summaryrefslogtreecommitdiff
path: root/sbin/isakmpd/ipsec.h
AgeCommit message (Collapse)Author
2002-06-09rm trailing whitespaceTodd T. Fries
2002-06-08add cfg_typeHakan Olsson
2001-08-22Add ipsec_id_string, a function for converting IDs to on epossibleNiklas Hallqvist
string form, to be used for IKE mode config and raw key selection by ID. Not yet used though.
2001-07-01ISAKMP configuration, a.k.a IKECFG or "mode-config", protocol implementation.Niklas Hallqvist
Disabled, has no configuration mechanism yet. This will be used for roaming users, who are going to get parameters like IP-address and nameserver from its peer, very much like DHCP, but securily inside an ISAKMP connection and still in time before negotiation of IPsec connections. You may see stylistic fixes in this commit too. Add some not yet used Makefile magic to deal with DNSSEC- enabled OpenSSL too. The IKECFG code work was sponsered by Gatespace Inc. Thank you! Configuration will come very soon, btw.
2001-06-29Initial IPv6 support. (niklas@ ok)Hakan Olsson
2001-06-27Consistently use "IPsec" capitalization (jsyn@nthought.com)Angelos D. Keromytis
2000-12-12Merge with EOM 1.42Niklas Hallqvist
author: angelos isakmpd can now negotiate transport protocol/ports (either through the configuration file or through kernel ACQUIREs).
2000-08-03Merge with EOM 1.41Niklas Hallqvist
author: provos introduce ipsec_decode_ids, also decodes FQDN and USER_FQDN now. new ipsec_clone_id to copy IDs to phase 2 SAs for better status reports. okay angelos@
2000-02-01apps/certpatch/certpatch.8: Merge with EOM 1.4Niklas Hallqvist
apps/certpatch/certpatch.c: Merge with EOM 1.6 exchange.c: Merge with EOM 1.114 ike_quick_mode.c: Merge with EOM 1.110 ike_phase_1.c: Merge with EOM 1.16 ike_auth.c: Merge with EOM 1.41 ike_aggressive.c: Merge with EOM 1.4 libcrypto.c: Merge with EOM 1.10 libcrypto.h: Merge with EOM 1.10 isakmpd.8: Merge with EOM 1.19 isakmpd.c: Merge with EOM 1.42 ipsec.h: Merge with EOM 1.40 init.c: Merge with EOM 1.22 message.c: Merge with EOM 1.143 message.h: Merge with EOM 1.49 sa.c: Merge with EOM 1.98 sa.h: Merge with EOM 1.54 policy.c: Merge with EOM 1.14 pf_key_v2.c: Merge with EOM 1.36 x509.c: Merge with EOM 1.32 x509.h: Merge with EOM 1.9 udp.c: Merge with EOM 1.46 author: niklas Angelos copyrights
2000-01-26Merge with EOM 1.39Niklas Hallqvist
author: angelos Oops on previous PFS-policy patch. Small fixes in the manpages.
1999-08-05Merge with EOM 1.38Niklas Hallqvist
author: niklas Fix no ID in QM, when acting as responder, bug
1999-07-07ipsec.c: Merge with EOM 1.113Niklas Hallqvist
ipsec.h: Merge with EOM 1.37 author: niklas Add a function giving the size of a certain ID-payload
1999-05-02BUGS: Merge with EOM 1.31Niklas Hallqvist
doi.h: Merge with EOM 1.27 ike_auth.c: Merge with EOM 1.30 ike_quick_mode.c: Merge with EOM 1.85 ipsec.c: Merge with EOM 1.107 ipsec.h: Merge with EOM 1.36 isakmp_doi.c: Merge with EOM 1.39 author: niklas Factor out keyed hashing of all payloads with SKEYID_a, and make DOI hooks for informational exchanges to add such hashing. Use it from QM and the IKE authentication module too. Remove some bogus XXX comments. Add error reporting
1999-04-27ike_aggressive.c: Merge with EOM 1.2Niklas Hallqvist
ike_main_mode.c: Merge with EOM 1.77 ipsec.h: Merge with EOM 1.35 author: niklas Send out INITIAL-CONTACT notifications
1999-04-19./app.c: Merge with EOM 1.5Niklas Hallqvist
./gmp_util.c: Merge with EOM 1.3 ./asn_useful.c: Merge with EOM 1.11 ./attribute.c: Merge with EOM 1.9 ./constants.c: Merge with EOM 1.7 ./doi.h: Merge with EOM 1.25 ./doi.c: Merge with EOM 1.4 ./field.c: Merge with EOM 1.9 ./init.c: Merge with EOM 1.13 ./isakmp_doi.c: Merge with EOM 1.35 ./prf.c: Merge with EOM 1.6 ./util.c: Merge with EOM 1.14 ./app.h: Merge with EOM 1.4 ./conf.h: Merge with EOM 1.8 ./ipsec.h: Merge with EOM 1.34 ./ipsec_doi.h: Merge with EOM 1.10 ./pkcs.h: Merge with EOM 1.8 ./sysdep.h: Merge with EOM 1.15 1999 copyrights
1999-03-31ipsec.c: Merge with EOM 1.86Niklas Hallqvist
ipsec.h: Merge with EOM 1.33 pf_encap.c: Merge with EOM 1.52 pf_key_v2.c: Merge with EOM 1.3 Fix case of missing client ID payloads, a case the standards allow. Thanks to Michael Paddon (mwp@aba.net.au) for the diffs I based my fix upon. His diff also made me realize I stored the address information in host order in internal structures where I had planned to use network order. Fix this, and remove the XXXes I had due to this elsewhere. Add commentary.
1999-02-26Merge from the Ericsson repositoryNiklas Hallqvist
| revision 1.32 | date: 1999/02/25 09:30:26; author: niklas; state: Exp; lines: +4 -1 | Replay protection window configurable | ---------------------------- | revision 1.31 | date: 1999/02/14 00:21:12; author: niklas; state: Exp; lines: +2 -1 | Find relevant SAs out of IPsec expiration info. Do not automatically rekey. | ---------------------------- | revision 1.30 | date: 1999/01/31 01:17:01; author: niklas; state: Exp; lines: +4 -1 | splitup ipsec_build_id into more useful API | ----------------------------
1998-12-21Last months worth of work on isakmpd, lots doneNiklas Hallqvist
1998-11-17Add RCS Ids from the EOM repositoryNiklas Hallqvist
1998-11-15openBSD RCS IDsNiklas Hallqvist
1998-11-15Initial import of isakmpd, an IKE (ISAKMP/Oakley) implementation for theNiklas Hallqvist
OpenBSD IPSEC stack by me, Niklas Hallqvist and Niels Provos, funded by Ericsson Radio Systems. It is not yet complete or usable in a real scenario but the missing pieces will soon be there. The early commit is for people who wants early access and who are not afraid of looking at source. isakmpd interops with Cisco, Timestep, SSH & Pluto (Linux FreeS/WAN) so far, so it is not that incomplete. It is really mostly configuration that is lacking.
generated by cgit v1.2.3 (git 2.25.1) at 2024-12-12 09:41:35 +0000