f4cb1ee4b00abbfb6f968dc25818c23b4b47e584 |
10-Apr-2013 |
Ying Wang <wangying@google.com> |
Add liblog Bug: 8580410 Change-Id: I15901752727e54b6661859ef884de2d3b61bddf5
ndroid.mk
|
f24812ba17f2e7cc7fafdffaa21c6e54195f26c9 |
17-Sep-2012 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: avoid the case where malloc(0) returns non-NULL. Bug: 6840474 Change-Id: Ic6c7f6b0cd3d95f1dcf84a5ec3c37d5360a68906
rc/racoon/isakmp_unity.c
|
bec9d4b45de8876e251375ff47a1d2054d89d55b |
17-Sep-2012 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: revert accidentally increased value for MAXNS. Change-Id: Ib67e9ed5bcc49712f246829e715afe48e8a87e00
rc/racoon/isakmp_cfg.h
|
a0315adb1214a45a323e1ddf7c09faaa8ba0cdf5 |
17-Sep-2012 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: fix possible SEGV in isakmp_cfg_setenv(). Bug: 6840474 Change-Id: Ic4e20e04f3f7b3b7857f32b8b7d9e4ebc6d8a0fe
rc/racoon/isakmp.c
rc/racoon/isakmp_unity.c
|
981eda8baa70ed21c0db173d4a5d2d7fe12e4212 |
17-Sep-2012 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: back-port SPLIT_*_CIDR from 0.8.0 to 0.7.3. Change-Id: I39e8db5bd67ca208d77fde846075d2ab808b682b
rc/racoon/isakmp_cfg.c
rc/racoon/isakmp_cfg.h
rc/racoon/isakmp_unity.c
rc/racoon/isakmp_unity.h
|
66d08f4f81c446015c03113bd86d1ef5121bab36 |
17-Sep-2012 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: fix the reconnecting issue by delaying closing sockets. When upper layers die first, the server might send messages to purge IPSec sessions. If the sockets are closed before consuming these messages, the server might keep sending for several minutes. The next run might be failed because of these messages. Ideally messages for the previous run should be dropped. However, the server might think sessions are being renewed, so it sends updated messages to purge them. This change tries to fix the issue by delaying for few seconds before exiting. Bug: 6376948 Change-Id: If735a7a202a2ac7763966e300936bc6e6ba4a53c
ain.c
|
567c094b8b9031ecf39e7cfb010858163cf5f436 |
15-May-2012 |
Elliott Hughes <enh@google.com> |
Remove obsolete ThirdPartyProject.prop file. Change-Id: I96b3e7a72ed9a9a40eba0caf6fa94a79d702c683
hirdPartyProject.prop
|
adfbc90a9f63d1e0c87b4b17689c07cd3c781a0e |
27-Apr-2012 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: back-port handle_vendorid() from 0.8.0 to 0.7.3. Bug: 6338286 Change-Id: I65ce229c1bb0122a268a23a2a908b30679a9e999
rc/racoon/isakmp_agg.c
rc/racoon/isakmp_base.c
rc/racoon/isakmp_ident.c
rc/racoon/isakmp_newg.c
rc/racoon/vendorid.c
rc/racoon/vendorid.h
|
c1b51d45a7363d6fa58b59bf6f12182993a7c1d0 |
15-Mar-2012 |
Kenny Root <kroot@google.com> |
Add support for OpenSSL ENGINE for keystore keystore now has an OpenSSL ENGINE frontend that can be used to ask for private keys or public keys to be loaded and also signing operations to take place. Use that instead of the crazy byte-array marshalling of the private key material that is used for the "privsep" stuff. Change-Id: I6171ca1fb0e77e338c19f04d8c34ad7744984b63
ndroid.mk
ain.c
rc/racoon/oakley.c
|
c91307af2622f6625525f3c1f9c954376df950ad |
26-Mar-2012 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: back-port 0.7.3 to Android. Lots of checks and features were added to ipsec-tools 0.8.0. However, they broke the compatibility with existing VPN servers. I was unable to fix all of them in 0.8.0, so I chose to port 0.7.3 back with the new VPN types we added in ICS release. Bug: 6191668 Change-Id: I86a7218f7f5146d4a9b129d46c89839a82b0008f
hangeLog
EWS
EADME
hirdPartyProject.prop
ain.c
etup.c
rc/include-glibc/Makefile.in
rc/libipsec/Makefile.in
rc/libipsec/ipsec_dump_policy.c
rc/libipsec/ipsec_get_policylen.c
rc/libipsec/ipsec_set_policy.3
rc/libipsec/ipsec_strerror.c
rc/libipsec/key_debug.c
rc/libipsec/libpfkey.h
rc/libipsec/pfkey.c
rc/libipsec/pfkey_dump.c
rc/libipsec/policy_parse.h
rc/libipsec/policy_parse.y
rc/libipsec/policy_token.l
rc/racoon/Makefile.am
rc/racoon/Makefile.in
rc/racoon/admin.c
rc/racoon/admin.h
rc/racoon/admin_var.h
rc/racoon/backupsa.c
rc/racoon/cfparse.h
rc/racoon/cfparse.y
rc/racoon/cftoken.l
rc/racoon/crypto_openssl.c
rc/racoon/crypto_openssl.h
rc/racoon/debug.h
rc/racoon/dnssec.c
rc/racoon/dnssec.h
rc/racoon/doc/FAQ
rc/racoon/doc/README.privsep
rc/racoon/eaytest.c
rc/racoon/evt.c
rc/racoon/evt.h
rc/racoon/grabmyaddr.c
rc/racoon/grabmyaddr.h
rc/racoon/handler.c
rc/racoon/handler.h
rc/racoon/ipsec_doi.c
rc/racoon/ipsec_doi.h
rc/racoon/isakmp.c
rc/racoon/isakmp.h
rc/racoon/isakmp_agg.c
rc/racoon/isakmp_base.c
rc/racoon/isakmp_cfg.c
rc/racoon/isakmp_frag.c
rc/racoon/isakmp_ident.c
rc/racoon/isakmp_inf.c
rc/racoon/isakmp_inf.h
rc/racoon/isakmp_quick.c
rc/racoon/isakmp_unity.c
rc/racoon/isakmp_unity.h
rc/racoon/isakmp_var.h
rc/racoon/isakmp_xauth.c
rc/racoon/isakmp_xauth.h
rc/racoon/kmpstat.c
rc/racoon/localconf.c
rc/racoon/localconf.h
rc/racoon/main.c
rc/racoon/misc.c
rc/racoon/misc.h
rc/racoon/nattraversal.c
rc/racoon/nattraversal.h
rc/racoon/oakley.c
rc/racoon/oakley.h
rc/racoon/pfkey.c
rc/racoon/pfkey.h
rc/racoon/plainrsa-gen.c
rc/racoon/plog.c
rc/racoon/plog.h
rc/racoon/policy.c
rc/racoon/policy.h
rc/racoon/privsep.c
rc/racoon/privsep.h
rc/racoon/proposal.c
rc/racoon/proposal.h
rc/racoon/prsa_par.h
rc/racoon/prsa_par.y
rc/racoon/racoon.8
rc/racoon/racoon.conf.5
rc/racoon/racoonctl.8
rc/racoon/racoonctl.c
rc/racoon/remoteconf.c
rc/racoon/remoteconf.h
rc/racoon/rsalist.c
rc/racoon/rsalist.h
rc/racoon/sainfo.c
rc/racoon/sainfo.h
rc/racoon/samples/roadwarrior/client/phase1-down.sh
rc/racoon/samples/roadwarrior/client/phase1-up.sh
rc/racoon/schedule.c
rc/racoon/schedule.h
rc/racoon/session.c
rc/racoon/session.h
rc/racoon/sockmisc.c
rc/racoon/sockmisc.h
rc/racoon/strnames.c
rc/racoon/throttle.c
rc/racoon/throttle.h
rc/racoon/var.h
rc/racoon/vendorid.c
rc/racoon/vendorid.h
|
e761171cf8053d42449f8a65aa33f716cbc53813 |
30-Dec-2011 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: exit when the first phase 1 cannot be completed. This makes IPSec VPN fail-fast instead of waiting for the time out. Change-Id: Ie14a1ff12cccf0447516d513761e4105c6641921
etup.c
|
cadace43df20e28cc98c2068b327ec3ebe119418 |
09-Dec-2011 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: notify the death of racoon by touching a file. Since racoon removes SPD policies when it dies, packets from upper VPN layers might pass through without IPSec's protection. Here we add a mechanism to close the gap as much as possible. Bug: 5714296 Change-Id: If5ebdea3ee1444c18e062b24db724b1575dbdf2d
ain.c
|
fdbd82ddd72c22e0ec446b1e30ab8a2146d7bdf6 |
07-Dec-2011 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: add support for server certificates. Bug: 5714397 Change-Id: Ia201254f6a9f32ddc575887a8e40c0aa7239ba61
etup.c
|
3724e61c7fb7a792d36c4dbec826e06b1aabd039 |
22-Aug-2011 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: update control protocol. Now closing the control socket becomes a signal of termination. Thus it is no longer closed after getting the arguments. Change-Id: Ie042c97e0c50c949a7627b782d21edb872672de4
ain.c
|
2871f2f1bd4e22a5ac3a3d2b2c4fe0d581c3aa74 |
10-Aug-2011 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: always create the inbound policy explicitly. Racoon automatically generates the inbound policy for transport mode. In tunnel mode, we have to create it by ourselves. Otherwise the kernel will not handle the incoming packets correctly. Change-Id: Id658e0e548ee104f667dd322056fd4698613d460
etup.c
|
71076533ea2d32b0573b30b6f9507b88cd3a95f3 |
08-Aug-2011 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: use aggressive mode when identifier is set. From RFC 2409 section 5.4, When using pre-shared key authentication with Main Mode the key can only be identified by the IP address of the peers since HASH_I must be computed before the initiator has processed IDir. Aggressive Mode allows for a wider range of identifiers of the pre-shared secret to be used. In addition, Aggressive Mode allows two parties to maintain multiple, different pre-shared keys and identify the correct one for a particular exchange. From draft-ietf-ipsec-isakmp-xauth-06 section 8, When using XAUTH with Pre-Shared keys, where the peer's IP address is dynamic, Main Mode SHOULD NOT be used, and is STRONGLY DISCOURAGED. In this particular scenario, the phase 1 authentication becomes suspect as the administrator has little choice but to use one single Shared-Key for all users, and group- shared keys are susceptible to social engineering attacks. Change-Id: I2b414098ebb7624e4dc1be1416f746c523952d06
etup.c
|
d4f1b2cfa6b6817c6330aef4459a7677094870b8 |
22-Jul-2011 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: fix compatibility issue on non-NAT connections. Change-Id: Iea0e66d2bcc20cfd271402f8115393532bc82d3a
rc/racoon/ipsec_doi.c
|
a9a07aca7cd1e611f2d73582f20623cd62b917ba |
20-Jul-2011 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: slightly improve the security. If racoon is running as a service, do not trust the script passed from the control socket. Change-Id: I8e0115848cd4fa865d68452c9ecab20f6eac0921
ain.c
etup.c
|
d30604685e6cc1fa878806ae590dcd1fc9d43f91 |
16-Jul-2011 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: handle XAUTH_PASSCODE requests. Change-Id: I011694ddaaa17a5b1f67641f74e343a4b659cf09
rc/racoon/isakmp_xauth.c
|
dc6f5b944434891dabd1aed297676349b58cb893 |
15-Jul-2011 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: fix a bug of modifying envp directly. Change-Id: I739af06314245a99121704647521c311e79d2653
ain.c
etup.c
|
4dd8f6be6496fc7cb7b7351c79f6a90be7be8991 |
14-Jul-2011 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: update control protocol. Change-Id: I1ebaadb1ce5fe092336bc13713b021a20603b5d0
ain.c
|
f82b8262b2f1f72a4361878acfa07161bed78f9a |
14-Jul-2011 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: update parameters to provide more secured connections. Change-Id: I6cd6e31810bfad16bc15b83ba49647fd96ba9794
etup.c
|
12f449335c62c731f6eb33db7e27ce331f423f71 |
14-Jul-2011 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: close the control socket after initialized. It seems that the socket to be protected by IPSec needs to be created after SPD policy is inserted. Otherwise the outgoing packets will just pass through. We close the control socket to notify the framework that initialization is done. Change-Id: Ic29188f16333e41d201e0dfe439085e3e6079e39
ain.c
|
cfc417e4c9268b46d71d2fe17aa9ad21bde23f39 |
13-Jul-2011 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: Do not run the phase1-up script more than once. Racoon executes phase1-up or phase1-down when phase 1 is established or destroyed. Combining with the usage of mode-cfg, phase1-up generates the SPD policy and sets the internal network, and phase1-down reverts what phase1-up does. However, a new phase 1 may be established before the previous one is destroyed, so phase1-down may be executed after the new phase1-up, which causes some difficulties to maintain the state. It can be solved in several ways, such as disabling phase 1 rekeying or carefully updating the internal network. The former limits the lifetime of a VPN connection, and the latter complicates the VPN on Android. We can also disable mode-cfg or skip the phase1-up script after the first phase 1 is established. It is hard to tell which one is the best. Just try one and see if we need to switch to another. Change-Id: Icd010c3242b2f66651e1332f819fb5f274c9fc45
etup.c
|
264d6b72846aba10ca1f3cd1a7bd76e3a02e21e5 |
13-Jul-2011 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: mark out identity check for compatibility. Change-Id: I9c42be034322d985ae1ef64479c12497040ad256
rc/racoon/isakmp_quick.c
|
2ff6ed0d8f0e0acb5ebf7645307eab49583561c3 |
13-Jul-2011 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: remove the ipsec_doi-0.7.3.c. It seems that the compatibility issue can be fixed by marking out two lines of code in ipsec_doi.c, so ipsec_doi-0.7.3.c is no longer needed. Here ipsec-tools is finally completely updated to 0.8.0. :) Change-Id: Ic2b2f1cee48139a18a3978de572131af5c264c92
ndroid.mk
akefile
rc/racoon/ipsec_doi-0.7.3.c
rc/racoon/ipsec_doi.c
rc/racoon/ipsec_doi.h
|
1070097bb11002f8b5e289982cee9e324ea2f153 |
13-Jul-2011 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: create a TUN interface for internal network. Assume that the interface with default route is eth0. There are at least three different ways to setup internal network. 1. Set internal IP and routes with default gateway on eth0:1. 2. Add a host route on eth0. Set internal IP and direct routes on eth0:1. 3. Add a host route on eth0. Set internal IP and direct routes on tun0. SPD is set to send all packets from internel IP through the tunnel. Packets are encapsulated and the final destination is always the VPN server. The kernel will re-route the packets after re-writing them. In the first method, the kernel always gets the default gateway as all the routing rules are added with it. In the second method, internal routes do not need a gateway since packets will hit the host route after re-routing. The third method pushes even further since packet will never reach tun0. In Android, we use the third method for two reasons, easier to clean up and monitor. The first method has the advantage of not using a host route. However, it cannot be cleaned up by simply shutting down eth0:1 because routing rules might stay. The other methods do not have this problem. They need to handle the host route, but that is much easier. When racoon dies, tun0 goes away and posts an netlink event, but eth0:1 does not. Therefore, the third method is much easier to monitor since it gives us the same behavior with other VPN types. Change-Id: I0a6eeef471b5a64de39a907f4f4428e86c0b2484
ain.c
etup.c
|
e4b124759603438394e1cc42734d8a6388a3a7e4 |
13-Jul-2011 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: generate policy when phase 1 is up. Change-Id: Ieb9c571324a2a11f9d2d729b0f7623eff54ee3f5
etup.c
|
b0d8f175b6317669d3b43b7032b1c3aadb65c524 |
13-Jul-2011 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: flush SPD and SAD for tunnel mode. In tunnel mode, policies in SPD and SAD have different addresses. The one in SPD has internal address from mode-cfg, and others in SAD bind interface address and remote address. Thus we need to use the internal address and remote address to filter SPD and SAD. This fix also rename myaddrs to sources. Change-Id: I39995ed8e94d355866fd0c95cd939bad8150a0bf
etup.c
|
ff1dc35ef76066b219ac42523445f69c774a2ee3 |
12-Jul-2011 |
Chia-chi Yeh <chiachi@android.com> |
Merge "ipsec-tools: revise log messages and reorder some functions."
|
0ed32716f2689c53fe9884c1fa0f917acb9f113f |
12-Jul-2011 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: revise log messages and reorder some functions. Change-Id: If5dfb1bbf949982418115b90c2390e9608daf04d
etup.c
|
3e85f9082a36a4b2619e202bc422afc26490cbdd |
12-Jul-2011 |
Chia-chi Yeh <chiachi@android.com> |
Merge "ipsec-tools: revise helper functions for sockets."
|
a6239141a335940e5f665e3f0dc99c9c5cad8966 |
12-Jul-2011 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: revise helper functions for sockets. getlocaladdr() will return the address on the interface. setsockopt_bypass() will give warnings on failure instead of errors. Change-Id: I4d95633066d136bd0b9732dd62b2c43184daee4b
rc/racoon/sockmisc.c
|
1b277a2929036e3f4bb2589bb7a2d45de71975d5 |
12-Jul-2011 |
Chia-chi Yeh <chiachi@android.com> |
Merge "ipsec-tools: Add arguments for XAUTH."
|
dbbbd5f297294b2b1ff02b8fd578c8c677879a19 |
12-Jul-2011 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: Add arguments for XAUTH. Change-Id: I26ee73fac600864aaf50dfbfe98588a84e5f0819
etup.c
|
b625821e4d950866b329fbd56a02f668e7a53f00 |
12-Jul-2011 |
Jeff Brown <jeffbrown@google.com> |
Remove the simulator target from all makefiles. Bug: 5010576 Change-Id: I7ef076bf7132a12203669da779c0789928fc30ad
ndroid.mk
|
03177458c167f55b5289d738aae210a64b87e92d |
07-Jul-2011 |
Chia-chi Yeh <chiachi@android.com> |
Merge "ipsec-tools: enable DPD and XAUTH."
