summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
1999-08-26Merge with EOM 1.38Niklas Hallqvist
author: angelos When doing preshared key authentication, if the responder has the initiator's ID (as is the case in aggressive mode) and a shared key cannot be found for the initiator's address (as may be the case for a roaming laptop user), try to find the password under using as a lookup key the initiator's Phase 1 ID, if it's an IPv4 address, an FQDN (host.domain), or a User-FQDN (user@host.domain). This allows us to support roaming laptop users with preshared key authentication, using aggressive mode (sick). There is also a lot of experimental, insecure, and ifdef'd out code for fetching credentials and secret passphrases from a remote server if all else fails. Extremely experimental code. Don't use. You'll be blinded and your hair will fall if you even think about using it. You have been warned. author: angelos Complete policy work; tested for the shared-key case. Documentation needed. author: ho Compile without USE_LIBCRYPTO and HAVE_DLOPEN. author: niklas Missing dynamic link fixes author: niklas Add support for dynamic loading of optional facilities, libcrypto first.
1999-08-26Merge with EOM 1.36Niklas Hallqvist
author: ho style author: ho Don't accidentally overwrite files with the FIFO.
1999-08-26Merge with EOM 1.8Niklas Hallqvist
author: angelos Complete policy work; tested for the shared-key case. Documentation needed. author: niklas Add support for dynamic loading of optional facilities, libcrypto first.
1999-08-26Merge with EOM 1.3Niklas Hallqvist
author: niklas A working way to add a RCS Id to a keynote policy author: angelos Complete policy work; tested for the shared-key case. Documentation needed.
1999-08-26regress/exchange/def-i.1: Merge with EOMNiklas Hallqvist
regress/exchange/def-r.1: Merge with EOM apps/certpatch/certpatch.c: Merge with EOM 1.2
1999-08-26Merge with EOM 1.58Niklas Hallqvist
author: niklas Support dynamic loading of libkeynote too. Build isakmpd static by default. Stylistic cleanup of keynote policy code. Correct some libcrypto calls. author: angelos Complete policy work; tested for the shared-key case. Documentation needed. author: niklas Add support for dynamic loading of optional facilities, libcrypto first.
1999-08-26regress/asn/.cvsignore: Ignore meNiklas Hallqvist
regress/b2n/.cvsignore: Ignore me regress/crypto/.cvsignore: Ignore me regress/dh/.cvsignore: Ignore me regress/ec2n/.cvsignore: Ignore me regress/exchange/.cvsignore: Ignore me regress/group/.cvsignore: Ignore me regress/hmac/.cvsignore: Ignore me regress/pkcs/.cvsignore: Ignore me regress/prf/.cvsignore: Ignore me regress/rsakeygen/.cvsignore: Ignore me regress/x509/.cvsignore: Ignore me apps/certpatch/.cvsignore: Ignore me .cvsignore: Ignore me
1999-08-26Merge with EOM 1.3Niklas Hallqvist
author: angelos Revert order of handling KE/NONCE and IDs, such that we can use the ID to lookup for the shared secret...
1999-08-26Merge with EOM 1.31Niklas Hallqvist
author: angelos Document the ID section/tag for Phase 1 exchanges.
1999-08-26Merge with EOM 1.4Niklas Hallqvist
author: niklas typo author: niklas Support dynamic loading of libkeynote too. Build isakmpd static by default. Stylistic cleanup of keynote policy code. Correct some libcrypto calls.
1999-08-26Merge with EOM 1.7Niklas Hallqvist
author: ho Don't build w/o crypto support author: niklas Add support for dynamic loading of optional facilities, libcrypto first.
1999-08-26increase timeout for "lost messages"David Leonard
1999-08-26Merge with EOM 1.21Niklas Hallqvist
author: niklas Support dynamic loading of libkeynote too. Build isakmpd static by default. Stylistic cleanup of keynote policy code. Correct some libcrypto calls. author: angelos Complete policy work; tested for the shared-key case. Documentation needed. author: ho Compile without USE_LIBCRYPTO and HAVE_DLOPEN. author: niklas Add support for dynamic loading of optional facilities, libcrypto first.
1999-08-26ike_phase_1.c: Merge with EOM 1.8Niklas Hallqvist
message.c: Merge with EOM 1.135 message.h: Merge with EOM 1.48 sa.c: Merge with EOM 1.97 sa.h: Merge with EOM 1.53 author: angelos Complete policy work; tested for the shared-key case. Documentation needed.
1999-08-26remove some unneeded debuggingDavid Leonard
1999-08-26Make it clear that "amq -M" mounts are disabled and kill some dead code.Todd C. Miller
1999-08-26OpenBSD CVS tagTodd C. Miller
1999-08-26Don't document the disabled -M flagTodd C. Miller
1999-08-26fix a few more boflows; millert@ okAaron Campbell
1999-08-26add an inner xor to make prediction attacks against the ids harder, dueNiels Provos
to an attack pointed out by David Wagner.
1999-08-26add an inner xor to make prediction attacks against the ids harder, dueNiels Provos
to an attack pointed out by David Wagner.
1999-08-26spellingAaron Campbell
1999-08-26Fix a buf oflow noticed by aazubel@cnba.uba.ar.Federico G. Schwindt
Change strcpy to strlcpy and use 10 X's in _NAME_ARTMP and _PATH_ARTMP; ok millert@
1999-08-26change a & to &&. From dima@best.netArtur Grabowski
1999-08-26Align mbufs to sizeof(long), not 4brian
1999-08-25Move COREGA to ALLIEDTELESIS.Federico G. Schwindt
1999-08-25syncFederico G. Schwindt
1999-08-25Remove some unneeded text. Add Contec entry.Federico G. Schwindt
1999-08-25Fix usage message, fix flow logic.Angelos D. Keromytis
1999-08-25n+1 approximation step for the user space constantsMichael Shalayeff
1999-08-25Don't need to include sys/ucred.hTodd C. Miller
1999-08-25Compile under UVM and versions of egcs. art@ ok.Hakan Olsson
1999-08-25comment typoNiklas Hallqvist
1999-08-25Remove redundant test (which I am sure gcc removed by itself anyhow)Niklas Hallqvist
1999-08-25receive works a lot better nowDavid Leonard
1999-08-25give better support to the bios memory maps.Michael Shalayeff
provide memory maps editing through the machine memory command. rearrange probing in machdep, so it provides less output, also giving a shot for apm to fix the memory maps. changes to kernel are minimal, only that is required due to the api version bits addition and such cosmetic changes. tested on all critical kernel,boot combinations; niklas@ ok
1999-08-24Do not error out if we have been statically linked but would like ld.so for ↵Niklas Hallqvist
dlopen and it is not there.
1999-08-24Enable dlopen(3) to work in statically linked binariesNiklas Hallqvist
1999-08-24Remove -g accidentally committed by someoneNiklas Hallqvist
1999-08-24Align defines nicelyNiklas Hallqvist
1999-08-24better fix; now if the last line in a file stream does not contain a newline,Aaron Campbell
construct a null-terminated copy of the buffer returned by fgetln() and process it as normal
1999-08-24Opps. forgot this in the last uvm updateArtur Grabowski
1999-08-24Remove unneeded printf.Federico G. Schwindt
1999-08-24Added type field to scsi_addr to reflect bus/device type (ATAPI or SCSI).Constantine Sapuntzakis
Updated ioctls to match Minor patches in anticipation of wd->sd translation layer
1999-08-24Avoid /usr/ARCH-unknown-openbsd in a way more friendly toMarc Espie
cross-compilers... Yet another commit I forgot...
1999-08-24m68k code generation work-around that I had forgotten to remove...Marc Espie
1999-08-23fgets() -> fgetln(). When reading files like this, the notion of a `line' isAaron Campbell
more appropriate than C strings. Now paste won't die if it encounters null characters. If the last line in the stream does not contain a newline, we now say "incomplete line" instead of lying about "line too long". fgetln() uses realloc, so now we're not limited to POSIX_LINE_MAX.
1999-08-23reset card before attempting configDavid Leonard
1999-08-23undo damage by careless developerTheo de Raadt
1999-08-23Remove some unneeded needs-flag; NetBSD.Federico G. Schwindt
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-28 05:14:42 +0000