summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2000-12-12Merge with EOM 1.79Niklas Hallqvist
author: niklas whitespace author: niklas style author: angelos Pass the local/remote Phase 1 ID to the flow, so it can be reused when an SA is re-negotiated. author: angelos Save the Phase 1 IDs along with the flow. author: angelos Don't block new phase 1 SA establishment -- avoids some sync problems. Also, handle kernel-issued expirations more intelligently. author: angelos isakmpd can now negotiate transport protocol/ports (either through the configuration file or through kernel ACQUIREs). author: angelos Fix flow cleanup/setup on renegotiation (or failure thereof) -- thanks to cedric@wireless-networks.com for testing and feedback. author: angelos Remove unused code. author: angelos Don't be too permissive with the installed flows -- after all, we can just run more negotiations. author: angelos ifndef, not ifdef author: angelos Delete ingress flow correctly. author: angelos Initialize structure.
2000-12-12Merge with EOM 1.51Niklas Hallqvist
author: niklas more fascistoid style author: angelos Don't insert the *same* entry in two or more buckets! Thanks to cedric@wireless-networks.com for reporting/debugging and coming up with the patch. author: angelos Correct format string. author: angelos x509_hash() should also skip the cert length (willey@serasystems.com) author: angelos Add some error messages (ingham@ara.com)
2000-12-12Merge with EOM 1.73Niklas Hallqvist
author: angelos Pass the local/remote Phase 1 ID to the flow, so it can be reused when an SA is re-negotiated. author: angelos isakmpd can now negotiate transport protocol/ports (either through the configuration file or through kernel ACQUIREs).
2000-12-12sysdep/openbsd/sysdep.c: Merge with EOM 1.9Niklas Hallqvist
pf_encap.h: Merge with EOM 1.13 pf_key_v2.h: Merge with EOM 1.4 sysdep.h: Merge with EOM 1.17 author: angelos Pass the local/remote Phase 1 ID to the flow, so it can be reused when an SA is re-negotiated.
2000-12-12Merge with EOM 1.55Niklas Hallqvist
author: angelos Add Default-phase-1-ID tag in [General], and document its use. author: angelos isakmpd can now negotiate transport protocol/ports (either through the configuration file or through kernel ACQUIREs).
2000-12-12Merge with EOM 1.48Niklas Hallqvist
author: angelos Add Default-phase-1-ID tag in [General], and document its use. author: angelos Default Phase 1 entry.
2000-12-12Merge with EOM 1.31Niklas Hallqvist
author: niklas style nit, we only use NULL in isakmpd when a manpage mandates it author: angelos Also check for default Phase 1 ID.
2000-12-12Merge with EOM 1.143Niklas Hallqvist
author: niklas Style nits author: angelos Pass the local/remote Phase 1 ID to the flow, so it can be reused when an SA is re-negotiated. author: angelos isakmpd can now negotiate transport protocol/ports (either through the configuration file or through kernel ACQUIREs). author: angelos CAST-128 has a maximum of 128bit keys, not 256.
2000-12-12Merge with EOM 1.143Niklas Hallqvist
author: angelos Careful when copying IDs. author: angelos Oops, what am I thinking ? author: angelos Ooops again, I reverted the wrong patch. author: angelos Oops, shouldn't have committed this. author: angelos x509_hash() should also skip the cert length (willey@serasystems.com) author: angelos If it's a dynamically established Phase 2 SA, don't keep a copy of it in isakmpd (the kernel keeps track of everything in this case). author: angelos Comment. author: angelos If no time-based lifetime was negotiated, don't release the SA.
2000-12-12Merge with EOM 1.17Niklas Hallqvist
author: niklas Do not try to deal with weak syms on archs that do not have shlibs
2000-12-12Merge with EOM 1.42Niklas Hallqvist
author: angelos isakmpd can now negotiate transport protocol/ports (either through the configuration file or through kernel ACQUIREs).
2000-12-12gmp goneNiels Provos
2000-12-12Add an extra apm_periodic_check() call before the one we check forAngelos D. Keromytis
errors; that way, Theo's laptop can still turn off APM when there's an error, and the IBM 770Z won't gratuitously disconnect APM (since the first event is always a bogus one).
2000-12-12Remove references to ipsec-aclAngelos D. Keromytis
2000-12-12Remove references to ipsec-acl.Angelos D. Keromytis
2000-12-111000baseTX supported tooJason Wright
2000-12-11repairNiels Provos
2000-12-11surpress some error messagesNiels Provos
2000-12-11proper logging.Niels Provos
2000-12-11remove lots of unnecssary code, on the way to new spd framework.Niels Provos
2000-12-11wait indicates failure by returning -1, not arbitrary values < 0Theo de Raadt
2000-12-11updates; d.doroshenko@omnitel.netTheo de Raadt
2000-12-11no need to rtalloc1() twice in pmtud. from kameJun-ichiro itojun Hagino
2000-12-11turn off path mtu when icmp needfrag messages get blocked, okay itojun@Niels Provos
2000-12-11typo in -s messageJun-ichiro itojun Hagino
2000-12-11Finnish update; petri.koistinen@iki.fiTheo de Raadt
2000-12-11show # of successful IPv6 path MTU changes with -s. from kameJun-ichiro itojun Hagino
2000-12-11show when pmtu is disabled on routes, more information when verbose,Niels Provos
from NetBSD
2000-12-11when copying 0-sized files, do not re-print ETA time at completionTheo de Raadt
2000-12-11syncTheo de Raadt
2000-12-11Some alphas have USBNathan Binkert
2000-12-11Add a whole slew of drivers to the Alpha GENERIC. These all compileNathan Binkert
properly, but there are many that have yet to be tested. If anyone tests one of the drivers listed as UNTESTED, please let me know. The following drivers have 64-bit issues when compiling on Alpha: adv, twe, vr, tx, hifn, ubsec They are in GENERIC, but commented out.
2000-12-11nuke #ifdef TCP6 (no longer supported).Jun-ichiro itojun Hagino
validate ICMPv6 too big messages (pmtud) based on pcb. we accept certain amount of non-validated ones, as IPv6 mandates ICMPv6 (so even for traffic from unconnected pcb, we need pmtud). sync with kame
2000-12-11do not touch region after freeJun-ichiro itojun Hagino
2000-12-11Avoid repeated 'host controlled halted' messages. (jakob@ ok)Hakan Olsson
2000-12-11another piece of GPL software gone.Niels Provos
2000-12-11make it use bignum.Niels Provos
2000-12-10new file; smat@acm.orgTheo de Raadt
2000-12-10Merge krb4 1.0.4.Hans Insulander
2000-12-10for correctness, do seteuid, too. okay deraadt@Niels Provos
2000-12-10Import kth-krb 1.0.4, with important bugfixes.Hans Insulander
2000-12-10Import kth-krb 1.0.4, with important bugfixes.Hans Insulander
2000-12-10more keycaps for jp106 keyboards -- gotta get myself one of these weird ↵Theo de Raadt
contraptions as a wall hanging; sigh@kuzirabekon.econ.nagasaki-u.ac.jp
2000-12-10always request new challenge for skey/tis-auth, fixes interop withMarkus Friedl
other implementations; report from roth@feep.net
2000-12-10support newer cy cards; elektrosatan@voltagenoir.org, pr#1479Theo de Raadt
2000-12-10jp106 keycap; sigh@kuzirabekon.econ.nagasaki-u.ac.jpTheo de Raadt
2000-12-10iso8859 font; smat@acm.orgTheo de Raadt
2000-12-10provide a font-loading stub; smat@acm.orgTheo de Raadt
2000-12-10new swiss keyboard maps; smat@acm.orgTheo de Raadt
2000-12-10fix norway section; johs@copyleft.noTheo de Raadt
generated by cgit v1.2.3 (git 2.25.1) at 2024-12-23 19:07:02 +0000