![[BACK]](/icons/back.gif){kind=icon}
Up to [cvs.netbsd.org] / src / crypto / dist / ipsec-tools / src / racoon
Request diff between arbitrary revisions
Default branch: MAIN
Revision 1.19 / (download) - annotate - [select for diffs], Mon Mar 14 17:18:13 2011 UTC (14 months, 1 week ago) by tteras
Branch: MAIN
CVS Tags: yamt-pagecache-base5,
yamt-pagecache-base4,
yamt-pagecache-base3,
yamt-pagecache-base2,
yamt-pagecache-base,
yamt-pagecache,
netbsd-6-base,
netbsd-6,
ipsec-tools-0_8_0,
ipsec-tools-0_8-branch,
cherry-xenmp-base,
cherry-xenmp,
HEAD
Changes since 1.18: +7 -5
lines
Diff to previous 1.18 (colored)
Explicitly compare return value of cmpsaddr() against a return value define to make it more obvious what is the intended action. One more return value is also added, to fix comparison of security policy descriptors. Namely, getsp() should not allow wildcard matching (as the comment says, it does exact matching) - otherwise we get problems when kernel has generic policy with no ports, and a second similar policy with ports.
Revision 1.18 / (download) - annotate - [select for diffs], Sun Feb 28 15:52:16 2010 UTC (2 years, 2 months ago) by snj
Branch: MAIN
CVS Tags: matt-mips64-premerge-20101231,
bouyer-quota2-nbase,
bouyer-quota2-base,
bouyer-quota2
Changes since 1.17: +2 -2
lines
Diff to previous 1.17 (colored)
Fight the ever-increasing size of src checkouts by spelling "useful" without an extra l.
Revision 1.17 / (download) - annotate - [select for diffs], Tue Jul 7 12:25:22 2009 UTC (2 years, 10 months ago) by tteras
Branch: MAIN
CVS Tags: matt-premerge-20091211
Changes since 1.16: +3 -2
lines
Diff to previous 1.16 (colored)
From Arnaud Ebalard: Fix possible usage of uninitialized local variable (not sure if any code path triggers this, but this makes compiler happy).
Revision 1.16 / (download) - annotate - [select for diffs], Fri Jul 3 06:41:47 2009 UTC (2 years, 10 months ago) by tteras
Branch: MAIN
Changes since 1.15: +19 -214
lines
Diff to previous 1.15 (colored)
Get rid of the evil CMPSADDR macro. Trac #295.
Revision 1.15 / (download) - annotate - [select for diffs], Mon May 18 17:40:38 2009 UTC (3 years ago) by tteras
Branch: MAIN
Changes since 1.14: +18 -19
lines
Diff to previous 1.14 (colored)
From Tomas Mraz: Introduce union sockaddr_any and use it to make code more readable. Related to trac #293.
Revision 1.12.6.1 / (download) - annotate - [select for diffs], Wed May 13 19:15:55 2009 UTC (3 years ago) by jym
Branch: jym-xensuspend
Changes since 1.12: +78 -1
lines
Diff to previous 1.12 (colored) next main 1.13 (colored)
Sync with HEAD. Third (and last) commit. See http://mail-index.netbsd.org/source-changes/2009/05/13/msg221222.html
Revision 1.14 / (download) - annotate - [select for diffs], Thu Mar 12 10:57:26 2009 UTC (3 years, 2 months ago) by tteras
Branch: MAIN
CVS Tags: jym-xensuspend-nbase,
jym-xensuspend-base
Changes since 1.13: +7 -1
lines
Diff to previous 1.13 (colored)
Support multiple anonymous remotes and decide remoteconf based on identity, received certificates and other information. General code clean up.
Revision 1.13 / (download) - annotate - [select for diffs], Wed Feb 11 15:18:59 2009 UTC (3 years, 3 months ago) by vanhu
Branch: MAIN
Changes since 1.12: +72 -1
lines
Diff to previous 1.12 (colored)
trac#301: fixed IPsec SAs flush in purge_remote() when NAT-T enabled but no NAT-T on tunnel
Revision 1.12.4.1 / (download) - annotate - [select for diffs], Sun Feb 8 18:42:19 2009 UTC (3 years, 3 months ago) by snj
Branch: netbsd-5
CVS Tags: netbsd-5-1-RELEASE,
netbsd-5-1-RC4,
netbsd-5-1-RC3,
netbsd-5-1-RC2,
netbsd-5-1-RC1,
netbsd-5-1-2-RELEASE,
netbsd-5-1-1-RELEASE,
netbsd-5-1,
netbsd-5-0-RELEASE,
netbsd-5-0-RC4,
netbsd-5-0-RC3,
netbsd-5-0-RC2,
netbsd-5-0-2-RELEASE,
netbsd-5-0-1-RELEASE,
netbsd-5-0,
matt-nb5-pq3-base,
matt-nb5-pq3,
matt-nb5-mips64-u2-k2-k4-k7-k8-k9,
matt-nb5-mips64-u1-k1-k5,
matt-nb5-mips64-premerge-20101231,
matt-nb5-mips64-premerge-20091211,
matt-nb5-mips64-k15,
matt-nb5-mips64,
matt-nb4-mips64-k7-u2a-k9b
Changes since 1.12: +13 -20
lines
Diff to previous 1.12 (colored) next main 1.13 (colored)
Apply patch (requested by manu/spz in #378): Downgrade ipsec-tools to 0.7.1nb1.
Revision 1.11.4.1 / (download) - annotate - [select for diffs], Thu Sep 18 04:54:20 2008 UTC (3 years, 8 months ago) by wrstuden
Branch: wrstuden-revivesa
Changes since 1.11: +3 -1
lines
Diff to previous 1.11 (colored) next main 1.12 (colored)
Sync with wrstuden-revivesa-base-2.
Revision 1.12 / (download) - annotate - [select for diffs], Wed Sep 3 09:57:28 2008 UTC (3 years, 8 months ago) by tteras
Branch: MAIN
CVS Tags: wrstuden-revivesa-base-3,
wrstuden-revivesa-base-2,
netbsd-5-base,
netbsd-5-0-RC1,
matt-mips64-base2
Branch point for: netbsd-5,
jym-xensuspend
Changes since 1.11: +3 -1
lines
Diff to previous 1.11 (colored)
- Fix reloading of SPD (Linux satype check, handling of SPD dump responses) - Remove some spurious error log message from extract_port()
Revision 1.11 / (download) - annotate - [select for diffs], Wed Apr 2 19:02:50 2008 UTC (4 years, 1 month ago) by manu
Branch: MAIN
CVS Tags: yamt-pf42-baseX,
yamt-pf42-base4,
yamt-pf42-base3,
yamt-pf42-base2,
yamt-pf42-base,
yamt-pf42,
wrstuden-revivesa-base-1,
wrstuden-revivesa-base,
hpcarm-cleanup-nbase
Branch point for: wrstuden-revivesa
Changes since 1.10: +1 -10
lines
Diff to previous 1.10 (colored)
fix Linux build
Revision 1.10 / (download) - annotate - [select for diffs], Fri Mar 28 04:18:52 2008 UTC (4 years, 1 month ago) by manu
Branch: MAIN
Changes since 1.9: +20 -6
lines
Diff to previous 1.9 (colored)
From Cyrus Rahman: Allow interface reconfiguration when running in privilege separation mode, document privilege separation
Revision 1.8.4.1 / (download) - annotate - [select for diffs], Mon Sep 3 06:51:24 2007 UTC (4 years, 8 months ago) by wrstuden
Branch: wrstuden-fixsa
Changes since 1.8: +2 -6
lines
Diff to previous 1.8 (colored) next main 1.9 (colored)
Sync w/ NetBSD-4-RC_1
Revision 1.8.2.1 / (download) - annotate - [select for diffs], Tue Aug 28 11:14:48 2007 UTC (4 years, 8 months ago) by liamjfoy
Branch: netbsd-4
CVS Tags: wrstuden-fixsa-newbase,
wrstuden-fixsa-base-1,
wrstuden-fixsa-base,
netbsd-4-0-RELEASE,
netbsd-4-0-RC5,
netbsd-4-0-RC4,
netbsd-4-0-RC3,
netbsd-4-0-RC2,
netbsd-4-0-RC1,
netbsd-4-0-1-RELEASE,
netbsd-4-0
Changes since 1.8: +2 -6
lines
Diff to previous 1.8 (colored) next main 1.9 (colored)
Pull up following revision(s) (requested by manu in ticket #830): Import ipsec-tools 0.7
Revision 1.8.6.1 / (download) - annotate - [select for diffs], Wed Aug 1 11:52:22 2007 UTC (4 years, 9 months ago) by vanhu
Branch: ipsec-tools-0_7-branch
CVS Tags: ipsec-tools-0_7_3,
ipsec-tools-0_7_2,
ipsec-tools-0_7_1,
ipsec-tools-0_7
Changes since 1.8: +2 -6
lines
Diff to previous 1.8 (colored) next main 1.9 (colored)
use a single PATH_IPSEC_H to fix some path_to_ipsec.h issues
Revision 1.9.10.2 / (download) - annotate - [select for diffs], Wed Jul 18 12:07:53 2007 UTC (4 years, 10 months ago) by vanhu
Branch: matt-mips64
Changes since 1.9.10.1: +1115 -0
lines
Diff to previous 1.9.10.1 (colored) to branchpoint 1.9 (colored) next main 1.10 (colored)
use a single PATH_IPSEC_H to fix some path_to_ipsec.h issues
Revision 1.9.10.1, Wed Jul 18 12:07:52 2007 UTC (4 years, 10 months ago) by vanhu
Branch: matt-mips64
Changes since 1.9: +0 -1115
lines
FILE REMOVED
file sockmisc.c was added on branch matt-mips64 on 2007-07-18 12:07:53 +0000
Revision 1.9 / (download) - annotate - [select for diffs], Wed Jul 18 12:07:52 2007 UTC (4 years, 10 months ago) by vanhu
Branch: MAIN
CVS Tags: matt-mips64-base,
matt-armv6-prevmlocking,
matt-armv6-nbase,
matt-armv6-base,
matt-armv6,
keiichi-mipv6-base,
keiichi-mipv6,
hpcarm-cleanup-base,
hpcarm-cleanup,
cube-autoconf-base,
cube-autoconf
Branch point for: matt-mips64
Changes since 1.8: +2 -6
lines
Diff to previous 1.8 (colored)
use a single PATH_IPSEC_H to fix some path_to_ipsec.h issues
Revision 1.8 / (download) - annotate - [select for diffs], Tue Oct 31 00:17:21 2006 UTC (5 years, 6 months ago) by cbiere
Branch: MAIN
CVS Tags: netbsd-4-base,
ipsec-tools-0_7-rc1,
ipsec-tools-0_7-beta3,
ipsec-tools-0_7-beta2,
ipsec-tools-0_7-beta1,
ipsec-tools-0_7-base,
ipsec-tools-0_7-RC1
Branch point for: wrstuden-fixsa,
netbsd-4,
ipsec-tools-0_7-branch
Changes since 1.7: +3 -2
lines
Diff to previous 1.7 (colored)
Don't define the deprecated IPV6_RECVDSTADDR if the "advanced IPv6 API" is used because IPV6_RECVPKTINFO and IPV6_PKTINFO are used to prevent potential bugs in the future just in case that the numeric value of the socket option is ever recycled.
Revision 1.7 / (download) - annotate - [select for diffs], Mon Oct 2 21:19:43 2006 UTC (5 years, 7 months ago) by manu
Branch: MAIN
Changes since 1.6: +2 -2
lines
Diff to previous 1.6 (colored)
Fix memory leak (Coverity 2001), refactor the code to use port get/set functions
Revision 1.6 / (download) - annotate - [select for diffs], Mon Oct 2 07:08:25 2006 UTC (5 years, 7 months ago) by manu
Branch: MAIN
Changes since 1.5: +5 -4
lines
Diff to previous 1.5 (colored)
Don't use null pointer (Coverity 863)
Revision 1.5 / (download) - annotate - [select for diffs], Sat Sep 9 16:22:10 2006 UTC (5 years, 8 months ago) by manu
Branch: MAIN
Changes since 1.4: +23 -13
lines
Diff to previous 1.4 (colored)
Migration of ipsec-tools to NetBSD CVS part 2: resolving the import conflicts. Since we previously had a release branch and we import here the HEAD of CVS, let's assume all local changes are to be dumped. Local patches should have been propagated upstream, anyway.
Revision 1.1.1.5 / (download) - annotate - [select for diffs] (vendor branch), Sat Sep 9 16:12:21 2006 UTC (5 years, 8 months ago) by manu
Branch: IPSEC_TOOLS
CVS Tags: ipsec-tools-base
Changes since 1.1.1.4: +23 -13
lines
Diff to previous 1.1.1.4 (colored)
Migrate ipsec-tools CVS to cvs.netbsd.org
Revision 1.1.1.2.2.3 / (download) - annotate - [select for diffs], Mon Nov 21 21:12:31 2005 UTC (6 years, 6 months ago) by tron
Branch: netbsd-3
CVS Tags: netbsd-3-1-RELEASE,
netbsd-3-1-RC4,
netbsd-3-1-RC3,
netbsd-3-1-RC2,
netbsd-3-1-RC1,
netbsd-3-1-1-RELEASE,
netbsd-3-1,
netbsd-3-0-RELEASE,
netbsd-3-0-RC6,
netbsd-3-0-RC5,
netbsd-3-0-RC4,
netbsd-3-0-RC3,
netbsd-3-0-RC2,
netbsd-3-0-3-RELEASE,
netbsd-3-0-2-RELEASE,
netbsd-3-0-1-RELEASE,
netbsd-3-0
Changes since 1.1.1.2.2.2: +2 -2
lines
Diff to previous 1.1.1.2.2.2 (colored) to branchpoint 1.1.1.2 (colored) next main 1.1.1.3 (colored)
Apply patch (requested by manu in ticket #981): Update ipsec-tools to version 0.6.3.
Revision 1.4 / (download) - annotate - [select for diffs], Mon Nov 21 14:20:29 2005 UTC (6 years, 6 months ago) by manu
Branch: MAIN
CVS Tags: abandoned-netbsd-4-base,
abandoned-netbsd-4
Changes since 1.3: +2 -2
lines
Diff to previous 1.3 (colored)
Merge ipsec-tools 0.6.3 import
Revision 1.1.1.2.2.2 / (download) - annotate - [select for diffs], Fri Oct 21 17:08:17 2005 UTC (6 years, 7 months ago) by riz
Branch: netbsd-3
CVS Tags: netbsd-3-0-RC1
Changes since 1.1.1.2.2.1: +2 -2
lines
Diff to previous 1.1.1.2.2.1 (colored) to branchpoint 1.1.1.2 (colored)
Pull up the following revisions (requested by manu in ticket #894): crypto/dist/ipsec-tools/ChangeLog 1.28-1.30 crypto/dist/ipsec-tools/NEWS 1.1.1.4 crypto/dist/ipsec-tools/configure.ac 1.1.1.7 crypto/dist/ipsec-tools/src/libipsec/pfkey.c 1.7-1.8 crypto/dist/ipsec-tools/src/libipsec/pfkey_dump.c 1.10 crypto/dist/ipsec-tools/src/libipsec/policy_parse.y 1.7 crypto/dist/ipsec-tools/src/racoon/cfparse.y 1.5-1.9 crypto/dist/ipsec-tools/src/racoon/evt.c 1.3 crypto/dist/ipsec-tools/src/racoon/ipsec_doi.c 1.11 crypto/dist/ipsec-tools/src/racoon/isakmp.c 1.10 crypto/dist/ipsec-tools/src/racoon/isakmp_agg.c 1.5-1.6 crypto/dist/ipsec-tools/src/racoon/isakmp_base.c 1.3-1.4 crypto/dist/ipsec-tools/src/racoon/isakmp_ident.c 1.3 crypto/dist/ipsec-tools/src/racoon/oakley.c 1.6 crypto/dist/ipsec-tools/src/racoon/pfkey.c 1.10 crypto/dist/ipsec-tools/src/racoon/policy.c 1.3 crypto/dist/ipsec-tools/src/racoon/racoon.conf.5 1.21-1.23 crypto/dist/ipsec-tools/src/racoon/sockmisc.c 1.3 crypto/dist/ipsec-tools/src/racoon/sockmisc.h 1.5 crypto/dist/ipsec-tools/src/setkey/setkey.8 1.17 lib/libipsec/package_version.h 1.15 Update to ipsec-tools 0.6.2
Revision 1.3 / (download) - annotate - [select for diffs], Fri Oct 14 14:01:34 2005 UTC (6 years, 7 months ago) by manu
Branch: MAIN
Changes since 1.2: +2 -2
lines
Diff to previous 1.2 (colored)
Merge ipsec-tools 0.6.2 import.
