Click on a directory to enter that directory. Click on a file to display its revision history and to get a chance to display diffs between revisions.
Current directory: [local] / src / sbin / isakmpd
File | Rev. | Age | Author | Last log entry |
---|---|---|---|---|
Parent Directory | ||||
apps/ | ||||
features/ | ||||
regress/ | ||||
samples/ | ||||
sysdep/ | ||||
BUGS | 1.16 | 6 years | mpi | Remove listing of fixed bugs. ok markus@ |
DESIGN-NOTES | 1.25 | 17 years | hshoexer | Big spelling cleanup, no binary change. From david@ |
Makefile | 1.90 | 2 years | tb | isakmpd: remove libcrypto.c All this does is a call to OpenSSL_add_all_algorith... |
QUESTIONS | 1.5 | 20 years | jmc | updated URL from Jared Yanovich; |
README | 1.20 | 7 years | tb | move links from http to https://www.openbsd.org/ ok beck |
TO-DO | 1.26 | 20 years | markus | support AES in phase 1, too. switch to OpenSSL EVP interface; with Hans-Joerg.Ho... |
app.c | 1.14 | 7 years | guenther | Stop assuming that in_{addr,port}_t are typedefed in <sys/types.h> and instead p... |
app.h | 1.7 | 20 years | deraadt | partial move to KNF. More to come. This has happened because there are a raft ... |
attribute.c | 1.13 | 7 years | guenther | Stop assuming that in_{addr,port}_t are typedefed in <sys/types.h> and instead p... |
attribute.h | 1.6 | 20 years | hshoexer | Some more KNF, no binary change. ok ho@ |
cert.c | 1.33 | 11 years | deraadt | remove excessive includes |
cert.h | 1.16 | 9 years | deraadt | Replace <sys/param.h> with <limits.h> and other less dirty headers where possibl... |
conf.c | 1.107 | 6 years | mpi | Support DH groups 19 to 21 and 25 to 30, just like iked(8) does. ok visa@, mark... |
conf.h | 1.34 | 17 years | hshoexer | Make SA deletion on shutdown the default again. Use -S for failover situations ... |
connection.c | 1.41 | 6 years | mpi | Spacing, no object change. |
connection.h | 1.5 | 20 years | deraadt | partial move to KNF. More to come. This has happened because there are a raft ... |
constants.c | 1.10 | 19 years | cloder | Make deterministic randomness (only ever used for testing) a compile-time option... |
constants.h | 1.6 | 20 years | deraadt | partial move to KNF. More to come. This has happened because there are a raft ... |
cookie.c | 1.17 | 7 years | guenther | Stop assuming that in_{addr,port}_t are typedefed in <sys/types.h> and instead p... |
cookie.h | 1.7 | 20 years | hshoexer | Some more KNF, no binary change. ok ho@ |
crypto.c | 1.35 | 6 years | mpi | Spacing, no object change. |
crypto.h | 1.20 | 13 years | mikeb | convert to fuse cast from the libcrypto. with a simplification nit from blamber... |
dh.c | 1.27 | 13 months | tb | Guard use of GROUP_EC2N with #ifndef OPENSSL_NO_EC2M This allows compiling isak... |
dh.h | 1.10 | 6 years | patrick | In the final RFC 5903 the computation for the DH shared secret changed. Instead ... |
dnssec.c | 1.28 | 2 years | deraadt | delete unneccessary arpa/nameser.h includes ok millert |
dnssec.h | 1.7 | 20 years | hshoexer | Some more KNF, no binary change. ok ho@ |
doi.c | 1.11 | 11 years | deraadt | remove excessive includes |
doi.h | 1.15 | 19 years | deraadt | USE_DEBUG is bye bye |
dpd.c | 1.20 | 6 years | jca | Use clock_gettime(CLOCK_MONOTONIC) to schedule timers From Scott Cheloha, ok tb... |
dpd.h | 1.3 | 18 years | markus | don't send DPD messages before the exchange is finialized, otherwise we have a r... |
exchange.c | 1.142 | 6 years | mpi | Spacing, no object change. |
exchange.h | 1.37 | 6 years | mpi | Spacing, no object change. |
exchange_num.cst | 1.5 | 17 years | hshoexer | Big spelling cleanup, no binary change. From david@ |
field.c | 1.22 | 7 years | tom | Check return value of asprintf(), and don't use 0 as a char * Started by, and o... |
field.h | 1.6 | 20 years | hshoexer | More KNF. Mainly spaces and line-wraps, no binary change. ok ho@ |
genconstants.sh | 1.13 | 10 years | deraadt | improve randomization. remove some junk debugging features that are fundamental... |
genfields.sh | 1.10 | 10 years | deraadt | improve randomization. remove some junk debugging features that are fundamental... |
hash.c | 1.24 | 8 years | mmcc | A classic case for bzero() -> explicit_bzero() ok deraadt@ |
hash.h | 1.8 | 17 years | hshoexer | support sha2 for main mode hmacs and aesctr for quick mode encryption. ok markus... |
if.c | 1.26 | 4 years | deraadt | When system calls indicate an error they return -1, not some arbitrary value < 0... |
if.h | 1.7 | 20 years | deraadt | partial move to KNF. More to come. This has happened because there are a raft ... |
ike_aggressive.c | 1.13 | 6 years | mpi | Spacing, no object change. |
ike_aggressive.h | 1.5 | 20 years | hshoexer | More KNF. Mainly spaces and line-wraps, no binary change. ok ho@ |
ike_auth.c | 1.118 | 3 years | tobhe | Fix shared DH secret length in log message. ok patrick@ |
ike_auth.h | 1.5 | 20 years | deraadt | partial move to KNF. More to come. This has happened because there are a raft ... |
ike_main_mode.c | 1.19 | 6 years | mpi | Spacing, no object change. |
ike_main_mode.h | 1.6 | 20 years | hshoexer | More KNF. Mainly spaces and line-wraps, no binary change. ok ho@ |
ike_phase_1.c | 1.78 | 5 years | jsg | add missing braces implied by indentation ok millert@ mpi@ |
ike_phase_1.h | 1.4 | 20 years | deraadt | partial move to KNF. More to come. This has happened because there are a raft ... |
ike_quick_mode.c | 1.115 | 13 months | tb | Add missing NULL check after group_get() Otherwise dh_getlen() will dereference... |
ike_quick_mode.h | 1.6 | 20 years | deraadt | partial move to KNF. More to come. This has happened because there are a raft ... |
init.c | 1.44 | 2 years | tb | isakmpd: remove libcrypto.c All this does is a call to OpenSSL_add_all_algorith... |
init.h | 1.6 | 20 years | deraadt | partial move to KNF. More to come. This has happened because there are a raft ... |
ipsec.c | 1.154 | 4 months | tobhe | Don't unset the SA tag set by ipsec_sa_tag in ipsec_sa_iface. Fixes SA tagging a... |
ipsec.h | 1.27 | 6 years | patrick | In the final RFC 5903 the computation for the DH shared secret changed. Instead ... |
ipsec_doi.h | 1.8 | 20 years | deraadt | partial move to KNF. More to come. This has happened because there are a raft ... |
ipsec_fld.fld | 1.5 | 20 years | ho | Remove clauses 3 and 4. With approval from Niklas Hallqvist and Niels Provos. |
ipsec_num.cst | 1.21 | 2 years | bluhm | After deleting hifn(4) the only provider for the LZS compression algorithm is go... |
isakmp.h | 1.7 | 19 years | ho | NAT-Traversal for isakmpd. Work in progress... hshoexer@ ok. |
isakmp_cfg.c | 1.41 | 6 years | mpi | Spacing, no object change. |
isakmp_cfg.h | 1.5 | 20 years | hshoexer | More KNF. Mainly spaces and line-wraps, no binary change. ok ho@ |
isakmp_doi.c | 1.26 | 13 years | todd | as determined 4 years ago, FortiGate needs DOI of 0 responses to DPD so, copy a ... |
isakmp_doi.h | 1.5 | 20 years | deraadt | partial move to KNF. More to come. This has happened because there are a raft ... |
isakmp_fld.fld | 1.8 | 19 years | ho | NAT-Traversal for isakmpd. Work in progress... hshoexer@ ok. |
isakmp_num.cst | 1.13 | 18 years | hshoexer | typo in comment |
isakmpd.8 | 1.123 | 4 years | jmc | mop up for the pcap.3 rename; help/ok deraadt |
isakmpd.c | 1.109 | 14 months | guenther | Delete obsolete /* ARGSUSED */ lint comments. ok miod@ millert@ |
isakmpd.conf.5 | 1.139 | 9 months | dlg | have a go at documenting the Interface config statement. im not really happy wi... |
isakmpd.policy.5 | 1.51 | 2 years | jsg | remove please from manual pages ok jmc@ sthen@ millert@ |
key.c | 1.27 | 2 years | tb | isakmpd: remove #ifdefs for ancient OPENSSL_VERSIONs. No-one is going to build ... |
key.h | 1.8 | 18 years | cloder | Be cleaner about signed vs. unsigned when it's easy to do so. OK hshoexer |
