Revision tags: OPENBSD_5_4_BASE OPENBSD_5_5_BASE OPENBSD_5_6_BASE OPENBSD_5_7_BASE OPENBSD_5_8_BASE OPENBSD_5_9_BASE OPENBSD_6_0_BASE OPENBSD_6_1_BASE OPENBSD_6_2_BASE
|
#
1.33 |
|
21-Mar-2013 |
deraadt |
remove excessive includes
|
Revision tags: OPENBSD_4_2_BASE OPENBSD_4_3_BASE OPENBSD_4_4_BASE OPENBSD_4_5_BASE OPENBSD_4_6_BASE OPENBSD_4_7_BASE OPENBSD_4_8_BASE OPENBSD_4_9_BASE OPENBSD_5_0_BASE OPENBSD_5_1_BASE OPENBSD_5_2_BASE OPENBSD_5_3_BASE
|
#
1.32 |
|
05-Aug-2007 |
tom |
Allow key exchange with RSA signature authentication to work with Cisco IOS and other initiators that only send their certs in response to CERT_REQUEST.
With input and help from cloder@, Stuart Henderson, mpf@, and several others who did lots of testing - thanks to all.
ok hshoexer@
|
Revision tags: OPENBSD_3_8_BASE OPENBSD_3_9_BASE OPENBSD_4_0_BASE OPENBSD_4_1_BASE
|
#
1.31 |
|
08-Apr-2005 |
cloder |
Make deterministic randomness (only ever used for testing) a compile-time option. Reduces chances of somehow setting regrand when it's not supposed to be set. Remove "-r" option from man page. Also xref certpatch(8) while we are in there. And remove some include sysdep.h where it is no longer needed. OK hshoexer
|
#
1.30 |
|
08-Apr-2005 |
deraadt |
keynote and policy always compiled in
|
#
1.29 |
|
05-Apr-2005 |
cloder |
Always compile X509 support. Almost everyone uses it. Makes the code much easier to read and to maintain. OK and testing by hshoexer@, more testing by me
|
Revision tags: OPENBSD_3_6_BASE OPENBSD_3_7_BASE
|
#
1.28 |
|
14-Jun-2004 |
ho |
KNF, style, 80c, etc. hshoexer@ ok
|
#
1.27 |
|
14-May-2004 |
hshoexer |
Some more KNF, no binary change.
ok ho@
|
#
1.26 |
|
15-Apr-2004 |
deraadt |
partial move to KNF. More to come. This has happened because there are a raft of source code auditors who are willing to help improve this code only if this is done, and hey, isakmpd does need our standard auditing process. ok ho hshoexer
|
#
1.25 |
|
31-Mar-2004 |
ho |
-Wsign-compare nits. hshoexer@ ok.
|
Revision tags: OPENBSD_3_4_BASE OPENBSD_3_5_BASE
|
#
1.24 |
|
03-Jun-2003 |
ho |
Remove clauses 3 and 4. With approval from Niklas Hallqvist and Niels Provos.
|
Revision tags: OPENBSD_3_2_BASE OPENBSD_3_3_BASE
|
#
1.23 |
|
07-Aug-2002 |
ho |
A rewrite of the CRL support code, also from <Thomas.Walpuski@gmx.net>. Some style mods, and checks added for OpenSSL version 0.9.7 or later. Currently CRLs are not supported for earlier versions. Manual pages updated.
|
#
1.22 |
|
09-Jun-2002 |
todd |
rm trailing whitespace
|
#
1.21 |
|
06-Jun-2002 |
ho |
Style, and a few additional format/type mods.
|
#
1.20 |
|
01-Jun-2002 |
deraadt |
size_t must be cast to (unsigned long) and printed using %lu
|
Revision tags: OPENBSD_3_1_BASE
|
#
1.19 |
|
03-Nov-2001 |
ho |
We get ssl.h with x509.h/libcrypto.h
|
Revision tags: OPENBSD_3_0_BASE
|
#
1.18 |
|
05-Jun-2001 |
niklas |
Style issues and commentary
|
#
1.17 |
|
31-May-2001 |
angelos |
Expand the X509 and KeyNote cert handlers.
|
Revision tags: OPENBSD_2_8_BASE OPENBSD_2_9_BASE
|
#
1.16 |
|
07-Oct-2000 |
niklas |
cert.c: Merge with EOM 1.18 cert.h: Merge with EOM 1.8 libcrypto.c: Merge with EOM 1.14 policy.h: Merge with EOM 1.12 x509.h: Merge with EOM 1.11
author: niklas Multiple subject name matching, makes certificate interop with PGPnet at least partly working. Added some error checking.
|
#
1.15 |
|
08-Jun-2000 |
niklas |
Merge with EOM 1.17
author: angelos Some more support for KeyNote credential exchange (not yet done).
|
Revision tags: OPENBSD_2_7_BASE
|
#
1.14 |
|
07-Apr-2000 |
niklas |
Merge with EOM 1.16
author: ho Missing #ifdef USE_X509 added
|
#
1.13 |
|
08-Mar-2000 |
niklas |
cert.c: Merge with EOM 1.15 libcrypto.h: Merge with EOM 1.12
author: ho KAME and ssl includes
|
#
1.12 |
|
19-Feb-2000 |
niklas |
cert.c: Merge with EOM 1.14 ike_auth.c: Merge with EOM 1.43 ike_phase_1.c: Merge with EOM 1.21 init.c: Merge with EOM 1.24 ipsec.c: Merge with EOM 1.117 isakmpd.c: Merge with EOM 1.44 math_group.c: Merge with EOM 1.22
author: niklas Copyright 2000
author: niklas Allow isakmpd builders to remove optional parts and save bytes.
|
Revision tags: OPENBSD_2_6_BASE
|
#
1.11 |
|
26-Aug-1999 |
niklas |
regress/rsakeygen/rsakeygen.c: Merge with EOM 1.9 regress/x509/x509test.c: Merge with EOM 1.7 DESIGN-NOTES: Merge with EOM 1.48 README.PKI: Merge with EOM 1.6 TO-DO: Merge with EOM 1.44 cert.c: Merge with EOM 1.12
author: niklas Add support for dynamic loading of optional facilities, libcrypto first.
|
#
1.10 |
|
17-Jul-1999 |
niklas |
regress/rsakeygen/Makefile: Merge with EOM 1.4 regress/rsakeygen/rsakeygen.c: Merge with EOM 1.8 regress/x509/Makefile: Merge with EOM 1.6 regress/x509/x509test.c: Merge with EOM 1.6 regress/Makefile: Merge with EOM 1.8 samples/VPN-east.conf: Merge with EOM 1.6 samples/VPN-west.conf: Merge with EOM 1.6 samples/singlehost-east.conf: Merge with EOM 1.3 samples/singlehost-west.conf: Merge with EOM 1.3 sysdep/openbsd/Makefile.sysdep: Merge with EOM 1.5 x509.h: Merge with EOM 1.6 x509.c: Merge with EOM 1.17 DESIGN-NOTES: Merge with EOM 1.46 Makefile: Merge with EOM 1.55 cert.c: Merge with EOM 1.11 cert.h: Merge with EOM 1.6 exchange.c: Merge with EOM 1.109 exchange.h: Merge with EOM 1.26 ike_auth.c: Merge with EOM 1.32 ike_phase_1.c: Merge with EOM 1.7 init.c: Merge with EOM 1.16 isakmpd.conf.5: Merge with EOM 1.27 README.PKI: Merge with EOM 1.1
author: niklas From Niels Provos, edited by me: certificate support using SSLeay
|
#
1.9 |
|
19-Apr-1999 |
niklas |
./cert.c: Merge with EOM 1.10 ./x509.c: Merge with EOM 1.13
Style
Style. alloc error reporting. Math error propagation. Allocate right sizes.
1999 copyrights
|
Revision tags: OPENBSD_2_5_BASE
|
#
1.8 |
|
26-Feb-1999 |
niklas |
Merge from the Ericsson repository | revision 1.7 | date: 1999/02/25 11:38:45; author: niklas; state: Exp; lines: +3 -1 | include sysdep.h everywhere | ----------------------------
|
#
1.7 |
|
17-Nov-1998 |
niklas |
Add RCS Ids from the EOM repository
|
#
1.6 |
|
16-Nov-1998 |
niklas |
Reinstate X509 signature code except for RSA code
|
#
1.5 |
|
16-Nov-1998 |
niklas |
Remove X509 hooks
|
#
1.4 |
|
16-Nov-1998 |
niklas |
revive
|
#
1.3 |
|
15-Nov-1998 |
niklas |
Not clean enough yet
|
#
1.2 |
|
15-Nov-1998 |
niklas |
openBSD RCS IDs
|
#
1.1 |
|
15-Nov-1998 |
niklas |
branches: 1.1.1; Initial revision
|