|
514ffe2b8b4236d53f584fcd8382dd65bc4df532 |
07-Jul-2011 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: enable DPD and XAUTH. Also silent tons of compile warnings. Change-Id: Ia670102b40d6a46a17de5c413a9e444bd26be136
ndroid.mk
akefile
onfig.h
etup.c
rc/racoon/isakmp_cfg.c
rc/racoon/isakmp_cfg.h
rc/racoon/isakmp_xauth.c
rc/racoon/plog.h
|
8f3b38855d8849959825acc45dd11144adc7d862 |
07-Jul-2011 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: use pname instead of lcconf->chroot for the android magic. Change-Id: Id62ce8de798389d9a6504d436a15317a4127ffb8
ain.c
etup.c
rc/racoon/crypto_openssl.c
|
fd76ec530c3f9cd0b9cc03501d02b6cb3ba705ed |
07-Jul-2011 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: Use getpathname() to get the right path. Change-Id: I169b0ea84113234875c9c0be436384365f95dd89
etup.c
rc/racoon/crypto_openssl.c
|
e9fc376dc7e9ee22358b872c3eb2808fa42160f0 |
07-Jul-2011 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: Support IPSec RSA sessions again. This change supports command-line usage and android service at the same time. It also removes the access to native keystore. Change-Id: Ia3d931b0ba8f83624d668de97c9dfc10280bef3b
ndroid.mk
ain.c
etup.c
rc/racoon/crypto_openssl.c
|
f8a6a7636d53a5730c58ae041e4e09ae12e1657c |
05-Jul-2011 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: Update to 0.8.0. This change updates ipsec-tools to 0.8.0. However, a quick test reveals a regression in IPSec PSK sessions. The server rejects the first packet of phase 2 negotiation with INVALID-ID-INFORMATION error. After testing files one by one, it turns out that using the old ipsec_doi.c fixes the problem. Then the next error shows that identity check is failed. This can be fixed by marking few lines in isakmp_quick.c just like 0.7.3. This change adds ipsec_doi-0.7.3.c as a temporary fix. I will come back and see if I can find the real problem. IPSec RSA sessions will be covered in the next change. Change-Id: I48f0026c3be07f506b3901b59202081bf88f41c9
ndroid.mk
hangeLog
akefile
EWS
EADME
hirdPartyProject.prop
onfig.h
ain.c
etup.c
rc/include-glibc/Makefile.in
rc/libipsec/Makefile.in
rc/libipsec/ipsec_dump_policy.c
rc/libipsec/ipsec_get_policylen.c
rc/libipsec/ipsec_set_policy.3
rc/libipsec/ipsec_strerror.c
rc/libipsec/key_debug.c
rc/libipsec/libpfkey.h
rc/libipsec/pfkey.c
rc/libipsec/pfkey_dump.c
rc/libipsec/policy_parse.h
rc/libipsec/policy_parse.y
rc/libipsec/policy_token.l
rc/racoon/Makefile.am
rc/racoon/Makefile.in
rc/racoon/admin.c
rc/racoon/admin.h
rc/racoon/admin_var.h
rc/racoon/backupsa.c
rc/racoon/cfparse.h
rc/racoon/cfparse.y
rc/racoon/cftoken.l
rc/racoon/crypto_openssl.c
rc/racoon/crypto_openssl.h
rc/racoon/debug.h
rc/racoon/dnssec.c
rc/racoon/dnssec.h
rc/racoon/doc/FAQ
rc/racoon/doc/README.privsep
rc/racoon/eaytest.c
rc/racoon/evt.c
rc/racoon/evt.h
rc/racoon/grabmyaddr.c
rc/racoon/grabmyaddr.h
rc/racoon/handler.c
rc/racoon/handler.h
rc/racoon/ipsec_doi-0.7.3.c
rc/racoon/ipsec_doi.c
rc/racoon/ipsec_doi.h
rc/racoon/isakmp.c
rc/racoon/isakmp.h
rc/racoon/isakmp_agg.c
rc/racoon/isakmp_base.c
rc/racoon/isakmp_cfg.c
rc/racoon/isakmp_frag.c
rc/racoon/isakmp_ident.c
rc/racoon/isakmp_inf.c
rc/racoon/isakmp_inf.h
rc/racoon/isakmp_quick.c
rc/racoon/isakmp_unity.c
rc/racoon/isakmp_unity.h
rc/racoon/isakmp_var.h
rc/racoon/isakmp_xauth.c
rc/racoon/isakmp_xauth.h
rc/racoon/kmpstat.c
rc/racoon/localconf.c
rc/racoon/localconf.h
rc/racoon/main.c
rc/racoon/misc.c
rc/racoon/misc.h
rc/racoon/nattraversal.c
rc/racoon/nattraversal.h
rc/racoon/oakley.c
rc/racoon/oakley.h
rc/racoon/pfkey.c
rc/racoon/pfkey.h
rc/racoon/plainrsa-gen.c
rc/racoon/plog.c
rc/racoon/plog.h
rc/racoon/policy.c
rc/racoon/policy.h
rc/racoon/privsep.c
rc/racoon/privsep.h
rc/racoon/proposal.c
rc/racoon/proposal.h
rc/racoon/prsa_par.h
rc/racoon/prsa_par.y
rc/racoon/racoon.8
rc/racoon/racoon.conf.5
rc/racoon/racoonctl.8
rc/racoon/racoonctl.c
rc/racoon/remoteconf.c
rc/racoon/remoteconf.h
rc/racoon/rsalist.c
rc/racoon/rsalist.h
rc/racoon/sainfo.c
rc/racoon/sainfo.h
rc/racoon/samples/roadwarrior/client/phase1-down.sh
rc/racoon/samples/roadwarrior/client/phase1-up.sh
rc/racoon/schedule.c
rc/racoon/schedule.h
rc/racoon/session.c
rc/racoon/session.h
rc/racoon/sockmisc.c
rc/racoon/sockmisc.h
rc/racoon/strnames.c
rc/racoon/throttle.c
rc/racoon/throttle.h
rc/racoon/var.h
rc/racoon/vendorid.c
rc/racoon/vendorid.h
|
c9ac7d2fae3a233f928fd3f643ffa20b6ea602d3 |
29-Jun-2011 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: switch to use the new control protocol. Now ipsec pre-shared key is passed via control socket. Change-Id: I0147c90eaab626a217fc71dce4a6f3d79ae46cc7
ain.c
|
d66b68b994a641a09c15d018de8041d32d938752 |
08-Jun-2011 |
Chia-chi Yeh <chiachi@android.com> |
am 237da705: Merge "fix fd leaking" * commit '237da7058bb0e22cf117766435dd5e578c16e4ef': fix fd leaking
|
237da7058bb0e22cf117766435dd5e578c16e4ef |
07-Jun-2011 |
Chia-chi Yeh <chiachi@android.com> |
Merge "fix fd leaking"
|
4abdc9c18fe311d8bca8f9217b28e4669219da63 |
07-Jun-2011 |
robert_ch_chou <robert_ch_chou@acer.com.tw> |
fix fd leaking Change-Id: Id26d174543c2002253a233c2ee0d812427c30024
rc/racoon/ipsec_doi.c
|
3473d8ebd2f370edcc83c7455c76cf3b2daef4ae |
31-May-2011 |
Chia-chi Yeh <chiachi@android.com> |
Only remove entries to the VPN server on exit. We might have other IPSec users, and flushing everything causes problems. Bug: 4171459 Change-Id: Icebd4a04f9b88890ac1cfd587673fcf906a00aa5
etup.c
|
96869bdabff3948f0a6dc2dad2933d1aace21442 |
23-Mar-2011 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: create a static library for libipsec. Change-Id: I2b58fc303a15189585334f54ce09cff98f990af6
ndroid.mk
rc/libipsec/libpfkey.h
|
b4595a4fdd244fc67be9aafa4acd1f4dceb3d932 |
03-Nov-2010 |
Jean-Baptiste Queru <jbq@google.com> |
am 17b44fbc: am 63ac5af0: Merge "Use IDTYPE_ASN1DN when using certificates." * commit '17b44fbcb08bc68fad70eebdbab3b6a782e1ea10': Use IDTYPE_ASN1DN when using certificates.
|
17b44fbcb08bc68fad70eebdbab3b6a782e1ea10 |
02-Nov-2010 |
Jean-Baptiste Queru <jbq@google.com> |
am 63ac5af0: Merge "Use IDTYPE_ASN1DN when using certificates." * commit '63ac5af0348d8e5f8319331e4772e9a4cee7cd8b': Use IDTYPE_ASN1DN when using certificates.
|
63ac5af0348d8e5f8319331e4772e9a4cee7cd8b |
02-Nov-2010 |
Jean-Baptiste Queru <jbq@google.com> |
Merge "Use IDTYPE_ASN1DN when using certificates."
|
a05769f1c4941541776337989f61662510b78443 |
20-Oct-2010 |
David Deephanphongs <dpanpong@google.com> |
Add missing NOTICE files. Generated a NOTICE file to picked up by the build system by concatenating the NOTICE files in the subdirectories. Change-Id: I5bd3088ea8a5549b6b57e74ad99e5c71798df231
OTICE
EADME.google
|
f5d0d0919f6c0b82611c1f8ad0cb6023a78b6ce0 |
30-Sep-2010 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: Use IDTYPE_ASN1DN for certificate-based IPSec tunnels. Change-Id: I589c18af8095a4461ef9cc52489a2d0864872762
etup.c
|
4c7533e7bbe7f25e4ec3afd8325570b04687e846 |
29-Jul-2010 |
Andreas Oberritter <obi@saftware.de> |
Use IDTYPE_ASN1DN when using certificates. When using certificates, the server (racoon) checks whether the subjectAltName matches the given identifier. Using the address as identifier is therefore impossible for roadwarriors. Using the certificate's DN looks like a reasonable alternative. Change-Id: I9ed81478dc115276c807329228b2f9dfd4957b74
etup.c
|
862972dbfb453593a85fb0f41be769e2be0e5b29 |
16-Jul-2010 |
The Android Open Source Project <initial-contribution@android.com> |
add meta-files about 3rd party projects Change-Id: I36249930aa6ee07ab3ef0d808acfd75bd5283881
hirdPartyProject.prop
|
4fe3597dce855ea199afa239498c9c1833a6fe48 |
19-Mar-2010 |
Carl Shapiro <cshapiro@google.com> |
Replace bzero with memset. Eliminates a warning when the implicit strings.h include is removed from bionic's stdlib.h. Change-Id: Ied4089965172683556afcd539e8ecae81f1e1b6d
rc/racoon/policy.h
|
d710ae7ed8cce08e5c7b77eaa987ce3c285d3640 |
09-Mar-2010 |
Jean-Baptiste Queru <jbq@google.com> |
Add an empty CleanSpec.mk Change-Id: I742b4a1ddf65ba1428ba8cbdafc07dcfdcba0832
leanSpec.mk
|
b2f80fde2d9ba7f7747873623ca7f6f969b40033 |
08-Mar-2010 |
Chia-chi Yeh <chiachi@android.com> |
modify according to the change of keystore interface. Change-Id: I110aadb17235a9ce240636371ce457c880b63968
ain.c
rc/racoon/crypto_openssl.c
|
e071a61ea20dc6b0255c482c11b152d1ae11f7a4 |
05-Feb-2010 |
The Android Open Source Project <initial-contribution@android.com> |
am 6cee17f7: am d065bffc: reconcile main tree with open-source eclair Merge commit '6cee17f7e2248d8dcd9a4e9e2b2323a2510ab572' * commit '6cee17f7e2248d8dcd9a4e9e2b2323a2510ab572': android-2.1_r1 snapshot
|
6cee17f7e2248d8dcd9a4e9e2b2323a2510ab572 |
05-Feb-2010 |
The Android Open Source Project <initial-contribution@android.com> |
am d065bffc: reconcile main tree with open-source eclair Merge commit 'd065bffc91877d1ca464a24c204e2bfee6ddabb2' into eclair-plus-aosp * commit 'd065bffc91877d1ca464a24c204e2bfee6ddabb2': android-2.1_r1 snapshot
|
d065bffc91877d1ca464a24c204e2bfee6ddabb2 |
05-Feb-2010 |
The Android Open Source Project <initial-contribution@android.com> |
reconcile main tree with open-source eclair
|
59fa81ffc3d88e69daef64d0903ce4cb6aba7f5d |
29-Jan-2010 |
The Android Open Source Project <initial-contribution@android.com> |
reconcile android-2.1_r1 snapshot
|
3e2f415ca88ca54e7f01ad5f2eeacf5821b3462a |
13-Jan-2010 |
The Android Open Source Project <initial-contribution@android.com> |
android-2.1_r1 snapshot
|
b9b65d5ceb13682c628ed51b57575c7c60239686 |
15-Nov-2009 |
Jean-Baptiste Queru <jbq@google.com> |
merge from open-source master
|
e22e90a5947d797c8fa120baedf8cd1bbd69bdf8 |
15-Nov-2009 |
Jean-Baptiste Queru <jbq@google.com> |
merge from open-source master Merge commit 'goog/stage-korg-master' into HEAD
|
99abe8c396c4c1506a16f461e61bac97922d40bd |
15-Nov-2009 |
Jean-Baptiste Queru <jbq@google.com> |
merge from eclair
|
7171dfc609e90c27fcd36492b96d457201219428 |
13-Nov-2009 |
Jean-Baptiste Queru <jbq@google.com> |
eclair snapshot
hangeLog
EWS
onfig.h
ain.c
rc/include-glibc/Makefile.in
rc/libipsec/Makefile.in
rc/racoon/Makefile.in
rc/racoon/crypto_openssl.c
rc/racoon/ipsec_doi.c
rc/racoon/isakmp_inf.c
rc/racoon/isakmp_quick.c
rc/racoon/nattraversal.c
rc/racoon/oakley.c
|
fdb630d58c3a307544fe674d3cc7af26312d2f36 |
21-Sep-2009 |
Chia-chi Yeh <chiachi@android.com> |
am 4fa95053: ipsec-tools: switch to multi-user keystore. Merge commit '4fa9505300a7249a6c216da88a3180a3a37ef078' into eclair-plus-aosp * commit '4fa9505300a7249a6c216da88a3180a3a37ef078': ipsec-tools: switch to multi-user keystore.
|
4fa9505300a7249a6c216da88a3180a3a37ef078 |
18-Sep-2009 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: switch to multi-user keystore.
ain.c
rc/racoon/crypto_openssl.c
|
4b3b353ee0ea07a31fcbca767300d53f716d4956 |
04-Sep-2009 |
Jean-Baptiste Queru <jbq@google.com> |
merge from open-source master
|
5f13e8428dd3179b4ce0ca12991a83a7d778fce7 |
03-Sep-2009 |
Jean-Baptiste Queru <jbq@google.com> |
merge from donut
|
84aea876b3a077e06d0eb5ebc868bb9664730428 |
02-Sep-2009 |
Chia-chi Yeh <chiachi@android.com> |
am 051f86df: ipsec-tools: updated to 0.7.3. Merge commit '051f86dfca525c160855397f7b6a4fb5ef8df2b5' into eclair-plus-aosp * commit '051f86dfca525c160855397f7b6a4fb5ef8df2b5': ipsec-tools: updated to 0.7.3.
|
051f86dfca525c160855397f7b6a4fb5ef8df2b5 |
02-Sep-2009 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: updated to 0.7.3.
hangeLog
EWS
onfig.h
ain.c
rc/include-glibc/Makefile.in
rc/libipsec/Makefile.in
rc/racoon/Makefile.in
rc/racoon/crypto_openssl.c
rc/racoon/ipsec_doi.c
rc/racoon/isakmp_inf.c
rc/racoon/isakmp_quick.c
rc/racoon/nattraversal.c
rc/racoon/oakley.c
|
5762fdc2292cbd7ffb57b93094c0bbcc92fa3506 |
02-Sep-2009 |
Kenny Root <kenny@the-b.org> |
am bff6735b: cherry-pick: ipsec-tools: disable OpenSSL engine. Merge commit 'bff6735b7ebff7ad20da90123c6090d853b84fd6' into eclair-plus-aosp * commit 'bff6735b7ebff7ad20da90123c6090d853b84fd6': cherry-pick: ipsec-tools: disable OpenSSL engine.
|
bff6735b7ebff7ad20da90123c6090d853b84fd6 |
22-Aug-2009 |
Kenny Root <kenny@the-b.org> |
cherry-pick: ipsec-tools: disable OpenSSL engine.
onfig.h
|
a8e031d1af691b53f2c9ee319aa2884b10abd92a |
01-Sep-2009 |
Jean-Baptiste Queru <jbq@google.com> |
merge from open-source master
|
c105b22aebec6a7af8656e60c79fe518d1dfa849 |
22-Aug-2009 |
Kenny Root <kenny@the-b.org> |
Remove OpenSSL engine use from racoon The Android instructions in the OpenSSL directory indicates to remove engines, so we should not attempt to initialize engines.
onfig.h
|
71b80ac9988582a2c3217d038d1f12e73e0dd832 |
14-Aug-2009 |
Jean-Baptiste Queru <jbq@google.com> |
Add missing license-related files BUG=1573996
ODULE_LICENSE_BSD
rc/include-glibc/MODULE_LICENSE_BSD
rc/include-glibc/NOTICE
rc/libipsec/MODULE_LICENSE_BSD
rc/libipsec/NOTICE
rc/racoon/MODULE_LICENSE_BSD
rc/racoon/NOTICE
|
34b0a9aff96a5b349aa26adcff9e77fa1cf277ad |
01-Aug-2009 |
Jean-Baptiste Queru <jbq@google.com> |
Add missing license tag file
ODULE_LICENSE_BSD
|
9d271b685df5830e92a789119fe9b908da2f6c78 |
30-Jul-2009 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: Minor performance tuning.
ain.c
etup.c
rc/racoon/pfkey.c
|
5cbb57af3a64593fc4bfbb2c42c3d24553e8bae4 |
24-Jul-2009 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: Support multiple CA certificates in PEM.
rc/racoon/crypto_openssl.c
|
c454954382b81262dc81ac54e147f4dc7fc0af75 |
22-Jul-2009 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: Some fixes for rekeying. Bind sockets to proper interface in order to avoid using host routes. Rewrite a part of sockmisc.c to work around the ipi_ifindex bug in linux kernel. Enable policy generating when responding to phase 2 negotiation. Reduce the executable size about 4KB by simplifying some functions.
ain.c
etup.c
rc/racoon/sockmisc.c
|
4754a116408a7ad661bb573f6ecc8ff3d83bf6d9 |
16-Jul-2009 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: Fix a compile warning.
etup.c
|
7197eb77ef21feeedc5a47de31ded3a19c2af021 |
13-Jul-2009 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: Find local address automatically.
ain.c
etup.c
|
8af8eaa380e1775ad04bc3250648fe44c57beb83 |
13-Jul-2009 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: Free x509 object after inserted into X509_STORE.
rc/racoon/crypto_openssl.c
|
bd5fa3c99638830d3fa1ae5b4fc4988de5ee0f4d |
07-Jul-2009 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: Get pre-shared key from keystore after setuid(AID_VPN).
ain.c
etup.c
|
b880c6609b0f748abe0ce19fea3b1b2fdfd991be |
06-Jul-2009 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: Get certificates, private keys, and pre-shared keys from keystore.
ndroid.mk
ain.c
rc/racoon/crypto_openssl.c
|
ac4023a6627737df5866f2c773059ba42e14a357 |
01-Jul-2009 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: Drop root privilege after getting necessary resources. Note that GIDs will be configured in init.rc so they are unchanged.
ain.c
|
458fe1ef88671dfe580c488973d5573194839087 |
26-Jun-2009 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: Integrate racoon with Android framework.
ndroid.mk
ain.c
rc/racoon/crypto_openssl.c
rc/racoon/isakmp.c
rc/racoon/pfkey.c
|
837a1c77bab77bd62cccb33a15163a962f8dfb97 |
26-Jun-2009 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: Make racoon an easy-to-use command line tool and reduce its size. The original executable is ~350KB and now it is ~160KB. Removing debug messages reduces about 20KB. Others are mainly contributed by removing lex/yacc generated code, which was used to parse configuration files.
akefile
onfig.h
ain.c
etup.c
rc/racoon/ipsec_doi.c
rc/racoon/isakmp.c
rc/racoon/isakmp_quick.c
rc/racoon/oakley.c
rc/racoon/pfkey.c
rc/racoon/plog.h
|
1c71527b277e2dc256262da2ed2169c566c5bf4d |
21-Jun-2009 |
Chia-chi Yeh <chiachi@android.com> |
ipsec-tools: Update to 0.7.2. Android specific files will be added in the next change.
ndroid.mk
hangeLog
akefile.am
akefile.in
EWS
clocal.m4
cracoon.m4
ootstrap
onfig.guess
onfig.h
onfig.h.in
onfig.sub
onfigure
onfigure.ac
epcomp
nstall-sh
sakmp.d
tmain.sh
issing
ackage_version.h
ackage_version.h.in
rc/Makefile.am
rc/Makefile.in
rc/include-glibc/Makefile.in
rc/include-glibc/glibc-bugs.h
rc/include-glibc/glob.h
rc/include-glibc/linux/ipsec.h
rc/libipsec/Android.mk
rc/libipsec/Makefile.in
rc/libipsec/ipsec_dump_policy.d
rc/libipsec/pfkey_dump.c
rc/libipsec/policy_parse.c
rc/libipsec/policy_parse.y
rc/libipsec/policy_token.c
rc/racoon/Android.mk
rc/racoon/Makefile.in
rc/racoon/admin.c
rc/racoon/backupsa.c
rc/racoon/cfparse.c
rc/racoon/cftoken.c
rc/racoon/cftoken.l
rc/racoon/crypto_openssl.c
rc/racoon/getcertsbyname.c
rc/racoon/grabmyaddr.c
rc/racoon/handler.c
rc/racoon/isakmp.c
rc/racoon/isakmp_cfg.c
rc/racoon/isakmp_frag.c
rc/racoon/isakmp_inf.c
rc/racoon/isakmp_quick.c
rc/racoon/isakmp_xauth.c
rc/racoon/localconf.h
rc/racoon/main.c
rc/racoon/nattraversal.c
rc/racoon/pfkey.c
rc/racoon/plog.c
rc/racoon/prsa_par.c
rc/racoon/prsa_tok.c
rc/racoon/racoonctl.c
rc/racoon/session.c
rc/setkey/Android.mk
rc/setkey/Makefile.am
rc/setkey/Makefile.in
rc/setkey/extern.h
rc/setkey/parse.c
rc/setkey/parse.h
rc/setkey/parse.y
rc/setkey/sample-policy01.cf
rc/setkey/sample-policy02.cf
rc/setkey/sample.cf
rc/setkey/scriptdump.pl
rc/setkey/setkey.8
rc/setkey/setkey.c
rc/setkey/test-pfkey.c
rc/setkey/token.c
rc/setkey/token.l
rc/setkey/vchar.h
lwrap
|
af8214469266bcbef91d63496beb36beda4e2ac0 |
12-Jun-2009 |
Chung-yih Wang <cywang@google.com> |
Fix the bug of racoon crash.
rc/racoon/admin.c
|
6b112236f31ae21c11e416d3dd5d265a5cc5177a |
01-May-2009 |
Chung-yih Wang <cywang@google.com> |
Make several changes in ipsec-tools for Android platform. 1. add android specific control commands(SETKEY, LOAD_CONFIG, SETCERTS) from the unix socket created by init service. 2. since we provided the setkey feature, remove the setkey utility from the build. 3. use android logger. 4. terminate racoon if the control socket is broken.
ndroid.mk
onfig.h
rc/libipsec/Android.mk
rc/racoon/Android.mk
rc/racoon/admin.c
rc/racoon/cftoken.c
rc/racoon/localconf.h
rc/racoon/plog.c
rc/racoon/session.c
|
0a1907d434839af6a9cb6329bbde60b237bf53dc |
22-Apr-2009 |
Chung-yih Wang <cywang@google.com> |
Migrate from perforce repository.
ndroid.mk
hangeLog
akefile.am
akefile.in
EWS
EADME
clocal.m4
cracoon.m4
ootstrap
onfig.guess
onfig.h
onfig.h.in
onfig.sub
onfigure
onfigure.ac
epcomp
nstall-sh
sakmp.d
tmain.sh
issing
ackage_version.h
ackage_version.h.in
rc/Makefile.am
rc/Makefile.in
rc/include-glibc/Makefile.am
rc/include-glibc/Makefile.in
rc/include-glibc/glibc-bugs.h
rc/include-glibc/glob.h
rc/include-glibc/linux/ipsec.h
rc/include-glibc/net/pfkeyv2.h
rc/include-glibc/netinet/ipsec.h
rc/include-glibc/sys/queue.h
rc/libipsec/Android.mk
rc/libipsec/Makefile.am
rc/libipsec/Makefile.in
rc/libipsec/ipsec_dump_policy.c
rc/libipsec/ipsec_dump_policy.d
rc/libipsec/ipsec_get_policylen.c
rc/libipsec/ipsec_set_policy.3
rc/libipsec/ipsec_strerror.3
rc/libipsec/ipsec_strerror.c
rc/libipsec/ipsec_strerror.h
rc/libipsec/key_debug.c
rc/libipsec/libpfkey.h
rc/libipsec/pfkey.c
rc/libipsec/pfkey_dump.c
rc/libipsec/policy_parse.c
rc/libipsec/policy_parse.h
rc/libipsec/policy_parse.y
rc/libipsec/policy_token.c
rc/libipsec/policy_token.l
rc/libipsec/test-policy.c
rc/racoon/Android.mk
rc/racoon/Makefile.am
rc/racoon/Makefile.in
rc/racoon/TODO
rc/racoon/admin.c
rc/racoon/admin.h
rc/racoon/admin_var.h
rc/racoon/algorithm.c
rc/racoon/algorithm.h
rc/racoon/backupsa.c
rc/racoon/backupsa.h
rc/racoon/cfparse.c
rc/racoon/cfparse.h
rc/racoon/cfparse.y
rc/racoon/cfparse_proto.h
rc/racoon/cftoken.c
rc/racoon/cftoken.l
rc/racoon/cftoken_proto.h
rc/racoon/contrib/sp.pl
rc/racoon/crypto_openssl.c
rc/racoon/crypto_openssl.h
rc/racoon/debug.h
rc/racoon/debugrm.h
rc/racoon/dhgroup.h
rc/racoon/dnssec.c
rc/racoon/dnssec.h
rc/racoon/doc/FAQ
rc/racoon/doc/README.certificate
rc/racoon/doc/README.gssapi
rc/racoon/doc/README.plainrsa
rc/racoon/dump.h
rc/racoon/eaytest.c
rc/racoon/evt.c
rc/racoon/evt.h
rc/racoon/gcmalloc.h
rc/racoon/genlist.c
rc/racoon/genlist.h
rc/racoon/getcertsbyname.c
rc/racoon/gnuc.h
rc/racoon/grabmyaddr.c
rc/racoon/grabmyaddr.h
rc/racoon/gssapi.c
rc/racoon/gssapi.h
rc/racoon/handler.c
rc/racoon/handler.h
rc/racoon/ipsec_doi.c
rc/racoon/ipsec_doi.h
rc/racoon/isakmp.c
rc/racoon/isakmp.h
rc/racoon/isakmp_agg.c
rc/racoon/isakmp_agg.h
rc/racoon/isakmp_base.c
rc/racoon/isakmp_base.h
rc/racoon/isakmp_cfg.c
rc/racoon/isakmp_cfg.h
rc/racoon/isakmp_frag.c
rc/racoon/isakmp_frag.h
rc/racoon/isakmp_ident.c
rc/racoon/isakmp_ident.h
rc/racoon/isakmp_inf.c
rc/racoon/isakmp_inf.h
rc/racoon/isakmp_newg.c
rc/racoon/isakmp_newg.h
rc/racoon/isakmp_quick.c
rc/racoon/isakmp_quick.h
rc/racoon/isakmp_unity.c
rc/racoon/isakmp_unity.h
rc/racoon/isakmp_var.h
rc/racoon/isakmp_xauth.c
rc/racoon/isakmp_xauth.h
rc/racoon/kmpstat.c
rc/racoon/localconf.c
rc/racoon/localconf.h
rc/racoon/logger.c
rc/racoon/logger.h
rc/racoon/main.c
rc/racoon/misc.c
rc/racoon/misc.h
rc/racoon/missing/crypto/rijndael/boxes-fst.dat
rc/racoon/missing/crypto/rijndael/rijndael-alg-fst.c
rc/racoon/missing/crypto/rijndael/rijndael-alg-fst.h
rc/racoon/missing/crypto/rijndael/rijndael-api-fst.c
rc/racoon/missing/crypto/rijndael/rijndael-api-fst.h
rc/racoon/missing/crypto/rijndael/rijndael.h
rc/racoon/missing/crypto/rijndael/rijndael_local.h
rc/racoon/missing/crypto/sha2/sha2.c
rc/racoon/missing/crypto/sha2/sha2.h
rc/racoon/nattraversal.c
rc/racoon/nattraversal.h
rc/racoon/netdb_dnssec.h
rc/racoon/oakley.c
rc/racoon/oakley.h
rc/racoon/pfkey.c
rc/racoon/pfkey.h
rc/racoon/plainrsa-gen.8
rc/racoon/plainrsa-gen.c
rc/racoon/plog.c
rc/racoon/plog.h
rc/racoon/policy.c
rc/racoon/policy.h
rc/racoon/privsep.c
rc/racoon/privsep.h
rc/racoon/proposal.c
rc/racoon/proposal.h
rc/racoon/prsa_par.c
rc/racoon/prsa_par.h
rc/racoon/prsa_par.y
rc/racoon/prsa_tok.c
rc/racoon/prsa_tok.l
rc/racoon/racoon.8
rc/racoon/racoon.conf.5
rc/racoon/racoonctl.8
rc/racoon/racoonctl.c
rc/racoon/racoonctl.h
rc/racoon/remoteconf.c
rc/racoon/remoteconf.h
rc/racoon/rsalist.c
rc/racoon/rsalist.h
rc/racoon/safefile.c
rc/racoon/safefile.h
rc/racoon/sainfo.c
rc/racoon/sainfo.h
rc/racoon/samples/psk.txt.in
rc/racoon/samples/psk.txt.sample
rc/racoon/samples/racoon.conf.in
rc/racoon/samples/racoon.conf.sample
rc/racoon/samples/racoon.conf.sample-gssapi
rc/racoon/samples/racoon.conf.sample-inherit
rc/racoon/samples/racoon.conf.sample-natt
rc/racoon/samples/racoon.conf.sample-plainrsa
rc/racoon/samples/roadwarrior/README
rc/racoon/samples/roadwarrior/client/phase1-down.sh
rc/racoon/samples/roadwarrior/client/phase1-up.sh
rc/racoon/samples/roadwarrior/client/racoon.conf
rc/racoon/samples/roadwarrior/server/racoon.conf
rc/racoon/samples/roadwarrior/server/racoon.conf-radius
rc/racoon/schedule.c
rc/racoon/schedule.h
rc/racoon/security.c
rc/racoon/session.c
rc/racoon/session.h
rc/racoon/sockmisc.c
rc/racoon/sockmisc.h
rc/racoon/stats.pl
rc/racoon/str2val.c
rc/racoon/str2val.h
rc/racoon/strnames.c
rc/racoon/strnames.h
rc/racoon/throttle.c
rc/racoon/throttle.h
rc/racoon/var.h
rc/racoon/vendorid.c
rc/racoon/vendorid.h
rc/racoon/vmbuf.c
rc/racoon/vmbuf.h
rc/setkey/Android.mk
rc/setkey/Makefile.am
rc/setkey/Makefile.in
rc/setkey/extern.h
rc/setkey/parse.c
rc/setkey/parse.h
rc/setkey/parse.y
rc/setkey/sample-policy01.cf
rc/setkey/sample-policy02.cf
rc/setkey/sample.cf
rc/setkey/scriptdump.pl
rc/setkey/setkey.8
rc/setkey/setkey.c
rc/setkey/test-pfkey.c
rc/setkey/token.c
rc/setkey/token.l
rc/setkey/vchar.h
lwrap
|
30e3ad85ab7836ce2c7ebd1e187c22b35d45d946 |
23-Apr-2009 |
Jean-Baptiste Queru <jbq@google.com> |
Initial commit
|