NetBSD

Author	SHA1	Message	Date
tteras	ca3b7c5a9f	Separate generic vendor id handling to a new function and use it.	2008-07-21 06:26:06 +00:00
tteras	7a1c3cb1b8	Do not set default gss id if xauth is used, otherwise gss-id attribute might be sent even if it was not requested.	2008-07-21 06:24:29 +00:00
mgrooms	879eeb1025	Fix an a typo that prevented racoon from building with hybrid enabled.	2008-07-15 02:16:58 +00:00
mgrooms	6353d50296	Update changelog which was missed in my previous commit.	2008-07-15 00:53:36 +00:00
tteras	56a42db6a6	Handle RESPONDER-LIFETIME notification in quick mode.	2008-07-14 05:45:15 +00:00
tteras	583275a951	Clean up notification payload handling. Handle INITIAL-CONTACT notification in last main mode exchange (delayed) and during quick mode exchanges.	2008-07-14 05:40:13 +00:00
tteras	75bc4bd6cd	Original patch from Atis Elsts: Fix a double memory free and a memory corruption (LIST_REMOVE() on an uninserted node) in some error handling paths.	2008-07-11 08:02:06 +00:00
tteras	7f51b6fe42	From Chong Peng: fix a file descriptor and memory leak on configuration file reread	2008-07-09 12:16:50 +00:00
vanhu	874968c865	fixed some %d to %zu (size_t values)	2008-07-02 14:46:26 +00:00
mgrooms	c47cb1615c	Add an admin port command to retrieve the peer certificate. Submitted by Timmo Teras.	2008-06-18 07:12:03 +00:00
mgrooms	5d397c5ba5	Set sockets to be closed on exec to avoid potential file descriptor inheritance issues. Submitted by Timmo Teras.	2008-06-18 07:04:22 +00:00
mgrooms	2c40396f3a	Use utility functions to evaluate or manipulate network port values. No functional changes. Submitted by Timmo Teras.	2008-06-18 06:47:24 +00:00
mgrooms	18fc645e9a	Admin port code cleanup. No functional changes. Submitted by Timmo Teras.	2008-06-18 06:27:48 +00:00
mgrooms	b163716d45	Correct a phase2 status event. Submitted by Timmo Teras.	2008-06-18 06:11:37 +00:00
manu	2a499f37b6	From Christian Hohnstaedt: allow out of tree building	2008-05-08 12:24:50 +00:00
vanhu	c6898eabf6	extract ports information from SADB_X_EXT_NAT_T_[SD]PORT if present in purge_ipsec_spi()	2008-04-25 14:41:17 +00:00
manu	1c3bd4b930	fix Linux build	2008-04-02 19:02:50 +00:00
manu	182dbe8881	From Cyrus Rahman <crahman@gmail.com> Allow interface reconfiguration when running in privilege separation mode, document privilege separation	2008-03-28 04:18:51 +00:00
vanhu	b5ae261d16	Generates a log if cert validation has been disabled by configuration	2008-03-06 17:00:03 +00:00
manu	b6b6316484	From Cyrus Rahman <crahman@gmail.com> privilegied instance exit when unprivilegied one terminates. Save PID in real root, not in chroot	2008-03-06 04:29:20 +00:00
mgrooms	1e1f81eb1d	Add the ability to initiate IPsec SA negotiations using the admin socket. Submitted by Timo Teras.	2008-03-06 00:46:04 +00:00
mgrooms	089a95fdcd	Refactor admin socket event protocol to be less error prone. Backwards compatibility is provided. Submitted by Timmo Teras.	2008-03-06 00:34:10 +00:00
mgrooms	5e5c5d5011	Properly initialize the unity network struct to prevent erroneous protocol and port info from being transmitted.	2008-03-05 22:27:50 +00:00
mgrooms	f771df75b3	Reload SPD on SIGHUP or adminport reload. Also provide better handling for pfkey socket read errors. Submitted by Timo Teras.	2008-03-05 22:09:44 +00:00
manu	5ae99b01fd	Missing entries for last changes	2008-02-25 20:14:05 +00:00
vanhu	ca6b517233	reset iph1->dpd_r_u in the scheduler's callback, to avoid some access to freed memory	2008-01-11 14:27:33 +00:00
vanhu	e0b7c2f9ec	reported somes fixes from Krzysztof Oledzki	2008-01-11 14:09:50 +00:00
mgrooms	e2eda5513a	Add GRE protocol number to racoonctl. Correct id wildcard matching for transport mode. Submitted by Timmo Teras.	2007-12-31 01:42:06 +00:00
mgrooms	892304dffa	Add support for nat-t oa payload handling. Submitted by Timo Teras.	2007-12-12 04:45:59 +00:00
mgrooms	4454243c5b	Add changelog entries missed in the last commit.	2007-12-04 19:54:24 +00:00
vanhu	45ebb13627	fixed a race condition when building yacc stuff	2007-11-29 16:22:07 +00:00
vanhu	e76e80b28b	From Arnaud Ebalard: some sanity checks, debug, and a better matching of SPD entries in getsp_r()	2007-11-09 16:28:14 +00:00
manu	57c0ea0775	Add SPLITNET_{INCLUDR_LOCAL}_CIDR to hook scripts	2007-10-19 03:37:18 +00:00
vanhu	702eac21e5	Try to increase the buffer size of the pfkey socket, this may help things when we have a huge SPD	2007-10-15 16:05:01 +00:00
vanhu	657e6e5324	new plog macro	2007-10-02 09:48:08 +00:00
mgrooms	26182f1f5d	Set REUSE option on sockets to prevent failures associated with closing and immediately re-opening. Submitted by Gabriel Somlo.	2007-09-19 19:29:36 +00:00
mgrooms	33e6656ef9	Prevent duplicate entries in splitnet list. Submitted by Gabriel Somlo.	2007-09-19 19:20:25 +00:00
mgrooms	8293a09746	Fix autoconf check for selinux support. Submitted by Joy Latten.	2007-09-13 00:26:14 +00:00
mgrooms	aca8e1eed2	Implement clientaddr sainfo remote id option and refine the sainfo man page syntax.	2007-09-12 23:39:49 +00:00
mgrooms	324a68d0b7	Sort sainfo sections on insert and improve matching logic.	2007-09-05 06:55:44 +00:00
mgrooms	edac7dae7c	Correct the syntax for wins4 in the man page and add nbns4 as an alias. Pointed out by Claas Langbehn.	2007-09-03 18:08:42 +00:00
manu	1c79bc103b	src/racoon/isakmp_xauth.c: Don't mix up RADIUS authentication and authorization ports. Allow interoperability with freeradius	2007-08-07 04:35:01 +00:00
mgrooms	9b7e05e155	Various racoon configuration manpage updates.	2007-07-18 22:50:47 +00:00
vanhu	c3bc7fe364	use a single PATH_IPSEC_H to fix some path_to_ipsec.h issues	2007-07-18 12:07:49 +00:00
vanhu	9f7ae421ea	fixed a socket leak	2007-07-16 15:05:10 +00:00
vanhu	0fd2ceaf72	indentation	2007-07-16 15:03:13 +00:00
manu	72fe4c3a84	From Paul Winder <Paul.Winder@tadpole.com>: Fix ignored INTERNAL_DNS4_LIST	2007-06-07 20:04:26 +00:00
vanhu	cc41629a4c	fixed compilation with gcc 4.2	2007-06-06 15:37:14 +00:00
vanhu	6817ea28d9	speeds up interfaces update when they changed	2007-06-06 09:47:30 +00:00
vanhu	7c53bfe0b6	ignore obsolete lifebyte when validating reloaded configuration	2007-06-06 09:18:16 +00:00

1 2 3 4

172 Commits