Revision 1.1.1.4 / (download) - annotate - [select for diffs] (vendor branch), Fri Oct 14 13:21:50 2005 UTC (6 years, 7 months ago) by manu
Branch: IPSEC_TOOLS
CVS Tags: ipsec-tools-0_6_3,
ipsec-tools-0_6_2
Changes since 1.1.1.3: +2 -2
lines
Diff to previous 1.1.1.3 (colored)
Import ipsec-tools-0.6.2. Here is the ChangeLog since 0.6.1 (most of them
have already been pulled up in NetBSD CVS)
---------------------------------------------
0.6.2 released
2005-10-14 Yvan Vanhullebus <vanhu@netasq.com>
* src/racoon/ipsec_doi.c: don't allow NULL or empty FQDNs or
USER_FQDNs (problem reported by Bernhard Suttner).
---------------------------------------------
0.6.2.beta3 released
2005-09-05 Emmanuel Dreyfus <manu@netbsd.org>
From Andreas Hasenack <ahasenack@terra.com.br>
* configure.ac: More build fixes for Linux
---------------------------------------------
0.6.2.beta2 released
2005-09-04 Emmanuel Dreyfus <manu@netbsd.org>
From Wilfried Weissmann
* src/libipsec/policy_parse.y src/racoon/{ipsec_doi.c|oakley.c}
src/racoon/{sockmisc.c|sockmisc.h}: build fixes
---------------------------------------------
0.6.2.beta1 released
2005-09-03 Emmanuel Dreyfus <manu@netbsd.org>
From Francis Dupont <Francis.Dupont@enst-bretagne.fr>
* src/libipsec/pfkey.c src/racoon/pfkey.c: Cope with extensions
2005-08-26 Emmanuel Dreyfus <manu@netbsd.org>
* src/racoon/cfparse.y: handle xauth_login correctly
* src/racoon/isakmp.c: catch internal error
* src/raccon/isakmp_agg.c: fix racoon as Xauth client
* src/raccon/{isakmp_agg.c|isakmp_base.c}: Proposal safety checks
* src/racoon/evt.c: Fix memory leak when event queue overflows
2005-08-23 Emmanuel Dreyfus <manu@netbsd.org>
* src/racoon/{isakmp_agg.c|isakmp_ident.c|isakmp_base.c}: Correctly
initialize NAT-T VID to avoid freeing unallocated stuff.
2005-08-21 Emmanuel Dreyfus <manu@netbsd.org>
From Matthias Scheler <matthias.scheler@tadpole.com>
* src/racoon/{isakmp_cfg.c|racoon.conf.5}: enable the use of
ISAKMP mode config without Xauth.
2005-09-16 Yvan Vanhullebus <vanhu@free.fr>
* src/racoon/policy.c: Do not parse all sptree in inssp() if we
don't use Policies priority.
2005-08-15 Emmanuel Dreyfus <manu@netbsd.org>
From: Thomas Klausner <wiz@netbsd.org>
src/setkey/setkey.8: Drop trailing spaces
Revision 1.1.1.2.2.1 / (download) - annotate - [select for diffs], Sat Sep 3 07:03:50 2005 UTC (6 years, 8 months ago) by snj
Branch: netbsd-3
Changes since 1.1.1.2: +7 -7
lines
Diff to previous 1.1.1.2 (colored)
Apply patch (requested by tron in ticket #741): Update ipsec-tools to version 0.6.1.
