| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2012-06-30 | enable use of AES-{192,256}-CTR, and explicitly of AES-128-CTR, for IPsec ESP | Christian Weisgerber | |
| ok mikeb@ | |||
| 2011-04-06 | Avoid using NULL in non-pointer contexts: use 0 for integer values and '\0' | Miod Vallat | |
| for chars. | |||
| 2010-09-22 | Support for use of AES-GCM-16 (as AESGCM) and ENCR_NULL_AUTH_AES_GMAC | Mike Belopuhov | |
| (as AESGMAC) ciphers in the ISAKMP Phase 2 (aka Quick Mode). Thoroughly tested by me and naddy. Works fine with Linux. Requires updated pfkeyv2.h include file. ok naddy | |||
| 2007-08-05 | Allow key exchange with RSA signature authentication to work with | Tom Cosgrove | |
| Cisco IOS and other initiators that only send their certs in response to CERT_REQUEST. With input and help from cloder@, Stuart Henderson, mpf@, and several others who did lots of testing - thanks to all. ok hshoexer@ | |||
| 2007-04-16 | There's no point in checking ptr for NULL before doing free(ptr) | Moritz Jodeit | |
| since free(NULL) is just fine. ok hshoexer@ | |||
| 2007-03-03 | keynote_cert_obtain should not leak in case of error. OK moritz@ | Chad Loder | |
| 2006-06-17 | Do not leak file descriptor in error path. From Andrey Matveev | Hans-Joerg Hoexer | |
| <evol at online dot ptt dot ru>, thanks! | |||
| 2005-11-14 | use snprintf; ok cloder. also looked at by a few other people | Theo de Raadt | |
| 2005-06-14 | add ENCAP_UDP_{TUNNEL,TRANSPORT} types according to rfc 3947 | Hans-Joerg Hoexer | |
| ok markus | |||
| 2005-04-08 | Make deterministic randomness (only ever used for testing) a compile-time | Chad Loder | |
| option. Reduces chances of somehow setting regrand when it's not supposed to be set. Remove "-r" option from man page. Also xref certpatch(8) while we are in there. And remove some include sysdep.h where it is no longer needed. OK hshoexer | |||
| 2005-04-08 | we have IPPROTO_ETHERIP | Theo de Raadt | |
| 2005-04-08 | nat-traversal always | Theo de Raadt | |
| 2005-04-06 | knf, ok cloder | Theo de Raadt | |
| 2005-04-04 | spacing; ok cloder | Theo de Raadt | |
| 2005-03-03 | handle return value of snprintf more carefully | Hans-Joerg Hoexer | |
| ok cloder ho | |||
| 2005-02-27 | where possible, use bzero instead of memset | Hans-Joerg Hoexer | |
| ok cloder henning | |||
| 2004-08-08 | spacing | Theo de Raadt | |
| 2004-06-25 | Keynote policy checking can now be disabled by "-K" switch and config tag | Hans-Joerg Hoexer | |
| "Use-Keynote". Default is to use keynote. ok henning@ ho@ | |||
| 2004-06-24 | Also handle keys from x509-certificates embedded in keynote credentials. | Hans-Joerg Hoexer | |
| with msf@ ok ho@ | |||
| 2004-06-20 | NAT-Traversal for isakmpd. Work in progress... | Hakan Olsson | |
| hshoexer@ ok. | |||
| 2004-06-14 | KNF, style, 80c, etc. hshoexer@ ok | Hakan Olsson | |
| 2004-05-23 | More KNF. Mainly spaces and line-wraps, no binary change. | Hans-Joerg Hoexer | |
| ok ho@ | |||
| 2004-05-23 | stat before open is flawed | Theo de Raadt | |
| 2004-04-28 | remove unused variable and shorten names of two other. Removed some spaces | Hans-Joerg Hoexer | |
| while around. ok ho@ markus@ | |||
| 2004-04-15 | partial move to KNF. More to come. This has happened because there | Theo de Raadt | |
| are a raft of source code auditors who are willing to help improve this code only if this is done, and hey, isakmpd does need our standard auditing process. ok ho hshoexer | |||
| 2004-04-07 | -Wsign-compare nits. hshoexer@ ok. | Hakan Olsson | |
| 2004-03-19 | Add missing bits to make already present privsep code work. Enable privsep. | Hans-Joerg Hoexer | |
| ok ho@ deraadt@ markus@ | |||
| 2003-11-06 | Style nits. | Hakan Olsson | |
| 2003-07-25 | add sha2 support; ok ho@ | Markus Friedl | |
| 2003-06-10 | boring cleanups | Theo de Raadt | |
| 2003-06-04 | Remove the rest of clauses 3 and 4. Approved by Niklas Hallqvist, Angelos | Hakan Olsson | |
| D. Keromytis and Niels Provos. | |||
| 2003-06-03 | Cleanup. Use 'sizeof variable' instead of magic constants. | Hakan Olsson | |
| 2003-05-18 | More isakmpd privsep work. X509 private keys are now kept in the privileged | Hakan Olsson | |
| process only. Various cleanup and bugfixes. markus@ ok | |||
| 2003-05-15 | Start of privilege separation for isakmpd. | Hakan Olsson | |
| There are some kinks left, so keep it default disabled for now. markus@ says ok to commit. | |||
| 2003-05-14 | Policy file default defined twice, kill the local copy. | Hakan Olsson | |
| 2003-05-14 | I did not test this enough. Unbreak. | Hakan Olsson | |
| 2003-05-12 | AES -> AES_128_CBC | Hakan Olsson | |
| 2002-11-14 | Use %d instead of %2d for better matching. From Mike Neuman. Fixes PR#2848. | Hakan Olsson | |
| 2002-09-11 | signed vs unsigned, some void * arithmetic, from -pedantic. niklas@ ok. | Hakan Olsson | |
| 2002-06-15 | ecn_* policy attributes --- ok ho@ | Angelos D. Keromytis | |
| 2002-06-10 | The dlopen() stuff goes away. | Hakan Olsson | |
| 2002-06-09 | rm trailing whitespace | Todd T. Fries | |
| 2002-06-01 | size_t must be cast to (unsigned long) and printed using %lu | Theo de Raadt | |
| 2002-05-28 | off_t to size_t change for printf format and malloc. Pointed out by ↵ | Hakan Olsson | |
| <greg@nest.cx> | |||
| 2002-01-23 | Actually return the ESP/AH/COMP ground descriptions for policy | Angelos D. Keromytis | |
| comparisons -- from cjkim2000@yahoo.com | |||
| 2002-01-23 | no more strcpy/sprintf | Hakan Olsson | |
| 2002-01-23 | strcpy->strlcpy, sprintf->snprintf | Hakan Olsson | |
| 2002-01-03 | strftime format fixes. From Christo Butcher <christo@fox-it.com>. | Hakan Olsson | |
| 2001-08-26 | more style | Niklas Hallqvist | |
| 2001-08-25 | Use x509_DN_string API. Style fixes. | Niklas Hallqvist | |
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |