Age | Commit message (Collapse) | Author | |
---|---|---|---|
2007-08-05 | Allow key exchange with RSA signature authentication to work with | Tom Cosgrove | |
Cisco IOS and other initiators that only send their certs in response to CERT_REQUEST. With input and help from cloder@, Stuart Henderson, mpf@, and several others who did lots of testing - thanks to all. ok hshoexer@ | |||
2007-04-16 | There's no point in checking ptr for NULL before doing free(ptr) | Moritz Jodeit | |
since free(NULL) is just fine. ok hshoexer@ | |||
2007-03-03 | keynote_cert_obtain should not leak in case of error. OK moritz@ | Chad Loder | |
2006-06-17 | Do not leak file descriptor in error path. From Andrey Matveev | Hans-Joerg Hoexer | |
<evol at online dot ptt dot ru>, thanks! | |||
2005-11-14 | use snprintf; ok cloder. also looked at by a few other people | Theo de Raadt | |
2005-06-14 | add ENCAP_UDP_{TUNNEL,TRANSPORT} types according to rfc 3947 | Hans-Joerg Hoexer | |
ok markus | |||
2005-04-08 | Make deterministic randomness (only ever used for testing) a compile-time | Chad Loder | |
option. Reduces chances of somehow setting regrand when it's not supposed to be set. Remove "-r" option from man page. Also xref certpatch(8) while we are in there. And remove some include sysdep.h where it is no longer needed. OK hshoexer | |||
2005-04-08 | we have IPPROTO_ETHERIP | Theo de Raadt | |
2005-04-08 | nat-traversal always | Theo de Raadt | |
2005-04-06 | knf, ok cloder | Theo de Raadt | |
2005-04-04 | spacing; ok cloder | Theo de Raadt | |
2005-03-03 | handle return value of snprintf more carefully | Hans-Joerg Hoexer | |
ok cloder ho | |||
2005-02-27 | where possible, use bzero instead of memset | Hans-Joerg Hoexer | |
ok cloder henning | |||
2004-08-08 | spacing | Theo de Raadt | |
2004-06-25 | Keynote policy checking can now be disabled by "-K" switch and config tag | Hans-Joerg Hoexer | |
"Use-Keynote". Default is to use keynote. ok henning@ ho@ | |||
2004-06-24 | Also handle keys from x509-certificates embedded in keynote credentials. | Hans-Joerg Hoexer | |
with msf@ ok ho@ | |||
2004-06-20 | NAT-Traversal for isakmpd. Work in progress... | Hakan Olsson | |
hshoexer@ ok. | |||
2004-06-14 | KNF, style, 80c, etc. hshoexer@ ok | Hakan Olsson | |
2004-05-23 | More KNF. Mainly spaces and line-wraps, no binary change. | Hans-Joerg Hoexer | |
ok ho@ | |||
2004-05-23 | stat before open is flawed | Theo de Raadt | |
2004-04-28 | remove unused variable and shorten names of two other. Removed some spaces | Hans-Joerg Hoexer | |
while around. ok ho@ markus@ | |||
2004-04-15 | partial move to KNF. More to come. This has happened because there | Theo de Raadt | |
are a raft of source code auditors who are willing to help improve this code only if this is done, and hey, isakmpd does need our standard auditing process. ok ho hshoexer | |||
2004-04-07 | -Wsign-compare nits. hshoexer@ ok. | Hakan Olsson | |
2004-03-19 | Add missing bits to make already present privsep code work. Enable privsep. | Hans-Joerg Hoexer | |
ok ho@ deraadt@ markus@ | |||
2003-11-06 | Style nits. | Hakan Olsson | |
2003-07-25 | add sha2 support; ok ho@ | Markus Friedl | |
2003-06-10 | boring cleanups | Theo de Raadt | |
2003-06-04 | Remove the rest of clauses 3 and 4. Approved by Niklas Hallqvist, Angelos | Hakan Olsson | |
D. Keromytis and Niels Provos. | |||
2003-06-03 | Cleanup. Use 'sizeof variable' instead of magic constants. | Hakan Olsson | |
2003-05-18 | More isakmpd privsep work. X509 private keys are now kept in the privileged | Hakan Olsson | |
process only. Various cleanup and bugfixes. markus@ ok | |||
2003-05-15 | Start of privilege separation for isakmpd. | Hakan Olsson | |
There are some kinks left, so keep it default disabled for now. markus@ says ok to commit. | |||
2003-05-14 | Policy file default defined twice, kill the local copy. | Hakan Olsson | |
2003-05-14 | I did not test this enough. Unbreak. | Hakan Olsson | |
2003-05-12 | AES -> AES_128_CBC | Hakan Olsson | |
2002-11-14 | Use %d instead of %2d for better matching. From Mike Neuman. Fixes PR#2848. | Hakan Olsson | |
2002-09-11 | signed vs unsigned, some void * arithmetic, from -pedantic. niklas@ ok. | Hakan Olsson | |
2002-06-15 | ecn_* policy attributes --- ok ho@ | Angelos D. Keromytis | |
2002-06-10 | The dlopen() stuff goes away. | Hakan Olsson | |
2002-06-09 | rm trailing whitespace | Todd T. Fries | |
2002-06-01 | size_t must be cast to (unsigned long) and printed using %lu | Theo de Raadt | |
2002-05-28 | off_t to size_t change for printf format and malloc. Pointed out by ↵ | Hakan Olsson | |
<greg@nest.cx> | |||
2002-01-23 | Actually return the ESP/AH/COMP ground descriptions for policy | Angelos D. Keromytis | |
comparisons -- from cjkim2000@yahoo.com | |||
2002-01-23 | no more strcpy/sprintf | Hakan Olsson | |
2002-01-23 | strcpy->strlcpy, sprintf->snprintf | Hakan Olsson | |
2002-01-03 | strftime format fixes. From Christo Butcher <christo@fox-it.com>. | Hakan Olsson | |
2001-08-26 | more style | Niklas Hallqvist | |
2001-08-25 | Use x509_DN_string API. Style fixes. | Niklas Hallqvist | |
2001-08-24 | I was only going to remove #include "init.h", but found 8 more | Hakan Olsson | |
#include's we don't need here. | |||
2001-08-11 | Allocate slightly larger buffer for cert. | Angelos D. Keromytis | |
2001-07-05 | DER_ASN1_DN ID handling --- untested | Angelos D. Keromytis | |