remove please from manual pages
ok jmc@ sthen@ millert@

remove some bad punctuation;

After deleting hifn(4) the only provider for the LZS compression
algorithm is gone. Reomve all LZS references from the tree. The
v42bis in isakmpd also looks unsupported.
OK mvs@ patrick@ sthen@

typo fix; from julian hsiao

tweak; from julian hsiao

Support additional MODP DH groups in the Phase 1 and Phase 2.
lteo@ noticed that ipsecctl allowed them within the ike rules
while isakmpd failed to load the generated configuration.
The fix was verified by hshoexer, ok naddy

ssl.8: Certifying Authority -> Certificate Authority
isakmpd.8: rsa:1024 -> rsa:2048 (ok markus)
all: X509 -> X.509

from Lawrence Teo

make clearer the relationship between isakmpd and ikev1; and iked and ikev2;
ok reyk

fix some more dodgy "-indent"; aucat.1 has some too, but i'll leave that for
ratchov, to avoid messing up his current diff...

dispense with some wacky escape sequences;

convert to new .Dd format;

Get rid of some obsolete exampels.

ok and prodding @jmc

Big spelling cleanup, no binary change. From david@

sort options;

grammar/mdoc tweaks;

Typo; spotted by Richard Ben Aleya

OpenSSL generates DNs with emailAddress, not Email.

add sha2

- remove some .Ss's that worked around the old blank line bug
- remove some unnecessary .Pp's
- mdoc a list

ok ho@

Remove the rest of clauses 3 and 4. Approved by Niklas Hallqvist, Angelos
D. Keromytis and Niels Provos.

- section reorder
- some mdoc fixes

.Xr typos;

ok deraadt@

typos; alan@alanday.com

typos; jmc@prioris.mini.pw.edu.pl

Update document date.

ecn_* policy attributes --- ok ho@

Initial patch for a new mdoc issue.
Powered by @mantoya:
o) kill extra line in the end of file;
o) kill extra space in the end of line;
o) replace blank lines with .Pp;

millert@ ok

o) start new sentence on a new line;
o) wrap long lines;
o) fix bogus .Xr usage;
o) we don't like blank lines;
o) always close .Bl tags;
o) OpenBSD -> .Ox;
o) don't like .Pp before .Ss;

millert@ ok;

{local,remote}_negotiation_address can also be IPv6.
Replace 'idea' with 'aes' in the examples.

Update BUGS section (after some bugging from ho@)

Document ASN1 DN.

Better handling of Key IDs.

Update copyright dates.

Add a FILES section describing default and sample file locations.

Add KEY_ID support (mostly from roland@digitalvampire.org)

passphrase-md5-hex: and passphrase-sha1-hex: formats for passphrases.

Merge with EOM 1.24

author: niklas
sync with OpenBSD

author: angelos
Update.

branches: 1.14.2;
Put .Dt's argument in all-caps; nate@

ipsec_num.cst: Merge with EOM 1.5
isakmpd.policy.5: Merge with EOM 1.22

author: angelos
Add RIPEMD negotiation/configuration.

samples/VPN-3way-template.conf: Merge with EOM 1.8
samples/VPN-east.conf: Merge with EOM 1.12
samples/VPN-west.conf: Merge with EOM 1.13
samples/policy: Merge with EOM 1.6
samples/singlehost-west.conf: Merge with EOM 1.9
samples/singlehost-east.conf: Merge with EOM 1.9
conf.c: Merge with EOM 1.37
ipsec.c: Merge with EOM 1.133
ipsec_num.cst: Merge with EOM 1.4
isakmpd.conf.5: Merge with EOM 1.48
isakmpd.policy.5: Merge with EOM 1.21
policy.c: Merge with EOM 1.46

author: angelos
AES support.

Merge with EOM 1.20

author: angelos
Add "phase1_group_desc" attribute, and explain the various values.

Merge with EOM 1.19

author: angelos
Point back to isakmpd.conf(5)

author: angelos
Remove fixed item from BUGs section.

author: angelos
Talk about re-loading of policies on SIGHUP.

Merge with EOM 1.16

author: angelos
Fix typo.

author: angelos
Add etherip and protocol numbers in the transport protocol entries,
document.

Merge with EOM 1.14

author: angelos
*_ike_address -> *_negotiation_address (so it's not IKE specific)

apps/certpatch/certpatch.8: Merge with EOM 1.5
isakmpd.8: Merge with EOM 1.20
isakmpd.conf.5: Merge with EOM 1.40
isakmpd.policy.5: Merge with EOM 1.13

author: niklas
Changes from OpenBSD

Merge with EOM 1.12

author: angelos
Add phase_1 attribute.

More pedantic man page formatting insanity, lalala

Merge with EOM 1.11

author: angelos
Rename the "CN:" tag to "DN:", after Jorgen's suggestion.

author: angelos
Add an initiator attribute, and make the code amenable to be invoked
by the initiator as well (for policy compliance checking).

author: angelos
Fix typo, noted by Jorgen.Granstam@abc.se

Merge with EOM 1.8

author: angelos
Add Canonical Names as policy targets (so they can be specified in the
Licensees field), with the "CN:..." format.

author: angelos
Done.

author: angelos
One missing item left...

author: angelos
More text.

author: angelos
Passphrases are encoded as "passphrase:xxxx" now, to distinguish
between passphrases and logic labels.

author: angelos
Consistent references.

author: angelos
Minor tweak.

regress/exchange/def-i.1: Sync with EOM
regress/exchange/def-r.1: Sync with EOM
isakmpd.policy.5: Sync with EOM
.cvsignore: Add isakmpd.policy.cat5

Manpage describing policy.

remove some bad punctuation;

After deleting hifn(4) the only provider for the LZS compression
algorithm is gone. Reomve all LZS references from the tree. The
v42bis in isakmpd also looks unsupported.
OK mvs@ patrick@ sthen@

typo fix; from julian hsiao

tweak; from julian hsiao

Support additional MODP DH groups in the Phase 1 and Phase 2.
lteo@ noticed that ipsecctl allowed them within the ike rules
while isakmpd failed to load the generated configuration.
The fix was verified by hshoexer, ok naddy

ssl.8: Certifying Authority -> Certificate Authority
isakmpd.8: rsa:1024 -> rsa:2048 (ok markus)
all: X509 -> X.509

from Lawrence Teo

make clearer the relationship between isakmpd and ikev1; and iked and ikev2;
ok reyk

fix some more dodgy "-indent"; aucat.1 has some too, but i'll leave that for
ratchov, to avoid messing up his current diff...

dispense with some wacky escape sequences;

convert to new .Dd format;

Get rid of some obsolete exampels.

ok and prodding @jmc

Big spelling cleanup, no binary change. From david@

sort options;

grammar/mdoc tweaks;

Typo; spotted by Richard Ben Aleya

OpenSSL generates DNs with emailAddress, not Email.

add sha2

- remove some .Ss's that worked around the old blank line bug
- remove some unnecessary .Pp's
- mdoc a list

ok ho@

Remove the rest of clauses 3 and 4. Approved by Niklas Hallqvist, Angelos
D. Keromytis and Niels Provos.

- section reorder
- some mdoc fixes

.Xr typos;

ok deraadt@

typos; alan@alanday.com

typos; jmc@prioris.mini.pw.edu.pl

Update document date.

ecn_* policy attributes --- ok ho@

Initial patch for a new mdoc issue.
Powered by @mantoya:
o) kill extra line in the end of file;
o) kill extra space in the end of line;
o) replace blank lines with .Pp;

millert@ ok

o) start new sentence on a new line;
o) wrap long lines;
o) fix bogus .Xr usage;
o) we don't like blank lines;
o) always close .Bl tags;
o) OpenBSD -> .Ox;
o) don't like .Pp before .Ss;

millert@ ok;

{local,remote}_negotiation_address can also be IPv6.
Replace 'idea' with 'aes' in the examples.

Update BUGS section (after some bugging from ho@)

Document ASN1 DN.

Better handling of Key IDs.

Update copyright dates.

Add a FILES section describing default and sample file locations.

Add KEY_ID support (mostly from roland@digitalvampire.org)

passphrase-md5-hex: and passphrase-sha1-hex: formats for passphrases.

Merge with EOM 1.24

author: niklas
sync with OpenBSD

author: angelos
Update.

branches: 1.14.2;
Put .Dt's argument in all-caps; nate@

ipsec_num.cst: Merge with EOM 1.5
isakmpd.policy.5: Merge with EOM 1.22

author: angelos
Add RIPEMD negotiation/configuration.

samples/VPN-3way-template.conf: Merge with EOM 1.8
samples/VPN-east.conf: Merge with EOM 1.12
samples/VPN-west.conf: Merge with EOM 1.13
samples/policy: Merge with EOM 1.6
samples/singlehost-west.conf: Merge with EOM 1.9
samples/singlehost-east.conf: Merge with EOM 1.9
conf.c: Merge with EOM 1.37
ipsec.c: Merge with EOM 1.133
ipsec_num.cst: Merge with EOM 1.4
isakmpd.conf.5: Merge with EOM 1.48
isakmpd.policy.5: Merge with EOM 1.21
policy.c: Merge with EOM 1.46

author: angelos
AES support.

Merge with EOM 1.20

author: angelos
Add "phase1_group_desc" attribute, and explain the various values.

Merge with EOM 1.19

author: angelos
Point back to isakmpd.conf(5)

author: angelos
Remove fixed item from BUGs section.

author: angelos
Talk about re-loading of policies on SIGHUP.

Merge with EOM 1.16

author: angelos
Fix typo.

author: angelos
Add etherip and protocol numbers in the transport protocol entries,
document.

Merge with EOM 1.14

author: angelos
*_ike_address -> *_negotiation_address (so it's not IKE specific)

apps/certpatch/certpatch.8: Merge with EOM 1.5
isakmpd.8: Merge with EOM 1.20
isakmpd.conf.5: Merge with EOM 1.40
isakmpd.policy.5: Merge with EOM 1.13

author: niklas
Changes from OpenBSD

Merge with EOM 1.12

author: angelos
Add phase_1 attribute.

More pedantic man page formatting insanity, lalala

Merge with EOM 1.11

author: angelos
Rename the "CN:" tag to "DN:", after Jorgen's suggestion.

author: angelos
Add an initiator attribute, and make the code amenable to be invoked
by the initiator as well (for policy compliance checking).

author: angelos
Fix typo, noted by Jorgen.Granstam@abc.se

Merge with EOM 1.8

author: angelos
Add Canonical Names as policy targets (so they can be specified in the
Licensees field), with the "CN:..." format.

author: angelos
Done.

author: angelos
One missing item left...

author: angelos
More text.

author: angelos
Passphrases are encoded as "passphrase:xxxx" now, to distinguish
between passphrases and logic labels.

author: angelos
Consistent references.

author: angelos
Minor tweak.

regress/exchange/def-i.1: Sync with EOM
regress/exchange/def-r.1: Sync with EOM
isakmpd.policy.5: Sync with EOM
.cvsignore: Add isakmpd.policy.cat5

Manpage describing policy.

typo fix; from julian hsiao

tweak; from julian hsiao

Support additional MODP DH groups in the Phase 1 and Phase 2.
lteo@ noticed that ipsecctl allowed them within the ike rules
while isakmpd failed to load the generated configuration.
The fix was verified by hshoexer, ok naddy

ssl.8: Certifying Authority -> Certificate Authority
isakmpd.8: rsa:1024 -> rsa:2048 (ok markus)
all: X509 -> X.509

from Lawrence Teo

make clearer the relationship between isakmpd and ikev1; and iked and ikev2;
ok reyk

fix some more dodgy "-indent"; aucat.1 has some too, but i'll leave that for
ratchov, to avoid messing up his current diff...

dispense with some wacky escape sequences;

convert to new .Dd format;

Get rid of some obsolete exampels.

ok and prodding @jmc

Big spelling cleanup, no binary change. From david@

sort options;

grammar/mdoc tweaks;

Typo; spotted by Richard Ben Aleya

OpenSSL generates DNs with emailAddress, not Email.

add sha2

- remove some .Ss's that worked around the old blank line bug
- remove some unnecessary .Pp's
- mdoc a list

ok ho@

Remove the rest of clauses 3 and 4. Approved by Niklas Hallqvist, Angelos
D. Keromytis and Niels Provos.

