![[BACK]](/icons/back.gif){kind=icon}
Up to [local] / src / sbin / isakmpd
Request diff between arbitrary revisions
Default branch: MAIN
Revision 1.34 / (download) - annotate - [select for diffs], Wed Aug 30 16:56:56 2006 UTC (17 years, 9 months ago) by hshoexer
Branch: MAIN
CVS Tags: OPENBSD_7_5_BASE,
OPENBSD_7_5,
OPENBSD_7_4_BASE,
OPENBSD_7_4,
OPENBSD_7_3_BASE,
OPENBSD_7_3,
OPENBSD_7_2_BASE,
OPENBSD_7_2,
OPENBSD_7_1_BASE,
OPENBSD_7_1,
OPENBSD_7_0_BASE,
OPENBSD_7_0,
OPENBSD_6_9_BASE,
OPENBSD_6_9,
OPENBSD_6_8_BASE,
OPENBSD_6_8,
OPENBSD_6_7_BASE,
OPENBSD_6_7,
OPENBSD_6_6_BASE,
OPENBSD_6_6,
OPENBSD_6_5_BASE,
OPENBSD_6_5,
OPENBSD_6_4_BASE,
OPENBSD_6_4,
OPENBSD_6_3_BASE,
OPENBSD_6_3,
OPENBSD_6_2_BASE,
OPENBSD_6_2,
OPENBSD_6_1_BASE,
OPENBSD_6_1,
OPENBSD_6_0_BASE,
OPENBSD_6_0,
OPENBSD_5_9_BASE,
OPENBSD_5_9,
OPENBSD_5_8_BASE,
OPENBSD_5_8,
OPENBSD_5_7_BASE,
OPENBSD_5_7,
OPENBSD_5_6_BASE,
OPENBSD_5_6,
OPENBSD_5_5_BASE,
OPENBSD_5_5,
OPENBSD_5_4_BASE,
OPENBSD_5_4,
OPENBSD_5_3_BASE,
OPENBSD_5_3,
OPENBSD_5_2_BASE,
OPENBSD_5_2,
OPENBSD_5_1_BASE,
OPENBSD_5_1,
OPENBSD_5_0_BASE,
OPENBSD_5_0,
OPENBSD_4_9_BASE,
OPENBSD_4_9,
OPENBSD_4_8_BASE,
OPENBSD_4_8,
OPENBSD_4_7_BASE,
OPENBSD_4_7,
OPENBSD_4_6_BASE,
OPENBSD_4_6,
OPENBSD_4_5_BASE,
OPENBSD_4_5,
OPENBSD_4_4_BASE,
OPENBSD_4_4,
OPENBSD_4_3_BASE,
OPENBSD_4_3,
OPENBSD_4_2_BASE,
OPENBSD_4_2,
OPENBSD_4_1_BASE,
OPENBSD_4_1,
OPENBSD_4_0_BASE,
OPENBSD_4_0,
HEAD
Changes since 1.33: +2 -2 lines
Diff to previous 1.33 (colored)
Make SA deletion on shutdown the default again. Use -S for failover situations where you do not want this. Discussed and agreed on with ho, mcbride, markus, cloder,... We will have to teach sasyncd to deal with this. Testing by msf and hshoexer with help from mtu ok markus cloder
Revision 1.33 / (download) - annotate - [select for diffs], Sat Jun 10 21:15:45 2006 UTC (18 years ago) by hshoexer
Branch: MAIN
Changes since 1.32: +3 -1 lines
Diff to previous 1.32 (colored)
Make deletion of SAs on shutdown optional. The default behaviour now is to not delete SAs. Needed for reliable ipsec failover. Suggested by mtu@. Moreover, this ensures that packets do not leak when isakmpd is shutdown. ok mcbride@, testing mtu@
Revision 1.32 / (download) - annotate - [select for diffs], Sat Jun 10 21:09:45 2006 UTC (18 years ago) by msf
Branch: MAIN
Changes since 1.31: +2 -1 lines
Diff to previous 1.31 (colored)
Allow isakmpd to use a different private rsa key per isakmp ID. Hans wrote this a long time ago, I synced it to -current and tested. ok hshoexer@
Revision 1.31 / (download) - annotate - [select for diffs], Wed Dec 28 10:57:35 2005 UTC (18 years, 5 months ago) by hshoexer
Branch: MAIN
CVS Tags: OPENBSD_3_9_BASE,
OPENBSD_3_9
Changes since 1.30: +1 -2 lines
Diff to previous 1.30 (colored)
remove some unused functions and an unused variable found by lint. ok markus@
Revision 1.30 / (download) - annotate - [select for diffs], Fri Jun 25 20:25:34 2004 UTC (19 years, 11 months ago) by hshoexer
Branch: MAIN
CVS Tags: OPENBSD_3_8_BASE,
OPENBSD_3_8,
OPENBSD_3_7_BASE,
OPENBSD_3_7,
OPENBSD_3_6_BASE,
OPENBSD_3_6
Changes since 1.29: +2 -1 lines
Diff to previous 1.29 (colored)
Keynote policy checking can now be disabled by "-K" switch and config tag "Use-Keynote". Default is to use keynote. ok henning@ ho@
Revision 1.29 / (download) - annotate - [select for diffs], Fri May 14 08:42:56 2004 UTC (20 years, 1 month ago) by hshoexer
Branch: MAIN
Changes since 1.28: +5 -5 lines
Diff to previous 1.28 (colored)
Some more KNF, no binary change. ok ho@
Revision 1.28 / (download) - annotate - [select for diffs], Fri Apr 23 14:15:55 2004 UTC (20 years, 1 month ago) by ho
Branch: MAIN
Changes since 1.27: +2 -1 lines
Diff to previous 1.27 (colored)
Make sure KEY_LENGTH attribute is present when checking AES proposals, required when acting as responder to SafeNet peers. Also make conf_load_defaults() readable again (KNF). hshoexer@ ok.
Revision 1.27 / (download) - annotate - [select for diffs], Thu Apr 15 18:39:25 2004 UTC (20 years, 1 month ago) by deraadt
Branch: MAIN
Changes since 1.26: +24 -24 lines
Diff to previous 1.26 (colored)
partial move to KNF. More to come. This has happened because there are a raft of source code auditors who are willing to help improve this code only if this is done, and hey, isakmpd does need our standard auditing process. ok ho hshoexer
Revision 1.26 / (download) - annotate - [select for diffs], Wed Apr 7 22:45:49 2004 UTC (20 years, 2 months ago) by ho
Branch: MAIN
Changes since 1.25: +2 -2 lines
Diff to previous 1.25 (colored)
-Wsign-compare nits. hshoexer@ ok.
Revision 1.25 / (download) - annotate - [select for diffs], Fri Mar 19 14:04:43 2004 UTC (20 years, 2 months ago) by hshoexer
Branch: MAIN
CVS Tags: OPENBSD_3_5_BASE,
OPENBSD_3_5
Changes since 1.24: +2 -6 lines
Diff to previous 1.24 (colored)
Add missing bits to make already present privsep code work. Enable privsep. ok ho@ deraadt@ markus@
Revision 1.24 / (download) - annotate - [select for diffs], Tue Jun 3 14:28:16 2003 UTC (21 years ago) by ho
Branch: MAIN
CVS Tags: OPENBSD_3_4_BASE,
OPENBSD_3_4
Changes since 1.23: +2 -7 lines
Diff to previous 1.23 (colored)
Remove clauses 3 and 4. With approval from Niklas Hallqvist and Niels Provos.
Revision 1.23 / (download) - annotate - [select for diffs], Thu May 15 00:28:53 2003 UTC (21 years, 1 month ago) by ho
Branch: MAIN
Changes since 1.22: +16 -9 lines
Diff to previous 1.22 (colored)
Start of privilege separation for isakmpd. There are some kinks left, so keep it default disabled for now. markus@ says ok to commit.
Revision 1.22 / (download) - annotate - [select for diffs], Wed May 14 18:11:18 2003 UTC (21 years, 1 month ago) by ho
Branch: MAIN
Changes since 1.21: +2 -2 lines
Diff to previous 1.21 (colored)
Default public key directory definition sanity.
Revision 1.21 / (download) - annotate - [select for diffs], Tue Feb 4 20:02:00 2003 UTC (21 years, 4 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_3_3_BASE,
OPENBSD_3_3
Changes since 1.20: +2 -2 lines
Diff to previous 1.20 (colored)
default to 3DES-SHA-RSA_SIG (same as in OpenBSD 3.2); ok ho@
Revision 1.20 / (download) - annotate - [select for diffs], Thu Jan 9 13:11:17 2003 UTC (21 years, 5 months ago) by ho
Branch: MAIN
Changes since 1.19: +2 -2 lines
Diff to previous 1.19 (colored)
Default-Phase-1-Configuration --> Default-phase-1-configuration
Revision 1.19 / (download) - annotate - [select for diffs], Fri Nov 15 14:58:38 2002 UTC (21 years, 6 months ago) by ho
Branch: MAIN
Changes since 1.18: +6 -1 lines
Diff to previous 1.18 (colored)
Missing "Configuration" tag in a Phase-1 peer was not handled correctly, pointed out by Aref Taidi. Replace this with a "Default-Phase-1-Configuration" that will be used if this tag is missing from the peer. Update manpage accordingly. niklas@ ok.
Revision 1.18 / (download) - annotate - [select for diffs], Thu Nov 14 16:13:27 2002 UTC (21 years, 6 months ago) by ho
Branch: MAIN
Changes since 1.17: +1 -2 lines
Diff to previous 1.17 (colored)
Better whitespace/newline handling, this should make broken lines and multiple values parse correctly again, as well as fix PR#2974. Also fix some int/u_int mismatches, and remove conf_get_line() (obsolete).
Revision 1.17 / (download) - annotate - [select for diffs], Wed Aug 7 13:19:20 2002 UTC (21 years, 10 months ago) by ho
Branch: MAIN
CVS Tags: OPENBSD_3_2_BASE,
OPENBSD_3_2
Changes since 1.16: +2 -2 lines
Diff to previous 1.16 (colored)
A rewrite of the CRL support code, also from <Thomas.Walpuski@gmx.net>. Some style mods, and checks added for OpenSSL version 0.9.7 or later. Currently CRLs are not supported for earlier versions. Manual pages updated.
Revision 1.16 / (download) - annotate - [select for diffs], Fri Aug 2 13:10:41 2002 UTC (21 years, 10 months ago) by ho
Branch: MAIN
Changes since 1.15: +2 -1 lines
Diff to previous 1.15 (colored)
CRL support for isakmpd. From <Thomas.Walpuski@gmx.net> with some minor modifications by me. ok niklas@.
Revision 1.15 / (download) - annotate - [select for diffs], Fri Jun 29 19:42:16 2001 UTC (22 years, 11 months ago) by niklas
Branch: MAIN
CVS Tags: OPENBSD_3_1_BASE,
OPENBSD_3_1,
OPENBSD_3_0_BASE,
OPENBSD_3_0
Changes since 1.14: +3 -1 lines
Diff to previous 1.14 (colored)
Provide an API to get sockaddrs out of the config db
Revision 1.12.2.1 / (download) - annotate - [select for diffs], Tue May 8 12:45:22 2001 UTC (23 years, 1 month ago) by ho
Branch: OPENBSD_2_8
Changes since 1.12: +3 -3 lines
Diff to previous 1.12 (colored) next main 1.13 (colored)
Pull in isakmpd from 2.9 to 2.8 branch.
Revision 1.14 / (download) - annotate - [select for diffs], Sat Jan 27 12:03:31 2001 UTC (23 years, 4 months ago) by niklas
Branch: MAIN
CVS Tags: OPENBSD_2_9_BASE,
OPENBSD_2_9
Changes since 1.13: +2 -2 lines
Diff to previous 1.13 (colored)
(c) 2001
Revision 1.13 / (download) - annotate - [select for diffs], Fri Jan 26 12:12:51 2001 UTC (23 years, 4 months ago) by niklas
Branch: MAIN
Changes since 1.12: +2 -2 lines
Diff to previous 1.12 (colored)
Pedantic style police
Revision 1.12 / (download) - annotate - [select for diffs], Sat Oct 7 07:00:06 2000 UTC (23 years, 8 months ago) by niklas
Branch: MAIN
CVS Tags: OPENBSD_2_8_BASE
Branch point for: OPENBSD_2_8
Changes since 1.11: +3 -2 lines
Diff to previous 1.11 (colored)
conf.h: Merge with EOM 1.13 gmp_util.c: Merge with EOM 1.7 isakmpd.conf.5: Merge with EOM 1.47 author: ho (c)-2000
Revision 1.11 / (download) - annotate - [select for diffs], Thu Jun 8 20:52:18 2000 UTC (24 years ago) by niklas
Branch: MAIN
Changes since 1.10: +3 -2 lines
Diff to previous 1.10 (colored)
Merge with EOM 1.12 author: angelos Default value for [KeyNote]:Credential-directory.
Revision 1.10 / (download) - annotate - [select for diffs], Tue May 2 14:37:00 2000 UTC (24 years, 1 month ago) by niklas
Branch: MAIN
CVS Tags: OPENBSD_2_7_BASE,
OPENBSD_2_7
Changes since 1.9: +23 -3 lines
Diff to previous 1.9 (colored)
conf.h: Merge with EOM 1.11 ui.c: Merge with EOM 1.41 author: niklas From ho: provide defaults for requested transforms, shortens config files vastly.
Revision 1.9 / (download) - annotate - [select for diffs], Thu Aug 5 22:41:08 1999 UTC (24 years, 10 months ago) by niklas
Branch: MAIN
CVS Tags: OPENBSD_2_6_BASE,
OPENBSD_2_6
Changes since 1.8: +8 -2 lines
Diff to previous 1.8 (colored)
DESIGN-NOTES: Merge with EOM 1.47 conf.c: Merge with EOM 1.19 conf.h: Merge with EOM 1.10 ui.c: Merge with EOM 1.34 author: niklas Dynamic updates of the configuration database is now possible, either through ui, or through the new conf_* API described in DESIGN-NOTES
Revision 1.8 / (download) - annotate - [select for diffs], Sun Jul 18 09:33:21 1999 UTC (24 years, 10 months ago) by niklas
Branch: MAIN
Changes since 1.7: +3 -3 lines
Diff to previous 1.7 (colored)
conf.h: Merge with EOM 1.9 isakmpd.8: Merge with EOM 1.15 author: niklas Moving /etc/isakmpd.conf to /etc/isakmpd/isakmpd.conf.
Revision 1.7 / (download) - annotate - [select for diffs], Mon Apr 19 19:54:54 1999 UTC (25 years, 1 month ago) by niklas
Branch: MAIN
Changes since 1.6: +3 -3 lines
Diff to previous 1.6 (colored)
./app.c: Merge with EOM 1.5 ./gmp_util.c: Merge with EOM 1.3 ./asn_useful.c: Merge with EOM 1.11 ./attribute.c: Merge with EOM 1.9 ./constants.c: Merge with EOM 1.7 ./doi.h: Merge with EOM 1.25 ./doi.c: Merge with EOM 1.4 ./field.c: Merge with EOM 1.9 ./init.c: Merge with EOM 1.13 ./isakmp_doi.c: Merge with EOM 1.35 ./prf.c: Merge with EOM 1.6 ./util.c: Merge with EOM 1.14 ./app.h: Merge with EOM 1.4 ./conf.h: Merge with EOM 1.8 ./ipsec.h: Merge with EOM 1.34 ./ipsec_doi.h: Merge with EOM 1.10 ./pkcs.h: Merge with EOM 1.8 ./sysdep.h: Merge with EOM 1.15 1999 copyrights
Revision 1.6 / (download) - annotate - [select for diffs], Tue Mar 2 15:35:12 1999 UTC (25 years, 3 months ago) by niklas
Branch: MAIN
CVS Tags: OPENBSD_2_5_BASE,
OPENBSD_2_5
Changes since 1.5: +3 -2 lines
Diff to previous 1.5 (colored)
conf.c: Merge with EOM 1.15 One include too much conf.h: Merge with EOM 1.7 Forgotten include file
Revision 1.5 / (download) - annotate - [select for diffs], Fri Feb 26 03:34:55 1999 UTC (25 years, 3 months ago) by niklas
Branch: MAIN
Changes since 1.4: +3 -3 lines
Diff to previous 1.4 (colored)
Merge from the Ericsson repository | revision 1.6 | date: 1999/02/25 11:09:32; author: niklas; state: Exp; lines: +2 -2 | Make conf_get_num take a default value to give back when tag does not exist | ----------------------------
Revision 1.4 / (download) - annotate - [select for diffs], Fri Nov 20 07:38:30 1998 UTC (25 years, 6 months ago) by niklas
Branch: MAIN
Changes since 1.3: +7 -5 lines
Diff to previous 1.3 (colored)
Add iterator for tags in a section. Add range checking for numbers.
Revision 1.3 / (download) - annotate - [select for diffs], Tue Nov 17 11:10:08 1998 UTC (25 years, 6 months ago) by niklas
Branch: MAIN
Changes since 1.2: +2 -1 lines
Diff to previous 1.2 (colored)
Add RCS Ids from the EOM repository
Revision 1.2 / (download) - annotate - [select for diffs], Sun Nov 15 00:43:50 1998 UTC (25 years, 7 months ago) by niklas
Branch: MAIN
Changes since 1.1: +1 -1 lines
Diff to previous 1.1 (colored)
openBSD RCS IDs
Revision 1.1.1.1 / (download) - annotate - [select for diffs] (vendor branch), Sun Nov 15 00:03:48 1998 UTC (25 years, 7 months ago) by niklas
Branch: NIKLAS
CVS Tags: NIKLAS_981114
Changes since 1.1: +0 -0 lines
Diff to previous 1.1 (colored)
Initial import of isakmpd, an IKE (ISAKMP/Oakley) implementation for the OpenBSD IPSEC stack by me, Niklas Hallqvist and Niels Provos, funded by Ericsson Radio Systems. It is not yet complete or usable in a real scenario but the missing pieces will soon be there. The early commit is for people who wants early access and who are not afraid of looking at source. isakmpd interops with Cisco, Timestep, SSH & Pluto (Linux FreeS/WAN) so far, so it is not that incomplete. It is really mostly configuration that is lacking.
Revision 1.1 / (download) - annotate - [select for diffs], Sun Nov 15 00:03:48 1998 UTC (25 years, 7 months ago) by niklas
Branch: MAIN
Initial revision