#
6ee513e5 |
| 05-Dec-2017 |
jca <jca@openbsd.org> |
Use clock_gettime(CLOCK_MONOTONIC) to schedule timers
From Scott Cheloha, ok tb@
|
#
c52ea152 |
| 20-Aug-2015 |
deraadt <deraadt@openbsd.org> |
Do not cast a size_t to (unsigned long) to pass it as an argument to malloc. Like really, who does??!
|
#
5ae94ef8 |
| 20-Aug-2015 |
deraadt <deraadt@openbsd.org> |
<stdlib.h> is included, so do not need to cast result from malloc, calloc, realloc* ok krw millert
|
#
036c7a34 |
| 19-Nov-2014 |
krw <krw@openbsd.org> |
Nuke yet more obvious #include duplications.
ok deraadt@
|
#
b71022a1 |
| 29-Oct-2012 |
markus <markus@openbsd.org> |
backout possible infinit-loop (from rev 1.5) when parsing nat_d; report from Thomas Proell/Siemens ProductCERT; fix from hshoexer; ok mikeb
|
#
65738e2d |
| 05-May-2007 |
cloder <cloder@openbsd.org> |
Kill a log message which looks like an error message but is actually both meaningless and harmless. ("nat_t_check_vendor_payload: bad size") ok todd
|
#
b7984483 |
| 16-Apr-2007 |
moritz <moritz@openbsd.org> |
There's no point in checking ptr for NULL before doing free(ptr) since free(NULL) is just fine.
ok hshoexer@
|
#
7498162f |
| 22-Feb-2007 |
hshoexer <hshoexer@openbsd.org> |
Add a comment that explains, why the VID of draft 2 NAT-T includes a traling '\n'.
suggested by and ok deraadt@, jmc@
|
#
f7ea95ad |
| 14-Jun-2006 |
hshoexer <hshoexer@openbsd.org> |
indentation.
|
#
875f57d0 |
| 25-Jul-2005 |
hshoexer <hshoexer@openbsd.org> |
Use payload NAT-D or NAT-D-DRAFT according to NAT-T vendor ID advertised by the peer.
looks good ho
|
#
b14af008 |
| 02-Jun-2005 |
hshoexer <hshoexer@openbsd.org> |
unbreak port floating, noticed by sean at obstacle9 dot com
ok cloder
|
#
4147ce25 |
| 18-May-2005 |
hshoexer <hshoexer@openbsd.org> |
allow payload types 20 and 21 for nat-t
ok ho
|
#
e789a0db |
| 08-Apr-2005 |
cloder <cloder@openbsd.org> |
Make deterministic randomness (only ever used for testing) a compile-time option. Reduces chances of somehow setting regrand when it's not supposed to be set. Remove "-r" option from man page. Als
Make deterministic randomness (only ever used for testing) a compile-time option. Reduces chances of somehow setting regrand when it's not supposed to be set. Remove "-r" option from man page. Also xref certpatch(8) while we are in there. And remove some include sysdep.h where it is no longer needed. OK hshoexer
show more ...
|
#
bfb67d4d |
| 05-Apr-2005 |
cloder <cloder@openbsd.org> |
Add -T flag to isakmpd to disable NAT-T support from the command line. This lets binat setups work again without having to recompile isakmpd. OK ho, hshoexer.
|
#
8cd03bd8 |
| 04-Apr-2005 |
deraadt <deraadt@openbsd.org> |
spacing; ok cloder
|
#
9f8f63b2 |
| 05-Mar-2005 |
ho <ho@openbsd.org> |
Add RFC3947 NAT-T vendor ID string. hshoexer@ ok.
|
#
0dc10397 |
| 27-Feb-2005 |
hshoexer <hshoexer@openbsd.org> |
where possible, use bzero instead of memset
ok cloder henning
|
#
35dfcbf4 |
| 18-Nov-2004 |
hshoexer <hshoexer@openbsd.org> |
use hash and not hmac to calculate NAT-D payloads. Also add NAT-D payload for the destination address first. Remove support for obsolete V1 NAT-T.
This fixes interoperability problems with non-ope
use hash and not hmac to calculate NAT-D payloads. Also add NAT-D payload for the destination address first. Remove support for obsolete V1 NAT-T.
This fixes interoperability problems with non-openbsd isakmpd implementations.
"looks good" ho@, ok markus@ for hash/hmac testing by various people (thanks!)
show more ...
|
#
da408787 |
| 08-Aug-2004 |
deraadt <deraadt@openbsd.org> |
spacing
|
#
dec6ea27 |
| 03-Aug-2004 |
ho <ho@openbsd.org> |
Rewrite the transport reference count code to avoid leaks. hshoexer@ ok.
|
#
3ca9511c |
| 29-Jul-2004 |
ho <ho@openbsd.org> |
Repair NAT-T using Aggressive mode, NAT-D checks were in the wrong place. Noted by Yvan VANHULLEBUS.
|
#
9c491683 |
| 30-Jun-2004 |
hshoexer <hshoexer@openbsd.org> |
Compile cleanly with gcc3.3.2.
ok ho@
|
#
adfd2491 |
| 21-Jun-2004 |
ho <ho@openbsd.org> |
Implement NAT-T keepalive messages.
|
#
77fa3de5 |
| 20-Jun-2004 |
ho <ho@openbsd.org> |
Make the payload array in struct message dynamic, since we need to handle payloads in the private range, such as the pre-RFC NAT-D/NAT-OA. Replace TAILQ_FIRST(&msg->payload[i]) instances with functio
Make the payload array in struct message dynamic, since we need to handle payloads in the private range, such as the pre-RFC NAT-D/NAT-OA. Replace TAILQ_FIRST(&msg->payload[i]) instances with function calls.
show more ...
|
#
cd6bf844 |
| 20-Jun-2004 |
ho <ho@openbsd.org> |
NAT-Traversal for isakmpd. Work in progress... hshoexer@ ok.
|