
| 2004-04-28 | do not give up on ESRCH, someone might have mucked with ipsecadm behind | Henning Brauer | |
| our back, markus ok | |||
| 2004-04-28 | make this at least compile | Henning Brauer | |
| 2004-04-28 | make sure send and reply are in sync; ok henning | Markus Friedl | |
| 2004-04-28 | Enable route refresh in the RDE. Now peer can request route refreshes. | Claudio Jeker | |
| OK henning@ | |||
| 2004-04-28 | keep track of which ipsec/md5 SAs we inserted - ESRCH on blind removal | Henning Brauer | |
| otherwise, markus ok | |||
| 2004-04-28 | prevent multiple auth methods to be specified | Henning Brauer | |
| 2004-04-28 | spacing | Theo de Raadt | |
| 2004-04-28 | remove XXX that is wrong | Theo de Raadt | |
| 2004-04-28 | spacing | Henning Brauer | |
| 2004-04-28 | don't load SAs into the kernel if IKE is used. | Markus Friedl | |
| 2004-04-28 | prefix the auth related defines by AUTH_, we had a name clash, markus ok | Henning Brauer | |
| 2004-04-27 | teach printconf about all this shiny new ipsec stuff | Henning Brauer | |
| 2004-04-27 | set conf.auth.methodod for md5, too | Markus Friedl | |
| 2004-04-27 | ike before in | Henning Brauer | |
| 2004-04-27 | rename the ipsec struct to auth, move all tcpmd5 related fields in there, and | Henning Brauer | |
| add a generic "method" field that expresses what method (none/md5sig/ipsec manual/ipsec ike) is in use markus ok | |||
| 2004-04-27 | parser parts for ipsec ike, markus ok | Henning Brauer | |
| 2004-04-27 | two missing breaks, repairs tcpmd5, with markus | Henning Brauer | |
| 2004-04-27 | restrict the ipsec flows to BGP only; ok henning | Markus Friedl | |
| 2004-04-27 | unbreak^2 | Henning Brauer | |
| 2004-04-27 | repair | Henning Brauer | |
| 2004-04-27 | crud stripping; henning ok | Theo de Raadt | |
| 2004-04-27 | do the errno ERANGE dance around a strtol; henning ok | Theo de Raadt | |
| 2004-04-27 | announce route refresh capability, and parse announced route refresh capa | Henning Brauer | |
| 2004-04-27 | initial route refresh support per RFC2918 | Henning Brauer | |
| process incoming route refresh request and notify the RDE not advertised via capabilities yet, claudio ok | |||
| 2004-04-27 | curpeer must be set back to curgroup, not NULL | Henning Brauer | |
| 2004-04-26 | need more checks on the keys | Henning Brauer | |
| 2004-04-26 | unbreak | Henning Brauer | |
| 2004-04-26 | load ipsec SAs into the kernel and enable them. | Markus Friedl | |
| 2004-04-26 | don't forget to set keylen, markus | Henning Brauer | |
| 2004-04-26 | parser support for setting ipsec keys and such, markus ok | Henning Brauer | |
| 2004-04-26 | fix printing template neighbors | Henning Brauer | |
| 2004-04-26 | need keylen too, markus | Henning Brauer | |
| 2004-04-26 | structs for ipsec, with markus | Henning Brauer | |
| 2004-04-26 | announce multiprotocol capabilities - IPv4 multicast for now | Henning Brauer | |
| this implies ourgoing capabilities annoucnement is there and just needs the values to be filled in for other shitz we'll support soonish | |||
| 2004-04-26 | Cleanup the decision function and take the age of the entry into account. | Claudio Jeker | |
| Prefer older, more stable entries. OK henning@ | |||
| 2004-04-25 | better error logging in parse_capabilities() | Henning Brauer | |
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |