Aren/NetBSD
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
84f1219a04
NetBSD/crypto/dist/kame/racoon
History
thorpej b454543f45 Apply patches as discussed on: 
http://mail-index.netbsd.org/tech-net/2004/11/05/0004.html

Slightly modified to differentiate the version string from a stock racoon.

	* auth_gssapi.h (GSSAPI_DEF_NAME): Change from "ike" to "host".
	(gssapi_get_default_id): Rename to gssapi_get_id.
	(gssapi_get_default_gss_id): New prototype.
	* cfparse.y (GSSAPI_ID): Rename to GSS_ID.
	(GSS_ID_ENC, GSS_ID_ENCTYPE): New tokens.
	(gssenc_statement): New statement.
	(isakmpproposal_spec): Use GSS_ID token.
	(expand_isakmpspec): Fill in gssid in the new proposal only
	if authmethod is OAKLEY_ATTR_AUTH_METHOD_GSSAPI_KRB.  If the
	GSS ID is not provided, call gssapi_get_default_gss_id() to
	place the default ID in the proposal.
	* cftoken.l (S_GSSENC): New start condition.
	(<S_RMTP>gss_id): New, return the GSS_ID token.
	(<S_RMTP>gssapi_id): Return the GSS_ID token.
	(<S_INI>gss_id_enc, <S_GSSENC>latin1, <S_GSSENC>utf-16le)
	(<S_GSSENC>{semi}): New, tokenize the "gss_id_enc enctype;"
	statement.
	* gssapi.c: Include <unistd.h>.
	(gssapi_get_default_gss_id): New function.
	(gssapi_init): Disable a broken debugging message.  Make
	printf formats consistent in their handling of non-NUL-terminated
	strings.
	(gssapi_get_default_id): Rename to...
	(gssapi_get_id): ...this.  If the proposal has a gssid, vdup()
	that and return it.  Disable a broken debugging message.  Make
	printf formats consistent in their handling of non-NUL-terminated
	strings.
	* ipsec_doi.c: Include <iconv.h>.
	(get_ph1approval): Make printf formats consistent in their handling
	of non-NUL-terminated strings.  Call gssapi_get_id() instead of
	gssapi_get_default_id(), and remove some complexity that has been
	pushed into that function.
	(t2isakmpsa): When parsing the OAKLEY_ATTR_GSS_ID attribute,
	check convert the attribute from UTF-16LE to ISO-Latin-1, unless
	we are configured to assume the attribute is already ISO-Latin-1
	encoded.
	(setph1attr): When setting the OAKLEY_ATTR_GSS_ID attribute,
	convert the attribute from ISO-Latin-1 to UTF-16LE, unless we
	are configured to encode the attribute in ISO-Latin-1.
	* localconf.c (setdefault): Set the default GSS ID encoding type
	to UTF-16LE.
	* localconf.h (LC_GSSENC_UTF16LE, LC_GSSENC_LATIN1)
	(LC_GSSENC_MAX): New constants.
	(struct localconf): Add gss_id_enc member.
	* main.c (RACOON_VERSION): Append " - NetBSD 20041110" to the
	version string.
	* racoon.conf.5: Document changes to GSS ID encoding and default
	GSS ID computation.  Document "gss_id_enc enctype;" statement.
	* samples/racoon.conf.sample-gssapi: Update and add comments to
	provide more information.
2004-11-10 20:23:28 +00:00
..
contrib
doc kame racoon 2003/7/12. lots of lots of stability fixes. 2003-07-12 08:45:39 +00:00
missing properly validate phase 1 signature. 2004-04-12 03:34:05 +00:00
samples Apply patches as discussed on: 2004-11-10 20:23:28 +00:00
tcpdump version 20040617a, includes important fix about cert handling 2004-06-17 03:38:44 +00:00
aclocal.m4
admin_var.h bring in latest racoon/libipsec from KAME. lots of lots of stability fixes. 2001-08-02 12:06:08 +00:00
admin.c __RCSID. add missing copyright in *.y and *.l (sync w/kame) 2003-07-12 09:37:09 +00:00
admin.h
algorithm.c properly validate phase 1 signature. 2004-04-12 03:34:05 +00:00
algorithm.h KAME racoon as of 2002/4/26 2002-04-26 02:16:38 +00:00
arc4random.h KAME racoon as of 2002/11/20 2002-11-20 03:30:18 +00:00
auth_gssapi.h Apply patches as discussed on: 2004-11-10 20:23:28 +00:00
backupsa.c Add (unsigned char) cast to ctype functions 2004-10-30 15:15:37 +00:00
backupsa.h KAME racoon as of 2001/2/22 2001-02-22 02:21:12 +00:00
cfparse_proto.h KAME racoon as of 2002/11/20 2002-11-20 03:30:18 +00:00
cfparse.y Apply patches as discussed on: 2004-11-10 20:23:28 +00:00
cftoken_proto.h KAME racoon as of 2002/11/20 2002-11-20 03:30:18 +00:00
cftoken.l Apply patches as discussed on: 2004-11-10 20:23:28 +00:00
client-puzzle.c KAME racoon as of 2002/11/20 2002-11-20 03:30:18 +00:00
config.guess
config.sub
configure version 20040617a, includes important fix about cert handling 2004-06-17 03:38:44 +00:00
configure.in version 20040617a, includes important fix about cert handling 2004-06-17 03:38:44 +00:00
crypto_openssl.c sync w/ 20040617. 2004-06-17 03:42:55 +00:00
crypto_openssl.h version 20040617a, includes important fix about cert handling 2004-06-17 03:38:44 +00:00
debug.h Bring in latest racoon/libipsec from KAME (not part of a snap 2001-01-24 18:10:22 +00:00
debugrm.c __RCSID. add missing copyright in *.y and *.l (sync w/kame) 2003-07-12 09:37:09 +00:00
debugrm.h KAME racoon as of 2002/11/20 2002-11-20 03:30:18 +00:00
dhgroup.h KAME racoon as of 2004/4/12 2004-04-12 03:26:57 +00:00
dnssec.c __RCSID. add missing copyright in *.y and *.l (sync w/kame) 2003-07-12 09:37:09 +00:00
dnssec.h bring in latest racoon/libipsec from KAME. lots of lots of stability fixes. 2001-08-02 12:06:08 +00:00
dump.c __RCSID. add missing copyright in *.y and *.l (sync w/kame) 2003-07-12 09:37:09 +00:00
dump.h
eaytest.c sync w/ 20040617. 2004-06-17 03:42:55 +00:00
gcmalloc.h KAME racoon as of 2002/4/26 2002-04-26 02:16:38 +00:00
getcertsbyname.c __RCSID. add missing copyright in *.y and *.l (sync w/kame) 2003-07-12 09:37:09 +00:00
gnuc.h
grabmyaddr.c sync w/ 20040617. 2004-06-17 03:42:55 +00:00
grabmyaddr.h KAME racoon as of 2002/4/26 2002-04-26 02:16:38 +00:00
gssapi.c Apply patches as discussed on: 2004-11-10 20:23:28 +00:00
handler.c sync w/ 20040617. 2004-06-17 03:42:55 +00:00
handler.h sync w/ kame source from 2002/11/20. 2002-11-20 03:35:57 +00:00
install-sh
ipsec_doi.c Apply patches as discussed on: 2004-11-10 20:23:28 +00:00
ipsec_doi.h kame racoon 2003/7/12. lots of lots of stability fixes. 2003-07-12 08:45:39 +00:00
isakmp_agg.c properly validate phase 1 signature. 2004-04-12 03:34:05 +00:00
isakmp_agg.h
isakmp_base.c properly validate phase 1 signature. 2004-04-12 03:34:05 +00:00
isakmp_base.h
isakmp_ident.c properly validate phase 1 signature. 2004-04-12 03:34:05 +00:00
isakmp_ident.h
isakmp_inf.c properly validate phase 1 signature. 2004-04-12 03:34:05 +00:00
isakmp_inf.h
isakmp_newg.c __RCSID. add missing copyright in *.y and *.l (sync w/kame) 2003-07-12 09:37:09 +00:00
isakmp_newg.h
isakmp_quick.c properly validate phase 1 signature. 2004-04-12 03:34:05 +00:00
isakmp_quick.h
isakmp_var.h KAME racoon as of 2004/4/12 2004-04-12 03:26:57 +00:00
isakmp.c Disable the "may kill you" message, because: 2004-08-06 13:57:05 +00:00
isakmp.h bring in latest racoon/libipsec from KAME. lots of lots of stability fixes. 2001-08-02 12:06:08 +00:00
kmpstat.c sync w/ 20040617. 2004-06-17 03:42:55 +00:00
localconf.c Apply patches as discussed on: 2004-11-10 20:23:28 +00:00
localconf.h Apply patches as discussed on: 2004-11-10 20:23:28 +00:00
logger.c __RCSID. add missing copyright in *.y and *.l (sync w/kame) 2003-07-12 09:37:09 +00:00
logger.h
main.c Apply patches as discussed on: 2004-11-10 20:23:28 +00:00
Makefile.in version 20040617a, includes important fix about cert handling 2004-06-17 03:38:44 +00:00
misc.c __RCSID. add missing copyright in *.y and *.l (sync w/kame) 2003-07-12 09:37:09 +00:00
misc.h KAME racoon as of 2002/11/20 2002-11-20 03:30:18 +00:00
netdb_dnssec.h bring in latest racoon/libipsec from KAME. lots of lots of stability fixes. 2001-08-02 12:06:08 +00:00
oakley.c sync w/ 20040617. 2004-06-17 03:42:55 +00:00
oakley.h KAME racoon as of 2004/4/12 2004-04-12 03:26:57 +00:00
pfkey.c properly validate phase 1 signature. 2004-04-12 03:34:05 +00:00
pfkey.h bring in latest racoon/libipsec from KAME. lots of lots of stability fixes. 2001-08-02 12:06:08 +00:00
plog.c __RCSID. add missing copyright in *.y and *.l (sync w/kame) 2003-07-12 09:37:09 +00:00
plog.h correct plogv(). 2002-05-07 08:58:32 +00:00
policy.c __RCSID. add missing copyright in *.y and *.l (sync w/kame) 2003-07-12 09:37:09 +00:00
policy.h KAME racoon as of 2002/4/26 2002-04-26 02:16:38 +00:00
print-isakmp.c version 20040617a, includes important fix about cert handling 2004-06-17 03:38:44 +00:00
proposal.c properly validate phase 1 signature. 2004-04-12 03:34:05 +00:00
proposal.h KAME as of 2001/8/31 2001-08-31 09:59:03 +00:00
racoon.8 sync w/ latest racoon 2003-07-12 09:02:24 +00:00
racoon.conf.5 Apply patches as discussed on: 2004-11-10 20:23:28 +00:00
remoteconf.c __RCSID. add missing copyright in *.y and *.l (sync w/kame) 2003-07-12 09:37:09 +00:00
remoteconf.h kame racoon 2003/7/12. lots of lots of stability fixes. 2003-07-12 08:45:39 +00:00
safefile.c __RCSID. add missing copyright in *.y and *.l (sync w/kame) 2003-07-12 09:37:09 +00:00
safefile.h
sainfo.c __RCSID. add missing copyright in *.y and *.l (sync w/kame) 2003-07-12 09:37:09 +00:00
sainfo.h kame racoon 2003/7/12. lots of lots of stability fixes. 2003-07-12 08:45:39 +00:00
schedule.c __RCSID. add missing copyright in *.y and *.l (sync w/kame) 2003-07-12 09:37:09 +00:00
schedule.h KAME racoon as of 2001/03/08. 2001-03-08 22:18:05 +00:00
session.c properly validate phase 1 signature. 2004-04-12 03:34:05 +00:00
session.h
sockmisc.c properly validate phase 1 signature. 2004-04-12 03:34:05 +00:00
sockmisc.h KAME racoon as of 2002/4/26 2002-04-26 02:16:38 +00:00
stats.pl KAME as of 2001/8/31 2001-08-31 09:59:03 +00:00
str2val.c Add (unsigned char) cast to ctype functions 2004-10-30 15:15:37 +00:00
str2val.h KAME as of 2001/8/31 2001-08-31 09:59:03 +00:00
strnames.c properly validate phase 1 signature. 2004-04-12 03:34:05 +00:00
strnames.h KAME as of 2001/8/31 2001-08-31 09:59:03 +00:00
TODO KAME racoon as of 2002/4/26 2002-04-26 02:16:38 +00:00
var.h update racoon to 2003/8/26 version. mostly minor bugfixes. 2003-08-26 03:31:50 +00:00
vendorid.c __RCSID. add missing copyright in *.y and *.l (sync w/kame) 2003-07-12 09:37:09 +00:00
vendorid.h Import racoon/libipsec as of April 4, 2001. 2001-04-04 19:33:00 +00:00
vmbuf.c __RCSID. add missing copyright in *.y and *.l (sync w/kame) 2003-07-12 09:37:09 +00:00
vmbuf.h KAME racoon as of 2002/4/26 2002-04-26 02:16:38 +00:00