The NetBSD Project

CVS log for src/crypto/dist/ipsec-tools/src/racoon/nattraversal.c

[BACK] Up to [cvs.NetBSD.org] / src / crypto / dist / ipsec-tools / src / racoon

Request diff between arbitrary revisions


Default branch: MAIN


Revision 1.14 / (download) - annotate - [select for diffs], Mon Mar 14 17:18:13 2011 UTC (3 years, 6 months ago) by tteras
Branch: MAIN
CVS Tags: yamt-pagecache-tag8, yamt-pagecache-base9, yamt-pagecache-base8, yamt-pagecache-base7, yamt-pagecache-base6, yamt-pagecache-base5, yamt-pagecache-base4, yamt-pagecache-base3, yamt-pagecache-base2, yamt-pagecache-base, yamt-pagecache, tls-maxphys-base, tls-maxphys, tls-earlyentropy-base, tls-earlyentropy, riastradh-xf86-video-intel-2-7-1-pre-2-21-15, riastradh-drm2-base3, riastradh-drm2-base2, riastradh-drm2-base1, riastradh-drm2-base, riastradh-drm2, netbsd-7-base, netbsd-7, netbsd-6-base, netbsd-6-1-RELEASE, netbsd-6-1-RC4, netbsd-6-1-RC3, netbsd-6-1-RC2, netbsd-6-1-RC1, netbsd-6-1-5-RELEASE, netbsd-6-1-4-RELEASE, netbsd-6-1-3-RELEASE, netbsd-6-1-2-RELEASE, netbsd-6-1-1-RELEASE, netbsd-6-1, netbsd-6-0-RELEASE, netbsd-6-0-RC2, netbsd-6-0-RC1, netbsd-6-0-6-RELEASE, netbsd-6-0-5-RELEASE, netbsd-6-0-4-RELEASE, netbsd-6-0-3-RELEASE, netbsd-6-0-2-RELEASE, netbsd-6-0-1-RELEASE, netbsd-6-0, netbsd-6, matt-nb6-plus-nbase, matt-nb6-plus-base, matt-nb6-plus, khorben-n900, ipsec-tools-0_8_2, ipsec-tools-0_8_1, ipsec-tools-0_8_0, ipsec-tools-0_8-branch, cherry-xenmp-base, cherry-xenmp, agc-symver-base, agc-symver, HEAD
Changes since 1.13: +5 -5 lines
Diff to previous 1.13 (colored)

Explicitly compare return value of cmpsaddr() against a return value
define to make it more obvious what is the intended action. One more
return value is also added, to fix comparison of security policy
descriptors. Namely, getsp() should not allow wildcard matching (as the
comment says, it does exact matching) - otherwise we get problems when
kernel has generic policy with no ports, and a second similar policy with
ports.

Revision 1.13 / (download) - annotate - [select for diffs], Tue Sep 1 12:22:09 2009 UTC (5 years, 1 month ago) by tteras
Branch: MAIN
CVS Tags: matt-premerge-20091211, matt-mips64-premerge-20101231, bouyer-quota2-nbase, bouyer-quota2-base, bouyer-quota2
Changes since 1.12: +20 -1 lines
Diff to previous 1.12 (colored)

Check nat_traversal configuration from remote configuration candidates
when acting as responder. Enable NAT-T if any of the remote candidates
have NAT-T enabled.

Revision 1.12 / (download) - annotate - [select for diffs], Fri Jul 3 06:41:46 2009 UTC (5 years, 3 months ago) by tteras
Branch: MAIN
Changes since 1.11: +5 -5 lines
Diff to previous 1.11 (colored)

Get rid of the evil CMPSADDR macro. Trac #295.

Revision 1.6.6.2 / (download) - annotate - [select for diffs], Mon May 18 17:01:07 2009 UTC (5 years, 4 months ago) by tteras
Branch: ipsec-tools-0_7-branch
CVS Tags: ipsec-tools-0_7_3
Changes since 1.6.6.1: +2 -2 lines
Diff to previous 1.6.6.1 (colored) to branchpoint 1.6 (colored) next main 1.7 (colored)

From Tomas Mraz: Fix natt_flags check.

Revision 1.11 / (download) - annotate - [select for diffs], Mon May 18 17:00:42 2009 UTC (5 years, 4 months ago) by tteras
Branch: MAIN
Changes since 1.10: +2 -2 lines
Diff to previous 1.10 (colored)

From Tomas Mraz: Fix natt_flags check.

Revision 1.8.2.1 / (download) - annotate - [select for diffs], Wed May 13 19:15:54 2009 UTC (5 years, 4 months ago) by jym
Branch: jym-xensuspend
Changes since 1.8: +23 -11 lines
Diff to previous 1.8 (colored) next main 1.9 (colored)

Sync with HEAD.

Third (and last) commit. See http://mail-index.netbsd.org/source-changes/2009/05/13/msg221222.html

Revision 1.6.6.1 / (download) - annotate - [select for diffs], Mon Apr 20 13:27:12 2009 UTC (5 years, 5 months ago) by tteras
Branch: ipsec-tools-0_7-branch
CVS Tags: ipsec-tools-0_7_2
Changes since 1.6: +12 -5 lines
Diff to previous 1.6 (colored)

Fix a memory leak in nat-t keepalive code.

Revision 1.10 / (download) - annotate - [select for diffs], Mon Apr 20 13:17:35 2009 UTC (5 years, 5 months ago) by tteras
Branch: MAIN
CVS Tags: jym-xensuspend-nbase, jym-xensuspend-base
Changes since 1.9: +12 -5 lines
Diff to previous 1.9 (colored)

Fix a memory leak in nat-t keepalive code.

Revision 1.9 / (download) - annotate - [select for diffs], Thu Mar 12 10:57:26 2009 UTC (5 years, 6 months ago) by tteras
Branch: MAIN
Changes since 1.8: +12 -7 lines
Diff to previous 1.8 (colored)

Support multiple anonymous remotes and decide remoteconf based on identity,
received certificates and other information. General code clean up.

Revision 1.7.4.1 / (download) - annotate - [select for diffs], Sun Feb 8 18:42:17 2009 UTC (5 years, 7 months ago) by snj
Branch: netbsd-5
CVS Tags: netbsd-5-2-RELEASE, netbsd-5-2-RC1, netbsd-5-2-2-RELEASE, netbsd-5-2-1-RELEASE, netbsd-5-2, netbsd-5-1-RELEASE, netbsd-5-1-RC4, netbsd-5-1-RC3, netbsd-5-1-RC2, netbsd-5-1-RC1, netbsd-5-1-4-RELEASE, netbsd-5-1-3-RELEASE, netbsd-5-1-2-RELEASE, netbsd-5-1-1-RELEASE, netbsd-5-1, netbsd-5-0-RELEASE, netbsd-5-0-RC4, netbsd-5-0-RC3, netbsd-5-0-RC2, netbsd-5-0-2-RELEASE, netbsd-5-0-1-RELEASE, netbsd-5-0, matt-nb5-pq3-base, matt-nb5-pq3, matt-nb5-mips64-u2-k2-k4-k7-k8-k9, matt-nb5-mips64-u1-k1-k5, matt-nb5-mips64-premerge-20101231, matt-nb5-mips64-premerge-20091211, matt-nb5-mips64-k15, matt-nb5-mips64, matt-nb4-mips64-k7-u2a-k9b
Changes since 1.7: +3 -4 lines
Diff to previous 1.7 (colored) next main 1.8 (colored)

Apply patch (requested by manu/spz in #378):
Downgrade ipsec-tools to 0.7.1nb1.

Revision 1.8 / (download) - annotate - [select for diffs], Tue Dec 23 14:03:12 2008 UTC (5 years, 9 months ago) by tteras
Branch: MAIN
Branch point for: jym-xensuspend
Changes since 1.7: +2 -2 lines
Diff to previous 1.7 (colored)

rewrite local address detection
make some functions static that arr not needed globally
rework how fd_set is construction for the main loop select()

Revision 1.7 / (download) - annotate - [select for diffs], Fri Sep 19 11:01:08 2008 UTC (6 years ago) by tteras
Branch: MAIN
CVS Tags: netbsd-5-base, netbsd-5-0-RC1, matt-mips64-base2
Branch point for: netbsd-5
Changes since 1.6: +5 -4 lines
Diff to previous 1.6 (colored)

Change struct sched to be allocated be the caller to avoid some memory
allocations. Optimize scheduling algorithm to not scan all entries in
the main loop.

Revision 1.6 / (download) - annotate - [select for diffs], Sat Sep 9 16:22:09 2006 UTC (8 years ago) by manu
Branch: MAIN
CVS Tags: yamt-pf42-baseX, yamt-pf42-base4, yamt-pf42-base3, yamt-pf42-base2, yamt-pf42-base, yamt-pf42, wrstuden-revivesa-base-3, wrstuden-revivesa-base-2, wrstuden-revivesa-base-1, wrstuden-revivesa-base, wrstuden-revivesa, wrstuden-fixsa-newbase, wrstuden-fixsa-base-1, wrstuden-fixsa-base, wrstuden-fixsa, netbsd-4-base, netbsd-4-0-RELEASE, netbsd-4-0-RC5, netbsd-4-0-RC4, netbsd-4-0-RC3, netbsd-4-0-RC2, netbsd-4-0-RC1, netbsd-4-0-1-RELEASE, netbsd-4-0, netbsd-4, matt-mips64-base, matt-mips64, matt-armv6-prevmlocking, matt-armv6-nbase, matt-armv6-base, matt-armv6, keiichi-mipv6-base, keiichi-mipv6, ipsec-tools-0_7_1, ipsec-tools-0_7-rc1, ipsec-tools-0_7-beta3, ipsec-tools-0_7-beta2, ipsec-tools-0_7-beta1, ipsec-tools-0_7-base, ipsec-tools-0_7-RC1, ipsec-tools-0_7, hpcarm-cleanup-nbase, hpcarm-cleanup-base, hpcarm-cleanup, cube-autoconf-base, cube-autoconf
Branch point for: ipsec-tools-0_7-branch
Changes since 1.5: +15 -2 lines
Diff to previous 1.5 (colored)

Migration of ipsec-tools to NetBSD CVS part 2: resolving the import conflicts.
Since we previously had a release branch and we import here the HEAD of CVS,
let's assume all local changes are to be dumped. Local patches should have
been propagated upstream, anyway.

Revision 1.1.1.4 / (download) - annotate - [select for diffs] (vendor branch), Sat Sep 9 16:11:57 2006 UTC (8 years ago) by manu
Branch: IPSEC_TOOLS
CVS Tags: ipsec-tools-base
Changes since 1.1.1.3: +15 -2 lines
Diff to previous 1.1.1.3 (colored)

Migrate ipsec-tools CVS to cvs.netbsd.org

Revision 1.1.1.2.2.3 / (download) - annotate - [select for diffs], Mon Nov 21 21:12:30 2005 UTC (8 years, 10 months ago) by tron
Branch: netbsd-3
CVS Tags: netbsd-3-1-RELEASE, netbsd-3-1-RC4, netbsd-3-1-RC3, netbsd-3-1-RC2, netbsd-3-1-RC1, netbsd-3-1-1-RELEASE, netbsd-3-1, netbsd-3-0-RELEASE, netbsd-3-0-RC6, netbsd-3-0-RC5, netbsd-3-0-RC4, netbsd-3-0-RC3, netbsd-3-0-RC2, netbsd-3-0-3-RELEASE, netbsd-3-0-2-RELEASE, netbsd-3-0-1-RELEASE, netbsd-3-0
Changes since 1.1.1.2.2.2: +1 -1 lines
Diff to previous 1.1.1.2.2.2 (colored) to branchpoint 1.1.1.2 (colored) next main 1.1.1.3 (colored)

Apply patch (requested by manu in ticket #981):
Update ipsec-tools to version 0.6.3.

Revision 1.5 / (download) - annotate - [select for diffs], Mon Nov 21 14:20:29 2005 UTC (8 years, 10 months ago) by manu
Branch: MAIN
CVS Tags: abandoned-netbsd-4-base, abandoned-netbsd-4
Changes since 1.4: +0 -0 lines
Diff to previous 1.4 (colored)

Merge ipsec-tools 0.6.3 import

Revision 1.1.1.2.2.2 / (download) - annotate - [select for diffs], Sat Sep 3 07:03:50 2005 UTC (9 years, 1 month ago) by snj
Branch: netbsd-3
CVS Tags: netbsd-3-0-RC1
Changes since 1.1.1.2.2.1: +1 -1 lines
Diff to previous 1.1.1.2.2.1 (colored) to branchpoint 1.1.1.2 (colored)

Apply patch (requested by tron in ticket #741):
Update ipsec-tools to version 0.6.1.

Revision 1.4 / (download) - annotate - [select for diffs], Sat Aug 20 00:57:06 2005 UTC (9 years, 1 month ago) by manu
Branch: MAIN
Changes since 1.3: +1 -1 lines
Diff to previous 1.3 (colored)

Update to ipsec-tools 0.6.1

Revision 1.3 / (download) - annotate - [select for diffs], Sun Aug 7 09:38:46 2005 UTC (9 years, 1 month ago) by manu
Branch: MAIN
Changes since 1.2: +1 -1 lines
Diff to previous 1.2 (colored)

Resolve conflicts caused by recent ipsec-tools-0.6.1rc1 import by prefering
the newer software. Some useful local change might have been overwritten,
we'll take care of this soon.

Revision 1.1.1.3 / (download) - annotate - [select for diffs] (vendor branch), Sun Aug 7 08:47:34 2005 UTC (9 years, 1 month ago) by manu
Branch: IPSEC_TOOLS
CVS Tags: ipsec-tools-0_6_3, ipsec-tools-0_6_2, ipsec-tools-0_6_1-rc1, ipsec-tools-0_6_1
Changes since 1.1.1.2: +2 -2 lines
Diff to previous 1.1.1.2 (colored)

Update ipsec-tools to 0.6.1rc1
Most of the changes since 0.6b4 have already been committed to the NetBSD
tree. This upgrade fixes some IPcomp and NAT-T related problems that were
left unadressed in the NetBSD tree.

Revision 1.1.1.2.2.1 / (download) - annotate - [select for diffs], Sun May 1 11:00:32 2005 UTC (9 years, 5 months ago) by tron
Branch: netbsd-3
Changes since 1.1.1.2: +2 -2 lines
Diff to previous 1.1.1.2 (colored)

Pull up revision 1.2 (requested by manu in ticket #215):
Bug fixes from the ipsec-tools 0.6 branch:
- Fix NAT-T problems that prevented multiple peers behind the same NAT
  to talk to the same machine outside the NAT. This also require kernel
  fixes (already committed eralier)
- Fix a LP64 bug
- Fix NAT-T RFC conformance bugs (missing non ESP marker in packets)
- Add a -p option to setkey to display ports that could be used for ESP
  over UDP when printing policies

Revision 1.2 / (download) - annotate - [select for diffs], Wed Apr 27 05:19:50 2005 UTC (9 years, 5 months ago) by manu
Branch: MAIN
Changes since 1.1: +4 -2 lines
Diff to previous 1.1 (colored)

Bug fixes from the ipsec-tools 0.6 branch:
- Fix NAT-T problems that prevented multiple peers behind the same NAT
  to talk to the same machine outside the NAT. This also require kernel
  fixes (already committed eralier)
- Fix a LP64 bug
- Fix NAT-T RFC conformance bugs (missing non ESP marker in packets)
- Add a -p option to setkey to display ports that could be used for ESP
  over UDP when printing policies

Revision 1.1.1.2 / (download) - annotate - [select for diffs] (vendor branch), Wed Feb 23 14:54:22 2005 UTC (9 years, 7 months ago) by manu
Branch: IPSEC_TOOLS
CVS Tags: netbsd-3-base, ipsec-tools-0_6-20050317, ipsec-tools-0_6-20050314, ipsec-tools-0_6-20050224, ipsec-tools-0_6-20050223
Branch point for: netbsd-3
Changes since 1.1.1.1: +2 -0 lines
Diff to previous 1.1.1.1 (colored)

Import ipsec-tools 0.6 branch as of 2005/02/23. News from last imported version
according to ipsec-tools' ChangeLog:

2005-02-23  Emmanuel Dreyfus <manu@netbsd.org>

        * configure.ac, src/racoon/{Makefile.am|crypto_openssl.c}: optionnal
          support for patented algorithms: IDEA and RC5.
        * src/racoon/{isakmp_xauth.c|main.c}: don't initialize RADIUS if it
          is not required in the configuration
        * src/racoon/isakmp.c: do not reject addresses for which kernel
          refused UDP encapsulation, they can still be used for non NAT-T
          traffic (eg: NAT-T enabled racoon on non NAT-T enabled kernel)

2005-02-18  Emmanuel Dreyfus <manu@netbsd.org>

        * src/racoon/{main.c|eaytest.c|plairsa-gen.c}
          src/setkey/setkey.c: don't use fuzzy paths for package_version.h

2005-02-18  Yvan Vanhullebus  <vanhu@free.fr>

        * src/racoon/isakmp_inf.c: Purge generated SPDs when getting a
          related DELETE_SA
        * src/racoon/pfkey.c: do NOT unbindph12() when SA acquire

2005-02-17  Emmanuel Dreyfus <manu@netbsd.org>

        From Fred Senault <fred.letter@lacave.net>
        * src/racoon/remoteconf.c: Fix a bug in script init

2005-02-17  Yvan Vanhullebus  <vanhu@free.fr>

        * src/racoon/ipsec_doi.c: Workaround for phase1 lifetime checks

2005-02-15  Michal Ludvig  <michal@logix.cz>

        * configure.ac: Changed --enable-natt_NN to --enable-natt-versions=NN,NN

Revision 1.1.1.1 / (download) - annotate - [select for diffs] (vendor branch), Sat Feb 12 11:12:35 2005 UTC (9 years, 7 months ago) by manu
Branch: IPSEC_TOOLS
CVS Tags: ipsec-tools-0_6-base
Changes since 1.1: +0 -0 lines
Diff to previous 1.1 (colored)

Import ipsec-tools (tag ipsec-tools-0_6-base in ipsec-tools CVS)
ipsec-tools is a fork from KAME racoon/libipsec/setkey, with many
enhancements.

Revision 1.1 / (download) - annotate - [select for diffs], Sat Feb 12 11:12:35 2005 UTC (9 years, 7 months ago) by manu
Branch: MAIN

Initial revision

This form allows you to request diff's between any two revisions of a file. You may select a symbolic revision name using the selection box or you may type in a numeric name using the type-in text box.




CVSweb <webmaster@jp.NetBSD.org>