summaryrefslogtreecommitdiff
path: root/sbin
AgeCommit message (Collapse)Author
2000-02-18more alignment fix for SIOCGIFCONF.Jun-ichiro itojun Hagino
2000-02-18avoid alignment problem in 64bit arch.Jun-ichiro itojun Hagino
netbsd 1.57 -> 1.58
2000-02-18fix unaligned struct access on alpha.Jun-ichiro itojun Hagino
From: =?iso-8859-1?Q?G=F6ran_Bengtson?= <goeran@cdg.chalmers.se>
2000-02-16Import IPFilter 3.3.9. Primarily, bugfixes since 3.3.8. See sbin/ipf/HISTORYKjell Wooding
for details.
2000-02-16sync with more recent kame. uses getnameinfo(3) as much as possible.Jun-ichiro itojun Hagino
2000-02-13Xr vnconfig(8); sdb@ssr.comAaron Campbell
2000-02-12Merge with EOM 1.114Niklas Hallqvist
author: angelos Bad typo, the check should be inverted. Also, add a NOTIFY message being sent to the Responder if policy check fails at the initiator (and print a log message).
2000-02-11Merge with EOM 1.19Niklas Hallqvist
author: ho style... author: ho Think-o. Reword log msg again to match what happens here. author: ho (struct constant_map *) is not (char *), plus reword the log msg.
2000-02-11Merge with EOM 1.11Niklas Hallqvist
author: angelos Rename the "CN:" tag to "DN:", after Jorgen's suggestion. author: angelos Add an initiator attribute, and make the code amenable to be invoked by the initiator as well (for policy compliance checking). author: angelos Fix typo, noted by Jorgen.Granstam@abc.se
2000-02-11Merge with EOM 1.34Niklas Hallqvist
author: angelos Rename the "CN:" tag to "DN:", after Jorgen's suggestion.
2000-02-11Merge with EOM 1.113Niklas Hallqvist
author: angelos Rename the "CN:" tag to "DN:", after Jorgen's suggestion. author: angelos Do a policy check on the Initiator, when notified by the Responder on the SA selection. For efficiency, we should replicate this check on the first message sent by the Initiator (so we only send proposals we know we'll eventually accept).
2000-02-11Merge with EOM 1.16Niklas Hallqvist
author: angelos Do a policy check on the Initiator, when notified by the Responder on the SA selection. For efficiency, we should replicate this check on the first message sent by the Initiator (so we only send proposals we know we'll eventually accept). author: angelos Add an initiator attribute, and make the code amenable to be invoked by the initiator as well (for policy compliance checking).
2000-02-11Use .An and Aq constructsJason Wright
2000-02-08in6.h is not necessary (in.h will bring it in)Jun-ichiro itojun Hagino
2000-02-08be consistent with other makefiles: use CFLAGS+= instead of COPTS+=Jason Wright
2000-02-07various minor cleanups of ugliesTheo de Raadt
2000-02-07ike_quick_mode.c: Merge with EOM 1.111Niklas Hallqvist
libcrypto.c: Merge with EOM 1.11 libcrypto.h: Merge with EOM 1.11 x509.c: Merge with EOM 1.33 author: angelos Add Canonical Names as policy targets (so they can be specified in the Licensees field), with the "CN:..." format.
2000-02-07Merge with EOM 1.8Niklas Hallqvist
author: angelos Add Canonical Names as policy targets (so they can be specified in the Licensees field), with the "CN:..." format. author: angelos Done. author: angelos One missing item left... author: angelos More text. author: angelos Passphrases are encoded as "passphrase:xxxx" now, to distinguish between passphrases and logic labels. author: angelos Consistent references. author: angelos Minor tweak.
2000-02-06Upgrade newfs_msdos to latest freebsd version. This one knows how to handleimp
msdos on hard disk as well as floppies. ok millert@
2000-02-06do not directly include netinet6/{ip6,icmp6}.hJun-ichiro itojun Hagino
2000-02-05Fix uninitialized access introduced by millert. ok millert@imp
2000-02-04Max Sectors is 63. ok weingart@Kjell Wooding
2000-02-04show the rulesTheo de Raadt
2000-02-03Correctly handle and print hexadecimal keys.Angelos D. Keromytis
2000-02-03WEP support (ported from FreeBSD)Angelos D. Keromytis
2000-02-02without a command, identify is impliedTheo de Raadt
2000-02-01Update to IPFilter 3.3.8. Man pages still to go. See sbin/ipf/HISTORYKjell Wooding
for details.
