summaryrefslogtreecommitdiff
path: root/sys/netinet/ip_esp_new.c
AgeCommit message (Collapse)Author
1999-06-30remove final low-level crypto knowledge from base ipsec codeTheo de Raadt
1999-06-18split out transforms; some debugging done but there may still be bugs inTheo de Raadt
the new key init/zero functions
1999-05-16spltdb introduced, protection for tdb lists and related structures, soNiklas Hallqvist
they won't disappear behind our back by an expiration. Cleanup expiration logic too.
1999-05-12Follow local indentation style.Hakan Olsson
1999-05-12Fix problem with data corruption for retransmitted TCP packetsHakan Olsson
in an IPSec ESP tunnel. OpenBSD PR 819.
1999-03-24Implement lifetime expiration notifications. Fix some typos. Remove statics.Niklas Hallqvist
1999-02-25Skipjack key bzero'ing case.Angelos D. Keromytis
1999-02-25Bzero key information before free'ing it, just for paranoia's sake.Angelos D. Keromytis
1999-02-25Be a bit more paranoid before free'ing memory.Angelos D. Keromytis
1999-02-24Update copyright; remove a few annoying debugging printfs.Angelos D. Keromytis
Btw, OpenBSD hit 25000 commits a couple commits ago.
1999-02-24add skipjack support backTheo de Raadt
1999-02-24Remove encap.h include; saner debugging printfs; fix buglets; work withAngelos D. Keromytis
pfkeyv2.
1999-02-17ipsec skipjack, based on free .fi code (some .gov type will test this for me)Theo de Raadt
1999-02-16Fix a padding check bug in the experimental-padding. iliya@ericom.comAngelos D. Keromytis
1999-02-12angelos cannot spell small wordsTheo de Raadt
1999-01-11remove panic() calls, consistent error reportingTheo de Raadt
1999-01-11panic prints a newline for you, don't do it in the panic stringTodd C. Miller
1999-01-08do not use random bits when not necessary, remove 8-byte block dependenceTheo de Raadt
1998-11-25Better error code for too large packetsNiklas Hallqvist
1998-11-25Add checks of packets getting to big after transforms.Niklas Hallqvist
Also make sure some more error conditions get told to the caller.
1998-11-25Tell caller of error conditionNiklas Hallqvist
1998-08-01more careful error handling, some simplification and beautification.Niels Provos
1998-07-30fixing a stupid bug I introduced when trying to improve the encryptionNiels Provos
performance by avoiding unnecessary copies. There was a problem when two subsequent mbufs were != 0 mod blocksize and the next < blocksize, so we lost the rest of the last mbuf as IV.
1998-06-11fix a mbuf chain corruption which happened when m_pullup was called on anNiels Provos
mbuf in the middle of the chain and had to MGET a new one.
1998-06-03cleanup debug printfsNiels Provos
1998-05-24allow the use of blowfish and cast encryption with implicit ivNiels Provos
1998-05-18first step to the setsockopt/getsockopt interface as described inNiels Provos
draft-mcdonald-simple-ipsec-api, kernel notifies (EMT_REQUESTSA) signal userland key management applications when security services are requested. this is only for outgoing connections at the moment, incoming packets are not yet checked against the selected socket policy.
1998-05-05check for invalid padding length, reported by Dan McDonald (Sun Microsystems)Niels Provos
<danmcd@eng.sun.com>
1998-03-07improve performance by avoiding unnecessary copies.Niels Provos
1998-02-22Changes made for GCC 2.8 -Wall pleasuresNiklas Hallqvist
1998-01-21rcvif not needed.Niels Provos
1997-11-24add ripemd-160 as authentication function.Niels Provos
1997-11-18fix 3DES, style changesTheo de Raadt
1997-11-18make old style padding default again.Niels Provos
1997-11-15fix memory management errorsTheo de Raadt
1997-11-04make it easier to add additional transforms. add blowfish and castNiels Provos
encryption. some more info for kernfs/ipsec.
1997-10-02conditional error loggingTheo de Raadt
1997-09-30do the 3-DES key setup right, will ya?Theo de Raadt
1997-09-29brain dead sanity tests correctedTheo de Raadt
1997-09-28log() needs a \nTheo de Raadt
1997-09-24New style self-describing padding in use.Angelos D. Keromytis
1997-09-24Cosmetic changes.Angelos D. Keromytis
1997-09-23AH changes, after interoperating at the ANX bakeoff.Angelos D. Keromytis
1997-08-26new esp: encryption, authentication and replay protection +Niels Provos
tiny bug fixes
1997-07-11put old esp/ah and new esp/ah in different files.Niels Provos
generalised way of handling transforms.
generated by cgit v1.2.3 (git 2.25.1) at 2025-01-05 11:25:44 +0000