libcrypto.h | 1.19 | 2 years | tb | isakmpd: remove libcrypto.c All this does is a call to OpenSSL_add_all_algorith... |
log.c | 1.65 | 2 weeks | florian | gmtime(3) / locatime(3) can fail when timestamps are way off. Add missing error... |
log.h | 1.25 | 15 years | hshoexer | mark log_fatal() and monitor_exit() as __dead, as they do not return. |
message.c | 1.129 | 8 years | yasuoka | Fix memory leak. Call proto_free() always to free proto. Diff from Yuuichi Some... |
message.h | 1.29 | 6 years | mpi | Spacing, no object change. |
monitor.c | 1.83 | 15 months | tb | isakmpd: add missing void to a function definition Fixes -Wstrict-prototype war... |
monitor.h | 1.19 | 15 years | hshoexer | mark log_fatal() and monitor_exit() as __dead, as they do not return. |
monitor_fdpass.c | 1.17 | 8 years | jca | Print ssize_t with %zd; ok deraadt@ mmcc@ |
nat_traversal.c | 1.25 | 6 years | jca | Use clock_gettime(CLOCK_MONOTONIC) to schedule timers From Scott Cheloha, ok tb... |
nat_traversal.h | 1.4 | 18 years | hshoexer | Use payload NAT-D or NAT-D-DRAFT according to NAT-T vendor ID advertised by the ... |
pf_key_v2.c | 1.205 | 9 months | dlg | support configuring interface SAs for route-based ipsec vpns. add "Interface NU... |
pf_key_v2.h | 1.13 | 17 years | markus | export pf_key_v2_disable_sa() (unbreaks build) |
policy.c | 1.103 | 2 weeks | florian | gmtime(3) / locatime(3) can fail when timestamps are way off. Add missing error... |
policy.h | 1.17 | 16 years | tom | Allow key exchange with RSA signature authentication to work with Cisco IOS and ... |
prf.c | 1.16 | 11 years | deraadt | remove excessive includes |
prf.h | 1.10 | 20 years | deraadt | partial move to KNF. More to come. This has happened because there are a raft ... |
sa.c | 1.125 | 2 years | guenther | When it's the possessive of 'it', it's spelled "its", without the apostrophe. |
sa.h | 1.55 | 9 months | dlg | support configuring interface SAs for route-based ipsec vpns. add "Interface NU... |
timer.c | 1.18 | 6 years | jca | Use clock_gettime(CLOCK_MONOTONIC) to schedule timers From Scott Cheloha, ok tb... |
timer.h | 1.9 | 6 years | jca | Use clock_gettime(CLOCK_MONOTONIC) to schedule timers From Scott Cheloha, ok tb... |
transport.c | 1.39 | 3 years | mortimer | Extern transport_list. Fixed compilation with -fno-common. ok deraadt@ |
transport.h | 1.24 | 2 years | guenther | When it's the possessive of 'it', it's spelled "its", without the apostrophe. |
udp.c | 1.95 | 15 years | bluhm | If isakmpd is started with -4 or -6, virtual_get_default() may return NULL. Thi... |
udp.h | 1.11 | 19 years | hshoexer | Zap -P option. It has never done anything. While there tweak descripton of -N.... |
udp_encap.c | 1.24 | 2 years | naddy | isakmpd: fix -Wunused-but-set-variable warnings ok guenther@ |
udp_encap.h | 1.2 | 19 years | hshoexer | remove unused variable. |
ui.c | 1.58 | 2 years | deraadt | For open/openat, if the flags parameter does not contain O_CREAT, the 3rd (varia... |
ui.h | 1.8 | 17 years | mpf | Add a new UI command to force isakmpd into passive only mode. Will be used by sa... |
util.c | 1.72 | 4 years | deraadt | When system calls indicate an error they return -1, not some arbitrary value < 0... |
util.h | 1.33 | 6 years | jca | Use clock_gettime(CLOCK_MONOTONIC) to schedule timers From Scott Cheloha, ok tb... |
vendor.c | 1.6 | 6 years | patrick | In the final RFC 5903 the computation for the DH shared secret changed. Instead ... |
vendor.h | 1.2 | 17 years | pedro | typo in initial RCS tag ($OpenBSD: -> $OpenBSD$) |
virtual.c | 1.33 | 4 years | deraadt | When system calls indicate an error they return -1, not some arbitrary value < 0... |
virtual.h | 1.1 | 19 years | ho | NAT-Traversal for isakmpd. Work in progress... hshoexer@ ok. |
x509.c | 1.126 | 2 weeks | florian | gmtime(3) / locatime(3) can fail when timestamps are way off. Add missing error... |
x509.h | 1.22 | 16 years | tom | Allow key exchange with RSA signature authentication to work with Cisco IOS and ... |
GNUmakefile (in the Attic) [Hide] | 1.14 | 19 years | deraadt | nothing uses this |
README.PKI (in the Attic) [Hide] | 1.8 | 18 years | hshoexer | This file is outdated, everything needed for setting up PKI is in the man pages ... |
asn.c (in the Attic) [Hide] | 1.9 | 24 years | niklas | regress/x509/certificate.txt: Merge with EOM 1.4 asn_useful.h: Merge with EOM 1.... |
asn.h (in the Attic) [Hide] | 1.5 | 24 years | niklas | regress/x509/certificate.txt: Merge with EOM 1.4 asn_useful.h: Merge with EOM 1.... |
asn_useful.c (in the Attic) [Hide] | 1.8 | 24 years | niklas | regress/x509/certificate.txt: Merge with EOM 1.4 asn_useful.h: Merge with EOM 1.... |
asn_useful.h (in the Attic) [Hide] | 1.4 | 24 years | niklas | regress/x509/certificate.txt: Merge with EOM 1.4 asn_useful.h: Merge with EOM 1.... |
dyn.c (in the Attic) [Hide] | 1.2 | 21 years | ho | The dlopen() stuff goes away. |
dyn.h (in the Attic) [Hide] | 1.2 | 21 years | ho | The dlopen() stuff goes away. |
gmp_util.c (in the Attic) [Hide] | 1.13 | 19 years | hshoexer | kill gmp |
gmp_util.h (in the Attic) [Hide] | 1.9 | 19 years | hshoexer | kill gmp |
isakmpd.conf.sample (in the Attic) [Hide] | 1.8 | 24 years | niklas | Merge with EOM 1.27 author: niklas Not a good sample anymore |
isakmpd_cert.sample (in the Attic) [Hide] | 1.2 | 24 years | niklas | Remove bad examples of stuff we do not yet support in this version anyhow |
isakmpd_key.pub.sample (in the Attic) [Hide] | 1.2 | 24 years | niklas | Remove bad examples of stuff we do not yet support in this version anyhow |
isakmpd_key.sample (in the Attic) [Hide] | 1.2 | 24 years | niklas | Remove bad examples of stuff we do not yet support in this version anyhow |
libcrypto.c (in the Attic) [Hide] | 1.20 | 2 years | tb | isakmpd: remove libcrypto.c All this does is a call to OpenSSL_add_all_algorith... |
math_2n.c (in the Attic) [Hide] | 1.27 | 13 years | reyk | Replace the hand-crafted Diffie-Hellman implementation in isakmpd with the small... |
math_2n.h (in the Attic) [Hide] | 1.10 | 13 years | reyk | Replace the hand-crafted Diffie-Hellman implementation in isakmpd with the small... |
math_ec2n.c (in the Attic) [Hide] | 1.14 | 13 years | reyk | Replace the hand-crafted Diffie-Hellman implementation in isakmpd with the small... |
math_ec2n.h (in the Attic) [Hide] | 1.8 | 13 years | reyk | Replace the hand-crafted Diffie-Hellman implementation in isakmpd with the small... |
math_group.c (in the Attic) [Hide] | 1.33 | 13 years | reyk | Replace the hand-crafted Diffie-Hellman implementation in isakmpd with the small... |
math_group.h (in the Attic) [Hide] | 1.13 | 13 years | reyk | Replace the hand-crafted Diffie-Hellman implementation in isakmpd with the small... |
math_mp.h (in the Attic) [Hide] | 1.8 | 13 years | reyk | Replace the hand-crafted Diffie-Hellman implementation in isakmpd with the small... |
pf_encap.c (in the Attic) [Hide] | 1.25 | 22 years | ho | Remove support for PF_ENCAP (deprecated since OpenBSD2.5). |
pf_encap.h (in the Attic) [Hide] | 1.10 | 22 years | ho | Remove support for PF_ENCAP (deprecated since OpenBSD2.5). |
pkcs.c (in the Attic) [Hide] | 1.11 | 24 years | niklas | regress/x509/certificate.txt: Merge with EOM 1.4 asn_useful.h: Merge with EOM 1.... |
pkcs.h (in the Attic) [Hide] | 1.6 | 24 years | niklas | regress/x509/certificate.txt: Merge with EOM 1.4 asn_useful.h: Merge with EOM 1.... |
sysdep-openbsd.c (in the Attic) [Hide] | 1.4 | 25 years | niklas | Merge from the Ericsson repository |
sysdep.c (in the Attic) [Hide] | 1.3 | 25 years | niklas | Merge from the Ericsson repository |
sysdep.h (in the Attic) [Hide] | 1.26 | 10 years | deraadt | improve randomization. remove some junk debugging features that are fundamental... |