Age | Commit message (Expand) | Author |
2023-11-26 | Remove inp parameter from ip_output(). | Alexander Bluhm |
2023-04-22 | Call pfkeyv2_sysctl_policydumper() with shared netlock. It performs | Vitaliy Makkoveev |
2022-06-17 | The timeout for ipsec acquire does not decrement the reference | Alexander Bluhm |
2022-05-04 | In ipsp_spd_lookup() rename the parameter tdbp to tdbin as it is | Alexander Bluhm |
2022-03-13 | Hrvoje has hit a crash with IPsec acquire while testing the parallel | Alexander Bluhm |
2022-03-08 | In IPsec policy replace integer refcount with atomic refcount. | Alexander Bluhm |
2022-03-06 | Usually we check ipsec_in_use as shortcut to avoid IPsec lookups, | Alexander Bluhm |
2022-02-22 | Delete unnecessary #includes of <sys/domain.h> and/or <sys/protosw.h> | Philip Guenther |
2022-01-04 | Add `ipsec_flows_mtx' mutex(9) to protect `ipsp_ids_*' list and | YASUOKA Masahiko |
2021-12-16 | Fix a tiny race in tdb_delete() between TDBF_DELETED, tdb_unlink() | Alexander Bluhm |
2021-12-14 | To cache lookups, the policy ipo is linked to its SA tdb. There | Alexander Bluhm |
2021-12-03 | Add TDB reference counting to ipsp_spd_lookup(). If an output | Alexander Bluhm |
2021-12-01 | Let ipsp_spd_lookup() return an error instead of a TDB. The TDB | Alexander Bluhm |
2021-11-30 | Remove unused parameter from ipsp_spd_inp(). | Alexander Bluhm |
2021-11-25 | Implement reference counting for IPsec tdbs. Not all cases are | Alexander Bluhm |
2021-07-08 | Initialize `ipsec_acquire_pool' pool (9) within pfkey_init() instead of | mvs |
2021-05-04 | Initialize `ipsec_policy_pool' within pfkey_init() instead of doing that | mvs |
2020-06-24 | kernel: use gettime(9)/getuptime(9) in lieu of time_second(9)/time_uptime(9) | cheloha |
2019-12-10 | Make bundled IPcomp/ESP policies work with IPSEC_LEVEL_REQUIRE. | tobhe |
2019-07-08 | free(9) sizes for M_RTABLE. | Martin Pieuchot |
2018-10-22 | ipsec: use monotonic clock for SA creation/lookup timestamps; ok dlg@ | cheloha |
2018-06-25 | Assert that the NET_LOCK() is held when iterating over `ipsec_acquire_head'. | Martin Pieuchot |
2018-05-16 | Fix kernel builds without IPSEC. | Reyk Floeter |
2017-11-20 | Flush flows using the radix-tree instead of a global list. | Martin Pieuchot |
2017-11-07 | Remove unused debug macro. | Martin Pieuchot |
2017-10-27 | Dump IPsec flows by iterating over the rafdix-tree. | Martin Pieuchot |
2017-10-16 | Last changes before running IPsec w/o KERNEL_LOCK(). | Martin Pieuchot |
2017-04-06 | Replace bcopy with a simple assignment where both variables are | David Hill |
2016-09-27 | Remove empty #ifdef and #ifndef blocks | Frederic Cambus |
2016-09-15 | all pools have their ipl set via pool_setipl, so fold it into pool_init. | David Gwynne |
2016-09-06 | pool_setipl for various netinet and netinet6 bits | David Gwynne |
2015-10-07 | Initialize the routing table before domains. | Martin Pieuchot |
2015-09-10 | It is time to put inet6 on a diet. Use the flensing knife and cut out | Claudio Jeker |
2015-07-17 | manage spd entries by using the radix api directly instead of | Bret Lambert |
2015-05-23 | introduce ipsec-id bundles and use them for ipsecflowinfo, | Markus Friedl |
2015-04-30 | Merge two identical if() statements in ipsp_acquire_sa(). The | Todd C. Miller |
2015-04-16 | remove unfinished/unused support for socket-attached ipsec-policies | Markus Friedl |
2015-04-14 | Remove support for storing credentials and auth information in the kernel. | Mike Belopuhov |
2015-04-13 | Perform IPsec bypass check on a socket before performing TDB lookups. | Mike Belopuhov |
2015-04-13 | Rename gettdbbyaddr to gettdbbydst; OK markus, hshoexer, mpi | Mike Belopuhov |
2015-04-13 | Remove unused arguments from gettdb* functions; OK markus, hshoexer, mpi | Mike Belopuhov |
2015-03-14 | Remove some includes include-what-you-use claims don't | Jonathan Gray |
2014-12-19 | unifdef INET in net code as a precursor to removing the pretend option. | Ted Unangst |
2014-11-25 | The proliferation of "struct route" in all its flavors didn't make | Martin Pieuchot |
2014-11-01 | Rename rtalloc1() into rtalloc(9) and convert its flags to only enable | Martin Pieuchot |
2014-10-14 | Use rtfree() instead of RTFREE(), NULLify some free'd route pointers and | Martin Pieuchot |
2014-09-27 | Kill rtalloc() and update rtalloc1() and rtalloc_mpath() to no longer | Martin Pieuchot |
2014-07-22 | Fewer <netinet/in_systm.h> ! | Martin Pieuchot |
2014-04-14 | "struct pkthdr" holds a routing table ID, not a routing domain one. | Martin Pieuchot |
2014-01-09 | bzero/bcmp -> memset/memcmp. ok matthew | Ted Unangst |