[no description] https://git.osdyson.ru/mirror/pkgsrc/atom?h=pkgsrc_2008Q1 2008-01-18T05:06:18Z 2008-01-18T05:06:18Z tnn tnn 2008-01-18T05:06:18Z urn:sha1:1c8e24b168b5909ecc586bdbb660570b490d92ef on packages that are affected by the switch from the openssl 0.9.7 branch to the 0.9.8 branch. ok jlam@ 2007-04-11T06:51:19Z ghen ghen 2007-04-11T06:51:19Z urn:sha1:da1972d9af6025da7b2beddec2817f10a25eb5b0 o Fixed SHA256 detection on some systems o Fixed a DoS in Informationnal messages processing (CVE-2007-1841). 2007-02-22T19:26:05Z wiz wiz 2007-02-22T19:26:05Z urn:sha1:0c152e7442b8ddde8405ba9d0f2d4d981d5c3151 Patch provided by Sergey Svishchev in private mail. 2006-10-25T17:12:18Z bad bad 2006-10-25T17:12:18Z urn:sha1:1beb56f112e08acc47cea45dd25c2cdd79e243fc Changes since 0.6.3: 0.6.6 * src/racoon/isakmp_xauth.c: Build fix * src/racoon/pfkey.c: Sets NAT-T ports to 0 if no NAT encapsulation in pk_sendgetspi(). * src/racoon/pfkey.c: Sets NAT-T ports to 0 if no NAT encapsulation in pk_sendupdate(). * src/racoon/isakmp_xauth.c: fix memory leak * src/racoon/{cfparse.y|handler.h}: typos 0.6.5 * src/racoon/isakmp.c: Fixed zombie PH1 handler when isakmp_send() fails in isakmp_ph1resend() * src/racoon/{cfparse.y|ipsec_doi.c}: Temporary fix for /32 subnets parsing. * src/racoon/isakmp_cfg.c: make software behave as the documentation advertise for INTERNAL_NETMASK4. Keep the old INTERNAL_MASK4 to avoid breaking backward compatibility. * src/racoon/session.c: Fixed / cleaned up signal handling. 0.6.4 * configure.ac src/racoon/plog.c: backported Fred's workaround for %zu problems on (at least) FreeBSD4. * src/racoon/session.c: backport: fix possible race conditions in signal handlers (see session.c 1.17). * src/libipsec/pfkey_dump.c: fixed compilation when NAT_T disabled (Fred has still some CVS problems). * src/libipsec/{libpfkey.h|pfkey_dump.c}: add a sadump_withports function to display SAD entries with their associated ports. * src/setkey/{parse.y|setkey.c|setkey.8}: allow to use setkey -p flag in conjunction with -D to show SADs with the port, allow both get and delete commands to use bracketed ports if needed. * src/racoon/racoon.conf.5: Style changes 2005-12-05T23:55:01Z rillig rillig 2005-12-05T23:55:01Z urn:sha1:3dae8fea14cb07876cbc876f030a3b37361f56b8 CONFIGURE_ARGS. 2005-12-05T20:49:47Z rillig rillig 2005-12-05T20:49:47Z urn:sha1:b4f920543059af038598712771c3211999ef42a6 example MAKE_ENV+=FOO=${BAR} is changed to MAKE_ENV+=FOO=${BAR:Q}. Some other changes are outlined in http://mail-index.netbsd.org/tech-pkg/2005/12/02/0034.html 2005-11-22T16:22:47Z tron tron 2005-11-22T16:22:47Z urn:sha1:4c2e7b37ee763278045561c35c1831c9cec4e3f5 - Various bug fixes - ISAKMP mode config works without Xauth This update fixes the security vulnerability reported in SA17668. 2005-09-02T17:01:13Z tron tron 2005-09-02T17:01:13Z urn:sha1:ad213b08a0c6474453c5ba0ea2ec9dc2f61f7ba2 Linux 2.6.x and newer. 2005-08-21T21:58:41Z tron tron 2005-08-21T21:58:41Z urn:sha1:54cce35347c990f6b83c443915cd93d66e887c01 - src/racoon/dnssec.c: fix bogus test on function result - src/racoon/isakmp.c: Improved in/out SA addresses check in purge_remote() - src/libipsec/{key_debug.c|pfkey.c|pfkey_dump.c}: de-lint, warnings - src/racoon/privsep.c: Fixed a %d -> %zu in port_check() 2005-08-05T12:04:33Z tron tron 2005-08-05T12:04:33Z urn:sha1:47c5518304b0f31eb9a195931cb9046c5580c14c Changes since version 0.6b2: - NAT-T fixes for situations where NAT-T is not used - OpenSSL 0.9.8 support - keys are not restricted to OpenSSL default size anymore - PKCS7 support - SHA2 support