summaryrefslogtreecommitdiff
path: root/sys/netinet/ip_ipsp.c
AgeCommit message (Expand)Author
2007-02-14Consistently spell FALLTHROUGH to appease lint.Jonathan Gray
2007-01-18allow kernels with TCP_SIGNATURE (aka tcp md5sig), but without IPSEC toHenning Brauer
2006-11-24add support to tag ipsec traffic belonging to specific IKE-initiatedReyk Floeter
2006-01-13Path MTU discovery for NAT-T.Marco Pfatschbacher
2005-11-24Remove kernfs, okay deraadt@.Pedro Martelletto
2005-05-28Add SA replay counter synchronization to pfsync(4). Required for IPsecHakan Olsson
2005-05-27long overdue snprintf cleanup in kernfs related codeHans-Joerg Hoexer
2005-04-21handle return value of snprintf correctlyHans-Joerg Hoexer
2004-11-19Plug memory leak. Found by pat@. Thanks!Hans-Joerg Hoexer
2004-06-21First step towards more sane time handling in the kernel -- this changesThorsten Lockert
2004-04-14simpler ipsp_aux_match() API; ok henning, hshoexerMarkus Friedl
2004-03-31in gettdbbysrcdst(), allow matching with either src or dst beeing a wildcardHenning Brauer
2004-02-15check TDBF_INVALID for TCP MD5 SA lookups; ok mcbride, henningMarkus Friedl
2004-01-27in gettdbbysrcdst(): hash by SRC and lookup SA in the tdbsrc[] hash tableMarkus Friedl
2004-01-22add gettdbbysrcdst(), just like gettdb(), but compares tdb_src as well; ok mc...Markus Friedl
2003-12-02UDP encapsulation for ESP in transport mode (draft-ietf-ipsec-udp-encaps-XX.txt)Markus Friedl
2003-05-09string cleaning; ok teduTheo de Raadt
2003-05-06string cleaning; tedu okTheo de Raadt
2002-11-19Use queue.h macrosJason Wright
2002-06-09whitespaceJun-ichiro itojun Hagino
2002-06-09Comment out currently-unused code (it's there for the ethernet-ipsecAngelos D. Keromytis
2002-05-31Move some common code to separate routines; also, fix the problem ofAngelos D. Keromytis
2002-03-14First round of __P removal in sysTodd C. Miller
2002-02-23Print compression algorithm name too.Angelos D. Keromytis
2001-12-05KNF whackTheo de Raadt
2001-10-03If the TDB doesn't have an attached src/dst ID, it can be used for anyAngelos D. Keromytis
2001-09-05use %ll instead of %qTheo de Raadt
2001-08-08Remove IPCOMP option, it's now part of IPSEC option. You still need toJean-Jacques Bernard-Gundol
2001-07-05IPComp support. angelos@ ok.Jean-Jacques Bernard-Gundol
2001-06-27Minor nits.Angelos D. Keromytis
2001-06-27Don't cache packets that hit policies -- we'll do that at the PCB forAngelos D. Keromytis
2001-06-26Keep the PFKEY sequence number at the TDB, plus a little bit of KNFAngelos D. Keromytis
2001-06-26KNFAngelos D. Keromytis
2001-06-25Copyright.Angelos D. Keromytis
2001-06-24print mtu of tdb if discoveredNiels Provos
2001-06-24Print TDBF_USEDTUNNEL in ipsp_kern()Angelos D. Keromytis
2001-06-23Having to update queue(3) for DLIST_* is a major PITA; thus, just useAngelos D. Keromytis
2001-06-23Use DLIST for tags.Angelos D. Keromytis
2001-06-08Trim include files.Angelos D. Keromytis
2001-06-07Simplify SPD logic (and correct some input cases).Angelos D. Keromytis
2001-06-05That DPRINTF() is not needed.Angelos D. Keromytis
2001-06-05Clear acquires only if TDB was established correctly.Angelos D. Keromytis
2001-06-05Correct credential matching logic.Angelos D. Keromytis
2001-06-04use a faster arc4random() for random spi generation; angelos@ okMichael Shalayeff
2001-06-01Merge two m_copydata() calls into one, and (hopefully) correct theAngelos D. Keromytis
2001-06-01ipsp_parse_headers() goes down a list of IPv4/IPv6/AH/ESP headers andAngelos D. Keromytis
2001-05-30IPSP_IDENTITY_MBOX -> IPSP_IDENTITY_FQDN, and print type of creds/authAngelos D. Keromytis
2001-05-30Free remote authentication material on TDB free.Angelos D. Keromytis
2001-05-30Free local auth on TDB free.Angelos D. Keromytis
2001-05-29Keep track of when a TDB was last marked/unmared as SKIPCRYPTO, andAngelos D. Keromytis
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-28 08:23:33 +0000