![[BACK]](/icons/back.gif){kind=icon}
Up to [cvs.netbsd.org] / src / crypto / dist / ipsec-tools / src / racoon
Request diff between arbitrary revisions
Default branch: MAIN
Revision 1.25 / (download) - annotate - [select for diffs], Wed Nov 17 10:40:41 2010 UTC (18 months, 1 week ago) by tteras
Branch: MAIN
CVS Tags: yamt-pagecache-base5,
yamt-pagecache-base4,
yamt-pagecache-base3,
yamt-pagecache-base2,
yamt-pagecache-base,
yamt-pagecache,
netbsd-6-base,
netbsd-6,
matt-mips64-premerge-20101231,
ipsec-tools-0_8_0,
ipsec-tools-0_8-branch,
cherry-xenmp-base,
cherry-xenmp,
bouyer-quota2-nbase,
bouyer-quota2-base,
bouyer-quota2,
HEAD
Changes since 1.24: +2 -1
lines
Diff to previous 1.24 (colored)
Fix my previous patch to not call purge_remote() twice. Change the place where purge_remote() is called. This fixes also a possible crash from the same patch since ph1->remote can be NULL (when we are responder and config is not yet selected).
Revision 1.24 / (download) - annotate - [select for diffs], Fri Nov 12 09:09:47 2010 UTC (18 months, 1 week ago) by tteras
Branch: MAIN
Changes since 1.23: +3 -2
lines
Diff to previous 1.23 (colored)
Improve DPD sequence checks to allow any reply within valid sequence window to be proof of livelyness. This can improves things if there's random packet delays, or if racoon is not getting enough CPU time.
Revision 1.23 / (download) - annotate - [select for diffs], Thu Oct 21 06:04:33 2010 UTC (19 months ago) by tteras
Branch: MAIN
Changes since 1.22: +2 -1
lines
Diff to previous 1.22 (colored)
Remove initial-contact entry when all ISAKMP-SA are purged via adminport. This will avoid stale security associations if some of the delete notifications happens to get lost.
Revision 1.22 / (download) - annotate - [select for diffs], Thu Sep 3 09:29:07 2009 UTC (2 years, 8 months ago) by tteras
Branch: MAIN
CVS Tags: matt-premerge-20091211
Changes since 1.21: +6 -6
lines
Diff to previous 1.21 (colored)
When rekeying phase2 use phase1 used to negotiate phase2 as a hint to select the phase1 for rekeying the new phase2.
Revision 1.21 / (download) - annotate - [select for diffs], Fri Jul 3 06:41:46 2009 UTC (2 years, 10 months ago) by tteras
Branch: MAIN
Changes since 1.20: +3 -6
lines
Diff to previous 1.20 (colored)
Get rid of the evil CMPSADDR macro. Trac #295.
Revision 1.19.2.1 / (download) - annotate - [select for diffs], Wed May 13 19:15:54 2009 UTC (3 years ago) by jym
Branch: jym-xensuspend
Changes since 1.19: +21 -10
lines
Diff to previous 1.19 (colored) next main 1.20 (colored)
Sync with HEAD. Third (and last) commit. See http://mail-index.netbsd.org/source-changes/2009/05/13/msg221222.html
Revision 1.20 / (download) - annotate - [select for diffs], Thu Mar 12 10:57:26 2009 UTC (3 years, 2 months ago) by tteras
Branch: MAIN
CVS Tags: jym-xensuspend-nbase,
jym-xensuspend-base
Changes since 1.19: +21 -10
lines
Diff to previous 1.19 (colored)
Support multiple anonymous remotes and decide remoteconf based on identity, received certificates and other information. General code clean up.
Revision 1.16.4.1 / (download) - annotate - [select for diffs], Sun Feb 8 18:42:16 2009 UTC (3 years, 3 months ago) by snj
Branch: netbsd-5
CVS Tags: netbsd-5-1-RELEASE,
netbsd-5-1-RC4,
netbsd-5-1-RC3,
netbsd-5-1-RC2,
netbsd-5-1-RC1,
netbsd-5-1-2-RELEASE,
netbsd-5-1-1-RELEASE,
netbsd-5-1,
netbsd-5-0-RELEASE,
netbsd-5-0-RC4,
netbsd-5-0-RC3,
netbsd-5-0-RC2,
netbsd-5-0-2-RELEASE,
netbsd-5-0-1-RELEASE,
netbsd-5-0,
matt-nb5-pq3-base,
matt-nb5-pq3,
matt-nb5-mips64-u2-k2-k4-k7-k8-k9,
matt-nb5-mips64-u1-k1-k5,
matt-nb5-mips64-premerge-20101231,
matt-nb5-mips64-premerge-20091211,
matt-nb5-mips64-k15,
matt-nb5-mips64,
matt-nb4-mips64-k7-u2a-k9b
Changes since 1.16: +13 -24
lines
Diff to previous 1.16 (colored) next main 1.17 (colored)
Apply patch (requested by manu/spz in #378): Downgrade ipsec-tools to 0.7.1nb1.
Revision 1.19 / (download) - annotate - [select for diffs], Fri Jan 23 08:25:06 2009 UTC (3 years, 4 months ago) by tteras
Branch: MAIN
Branch point for: jym-xensuspend
Changes since 1.18: +2 -4
lines
Diff to previous 1.18 (colored)
Detect if monotonic system clock is available, and use it for relative time measurements to avoid complite hang if time jumps backwards.
Revision 1.18 / (download) - annotate - [select for diffs], Fri Jan 23 08:06:56 2009 UTC (3 years, 4 months ago) by tteras
Branch: MAIN
Changes since 1.17: +2 -1
lines
Diff to previous 1.17 (colored)
Introduce vendorid bitmask that can be used otherwhere to detect peer capabilities.
Revision 1.17 / (download) - annotate - [select for diffs], Fri Dec 5 06:02:20 2008 UTC (3 years, 5 months ago) by tteras
Branch: MAIN
Changes since 1.16: +47 -13
lines
Diff to previous 1.16 (colored)
From Arnaud Ebalard: Improved Mobile IPv6 support per draft-ebalard-mext-pfkey-enhanced-migrate.
Revision 1.16 / (download) - annotate - [select for diffs], Fri Sep 19 11:14:49 2008 UTC (3 years, 8 months ago) by tteras
Branch: MAIN
CVS Tags: netbsd-5-base,
netbsd-5-0-RC1,
matt-mips64-base2
Branch point for: netbsd-5
Changes since 1.15: +8 -5
lines
Diff to previous 1.15 (colored)
Implement ISAKMP SA rekeying configurable with rekey {on|off|force} option
in remote conf.
Revision 1.15 / (download) - annotate - [select for diffs], Fri Sep 19 11:01:08 2008 UTC (3 years, 8 months ago) by tteras
Branch: MAIN
Changes since 1.14: +7 -8
lines
Diff to previous 1.14 (colored)
Change struct sched to be allocated be the caller to avoid some memory allocations. Optimize scheduling algorithm to not scan all entries in the main loop.
Revision 1.12.4.1 / (download) - annotate - [select for diffs], Thu Sep 18 04:54:19 2008 UTC (3 years, 8 months ago) by wrstuden
Branch: wrstuden-revivesa
Changes since 1.12: +4 -1
lines
Diff to previous 1.12 (colored) next main 1.13 (colored)
Sync with wrstuden-revivesa-base-2.
Revision 1.9.4.1 / (download) - annotate - [select for diffs], Thu Sep 4 08:46:10 2008 UTC (3 years, 8 months ago) by skrll
Branch: wrstuden-fixsa
Changes since 1.9: +2 -2
lines
Diff to previous 1.9 (colored) next main 1.10 (colored)
Sync with netbsd-4.
Revision 1.9.14.1 / (download) - annotate - [select for diffs], Mon Aug 18 20:33:33 2008 UTC (3 years, 9 months ago) by jdc
Branch: netbsd-4-0
CVS Tags: netbsd-4-0-1-RELEASE
Changes since 1.9: +2 -2
lines
Diff to previous 1.9 (colored) next main 1.10 (colored)
Upgrade ipsec-tools to release 0.7.1 (requested by manu in ticket #1183).
Revision 1.9.2.1 / (download) - annotate - [select for diffs], Mon Aug 18 20:31:30 2008 UTC (3 years, 9 months ago) by jdc
Branch: netbsd-4
CVS Tags: wrstuden-fixsa-newbase,
wrstuden-fixsa-base
Changes since 1.9: +2 -2
lines
Diff to previous 1.9 (colored) next main 1.10 (colored)
Upgrade ipsec-tools to release 0.7.1 (requested by manu in ticket #1183).
Revision 1.14 / (download) - annotate - [select for diffs], Mon Jul 14 05:45:15 2008 UTC (3 years, 10 months ago) by tteras
Branch: MAIN
CVS Tags: wrstuden-revivesa-base-3,
wrstuden-revivesa-base-2
Changes since 1.13: +3 -1
lines
Diff to previous 1.13 (colored)
Handle RESPONDER-LIFETIME notification in quick mode.
Revision 1.13 / (download) - annotate - [select for diffs], Mon Jul 14 05:40:13 2008 UTC (3 years, 10 months ago) by tteras
Branch: MAIN
Changes since 1.12: +2 -1
lines
Diff to previous 1.12 (colored)
Clean up notification payload handling. Handle INITIAL-CONTACT notification in last main mode exchange (delayed) and during quick mode exchanges.
Revision 1.11.2.1 / (download) - annotate - [select for diffs], Mon Mar 24 07:14:29 2008 UTC (4 years, 2 months ago) by keiichi
Branch: keiichi-mipv6
Changes since 1.11: +4 -2
lines
Diff to previous 1.11 (colored) next main 1.12 (colored)
sync with head.
Revision 1.9.10.2 / (download) - annotate - [select for diffs], Sun Mar 23 00:13:34 2008 UTC (4 years, 2 months ago) by matt
Branch: matt-armv6
Changes since 1.9.10.1: +5 -3
lines
Diff to previous 1.9.10.1 (colored) to branchpoint 1.9 (colored) next main 1.10 (colored)
sync with HEAD
Revision 1.12 / (download) - annotate - [select for diffs], Thu Mar 6 00:34:11 2008 UTC (4 years, 2 months ago) by mgrooms
Branch: MAIN
CVS Tags: yamt-pf42-baseX,
yamt-pf42-base4,
yamt-pf42-base3,
yamt-pf42-base2,
yamt-pf42-base,
yamt-pf42,
wrstuden-revivesa-base-1,
wrstuden-revivesa-base,
matt-armv6-nbase,
keiichi-mipv6-base,
hpcarm-cleanup-nbase
Branch point for: wrstuden-revivesa
Changes since 1.11: +4 -2
lines
Diff to previous 1.11 (colored)
Refactor admin socket event protocol to be less error prone. Backwards compatibility is provided. Submitted by Timo Teras.
Revision 1.9.6.1 / (download) - annotate - [select for diffs], Fri Jan 11 14:12:01 2008 UTC (4 years, 4 months ago) by vanhu
Branch: ipsec-tools-0_7-branch
CVS Tags: ipsec-tools-0_7_3,
ipsec-tools-0_7_2,
ipsec-tools-0_7_1
Changes since 1.9: +2 -2
lines
Diff to previous 1.9 (colored) next main 1.10 (colored)
added an 'established' arg to getph1byaddr()
Revision 1.11 / (download) - annotate - [select for diffs], Fri Jan 11 14:06:56 2008 UTC (4 years, 4 months ago) by vanhu
Branch: MAIN
CVS Tags: hpcarm-cleanup-base
Branch point for: keiichi-mipv6
Changes since 1.10: +2 -2
lines
Diff to previous 1.10 (colored)
added an 'established' arg to getph1byaddr()
Revision 1.9.10.1 / (download) - annotate - [select for diffs], Wed Jan 9 01:22:34 2008 UTC (4 years, 4 months ago) by matt
Branch: matt-armv6
Changes since 1.9: +4 -0
lines
Diff to previous 1.9 (colored)
sync with HEAD
Revision 1.10 / (download) - annotate - [select for diffs], Wed Dec 12 04:46:00 2007 UTC (4 years, 5 months ago) by mgrooms
Branch: MAIN
CVS Tags: matt-armv6-base
Changes since 1.9: +5 -1
lines
Diff to previous 1.9 (colored)
Add support for nat-t oa payload handling. Submitted by Timo Teras.
Revision 1.9 / (download) - annotate - [select for diffs], Sat Sep 9 16:22:09 2006 UTC (5 years, 8 months ago) by manu
Branch: MAIN
CVS Tags: wrstuden-fixsa-base-1,
netbsd-4-base,
netbsd-4-0-RELEASE,
netbsd-4-0-RC5,
netbsd-4-0-RC4,
netbsd-4-0-RC3,
netbsd-4-0-RC2,
netbsd-4-0-RC1,
matt-mips64-base,
matt-mips64,
matt-armv6-prevmlocking,
ipsec-tools-0_7-rc1,
ipsec-tools-0_7-beta3,
ipsec-tools-0_7-beta2,
ipsec-tools-0_7-beta1,
ipsec-tools-0_7-base,
ipsec-tools-0_7-RC1,
ipsec-tools-0_7,
hpcarm-cleanup,
cube-autoconf-base,
cube-autoconf
Branch point for: wrstuden-fixsa,
netbsd-4-0,
netbsd-4,
matt-armv6,
ipsec-tools-0_7-branch
Changes since 1.8: +12 -2
lines
Diff to previous 1.8 (colored)
Migration of ipsec-tools to NetBSD CVS part 2: resolving the import conflicts. Since we previously had a release branch and we import here the HEAD of CVS, let's assume all local changes are to be dumped. Local patches should have been propagated upstream, anyway.
Revision 1.1.1.4 / (download) - annotate - [select for diffs] (vendor branch), Sat Sep 9 16:11:49 2006 UTC (5 years, 8 months ago) by manu
Branch: IPSEC_TOOLS
CVS Tags: ipsec-tools-base
Changes since 1.1.1.3: +12 -2
lines
Diff to previous 1.1.1.3 (colored)
Migrate ipsec-tools CVS to cvs.netbsd.org
Revision 1.1.1.2.2.6 / (download) - annotate - [select for diffs], Mon Nov 21 21:12:30 2005 UTC (6 years, 6 months ago) by tron
Branch: netbsd-3
CVS Tags: netbsd-3-1-RELEASE,
netbsd-3-1-RC4,
netbsd-3-1-RC3,
netbsd-3-1-RC2,
netbsd-3-1-RC1,
netbsd-3-1-1-RELEASE,
netbsd-3-1,
netbsd-3-0-RELEASE,
netbsd-3-0-RC6,
netbsd-3-0-RC5,
netbsd-3-0-RC4,
netbsd-3-0-RC3,
netbsd-3-0-RC2,
netbsd-3-0-3-RELEASE,
netbsd-3-0-2-RELEASE,
netbsd-3-0-1-RELEASE,
netbsd-3-0
Changes since 1.1.1.2.2.5: +1 -1
lines
Diff to previous 1.1.1.2.2.5 (colored) to branchpoint 1.1.1.2 (colored) next main 1.1.1.3 (colored)
Apply patch (requested by manu in ticket #981): Update ipsec-tools to version 0.6.3.
Revision 1.8 / (download) - annotate - [select for diffs], Mon Nov 21 14:20:29 2005 UTC (6 years, 6 months ago) by manu
Branch: MAIN
CVS Tags: abandoned-netbsd-4-base,
abandoned-netbsd-4
Changes since 1.7: +0 -0
lines
Diff to previous 1.7 (colored)
Merge ipsec-tools 0.6.3 import
Revision 1.1.1.2.2.5 / (download) - annotate - [select for diffs], Sat Sep 3 07:03:49 2005 UTC (6 years, 8 months ago) by snj
Branch: netbsd-3
CVS Tags: netbsd-3-0-RC1
Changes since 1.1.1.2.2.4: +2 -2
lines
Diff to previous 1.1.1.2.2.4 (colored) to branchpoint 1.1.1.2 (colored)
Apply patch (requested by tron in ticket #741): Update ipsec-tools to version 0.6.1.
