| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 1999-08-14 | Typo fix. | Hakan Olsson | |
| 1999-08-10 | Support SADB_DUMP. Misc code cleanup. angelos@ ok. | Hakan Olsson | |
| 1999-08-05 | Add SADB_FLUSH logic (tdb flushing). | Hakan Olsson | |
| 1999-07-15 | From angelos@, edits by me, demand keying for PF_KEY | Niklas Hallqvist | |
| 1999-07-06 | ipsec_in_use could get out of sync. (Also niklas@. angelos@ ok) | Hakan Olsson | |
| 1999-07-06 | Added support for TCP MD5 option (RFC 2385). | cmetz | |
| 1999-07-02 | rename SADB_foo_X_bar to SADB_X_foo_bar | Theo de Raadt | |
| 1999-06-01 | Introduce M_PFKEY kmem type, and use it. (angelos@ ok) | Hakan Olsson | |
| 1999-05-31 | Fix M_TEMP memory leak in pfkeyv2_expire() | Hakan Olsson | |
| (likewise future pfkeyv2_acquire()) | |||
| 1999-05-23 | Avoid bzero + free after failed malloc(). From niklas@ | Hakan Olsson | |
| 1999-05-16 | spltdb introduced, protection for tdb lists and related structures, so | Niklas Hallqvist | |
| they won't disappear behind our back by an expiration. Cleanup expiration logic too. | |||
| 1999-05-14 | A new scalable IPsec SA expiration model. | Niklas Hallqvist | |
| 1999-04-11 | Introduce net.inet.{ah,esp}.enable sysctl controls that are off by default. | Niklas Hallqvist | |
| If you are going to use either of AH or ESP or both, enable these in /etc/sysctl.conf. Also correct the IPSec debugging sysctl code, it is now named net.inet.ip.encdebug. Some corrected function signatures too. | |||
| 1999-04-09 | when the REPLACE flag was used, but no former flows was there, we did not | Niklas Hallqvist | |
| increment the IPSEC use counter, potentially missing IPSEC processing on output. | |||
| 1999-03-31 | Implement SADB_SAFLAGS_X_REPLACEFLOW | Niklas Hallqvist | |
| 1999-03-27 | add SADB_X_BINDSA to pfkey allowing incoming SAs to refer to an outgoing | Niels Provos | |
| SA to be used, use this SA in ip_output if available. allow mobile road warriors for bind SAs with wildcard dst and src addresses. check IPSEC AUTH and ESP level when receiving packets, drop them if protection is insufficient. add stats to show dropped packets because of insufficient IPSEC protection. -- phew. this was all done in canada. dugsong and linh provided the ride and company. | |||
| 1999-03-24 | Implement lifetime expiration notifications. Fix some typos. Remove statics. | Niklas Hallqvist | |
| 1999-03-05 | update allocation statistics | Theo de Raadt | |
| 1999-03-04 | remove unnecessary malloc checks when using WAITOK | Theo de Raadt | |
| 1999-03-04 | clear key headers earlier | Theo de Raadt | |
| 1999-03-04 | more paranoid maintenance | Theo de Raadt | |
| 1999-03-02 | keep track of SATYPE registrations per PFKEY socket | Theo de Raadt | |
| 1999-03-02 | ESRCH, not EEXIST; markus.friedl@informatik.uni-erlangen.de | Theo de Raadt | |
| 1999-02-25 | Possible cause of responses not going back to userland. | Angelos D. Keromytis | |
| 1999-02-25 | Removed osdep.h dependencies. | Angelos D. Keromytis | |
| 1999-02-24 | PF_KEY_V2, with local extensions for SPD management. | Angelos D. Keromytis | |
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |