Age | Commit message (Expand) | Author |
2005-08-05 | don't panic for SADB_ADD w/o enc/auth, with and ok hshoexer@ | Markus Friedl |
2005-08-02 | use arc4random for random packet padding (largely acedemic because it is | Damien Miller |
2005-07-31 | Introduce bpf_mtap_af and bpf_mtap_hdr to be used when passing a mbuf chain | Christopher Pascoe |
2005-05-28 | Add SA replay counter synchronization to pfsync(4). Required for IPsec | Hakan Olsson |
2005-05-27 | comment out unused PACKET_TAG_IPSEC_IN_CRYPTO_DONE code; ok hshoexer | Markus Friedl |
2005-05-25 | AESCTR support for ESP (RFC 3686); ok hshoexer | Markus Friedl |
2005-05-10 | support NULL encryption for ESP; ok hshoexer, ho | Markus Friedl |
2003-12-10 | de-register. deraadt ok | Jun-ichiro itojun Hagino |
2003-08-14 | m_copyback()'s 4th arg is const void *, nuke (caddr_t) casts. | Jason Wright |
2003-07-24 | conform to RFC2367 on SADB_xx naming (local name must be prefixed with | Jun-ichiro itojun Hagino |
2003-07-24 | hmac-sha2-{256,384,512} support in AH/ESP auth. markus ok | Jun-ichiro itojun Hagino |
2003-07-09 | fix whitespace | Markus Friedl |
2003-05-03 | just as a safety measure, set m_flags to 0 for mbufs allocated on stack. | Jun-ichiro itojun Hagino |
2003-04-02 | o sanity check mbuf earlier. | Todd C. Miller |
2003-03-31 | Avoid using FREEd data when we get a crypto error; Patrick Latifi | Todd C. Miller |
2003-02-28 | Based on several comments from tedu: | Jason Wright |
2003-02-21 | kill unused variables | Ted Unangst |
2003-02-12 | Remove commons; inspired by netbsd. | Jason Wright |
2003-02-01 | m_pad() is expected to have free'd the mbuf if it returns NULL, so | Daniel Hartmeier |
2002-11-07 | Check for invalid payload lengths also for NULL enc. markus@, angelos@ ok. | Hakan Olsson |
2002-07-30 | Be sure to check the integrity verifier for packets that didn't have it done | Jason Wright |
2002-07-05 | Free crp_opaque only after we've determined we're not going to | Angelos D. Keromytis |
2002-06-18 | KNF | Angelos D. Keromytis |
2002-06-18 | Initialize mo to NULL, for good measure -- sam@errno.com | Angelos D. Keromytis |
2002-06-18 | Same as with ip_ah.c (fix unreachable reference-after-free) | Angelos D. Keromytis |
2002-05-31 | Fix a DoS attack whereby an attacker could cause the replay counter to | Angelos D. Keromytis |
2001-06-26 | KNF | Angelos D. Keromytis |
2001-06-25 | Copyright. | Angelos D. Keromytis |
2001-06-23 | merge crypto/crypto{dev,}.h to crypto/cryptodev.h, to avoid name conflicts in... | Theo de Raadt |
2001-06-13 | Use blocksize, not ivmask | Angelos D. Keromytis |
2001-06-08 | Trim include files. | Angelos D. Keromytis |
2001-06-05 | Add a few DPRINTF()'s | Angelos D. Keromytis |
2001-06-01 | The IPsec-aware NIC cards don't pass the ICV for later verification | Angelos D. Keromytis |
2001-05-30 | Update to match prototypes. | Angelos D. Keromytis |
2001-05-30 | Handle TDBF_SKIPCRYPTO on output, and PACKET_TAG_IPSEC_IN_CRYPTO_DONE | Angelos D. Keromytis |
2001-05-27 | Pass a NULL packet tag for now to ipsp_common_input_cb(). | Angelos D. Keromytis |
2001-05-17 | convert mbuf and cluster allocation to pool, mostly from NetBSD | Niels Provos |
2001-05-13 | initial cut at /dev/crypto support. takes original mbuf "try, and discard | Theo de Raadt |
2001-05-12 | Move bzero() after test for correct allocation (jj@wabbitt.org) | Angelos D. Keromytis |
2001-04-14 | Minor changes, preparing for real socket-attached TDBs; also, more | Angelos D. Keromytis |
2001-04-06 | Move offsetof define into sys/param.h | Constantine Sapuntzakis |
2001-03-28 | Allow tdbi's to appear in mbufs throughout the stack; this allows | Angelos D. Keromytis |
2001-03-23 | Fix slow mbuf leak. | Angelos D. Keromytis |
2001-03-15 | convert SA expirations to the new timeouts. | Michael Shalayeff |
2000-11-17 | *HMAC96->*HMAC | Angelos D. Keromytis |
2000-10-09 | AES support. | Angelos D. Keromytis |
2000-09-19 | Lots and lots of changes. | Angelos D. Keromytis |
2000-06-18 | Use M_NOWAIT instead of M_DONTWAIT in MALLOC() (even though they're | Angelos D. Keromytis |
2000-06-18 | The callbacks need to set the appropriate spl level now. | Angelos D. Keromytis |
2000-06-15 | What was the offending payload length? | Angelos D. Keromytis |