summaryrefslogtreecommitdiff
path: root/sbin/isakmpd
AgeCommit message (Collapse)Author
2001-03-23bsdi support, ok niklas@Markus Friedl
2001-03-22BSD/OS make treats ${A:S/a/x/} like ${A:S/a/x/1}, so we use ${A:S/a/x/g}.Markus Friedl
this works on both systems (for this special case).
2001-03-14Make these compile again...Thorsten Lockert
2001-03-14Indentation and style fascismNiklas Hallqvist
2001-03-14might as well throw a few crumbs at the anal compilerTheo de Raadt
2001-03-14incorrect TAILQ management; chris@stallion.oz.au, pr#1723Theo de Raadt
2001-03-13Somewhere along the line we stopped using the configuration file defaultsHakan Olsson
properly. Make them work again. (niklas@ ok)
2001-03-13Add logging classes for Negotiation and Policy, and change a number ofHakan Olsson
debug messages to use these instead. Change a number of 'log_print' to debug messages to keep the noise down. Use 'log_error' instead of 'log_print' in some cases when we have errno. Some indentation fixes. (niklas@ ok)
2001-03-07Oops, use the right legnth for the key id.Angelos D. Keromytis
2001-03-07Add KEY_ID support (mostly from roland@digitalvampire.org)Angelos D. Keromytis
2001-03-06Print the name of the marked SA (if available).Angelos D. Keromytis
2001-03-06Don't use the source for both sides!Angelos D. Keromytis
2001-02-28Make sure the default lifetimes in the General section are taken intoAngelos D. Keromytis
consideration.
2001-02-24Make DES a feature, so isakmpd can compile on Linux (most of the fixedAngelos D. Keromytis
by newsham@lava.net)
2001-02-24For the GETSPI PFKEY message, use the sequence number from the ACQUIREAngelos D. Keromytis
message.
2001-02-23Allocate larger buffer for generated policies.Angelos D. Keromytis
2001-02-19passphrase-md5-hex: and passphrase-sha1-hex: formats for passphrases.Angelos D. Keromytis
2001-02-18Encode the X509 expiration in the KeyNote credential/policiesAngelos D. Keromytis
generated on the fly. For the record, this commit done at the beach in Cayman Islands :-)
2001-02-16use the hash algorithm found in original certificate for the signatureNiels Provos
after it has been patched. from angelos@
2001-02-12Temporarily disable dlopen() support, some issues with latest OpenSSL update.Hakan Olsson
2001-02-08Typo.Angelos D. Keromytis
2001-02-08Add debug printf.Angelos D. Keromytis
2001-01-28$OpenBSD$Niklas Hallqvist
2001-01-27Call OpenSSL functions with LC (). Various style nits.Hakan Olsson
2001-01-27(c) 2001Niklas Hallqvist
2001-01-27include dnssec.h only if USE_DNSSEC; niklas okJun-ichiro itojun Hagino
2001-01-27"obj" target conflicts with one defined in share/mk; obey bsd.*.mkJun-ichiro itojun Hagino
2001-01-27Cleanup the MP_FLAVOUR situation. Still needs work.Niklas Hallqvist
2001-01-27Tell about OpenBSD being isakmpd's home.Niklas Hallqvist
2001-01-26Preliminary but working code to permit IKE authentication using DNSSECHakan Olsson
validated KEY records. Uses lwresd from the bind-9.1.0 port. Enable by adding 'dnssec' to FEATURES.
2001-01-26include keynote.h only if USE_KEYNOTE is defined; ok niklas@Markus Friedl
2001-01-26There is no need to check the subjectAltName anymore, since we are in factNiklas Hallqvist
looking up the certificate via the name. The lookup method already guarantees a match. It is also a problem to look at the subjectAltName should we have got the certificate with no such name in it. Prodded by mickey@ although I solved the problem in a different way.
2001-01-26There is no need to check the subjectAltName anymore, since we are in factNiklas Hallqvist
looking up the certificate via the name. The lookup method already guarantees a match. It is also a problem to look at the subjectAltName should we have got the certificate with no such name in it. Prodded by mickey@ although I solved the problem in a different way.
2001-01-26Pedantic style policeNiklas Hallqvist
2001-01-26Pedantic style policeNiklas Hallqvist
2001-01-26CVS missed this in the foreign OS support commitNiklas Hallqvist
2001-01-26Pedantic style policeNiklas Hallqvist
2001-01-26Move in foreign OS support. The OpenBSD repository is now the officialNiklas Hallqvist
isakmpd home.
2001-01-26Merge with EOM 1.18Niklas Hallqvist
author: niklas Sync with OpenBSD changes by smurph
2001-01-26Merge with EOM 1.54Niklas Hallqvist
author: ho Only include <gmp.h> with MP_FLAVOUR_GMP. Sync with OpenBSD.
2001-01-26Merge with EOM 1.57Niklas Hallqvist
author: ho Lifetime is KILOBYTES not BYTES. Noticed by <jj@dynarc.se>
2001-01-26Merge with EOM 1.139Niklas Hallqvist
author: niklas Remove blank line author: ho Print warning with log_print, not log_error. author: ho Report if doi->get_spi() fails.
2001-01-26apps/certpatch/certpatch.c: Merge with EOM 1.11Niklas Hallqvist
regress/rsakeygen/rsakeygen.c: Merge with EOM 1.10 regress/x509/x509test.c: Merge with EOM 1.9 author: ho Only include <gmp.h> with MP_FLAVOUR_GMP.
2001-01-26Merge with EOM 1.57Niklas Hallqvist
author: niklas Remove unused constant
2001-01-22Fix comment and error message reporting.Angelos D. Keromytis
2001-01-22Fix memory leak on exchange free.Angelos D. Keromytis
2001-01-14Handling of Phase 1 DELETE and Phase 2 INVALID_SPI messagesAngelos D. Keromytis
(newsham@lava.net)
2001-01-14Do the HASH verification before handling the SA payload.Angelos D. Keromytis
2001-01-11Reference the sa, so sa_release() does the right thing (talk aboutAngelos D. Keromytis
convoluted logic).
2001-01-10Fix comment.Angelos D. Keromytis