![[BACK]](/icons/back.gif){kind=icon}
Up to [local] / src / sbin / ipsecctl
Request diff between arbitrary revisions
Default branch: MAIN
Revision 1.58 / (download) - annotate - [select for diffs], Tue Oct 10 16:16:16 2023 UTC (7 months, 3 weeks ago) by tobhe
Branch: MAIN
CVS Tags: OPENBSD_7_5_BASE,
OPENBSD_7_5,
HEAD
Changes since 1.57: +8 -4 lines
Diff to previous 1.57 (colored)
Print at most pkgsize - hdrsize bytes for pfkey tag and identity to prevent out-of-bounds read in strlen(). ok tb@
Revision 1.57 / (download) - annotate - [select for diffs], Mon Aug 7 04:10:08 2023 UTC (9 months, 3 weeks ago) by dlg
Branch: MAIN
CVS Tags: OPENBSD_7_4_BASE,
OPENBSD_7_4
Changes since 1.56: +21 -1 lines
Diff to previous 1.56 (colored)
add support route based ipsec vpn negotiation with sec(4) via isakmpd. this adds "interface secX" to the grammar that you can use instead of specifying tunnel/transport modes and traffic selectors. if you have config like "ike interface sec0 local ... peer ...", ipsecctl will generate the right config for isakmpd to negotiate esp tunnels for all traffic between 0.0.0.0/0 and 0.0.0.0/0. however, this also specifies that they should be set up as interface SAs in the kernel for use with sec(4). this supports route-based instead of policy based ipsec encapsulation, and allows us to more easily operate with other vendors and products that also offer route-based vpns with opinions about the negotiated policy that doesnt fit with the SPD. support from many including markus@ tobhe@ claudio@ sthen@ patrick@ now is a good time deraadt@
Revision 1.56 / (download) - annotate - [select for diffs], Tue Mar 7 17:43:59 2023 UTC (14 months, 3 weeks ago) by guenther
Branch: MAIN
CVS Tags: OPENBSD_7_3_BASE,
OPENBSD_7_3
Changes since 1.55: +1 -15 lines
Diff to previous 1.55 (colored)
Delete obsolete /* ARGSUSED1 */ lint comments. ok claudio@ cheloha@ krw@ deraadt@ miod@ millert@
Revision 1.55 / (download) - annotate - [select for diffs], Fri Oct 22 12:30:54 2021 UTC (2 years, 7 months ago) by bluhm
Branch: MAIN
CVS Tags: OPENBSD_7_2_BASE,
OPENBSD_7_2,
OPENBSD_7_1_BASE,
OPENBSD_7_1
Changes since 1.54: +1 -5 lines
Diff to previous 1.54 (colored)
After deleting hifn(4) the only provider for the LZS compression algorithm is gone. Reomve all LZS references from the tree. The v42bis in isakmpd also looks unsupported. OK mvs@ patrick@ sthen@
Revision 1.54 / (download) - annotate - [select for diffs], Wed Jul 14 22:39:26 2021 UTC (2 years, 10 months ago) by tobhe
Branch: MAIN
CVS Tags: OPENBSD_7_0_BASE,
OPENBSD_7_0
Changes since 1.53: +11 -1 lines
Diff to previous 1.53 (colored)
Export SA replay counters via pfkey and print with ipsecctl. This is useful for debugging replay window issues with 64 bit sequence numbers in IPsec. ok bluhm@
Revision 1.53 / (download) - annotate - [select for diffs], Mon Jul 5 12:03:42 2021 UTC (2 years, 10 months ago) by tobhe
Branch: MAIN
Changes since 1.52: +11 -1 lines
Diff to previous 1.52 (colored)
Print SA MTU if included in pfkey message. ok bluhm@ sthen@ mpi@
Revision 1.52 / (download) - annotate - [select for diffs], Thu Nov 5 19:28:27 2020 UTC (3 years, 6 months ago) by phessler
Branch: MAIN
CVS Tags: OPENBSD_6_9_BASE,
OPENBSD_6_9
Changes since 1.51: +2 -1 lines
Diff to previous 1.51 (colored)
Enable support for ASN1_DN ipsec identifiers. Tested with multiple Window 10 Pro (ver 2004) clients, and OpenBSD+iked as the server. OK tobhe@ sthen@ kn@
Revision 1.51 / (download) - annotate - [select for diffs], Mon Jun 1 21:00:51 2020 UTC (4 years ago) by tobhe
Branch: MAIN
CVS Tags: OPENBSD_6_8_BASE,
OPENBSD_6_8
Changes since 1.50: +3 -3 lines
Diff to previous 1.50 (colored)
Fix "comparison of integers of different signs" warning. ok patrick@
Revision 1.50 / (download) - annotate - [select for diffs], Thu Apr 23 19:57:01 2020 UTC (4 years, 1 month ago) by tobhe
Branch: MAIN
CVS Tags: OPENBSD_6_7_BASE,
OPENBSD_6_7
Changes since 1.49: +13 -1 lines
Diff to previous 1.49 (colored)
Support SADB_X_EXT_RDOMAIN extension in pfkey dump (-m). ok markus@, patrick@
Revision 1.49 / (download) - annotate - [select for diffs], Wed Jul 3 03:24:02 2019 UTC (4 years, 11 months ago) by deraadt
Branch: MAIN
CVS Tags: OPENBSD_6_6_BASE,
OPENBSD_6_6
Changes since 1.48: +4 -4 lines
Diff to previous 1.48 (colored)
snprintf/vsnprintf return < 0 on error, rather than -1.
Revision 1.48 / (download) - annotate - [select for diffs], Tue Aug 28 15:17:56 2018 UTC (5 years, 9 months ago) by mpi
Branch: MAIN
CVS Tags: OPENBSD_6_5_BASE,
OPENBSD_6_5,
OPENBSD_6_4_BASE,
OPENBSD_6_4
Changes since 1.47: +66 -41 lines
Diff to previous 1.47 (colored)
Display per-TDB counters in verbose mode. ok sthen@
Revision 1.47 / (download) - annotate - [select for diffs], Tue Jul 10 09:35:27 2018 UTC (5 years, 10 months ago) by mpi
Branch: MAIN
Changes since 1.46: +2 -1 lines
Diff to previous 1.46 (colored)
Include <sys/queue.h> instead of relying on kernel headers to include it. ok markus@ as part of a larger diff
Revision 1.46 / (download) - annotate - [select for diffs], Wed Apr 19 15:59:38 2017 UTC (7 years, 1 month ago) by bluhm
Branch: MAIN
CVS Tags: OPENBSD_6_3_BASE,
OPENBSD_6_3,
OPENBSD_6_2_BASE,
OPENBSD_6_2
Changes since 1.45: +2 -2 lines
Diff to previous 1.45 (colored)
Rename all SA groups to bundles consistently. The first kernel commit in 2000 that introduced the features already called them SA bundles. The word group is taken by Diffie-Hellman, reusing it causes confusion. OK hshoexer@
Revision 1.45 / (download) - annotate - [select for diffs], Mon Apr 10 14:32:47 2017 UTC (7 years, 1 month ago) by deraadt
Branch: MAIN
Changes since 1.44: +8 -3 lines
Diff to previous 1.44 (colored)
Found another len += snprintf... ok mikeb
Revision 1.44 / (download) - annotate - [select for diffs], Thu Mar 2 17:44:32 2017 UTC (7 years, 3 months ago) by bluhm
Branch: MAIN
CVS Tags: OPENBSD_6_1_BASE,
OPENBSD_6_1
Changes since 1.43: +37 -3 lines
Diff to previous 1.43 (colored)
Now that the kernel provides information about IPsec SA bundles, print them by default. OK hshoexer@
Revision 1.43 / (download) - annotate - [select for diffs], Tue Feb 28 16:46:27 2017 UTC (7 years, 3 months ago) by bluhm
Branch: MAIN
Changes since 1.42: +11 -1 lines
Diff to previous 1.42 (colored)
Depending on the addresses, ipsecctl(8) automatically groups sa bundles together. Extend the kernel interface to export the bundle information to userland. Then ipsecctl -ss -v can show the internal relations. Unfortunately the header SADB_X_EXT_PROTOCOL was reused by SADB_X_GRPSPIS, so it cannot be used to transfer the second sa type with sysctl. Introduce a new SADB_X_EXT_SATYPE2 and use it consistently. OK hshoexer@ markus@
Revision 1.42 / (download) - annotate - [select for diffs], Wed Dec 9 21:41:50 2015 UTC (8 years, 5 months ago) by naddy
Branch: MAIN
CVS Tags: OPENBSD_6_0_BASE,
OPENBSD_6_0,
OPENBSD_5_9_BASE,
OPENBSD_5_9
Changes since 1.41: +1 -5 lines
Diff to previous 1.41 (colored)
Remove plain DES encryption from IPsec. DES is insecure since brute force attacks are practical due to its short key length. This removes support for DES-CBC encryption in ESP and in IKE main and quick mode from the kernel, isakmpd(8), ipsecctl(8), and iked(8). ok mikeb@
Revision 1.41 / (download) - annotate - [select for diffs], Wed Dec 2 12:43:59 2015 UTC (8 years, 6 months ago) by naddy
Branch: MAIN
Changes since 1.40: +1 -8 lines
Diff to previous 1.40 (colored)
remove unimplemented PF_KEY algorithms; ok sthen@ mpi@ mikeb@
Revision 1.40 / (download) - annotate - [select for diffs], Wed Nov 4 12:46:13 2015 UTC (8 years, 6 months ago) by mikeb
Branch: MAIN
Changes since 1.39: +6 -1 lines
Diff to previous 1.39 (colored)
Decode Chacha20-Poly1305 when dumping SAs; ok reyk, naddy
Revision 1.39 / (download) - annotate - [select for diffs], Fri Apr 17 10:04:37 2015 UTC (9 years, 1 month ago) by mikeb
Branch: MAIN
CVS Tags: OPENBSD_5_8_BASE,
OPENBSD_5_8
Changes since 1.38: +1 -2 lines
Diff to previous 1.38 (colored)
Remove unsupported SADB_X_IDENTTYPE_CONNECTION; OK markus, hshoexer
Revision 1.38 / (download) - annotate - [select for diffs], Tue Apr 14 12:22:15 2015 UTC (9 years, 1 month ago) by mikeb
Branch: MAIN
Changes since 1.37: +1 -39 lines
Diff to previous 1.37 (colored)
Remove support for storing credentials and auth information in the kernel. This code is largely unfinished and is not used for anything. The change leaves identities as only objects referenced by ipsec_ref structure and their handling requires some changes to support more advanced matching of IPsec connections. No objections from reyk and hshoexer, with and OK markus.
Revision 1.37 / (download) - annotate - [select for diffs], Fri Jan 16 06:39:58 2015 UTC (9 years, 4 months ago) by deraadt
Branch: MAIN
CVS Tags: OPENBSD_5_7_BASE,
OPENBSD_5_7
Changes since 1.36: +2 -2 lines
Diff to previous 1.36 (colored)
Replace <sys/param.h> with <limits.h> and other less dirty headers where possible. Annotate <sys/param.h> lines with their current reasons. Switch to PATH_MAX, NGROUPS_MAX, HOST_NAME_MAX+1, LOGIN_NAME_MAX, etc. Change MIN() and MAX() to local definitions of MINIMUM() and MAXIMUM() where sensible to avoid pulling in the pollution. These are the files confirmed through binary verification. ok guenther, millert, doug (helped with the verification protocol)
Revision 1.36 / (download) - annotate - [select for diffs], Sun Dec 28 14:19:31 2014 UTC (9 years, 5 months ago) by claudio
Branch: MAIN
Changes since 1.35: +1 -3 lines
Diff to previous 1.35 (colored)
Unbreak the tree. Looks like tedu did not tedu enough when killing KPDK support.
Revision 1.35 / (download) - annotate - [select for diffs], Wed Jan 22 09:36:04 2014 UTC (10 years, 4 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_5_6_BASE,
OPENBSD_5_6,
OPENBSD_5_5_BASE,
OPENBSD_5_5
Changes since 1.34: +3 -3 lines
Diff to previous 1.34 (colored)
fix printing of IPcomp SAs; ok mikeb@ & todd@
Revision 1.34 / (download) - annotate - [select for diffs], Tue Sep 18 09:24:45 2012 UTC (11 years, 8 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_5_4_BASE,
OPENBSD_5_4,
OPENBSD_5_3_BASE,
OPENBSD_5_3
Changes since 1.33: +1 -4 lines
Diff to previous 1.33 (colored)
remove the SADB_X_SAFLAGS_{HALFIV,RANDOMPADDING,NOREPLAY} pfkey-API (not set
anywhere) as well as the matching TDBF_{HALFIV,RANDOMPADDING,NOREPLAY} code.
ok mikeb@
Revision 1.33 / (download) - annotate - [select for diffs], Thu Jul 5 09:02:20 2012 UTC (11 years, 10 months ago) by mikeb
Branch: MAIN
CVS Tags: OPENBSD_5_2_BASE,
OPENBSD_5_2
Changes since 1.32: +43 -9 lines
Diff to previous 1.32 (colored)
don't output "esn" string in the rule section as we can't use the keyword in the grammar to create a esn-enabled rule (no reason to do so for manual sa configuration). instead decode sa flags so that we can also watch changes happening in the realtime with the monitor mode. prompted and ok by naddy
Revision 1.32 / (download) - annotate - [select for diffs], Sat Jun 30 14:51:31 2012 UTC (11 years, 11 months ago) by naddy
Branch: MAIN
Changes since 1.31: +12 -2 lines
Diff to previous 1.31 (colored)
enable use of AES-{192,256}-CTR, and explicitly of AES-128-CTR, for IPsec ESP
ok mikeb@
Revision 1.31 / (download) - annotate - [select for diffs], Fri Jun 29 15:01:07 2012 UTC (11 years, 11 months ago) by mikeb
Branch: MAIN
Changes since 1.30: +2 -1 lines
Diff to previous 1.30 (colored)
Print esn flag when dumping SAs with ESN enabled
Revision 1.30 / (download) - annotate - [select for diffs], Wed Apr 13 11:31:27 2011 UTC (13 years, 1 month ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_5_1_BASE,
OPENBSD_5_1,
OPENBSD_5_0_BASE,
OPENBSD_5_0
Changes since 1.29: +4 -4 lines
Diff to previous 1.29 (colored)
print flags in hex; from hshoexer@; ok mikeb@ mpf@
Revision 1.29 / (download) - annotate - [select for diffs], Wed Oct 6 22:19:20 2010 UTC (13 years, 7 months ago) by mikeb
Branch: MAIN
CVS Tags: OPENBSD_4_9_BASE,
OPENBSD_4_9
Changes since 1.28: +1 -5 lines
Diff to previous 1.28 (colored)
Retire Skipjack There's not much use for the declassified cipher from the 80's with a questionable license these days. According to the FIPS drafts, Skipjack reaches its EOL in December 2010. The libc portion will be removed after the ports hackathon. djm and thib agree, no objections from deraadt Thanks to jsg for digging up FIPS drafts.
Revision 1.28 / (download) - annotate - [select for diffs], Wed Sep 22 14:04:09 2010 UTC (13 years, 8 months ago) by mikeb
Branch: MAIN
Changes since 1.27: +32 -1 lines
Diff to previous 1.27 (colored)
Support AES-GCM-16 (as aes-gcm) and ENCR_NULL_AUTH_AES_GMAC (as aes-gmac) encryption transformations in the ipsec.conf(5). Available "enc" arguments denoting use of 1) AES-GCM-16: aes-128-gcm for 160 bit key (128+nonce) aes-192-gcm for 224 bit key (192+nonce) aes-256-gcm for 288 bit key (256+nonce) 2) ENCR_NULL_AUTH_AES_GMAC: aes-128-gmac for 160 bit key (128+nonce) aes-192-gmac for 224 bit key (192+nonce) aes-256-gmac for 288 bit key (256+nonce) Please note that aes-gmac family performs no encryption and provides no confidentiality and is intended for cases in which confidentiality is not desired (it can be thought of as AH with NAT-T support). Also, although this implementation supports manual keying, it's use is strictly discouraged as AES-GCM security depends on frequent re-keying. So it can be thought of as a debug facility only. Example configuration: ike esp from 172.23.61.36 to 172.23.61.156 \ quick enc aes-256-gcm \ psk humppa Thoroughly tested by me and naddy. Works fine with Linux. Requires updated pfkeyv2.h include file. OK naddy
Revision 1.27 / (download) - annotate - [select for diffs], Thu Jul 1 02:11:35 2010 UTC (13 years, 11 months ago) by reyk
Branch: MAIN
CVS Tags: OPENBSD_4_8_BASE,
OPENBSD_4_8
Changes since 1.26: +11 -1 lines
Diff to previous 1.26 (colored)
support dumping the new SADB_X_EXT_TAP extension.
Revision 1.26 / (download) - annotate - [select for diffs], Fri Nov 13 20:09:54 2009 UTC (14 years, 6 months ago) by jsg
Branch: MAIN
CVS Tags: OPENBSD_4_7_BASE,
OPENBSD_4_7
Changes since 1.25: +5 -5 lines
Diff to previous 1.25 (colored)
Don't use [] in function arguments when dealing with arrays we don't know the size of, otherwise gcc >= 4 will error. ok markus@ deraadt@
Revision 1.25 / (download) - annotate - [select for diffs], Tue Aug 19 10:37:12 2008 UTC (15 years, 9 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_4_6_BASE,
OPENBSD_4_6,
OPENBSD_4_5_BASE,
OPENBSD_4_5
Changes since 1.24: +26 -12 lines
Diff to previous 1.24 (colored)
use the actual keysize from the SA to figure out which AES variant (aes-192, aes-256) is used; ok hshoexer@
Revision 1.24 / (download) - annotate - [select for diffs], Wed Jan 3 12:17:43 2007 UTC (17 years, 5 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_4_4_BASE,
OPENBSD_4_4,
OPENBSD_4_3_BASE,
OPENBSD_4_3,
OPENBSD_4_2_BASE,
OPENBSD_4_2,
OPENBSD_4_1_BASE,
OPENBSD_4_1
Changes since 1.23: +5 -2 lines
Diff to previous 1.23 (colored)
do not print secret keys by default, -k restores old behaviour; ok hshoexer
Revision 1.23 / (download) - annotate - [select for diffs], Fri Nov 24 13:52:13 2006 UTC (17 years, 6 months ago) by reyk
Branch: MAIN
Changes since 1.22: +13 -1 lines
Diff to previous 1.22 (colored)
add support to tag ipsec traffic belonging to specific IKE-initiated phase 2 traffic. this allows policy-based filtering of encrypted and unencrypted ipsec traffic with pf(4). see ipsec.conf(5) and isakmpd.conf(5) for details and examples. this is work in progress and still needs some testing and feedback, but it is safe to put it in now. ok hshoexer@
Revision 1.22 / (download) - annotate - [select for diffs], Tue Sep 19 21:29:47 2006 UTC (17 years, 8 months ago) by markus
Branch: MAIN
Changes since 1.21: +12 -3 lines
Diff to previous 1.21 (colored)
sort SAs by spi; ok hshoexer
Revision 1.21 / (download) - annotate - [select for diffs], Wed Aug 30 15:49:32 2006 UTC (17 years, 9 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_4_0_BASE,
OPENBSD_4_0
Changes since 1.20: +1 -12 lines
Diff to previous 1.20 (colored)
partial backout of last commit
Revision 1.20 / (download) - annotate - [select for diffs], Wed Aug 30 12:16:59 2006 UTC (17 years, 9 months ago) by markus
Branch: MAIN
Changes since 1.19: +15 -4 lines
Diff to previous 1.19 (colored)
print extensions with type SADB_EXT_MAX, too; ok hshoexer, reyk, msf
Revision 1.19 / (download) - annotate - [select for diffs], Mon Jun 12 19:17:51 2006 UTC (17 years, 11 months ago) by naddy
Branch: MAIN
Changes since 1.18: +2 -2 lines
Diff to previous 1.18 (colored)
Fix a typo that prevented ipsecctl -ss from showing authentication information for AH SAs. ok markus@, hshoexer@
Revision 1.18 / (download) - annotate - [select for diffs], Fri Jun 2 12:29:43 2006 UTC (18 years ago) by markus
Branch: MAIN
Changes since 1.17: +19 -2 lines
Diff to previous 1.17 (colored)
print full information about tcpmd5 and ipcomp SAs, too
Revision 1.17 / (download) - annotate - [select for diffs], Fri Jun 2 04:14:51 2006 UTC (18 years ago) by hshoexer
Branch: MAIN
Changes since 1.16: +7 -7 lines
Diff to previous 1.16 (colored)
tiny style cleanup and white spaces
Revision 1.16 / (download) - annotate - [select for diffs], Fri Jun 2 03:52:29 2006 UTC (18 years ago) by msf
Branch: MAIN
Changes since 1.15: +8 -3 lines
Diff to previous 1.15 (colored)
fix the formatting for sadb_register messages in monitor mode. put back one mistakenly deleted newline. ok hshoexer@
