src - OpenBSD base system

Age	Commit message (Collapse)	Author
2003-04-09	Less noise for missing crl dir, demoted to debug message.	Hakan Olsson

2002-12-03	LOG_DBG for missing ca/, certs/, crls/ dirs, not	Hakan Olsson
	log_error(). Suggested by markus@.
2002-09-11	signed vs unsigned, some void * arithmetic, from -pedantic. niklas@ ok.	Hakan Olsson

2002-09-05	Do not require the presence of subjectAltName in certificates used for	Hakan Olsson
	IKE auth. Should make interoperating with for example FreeS/WAN easier (Pluto).
2002-08-29	Work around arguably correct OpenSSL behaviour and only ask for CRL	Hakan Olsson
	checks when we actually have CRLs to check against. Problem pointed out by <sturm@sec.informatik.tu-darmstadt.de>.
2002-08-07	A rewrite of the CRL support code, also from <Thomas.Walpuski@gmx.net>.	Hakan Olsson
	Some style mods, and checks added for OpenSSL version 0.9.7 or later. Currently CRLs are not supported for earlier versions. Manual pages updated.
2002-08-02	CRL support for isakmpd. From <Thomas.Walpuski@gmx.net> with some minor	Hakan Olsson
	modifications by me. ok niklas@.
2002-06-10	Zap a few remaining libkeynote refs.	Hakan Olsson

2002-06-10	The dlopen() stuff goes away.	Hakan Olsson

2002-06-01	size_t must be cast to (unsigned long) and printed using %lu	Theo de Raadt

2002-03-06	Fix a couple of snprintf length bugs. Same problem <chris@stallion.oz.au>	Hakan Olsson
	found for policy passphrases.
2002-01-23	the last few sprintf -> snprintf	Hakan Olsson

2002-01-23	strcpy->strlcpy, sprintf->snprintf	Hakan Olsson

2002-01-03	strftime format fixes. From Christo Butcher <christo@fox-it.com>.	Hakan Olsson

2001-08-25	Add x509_DN_string API to get a printable DN component given one	Niklas Hallqvist
	rpresented in ASN.1
2001-08-16	Don't right-justify this debug message.	Hakan Olsson

2001-07-13	Be more verbose about why X509_verify_cert() failed. Thanks to	Hakan Olsson
	<sakane@kame.net> for pointing out X509_verify_cert_error_string(). :)
2001-07-05	Add prototypes and some other various cleanup.	Hakan Olsson

2001-07-05	On closer inspection, freeing the X509 names is bad. I should stop	Angelos D. Keromytis
	coding late while half-asleep.
2001-07-05	Free X509 names in case of failure and when done.	Angelos D. Keromytis

2001-07-01	Style	Niklas Hallqvist

2001-06-22	fix for filesystems where readdir does not return d_type, use stat instead.	Niels Provos
	okay deraadt@
2001-06-07	log_error -> log_print	Angelos D. Keromytis

2001-06-07	No need to allocate/free X509 policy information -- the certs are	Angelos D. Keromytis
	converted as needed, and the CA certs are irrelevant.
2001-06-07	Get rid of the main policy session (unnecessary).	Angelos D. Keromytis

2001-06-05	log_error() cleanup	Angelos D. Keromytis

2001-06-05	Bad niklas, re-committed redundant code.	Angelos D. Keromytis

2001-06-05	Style issues and commentary	Niklas Hallqvist

2001-05-31	New routines for handling X509 cert representation.	Angelos D. Keromytis

2001-05-12	size_t -> u_int32_t (mcmahill@mtl.mit.edu)	Angelos D. Keromytis

2001-04-12	Correct various faulty x509 deallocations. By Niklas and me.	Hakan Olsson

2001-04-09	More style fixes...	Hakan Olsson

2001-04-03	Don't free reallocated memory.	Hakan Olsson

2001-03-27	Allocate a buffer large enough to contain the generated assertion.	Hakan Olsson
	Found with ElectricFence.
2001-03-14	Make these compile again...	Thorsten Lockert

2001-03-14	Indentation and style fascism	Niklas Hallqvist

2001-03-13	Add logging classes for Negotiation and Policy, and change a number of	Hakan Olsson
	debug messages to use these instead. Change a number of 'log_print' to debug messages to keep the noise down. Use 'log_error' instead of 'log_print' in some cases when we have errno. Some indentation fixes. (niklas@ ok)
2001-02-23	Allocate larger buffer for generated policies.	Angelos D. Keromytis

2001-02-18	Encode the X509 expiration in the KeyNote credential/policies	Angelos D. Keromytis
	generated on the fly. For the record, this commit done at the beach in Cayman Islands :-)
2001-02-08	Typo.	Angelos D. Keromytis

2001-01-27	(c) 2001	Niklas Hallqvist

2001-01-26	There is no need to check the subjectAltName anymore, since we are in fact	Niklas Hallqvist
	looking up the certificate via the name. The lookup method already guarantees a match. It is also a problem to look at the subjectAltName should we have got the certificate with no such name in it. Prodded by mickey@ although I solved the problem in a different way.
2001-01-26	Pedantic style police	Niklas Hallqvist

2001-01-26	Merge with EOM 1.54	Niklas Hallqvist
	author: ho Only include <gmp.h> with MP_FLAVOUR_GMP. Sync with OpenBSD.
2001-01-10	Some more debug logging.	Angelos D. Keromytis

2000-12-19	gmp is gone, make it build again; cvs retard	Michael Shalayeff

2000-12-12	Merge with EOM 1.51	Niklas Hallqvist
	author: niklas more fascistoid style author: angelos Don't insert the same entry in two or more buckets! Thanks to cedric@wireless-networks.com for reporting/debugging and coming up with the patch. author: angelos Correct format string. author: angelos x509_hash() should also skip the cert length (willey@serasystems.com) author: angelos Add some error messages (ingham@ara.com)
2000-12-02	Error messages.	Angelos D. Keromytis

2000-11-30	x509_hash() should also ignore the id length (for matching purposes)	Angelos D. Keromytis
	-- willey@serasystems.co
2000-11-23	Merge with EOM 1.45	Niklas Hallqvist
	author: niklas style author: angelos Better ID matching, should solve (some?) of PGPnet interoperability problems. From mickey@