Revision 1.7 / (download) - annotate - [select for diffs], Sat Aug 20 00:57:06 2005 UTC (6 years, 9 months ago) by manu
Branch: MAIN
Changes since 1.6: +1 -1
lines
Diff to previous 1.6 (colored)
Update to ipsec-tools 0.6.1
Revision 1.6 / (download) - annotate - [select for diffs], Sun Aug 7 09:38:45 2005 UTC (6 years, 9 months ago) by manu
Branch: MAIN
Changes since 1.5: +2 -2
lines
Diff to previous 1.5 (colored)
Resolve conflicts caused by recent ipsec-tools-0.6.1rc1 import by prefering the newer software. Some useful local change might have been overwritten, we'll take care of this soon.
Revision 1.1.1.3 / (download) - annotate - [select for diffs] (vendor branch), Sun Aug 7 08:46:40 2005 UTC (6 years, 9 months ago) by manu
Branch: IPSEC_TOOLS
CVS Tags: ipsec-tools-0_6_3,
ipsec-tools-0_6_2,
ipsec-tools-0_6_1-rc1,
ipsec-tools-0_6_1
Changes since 1.1.1.2: +10 -2
lines
Diff to previous 1.1.1.2 (colored)
Update ipsec-tools to 0.6.1rc1 Most of the changes since 0.6b4 have already been committed to the NetBSD tree. This upgrade fixes some IPcomp and NAT-T related problems that were left unadressed in the NetBSD tree.
Revision 1.1.1.2.2.4 / (download) - annotate - [select for diffs], Wed May 11 12:20:16 2005 UTC (7 years ago) by tron
Branch: netbsd-3
Changes since 1.1.1.2.2.3: +3 -1
lines
Diff to previous 1.1.1.2.2.3 (colored) to branchpoint 1.1.1.2 (colored)
Pull up revision 1.5 (requested by manu in ticket #278): Add a prototype for getph2bysaddr(), fixes build problem for isakmp.c.
Revision 1.1.1.2.2.3 / (download) - annotate - [select for diffs], Wed May 11 12:17:19 2005 UTC (7 years ago) by tron
Branch: netbsd-3
Changes since 1.1.1.2.2.2: +3 -1
lines
Diff to previous 1.1.1.2.2.2 (colored) to branchpoint 1.1.1.2 (colored)
Pull up revision 1.4 (requested by manu in ticket #277): More NAT-T fixes for the situation where racoon acts as a VPN client Flush SA and generated SP on DPD timeout and deletion payloads
Revision 1.1.1.2.2.2 / (download) - annotate - [select for diffs], Tue May 10 16:07:09 2005 UTC (7 years ago) by tron
Branch: netbsd-3
Changes since 1.1.1.2.2.1: +2 -0
lines
Diff to previous 1.1.1.2.2.1 (colored) to branchpoint 1.1.1.2 (colored)
Pull up revision 1.3 (requested by manu in ticket #274): on phase 2 acquire, lookup phase 2 by (src, dst, policy id) so that multiple SA can be used in transport mode While I'm there, patch ipsec-tools ChangeLog to reflect the changes we took from ipsec-tools-0_6-branch
Revision 1.5 / (download) - annotate - [select for diffs], Sun May 8 14:14:18 2005 UTC (7 years ago) by he
Branch: MAIN
Changes since 1.4: +3 -1
lines
Diff to previous 1.4 (colored)
Add a prototype for getph2bysaddr(), fixes build problem for isakmp.c.
Revision 1.4 / (download) - annotate - [select for diffs], Sun May 8 08:57:26 2005 UTC (7 years ago) by manu
Branch: MAIN
Changes since 1.3: +4 -2
lines
Diff to previous 1.3 (colored)
More NAT-T fixes for the situation where racoon acts as a VPN client Flush SA and generated SP on DPD timeout and deletion payloads
Revision 1.3 / (download) - annotate - [select for diffs], Tue May 3 21:08:47 2005 UTC (7 years ago) by manu
Branch: MAIN
Changes since 1.2: +3 -1
lines
Diff to previous 1.2 (colored)
on phase 2 acquire, lookup phase 2 by (src, dst, policy id) so that multiple SA can be used in transport mode While I'm there, patch ipsec-tools ChangeLog to reflect the changes we took from ipsec-tools-0_6-branch
Revision 1.1.1.2.2.1 / (download) - annotate - [select for diffs], Thu Apr 21 16:51:40 2005 UTC (7 years, 1 month ago) by tron
Branch: netbsd-3
Changes since 1.1.1.2: +2 -0
lines
Diff to previous 1.1.1.2 (colored)
Pull up revision 1.2 (requested by manu in ticket #179): Fix simple DES support (security problems for racoon to racoon setups) Fix broken generated policies flush
Revision 1.2 / (download) - annotate - [select for diffs], Tue Apr 19 19:42:09 2005 UTC (7 years, 1 month ago) by manu
Branch: MAIN
Changes since 1.1: +5 -1
lines
Diff to previous 1.1 (colored)
Fix simple DES support (security problems for racoon to racoon setups) Fix broken generated policies flush
Revision 1.1.1.2 / (download) - annotate - [select for diffs] (vendor branch), Wed Feb 23 14:54:15 2005 UTC (7 years, 3 months ago) by manu
Branch: IPSEC_TOOLS
CVS Tags: netbsd-3-base,
ipsec-tools-0_6-20050317,
ipsec-tools-0_6-20050314,
ipsec-tools-0_6-20050224,
ipsec-tools-0_6-20050223
Branch point for: netbsd-3
Changes since 1.1.1.1: +3 -1
lines
Diff to previous 1.1.1.1 (colored)
Import ipsec-tools 0.6 branch as of 2005/02/23. News from last imported version
according to ipsec-tools' ChangeLog:
2005-02-23 Emmanuel Dreyfus <manu@netbsd.org>
* configure.ac, src/racoon/{Makefile.am|crypto_openssl.c}: optionnal
support for patented algorithms: IDEA and RC5.
* src/racoon/{isakmp_xauth.c|main.c}: don't initialize RADIUS if it
is not required in the configuration
* src/racoon/isakmp.c: do not reject addresses for which kernel
refused UDP encapsulation, they can still be used for non NAT-T
traffic (eg: NAT-T enabled racoon on non NAT-T enabled kernel)
2005-02-18 Emmanuel Dreyfus <manu@netbsd.org>
* src/racoon/{main.c|eaytest.c|plairsa-gen.c}
src/setkey/setkey.c: don't use fuzzy paths for package_version.h
2005-02-18 Yvan Vanhullebus <vanhu@free.fr>
* src/racoon/isakmp_inf.c: Purge generated SPDs when getting a
related DELETE_SA
* src/racoon/pfkey.c: do NOT unbindph12() when SA acquire
2005-02-17 Emmanuel Dreyfus <manu@netbsd.org>
From Fred Senault <fred.letter@lacave.net>
* src/racoon/remoteconf.c: Fix a bug in script init
2005-02-17 Yvan Vanhullebus <vanhu@free.fr>
* src/racoon/ipsec_doi.c: Workaround for phase1 lifetime checks
2005-02-15 Michal Ludvig <michal@logix.cz>
* configure.ac: Changed --enable-natt_NN to --enable-natt-versions=NN,NN
Revision 1.1.1.1 / (download) - annotate - [select for diffs] (vendor branch), Sat Feb 12 11:12:01 2005 UTC (7 years, 3 months ago) by manu
Branch: IPSEC_TOOLS
CVS Tags: ipsec-tools-0_6-base
Changes since 1.1: +0 -0
lines
Diff to previous 1.1 (colored)
Import ipsec-tools (tag ipsec-tools-0_6-base in ipsec-tools CVS) ipsec-tools is a fork from KAME racoon/libipsec/setkey, with many enhancements.
Revision 1.1 / (download) - annotate - [select for diffs], Sat Feb 12 11:12:01 2005 UTC (7 years, 3 months ago) by manu
Branch: MAIN
Initial revision