Revision 1.15 / (download) - annotate - [select for diffs], Thu Jun 1 16:13:01 2006 UTC (18 years ago) by markus
Branch: MAIN
Changes since 1.14: +154 -80 lines
Diff to previous 1.14 (colored)
convert pfkey to ipsec_rule and use ipsecctl_print_rule() when dumping the in-kernel SAs. this way we produce the same output as rule loading ok hshoexer
Revision 1.14 / (download) - annotate - [select for diffs], Thu Jun 1 06:50:58 2006 UTC (18 years ago) by deraadt
Branch: MAIN
Changes since 1.13: +3 -3 lines
Diff to previous 1.13 (colored)
spacing
Revision 1.13 / (download) - annotate - [select for diffs], Wed May 31 05:38:45 2006 UTC (18 years ago) by hshoexer
Branch: MAIN
Changes since 1.12: +29 -29 lines
Diff to previous 1.12 (colored)
whitespace cleanup
Revision 1.12 / (download) - annotate - [select for diffs], Wed May 31 05:36:06 2006 UTC (18 years ago) by msf
Branch: MAIN
Changes since 1.11: +15 -15 lines
Diff to previous 1.11 (colored)
shuffle some newlines to make all the formatting work again ok hshoexer@
Revision 1.11 / (download) - annotate - [select for diffs], Tue May 30 21:56:05 2006 UTC (18 years ago) by msf
Branch: MAIN
Changes since 1.10: +301 -6 lines
Diff to previous 1.10 (colored)
implement monitor mode for ipsecctl. worked on with markus@ ok hshoexer@
Revision 1.10 / (download) - annotate - [select for diffs], Wed Dec 21 01:40:23 2005 UTC (18 years, 5 months ago) by millert
Branch: MAIN
CVS Tags: OPENBSD_3_9_BASE,
OPENBSD_3_9
Changes since 1.9: +2 -2 lines
Diff to previous 1.9 (colored)
Userland programs should include <errno.h> not <sys/errno.h> OK deraadt@
Revision 1.9 / (download) - annotate - [select for diffs], Mon Dec 12 23:24:10 2005 UTC (18 years, 5 months ago) by hshoexer
Branch: MAIN
Changes since 1.8: +8 -1 lines
Diff to previous 1.8 (colored)
use ARGSUSED1 here
Revision 1.8 / (download) - annotate - [select for diffs], Sun Nov 13 18:39:19 2005 UTC (18 years, 6 months ago) by deraadt
Branch: MAIN
Changes since 1.7: +3 -3 lines
Diff to previous 1.7 (colored)
spacing
Revision 1.7 / (download) - annotate - [select for diffs], Sat Nov 12 12:00:53 2005 UTC (18 years, 6 months ago) by hshoexer
Branch: MAIN
Changes since 1.6: +9 -3 lines
Diff to previous 1.6 (colored)
handle transport/tunnel mode
Revision 1.6 / (download) - annotate - [select for diffs], Sun Oct 30 19:50:24 2005 UTC (18 years, 7 months ago) by hshoexer
Branch: MAIN
Changes since 1.5: +8 -9 lines
Diff to previous 1.5 (colored)
add support for ipcomp.
Revision 1.5 / (download) - annotate - [select for diffs], Sat Jul 9 21:54:12 2005 UTC (18 years, 10 months ago) by hshoexer
Branch: MAIN
CVS Tags: OPENBSD_3_8_BASE,
OPENBSD_3_8
Changes since 1.4: +17 -13 lines
Diff to previous 1.4 (colored)
make sure, output of -ss is identical to syntax for SA rules
Revision 1.4 / (download) - annotate - [select for diffs], Mon Jun 27 21:26:02 2005 UTC (18 years, 11 months ago) by hshoexer
Branch: MAIN
Changes since 1.3: +37 -17 lines
Diff to previous 1.3 (colored)
improve output for SAs while around, do small whitesparce cleanup added a missing "static"
Revision 1.3 / (download) - annotate - [select for diffs], Mon Jun 6 07:15:46 2005 UTC (19 years ago) by hshoexer
Branch: MAIN
Changes since 1.2: +18 -1 lines
Diff to previous 1.2 (colored)
parse local/remote credential payload types.
Revision 1.2 / (download) - annotate - [select for diffs], Fri May 27 05:48:10 2005 UTC (19 years ago) by hshoexer
Branch: MAIN
Changes since 1.1: +1 -9 lines
Diff to previous 1.1 (colored)
remove unused table
Revision 1.1 / (download) - annotate - [select for diffs], Fri May 27 05:19:55 2005 UTC (19 years ago) by hshoexer
Branch: MAIN
Support for dumping the SADB.