- section reorder
- some mdoc fixes

.Xr typos;

ok deraadt@

typos; alan@alanday.com

typos; jmc@prioris.mini.pw.edu.pl

Update document date.

ecn_* policy attributes --- ok ho@

Initial patch for a new mdoc issue.
Powered by @mantoya:
o) kill extra line in the end of file;
o) kill extra space in the end of line;
o) replace blank lines with .Pp;

millert@ ok

o) start new sentence on a new line;
o) wrap long lines;
o) fix bogus .Xr usage;
o) we don't like blank lines;
o) always close .Bl tags;
o) OpenBSD -> .Ox;
o) don't like .Pp before .Ss;

millert@ ok;

{local,remote}_negotiation_address can also be IPv6.
Replace 'idea' with 'aes' in the examples.

Update BUGS section (after some bugging from ho@)

Document ASN1 DN.

Better handling of Key IDs.

Update copyright dates.

Add a FILES section describing default and sample file locations.

Add KEY_ID support (mostly from roland@digitalvampire.org)

passphrase-md5-hex: and passphrase-sha1-hex: formats for passphrases.

Merge with EOM 1.24

author: niklas
sync with OpenBSD

author: angelos
Update.

branches: 1.14.2;
Put .Dt's argument in all-caps; nate@

ipsec_num.cst: Merge with EOM 1.5
isakmpd.policy.5: Merge with EOM 1.22

author: angelos
Add RIPEMD negotiation/configuration.

samples/VPN-3way-template.conf: Merge with EOM 1.8
samples/VPN-east.conf: Merge with EOM 1.12
samples/VPN-west.conf: Merge with EOM 1.13
samples/policy: Merge with EOM 1.6
samples/singlehost-west.conf: Merge with EOM 1.9
samples/singlehost-east.conf: Merge with EOM 1.9
conf.c: Merge with EOM 1.37
ipsec.c: Merge with EOM 1.133
ipsec_num.cst: Merge with EOM 1.4
isakmpd.conf.5: Merge with EOM 1.48
isakmpd.policy.5: Merge with EOM 1.21
policy.c: Merge with EOM 1.46

author: angelos
AES support.

Merge with EOM 1.20

author: angelos
Add "phase1_group_desc" attribute, and explain the various values.

Merge with EOM 1.19

author: angelos
Point back to isakmpd.conf(5)

author: angelos
Remove fixed item from BUGs section.

author: angelos
Talk about re-loading of policies on SIGHUP.

Merge with EOM 1.16

author: angelos
Fix typo.

author: angelos
Add etherip and protocol numbers in the transport protocol entries,
document.

Merge with EOM 1.14

author: angelos
*_ike_address -> *_negotiation_address (so it's not IKE specific)

apps/certpatch/certpatch.8: Merge with EOM 1.5
isakmpd.8: Merge with EOM 1.20
isakmpd.conf.5: Merge with EOM 1.40
isakmpd.policy.5: Merge with EOM 1.13

author: niklas
Changes from OpenBSD

Merge with EOM 1.12

author: angelos
Add phase_1 attribute.

More pedantic man page formatting insanity, lalala

Merge with EOM 1.11

author: angelos
Rename the "CN:" tag to "DN:", after Jorgen's suggestion.

author: angelos
Add an initiator attribute, and make the code amenable to be invoked
by the initiator as well (for policy compliance checking).

author: angelos
Fix typo, noted by Jorgen.Granstam@abc.se

Merge with EOM 1.8

author: angelos
Add Canonical Names as policy targets (so they can be specified in the
Licensees field), with the "CN:..." format.

author: angelos
Done.

author: angelos
One missing item left...

author: angelos
More text.

author: angelos
Passphrases are encoded as "passphrase:xxxx" now, to distinguish
between passphrases and logic labels.

author: angelos
Consistent references.

author: angelos
Minor tweak.

regress/exchange/def-i.1: Sync with EOM
regress/exchange/def-r.1: Sync with EOM
isakmpd.policy.5: Sync with EOM
.cvsignore: Add isakmpd.policy.cat5

Manpage describing policy.