index
:
src
cvs/HEAD
kms/intel
kms/radeon
master
OpenBSD base system
summary
refs
log
tree
commit
diff
log msg
author
committer
range
path:
root
/
sys
/
netinet
/
ip_ah.c
Age
Commit message (
Expand
)
Author
2021-12-23
Remove unused variables and assignments in ah and esp output.
Alexander Bluhm
2021-12-23
IPsec is not MP safe yet. To allow forwarding in parallel without
Alexander Bluhm
2021-12-20
Remove unused variable 'clen'.
Tobias Heider
2021-12-20
Use per-CPU counters for tunnel descriptor block (TDB) statistics.
Vitaliy Makkoveev
2021-12-11
Protect the write access to the TDB flags field with a mutex per
Alexander Bluhm
2021-12-02
Allow to build kernel without IPSEC or INET6 defines.
Alexander Bluhm
2021-11-21
Add the new `ipsec_exctdb' ipsec(4) counter to count and expose to the
Vitaliy Makkoveev
2021-11-11
Do not call ip_deliver() recursively from IPsec. As there is no
Alexander Bluhm
2021-10-25
Fix use of uninitialized variable 'rpl'.
Tobias Heider
2021-10-24
Refactor ah_input() and ah_output() for new crypto API.
Tobias Heider
2021-10-24
There are more m_pullup() in IPsec input. Pass down the pointer
Alexander Bluhm
2021-10-24
Remove crp_etype and return errors directly from crypto_invoke()
Tobias Heider
2021-10-24
Pass the error of the IPsec callback to the caller. The dropped
Alexander Bluhm
2021-10-23
There is an m_pullup() down in AH input. As it may free or change
Alexander Bluhm
2021-10-23
Retire asynchronous crypto API as it is no longer required by any driver and
Tobias Heider
2021-10-22
Make error handling in IPsec consistent. Pass errors to the callers.
Alexander Bluhm
2021-10-21
Remove code to run crypto operations in a task queue. The code was
Tobias Heider
2021-10-13
The function crypto_dispatch() never returns an error. Make it
Alexander Bluhm
2021-10-13
The function ipip_output() was registered as .xf_output() xform
Alexander Bluhm
2021-07-27
Revert "Use per-CPU counters for tunnel descriptor block" diff.
mvs
2021-07-26
Use per-CPU counters for tunnel descriptor block (tdb) statistics.
mvs
2021-07-26
Do not queue crypto operations for IPsec. The packet entries in
Alexander Bluhm
2021-07-18
The IPsec authentication before decryption used a different replay
Alexander Bluhm
2021-07-08
The xformsw array never changes. Declare struct xformsw constant
Alexander Bluhm
2021-07-08
Debug printfs in encdebug were inconsistent, some missing newlines
Alexander Bluhm
2021-07-08
The properties of the crypto algorithms never change. Declare them
Alexander Bluhm
2021-06-18
The crypto(9) framework used by IPsec runs on a kernel task that
Alexander Bluhm
2021-02-25
we don't have to cast to caddr_t when calling m_copydata anymore.
David Gwynne
2020-12-18
Make sure the first packet of an SA has sequence number 1 (as described in
tobhe
2019-09-30
remove the "copy function" argument to bpf_mtap_hdr.
David Gwynne
2018-08-28
Add per-TDB counters and a new SADB extension to export them to
Martin Pieuchot
2018-07-12
Introduce ipsec_output_cb() to merge duplicate code and account for
Martin Pieuchot
2018-07-11
Convert AH & IPcomp to ipsec_input_cb() and count drops on input.
Martin Pieuchot
2018-05-09
Cleanup IPsec AH error handling with consistent goto drop.
Alexander Bluhm
2018-05-02
Do not assume that mbufs within a chain do not have M_PKTHDR set.
Alexander Bluhm
2018-03-14
When processing IPsec AH packets check that the header fits into
Alexander Bluhm
2018-02-27
make kernel compile again without INET6
Sebastian Benoit
2018-02-07
comment change only. ok bluhm@
Richard Procter
2018-02-06
Do some cleanup in ah_massage_headers().
Alexander Bluhm
2018-02-01
When processing IPsec AH packets with IP options or IPv6 extension
Alexander Bluhm
2017-11-08
Make {ah,esp,ipcomp}stat use percpu counters.
Visa Hankala
2017-11-06
Use %s and __func__ in DPRINTF() to reduce false positive with grep(1).
Martin Pieuchot
2017-08-11
Remove NET_LOCK()'s argument.
Martin Pieuchot
2017-05-30
add sizes to free() calls
Theo de Raadt
2017-02-09
Put back a return that I have removed by accident.
Alexander Bluhm
2017-02-07
IPsec packets could be dropped unaccounted if output after crypto
Alexander Bluhm
2017-02-07
Reduce the per-packet allocation costs for crypto operations (cryptop)
Patrick Wildt
2017-02-07
The return code of crp_callback is never checked, so it is not
Alexander Bluhm
2017-01-09
Grab the NET_LOCK() in various callbacks.
Martin Pieuchot
2016-12-24
Grab the NET_LOCK() before calling ipsp_process_done() as it ends up
Martin Pieuchot
[next]