| #
1.20 |
|
05-Dec-2017 |
jca |
Use clock_gettime(CLOCK_MONOTONIC) to schedule timers
From Scott Cheloha, ok tb@
|
|
Revision tags: OPENBSD_5_9_BASE OPENBSD_6_0_BASE OPENBSD_6_1_BASE OPENBSD_6_2_BASE
|
|
| #
1.19 |
|
10-Dec-2015 |
mmcc |
Remove NULL-checks before free(). ok tb@
|
|
Revision tags: OPENBSD_5_5_BASE OPENBSD_5_6_BASE OPENBSD_5_7_BASE OPENBSD_5_8_BASE
|
|
| #
1.18 |
|
23-Jan-2014 |
deraadt |
Remove a mid-layer which acts like arc4random isn't fairly standard.
ok mikeb
|
| #
1.17 |
|
22-Jan-2014 |
deraadt |
improve randomization. remove some junk debugging features that are
fundamentally broken.
ok jsing mikeb
|
|
Revision tags: OPENBSD_4_0_BASE OPENBSD_4_1_BASE OPENBSD_4_2_BASE OPENBSD_4_3_BASE OPENBSD_4_4_BASE OPENBSD_4_5_BASE OPENBSD_4_6_BASE OPENBSD_4_7_BASE OPENBSD_4_8_BASE OPENBSD_4_9_BASE OPENBSD_5_0_BASE OPENBSD_5_1_BASE OPENBSD_5_2_BASE OPENBSD_5_3_BASE OPENBSD_5_4_BASE
|
|
| #
1.16 |
|
24-Jul-2006 |
ho |
Style; return is not a function. hshoexer@ ok.
|
| #
1.15 |
|
02-Jun-2006 |
hshoexer |
Big spelling cleanup, no binary change. From david@
|
|
Revision tags: OPENBSD_3_9_BASE
|
|
| #
1.14 |
|
26-Oct-2005 |
markus |
don't send DPD messages before the exchange is finialized, otherwise
we have a race between DPD and exchange timeouts and both will release
the SA and corrupt the SA list. ok hshoexer@, ho@
|
|
Revision tags: OPENBSD_3_8_BASE
|
|
| #
1.13 |
|
04-May-2005 |
hshoexer |
clean up KEY_API() wrapper.
ok ho@
|
| #
1.12 |
|
08-Apr-2005 |
cloder |
Make DPD vendor ID u_int8_t, not char. Gets rid of a warning in
-pedantic mode. OK hshoexer
|
| #
1.11 |
|
08-Apr-2005 |
deraadt |
USE_DEBUG is bye bye
|
| #
1.10 |
|
04-Apr-2005 |
deraadt |
spacing; ok cloder
|
|
Revision tags: OPENBSD_3_7_BASE
|
|
| #
1.9 |
|
24-Feb-2005 |
markus |
disable the SA dpd timer on sa_free(). this avoid a race
between DPD and initial contact (double free); ok hshoexer
|
| #
1.8 |
|
24-Feb-2005 |
markus |
dpd_find_sa: only ready SAs, otherwise DPD will delete SAs owned by
an exchange; ok hshoexer
|
| #
1.7 |
|
28-Dec-2004 |
deraadt |
proper portable C; ok hshoexer
|
| #
1.6 |
|
13-Dec-2004 |
markus |
make sure the isakmpd_s has id_r/s set; ok hshoexer, ho
|
| #
1.5 |
|
08-Dec-2004 |
markus |
1. allow up to DPD_RETRANS_MAX retransmitted R_U_THERE messages.
2. reset dpd_failcount when switching to DPD_TIMER_NORMAL.
3. ignore DPD timeouts on SAs that are marked SA_FLAG_REPLACED.
ok hshoexer, ho
|
|
Revision tags: OPENBSD_3_6_BASE
|
|
| #
1.4 |
|
10-Aug-2004 |
ho |
Better implementation of the Dead Peer Detection protocol, RFC 3706.
hshoexer@ ok.
|
| #
1.3 |
|
08-Aug-2004 |
deraadt |
spacing
|
| #
1.2 |
|
20-Jun-2004 |
ho |
Make the payload array in struct message dynamic, since we need to handle
payloads in the private range, such as the pre-RFC NAT-D/NAT-OA.
Replace TAILQ_FIRST(&msg->payload[i]) instances with function calls.
|
| #
1.1 |
|
20-Jun-2004 |
ho |
A start towards Dead Peer Detection (DPD) support, as specified in RFC 3706
|