| Age | Commit message (Expand) | Author |
|---|
| 2021-07-14 | Export SA replay counters via pfkey and print with ipsecctl. | tobhe |
| 2021-07-08 | Initialize `ipsec_acquire_pool' pool (9) within pfkey_init() instead of | mvs |
| 2021-07-05 | Export tdb MTU to userland via SADB_GET. This helps debug path MTU | tobhe |
| 2021-05-30 | Declare all struct protosw as constant. | Alexander Bluhm |
| 2021-05-26 | Use `so_lock' to protect key management (PF_KEY) sockets. This can be | mvs |
| 2021-05-25 | As network features are not added dynamically, the domain structures | Alexander Bluhm |
| 2021-05-25 | The arrays sadb_exts_allowed_out and sadb_exts_required_out are | Alexander Bluhm |
| 2021-05-04 | Initialize `ipsec_policy_pool' within pfkey_init() instead of doing that | mvs |
| 2021-05-04 | Remove unused `spd_tables' declaration. | mvs |
| 2021-05-02 | Do soreserve() before `kp' allocation. This simplifies error path. The | mvs |
| 2020-12-14 | Make sure that the address families of a flow's source address, | tobhe |
| 2020-08-28 | Make sure not to pass NULL to explicit_bzero(). | tobhe |
| 2020-08-07 | pfkey_get may allocate more memory than is needed to hold the SA | tobhe |
| 2020-08-05 | Use PFKEYV2_LIFETIME_CURRENT instead of magic number. | tobhe |
| 2020-07-21 | Make sure to explicit_bzero() buffers holding sensitive SA data. | tobhe |
| 2020-07-18 | Add size to free(9) calls | kn |
| 2020-07-18 | Add size to free(9) calls | kn |
| 2020-07-15 | Add sizes to free(9) calls | kn |
| 2020-04-23 | Add support for autmatically moving traffic between rdomains on ipsec(4) | tobhe |
| 2020-03-18 | Plug mem leak in SADB_REGISTER. | Martin Pieuchot |
| 2019-07-17 | Convert struct pkpcb malloc(9) to pool_get(9). PCB for pfkey is | Alexander Bluhm |
| 2019-02-04 | Avoid an mbuf double free in the oob soreceive() path. In the | Alexander Bluhm |
| 2019-02-01 | Export per-TDB counters to userland. | Martin Pieuchot |
| 2019-02-01 | Do not silently return if extensions do not match the filters. | Martin Pieuchot |
| 2019-01-13 | Fix an off-by-one in pfkeyv2_sysctl_policydumper() and get rid of a | Martin Pieuchot |
| 2018-12-18 | Fix the IPL of pfkeyv2_mtx to prevent a deadlock. The system can use | Visa Hankala |
| 2018-09-12 | Stop exporting TDB counters to userland, this change introduced a | Martin Pieuchot |
| 2018-08-31 | Cadd a TDB `tdb' instead of `sa'. | Martin Pieuchot |
| 2018-08-28 | Add per-TDB counters and a new SADB extension to export them to | Martin Pieuchot |
| 2018-07-10 | Remove net/raw_cb.h from includes and replace the RAWSNDQ, RAWRCVQ with | Claudio Jeker |
| 2018-07-10 | After removing raw_usrreq() from route and pfkey, the global sockaddr | Alexander Bluhm |
| 2018-07-09 | Inline the raw_usrreq() function into pfkeyv2_usrreq(). Similar to the | Claudio Jeker |
| 2018-06-25 | Push the NET_LOCK() down in pfkeyv2_send(). | Martin Pieuchot |
| 2018-06-20 | Use the socket lock rather than the KERNEL_LOCK() in pfkey_sendup(). | Martin Pieuchot |
| 2018-06-11 | Rename routing & pfkey tables for coherency with other PCB tables. | Martin Pieuchot |
| 2018-06-06 | Prefix fields of pfkey & routing PCBs, part 2, no functionnal change. | Martin Pieuchot |
| 2018-06-06 | Prefix fields of pfkey & routing PCBs, no functionnal change. | Martin Pieuchot |
| 2018-06-06 | Asseert that a pfkey or routing socket is referenced by a `fp' instead | Martin Pieuchot |
| 2018-05-19 | As long we have no per socket locking, we must grab either net lock | Alexander Bluhm |
| 2018-05-16 | Fix kernel builds without IPSEC. | Reyk Floeter |
| 2018-05-14 | Use a SRP list to protect pfkeyv2 sockets, thus removing the need to | Martin Pieuchot |
| 2018-05-08 | Introduce rtm_sendup() a function to deliver routing messages to a | Martin Pieuchot |
| 2018-02-19 | Remove almost unused `flags' argument of suser(). | Martin Pieuchot |
| 2017-11-20 | Flush flows using the radix-tree instead of a global list. | Martin Pieuchot |
| 2017-11-13 | Grab the KERNEL_LOCK() to iterate on the global list of PF_KEY sockets. | Martin Pieuchot |
| 2017-11-12 | Only use a single taskq to process incoming network packets as soon as | Martin Pieuchot |
| 2017-11-03 | After inlining of raw_detach we know the sizes for free; pointed out | Florian Obser |
| 2017-11-03 | Inline trivial functions from raw_cb.c and tedu it. | Florian Obser |
| 2017-11-02 | Move PRU_DETACH out of pr_usrreq into per proto pr_detach | Florian Obser |
| 2017-10-27 | Dump IPsec flows by iterating over the rafdix-tree. | Martin Pieuchot |
