OpenIKED 7.4 Released

Contributed by rueda on 2025-04-11 from the IPSEC facto dept.

The OpenBSD project has announced the release of OpenIKED 7.4:

We have released OpenIKED 7.4, which will be arriving in the OpenIKED
directory of your local OpenBSD mirror soon.

This release includes the following changes to the previous release:

 * Fixed a double free bug in ECDH

 * Added a natt config option that forces negotiation of nat-t
   (and udpencap) for a policy

 * Made config file verification not require root permissions

 * Fixed a bug where iked was retransmitting fragments too eagerly

 * Tightened apparmor sandboxing on Linux

 * Various other bug fixes, compatibility fixes and documentation
   improvements

OpenIKED is known to compile and run on OpenBSD, FreeBSD, NetBSD, macOS
and the Linux distributions Arch, Debian, Fedora and Ubuntu.

It is our hope that packagers take interest and help adapt OpenIKED
to more distributions.

OpenIKED can be downloaded from any of the mirrors listed at
https://www.openbsd.org/ftp.html, from the /pub/OpenBSD/OpenIKED
directory.

General bugs may be reported to bugs@openbsd.org. Portable bugs
may be filed at https://github.com/openiked/openiked-portable.

We welcome feedback and improvements from the broader community.
Thanks to all of the contributors who helped make this release
possible.

This, with improved tooling for your VPN needs, is another bit of the upcoming release shaping up. Enjoy!

Latest Articles

Sat, Apr 12
- 12:34 rpki-client 9.5 released (0)
- 02:49 OpenBSD -current is now "7.7-current" (0)
Fri, Apr 11
- 08:47 OpenIKED 7.4 Released (0)
Thu, Apr 10
- 05:31 OpenSSH 10.0 Released (1)
Tue, Apr 08
- 12:01 New sysctl(8) -f option supports reading entire settings file in one go (0)
- 06:24 rsync replaced with openrsync on macOS Sequoia (4)
Sun, Mar 30
- 23:00 OpenBSD -current has moved to version 7.7 (1)
Sat, Mar 22
- 10:11 fw_update(8) gains support for arbitrary dmesg files (0)
Sun, Mar 02
- 11:51 OpenBSD -current moves to 7.7-beta (1)

Credits

Copyright © 2004-2008 Daniel Hartmeier. All rights reserved. Articles and comments are copyright their respective authors, submission implies license to publish on this web site. Contents of the archive prior to April 2nd 2004 as well as images and HTML templates were copied from the fabulous original deadly.org with Jose's and Jim's kind permission. This journal runs as CGI with httpd(8) on OpenBSD, the source code is BSD licensed. undeadly \Un*dead"ly\, a. Not subject to death; immortal. [Obs.]