2000-02-01apps/certpatch/certpatch.8: Merge with EOM 1.4Niklas Hallqvist
apps/certpatch/certpatch.c: Merge with EOM 1.6 exchange.c: Merge with EOM 1.114 ike_quick_mode.c: Merge with EOM 1.110 ike_phase_1.c: Merge with EOM 1.16 ike_auth.c: Merge with EOM 1.41 ike_aggressive.c: Merge with EOM 1.4 libcrypto.c: Merge with EOM 1.10 libcrypto.h: Merge with EOM 1.10 isakmpd.8: Merge with EOM 1.19 isakmpd.c: Merge with EOM 1.42 ipsec.h: Merge with EOM 1.40 init.c: Merge with EOM 1.22 message.c: Merge with EOM 1.143 message.h: Merge with EOM 1.49 sa.c: Merge with EOM 1.98 sa.h: Merge with EOM 1.54 policy.c: Merge with EOM 1.14 pf_key_v2.c: Merge with EOM 1.36 x509.c: Merge with EOM 1.32 x509.h: Merge with EOM 1.9 udp.c: Merge with EOM 1.46 author: niklas Angelos copyrights
2000-01-31samples/VPN-east.conf: Merge with EOM 1.10Niklas Hallqvist
samples/VPN-west.conf: Merge with EOM 1.10 samples/singlehost-east.conf: Merge with EOM 1.7 samples/singlehost-west.conf: Merge with EOM 1.7 author: niklas Remove volume-based lifetimes on phase 1 SAs
2000-01-31ike_quick_mode.c: Merge with EOM 1.109Niklas Hallqvist
isakmpd.conf.5: Merge with EOM 1.38 message.c: Merge with EOM 1.142 pf_key_v2.c: Merge with EOM 1.35 x509.c: Merge with EOM 1.31 author: niklas (c) 2000
2000-01-31libcrypto.c: Merge with EOM 1.9Niklas Hallqvist
libcrypto.h: Merge with EOM 1.9 author: angelos Make x509_cert_init() able to re-initialize. author: angelos Add prototypes for a few more X509 SSL calls.
2000-01-31Merge with EOM 1.21Niklas Hallqvist
author: angelos Remove empty line. author: angelos Change the order of initializing x509 and policy (x509 depends on policy).
2000-01-31Merge with EOM 1.41Niklas Hallqvist
author: angelos Make x509_cert_init() able to re-initialize. author: angelos Reinitialize certificates as well.
2000-01-31Merge with EOM 1.30Niklas Hallqvist
author: angelos Make x509_cert_init() able to re-initialize. author: angelos Fix delegating to a CA.
2000-01-30Merge with EOM 1.108Niklas Hallqvist
author: niklas style
2000-01-30Merge with EOM 1.107Niklas Hallqvist
author: angelos Fix part of the problem with X509 certificates (delegating to the CA isn't working yet, but I know where the problem is -- upcoming commit later today).
2000-01-30RCS Id sync with EOMNiklas Hallqvist
2000-01-30Another oopsie :-)Niklas Hallqvist
2000-01-30Merge with EOM 1.140Niklas Hallqvist
author: niklas Also check that the exchange to be upgraded is phase 1
2000-01-30Merge with EOM 1.139Niklas Hallqvist
author: niklas Oops in last commit author: niklas Only upgrade exchanges that are still without a responder cookie
2000-01-30Merge with EOM 1.15Niklas Hallqvist
author: angelos Better logic. author: angelos Don't crash if Life is not present...
2000-01-30When looking up a filesystem in the mount table, check the path asTodd C. Miller
giving by the user in addition to what reapath() returns. Things that call mount(2) directly may use paths different than what realpath() returns but you still want to be able to umount them...
2000-01-27Merge with EOM 1.13Niklas Hallqvist
author: ho Bugfix for IPSEC_ID_USER_FQDN from <<Jorgen.Granstam@abc.se>. Apply similar to the IPSEC_ID_FQDN case plus fix the log messages.
2000-01-27Merge with EOM 1.13Niklas Hallqvist
author: ho Bugfix. From <Jorgen.Granstam@abc.se>.
2000-01-27Merge with EOM 1.28Niklas Hallqvist
author: niklas -Wall friendly
2000-01-27Merge with EOM 1.27Niklas Hallqvist
author: niklas Fix cert ID hashing
2000-01-27Cheers from Canada (Montreal):Angelos D. Keromytis
Use the new ESP/AH flags for "old" ESP/AH.
2000-01-27Conform with the new changes with regards to new/old ESP/AHAngelos D. Keromytis
2000-01-26Merge with EOM 1.34Niklas Hallqvist
author: niklas style author: ho Lower the common {ADD,DEL}FLOW warnings to log_debug() on OpenBSD.
2000-01-26Merge with EOM 1.39Niklas Hallqvist
author: angelos Oops on previous PFS-policy patch. Small fixes in the manpages.