Revision 1.2 / (download) - annotate - [select for diffs], Sat Aug 20 00:57:06 2005 UTC (6 years, 9 months ago) by manu
Branch: MAIN
Changes since 1.1: +8 -6
lines
Diff to previous 1.1 (colored)
Update to ipsec-tools 0.6.1
Revision 1.1.1.3 / (download) - annotate - [select for diffs] (vendor branch), Sun Aug 7 08:48:05 2005 UTC (6 years, 9 months ago) by manu
Branch: IPSEC_TOOLS
CVS Tags: ipsec-tools-0_6_1-rc1,
ipsec-tools-0_6_1
Changes since 1.1.1.2: +6 -6
lines
Diff to previous 1.1.1.2 (colored)
Update ipsec-tools to 0.6.1rc1 Most of the changes since 0.6b4 have already been committed to the NetBSD tree. This upgrade fixes some IPcomp and NAT-T related problems that were left unadressed in the NetBSD tree.
Revision 1.1.1.2 / (download) - annotate - [select for diffs] (vendor branch), Wed Feb 23 14:54:28 2005 UTC (7 years, 3 months ago) by manu
Branch: IPSEC_TOOLS
CVS Tags: netbsd-3-base,
ipsec-tools-0_6-20050317,
ipsec-tools-0_6-20050314,
ipsec-tools-0_6-20050224,
ipsec-tools-0_6-20050223
Branch point for: netbsd-3
Changes since 1.1.1.1: +3 -1
lines
Diff to previous 1.1.1.1 (colored)
Import ipsec-tools 0.6 branch as of 2005/02/23. News from last imported version
according to ipsec-tools' ChangeLog:
2005-02-23 Emmanuel Dreyfus <manu@netbsd.org>
* configure.ac, src/racoon/{Makefile.am|crypto_openssl.c}: optionnal
support for patented algorithms: IDEA and RC5.
* src/racoon/{isakmp_xauth.c|main.c}: don't initialize RADIUS if it
is not required in the configuration
* src/racoon/isakmp.c: do not reject addresses for which kernel
refused UDP encapsulation, they can still be used for non NAT-T
traffic (eg: NAT-T enabled racoon on non NAT-T enabled kernel)
2005-02-18 Emmanuel Dreyfus <manu@netbsd.org>
* src/racoon/{main.c|eaytest.c|plairsa-gen.c}
src/setkey/setkey.c: don't use fuzzy paths for package_version.h
2005-02-18 Yvan Vanhullebus <vanhu@free.fr>
* src/racoon/isakmp_inf.c: Purge generated SPDs when getting a
related DELETE_SA
* src/racoon/pfkey.c: do NOT unbindph12() when SA acquire
2005-02-17 Emmanuel Dreyfus <manu@netbsd.org>
From Fred Senault <fred.letter@lacave.net>
* src/racoon/remoteconf.c: Fix a bug in script init
2005-02-17 Yvan Vanhullebus <vanhu@free.fr>
* src/racoon/ipsec_doi.c: Workaround for phase1 lifetime checks
2005-02-15 Michal Ludvig <michal@logix.cz>
* configure.ac: Changed --enable-natt_NN to --enable-natt-versions=NN,NN
Revision 1.1.1.1 / (download) - annotate - [select for diffs] (vendor branch), Sat Feb 12 11:13:05 2005 UTC (7 years, 3 months ago) by manu
Branch: IPSEC_TOOLS
CVS Tags: ipsec-tools-0_6-base
Changes since 1.1: +0 -0
lines
Diff to previous 1.1 (colored)
Import ipsec-tools (tag ipsec-tools-0_6-base in ipsec-tools CVS) ipsec-tools is a fork from KAME racoon/libipsec/setkey, with many enhancements.
Revision 1.1 / (download) - annotate - [select for diffs], Sat Feb 12 11:13:05 2005 UTC (7 years, 3 months ago) by manu
Branch: MAIN
Initial revision