| Age | Commit message (Expand) | Author |
|---|
| 2020-09-01 | Convert *_sysctl in ipsec_input.c to sysctl_bounded_arr | gnezdo |
| 2020-08-01 | Move range check inside sysctl_int_arr | gnezdo |
| 2020-06-24 | kernel: use gettime(9)/getuptime(9) in lieu of time_second(9)/time_uptime(9) | cheloha |
| 2020-04-23 | Add support for autmatically moving traffic between rdomains on ipsec(4) | tobhe |
| 2019-09-30 | remove the "copy function" argument to bpf_mtap_hdr. | David Gwynne |
| 2018-11-09 | Remove the last few XXX rdomain markers. Even those functions respect the | Claudio Jeker |
| 2018-09-14 | Initialize the TDB to NULL in ipsec_common_input() and | Ricardo Mestre |
| 2018-08-28 | Add per-TDB counters and a new SADB extension to export them to | Martin Pieuchot |
| 2018-07-11 | Convert AH & IPcomp to ipsec_input_cb() and count drops on input. | Martin Pieuchot |
| 2018-07-10 | Introduce new IPsec (per-CPU) statistics and refactor ESP input | Martin Pieuchot |
| 2018-05-14 | When checking the IPsec enable sysctls, ipsec_common_input() had | Alexander Bluhm |
| 2018-05-12 | Cleanup IPsec common input error handling with consistent goto drop. | Alexander Bluhm |
| 2017-11-20 | Sprinkle some NET_ASSERT_LOCKED(), const and co to prepare running | Martin Pieuchot |
| 2017-11-14 | Introduce ipsec_sysctl() and move IPsec tunables where they belong. | Martin Pieuchot |
| 2017-11-08 | Make {ah,esp,ipcomp}stat use percpu counters. | Visa Hankala |
| 2017-11-06 | Use %s and __func__ in DPRINTF() to reduce false positive with grep(1). | Martin Pieuchot |
| 2017-10-09 | Reduces the scope of the NET_LOCK() in sysctl(2) path. | Martin Pieuchot |
| 2017-07-05 | The IP in IP input function strips the outer header and reinserts | Alexander Bluhm |
| 2017-06-19 | When dealing with mbuf pointers passed down as function parameters, | Alexander Bluhm |
| 2017-05-28 | Rename ip_local() to ip_deliver() and give it the same parameters | Alexander Bluhm |
| 2017-05-22 | Move IPsec forward and local policy check functions to ipsec_input.c | Alexander Bluhm |
| 2017-05-16 | Replace remaining splsoftassert(IPL_SOFTNET) by NET_ASSERT_LOCKED(). | Martin Pieuchot |
| 2017-05-12 | IPsec packets were passed through ip_input() a second time after | Alexander Bluhm |
| 2017-05-12 | Instead of printing a debug message at the end of processing, panic | Alexander Bluhm |
| 2017-05-11 | IPv6 IPsec transport mode did not work if pf is enabled. The | Alexander Bluhm |
| 2017-05-05 | Expand SA_LEN(), there is no benefit for using the macro in the | Alexander Bluhm |
| 2017-04-14 | Pass down the address family through the pr_input calls. This | Alexander Bluhm |
| 2017-04-06 | Replace bcopy with a simple assignment where both variables are | David Hill |
| 2017-02-28 | Some refactoring in ip6_input() needed to un-KERNEL_LOCK() the IPv6 | Martin Pieuchot |
| 2017-02-08 | Remove the ipsec protocol callbacks which all do the same. Implement | Alexander Bluhm |
| 2017-02-07 | Error propagation does neither make sense for ip input path nor for | Alexander Bluhm |
| 2017-02-05 | Use percpu counters for ip6stat | Jeremie Courreges-Anglas |
| 2017-01-29 | Change the IPv4 pr_input function to the way IPv6 is implemented, | Alexander Bluhm |
| 2017-01-26 | Reduce the difference between struct protosw and ip6protosw. The | Alexander Bluhm |
| 2017-01-25 | Since raw_input() and route_input() are gone from pr_input, we can | Alexander Bluhm |
| 2017-01-23 | Assert for IPL_SOFTNET rather than raising SPL recursively. | Martin Pieuchot |
| 2017-01-20 | Kill recursive splsofnet()/splx() dances. | Martin Pieuchot |
| 2016-09-02 | Drop non-encapulated ESP packets using a UDP-encapsulating TDB, and add | Vincent Gross |
| 2015-09-10 | It is time to put inet6 on a diet. Use the flensing knife and cut out | Claudio Jeker |
| 2015-09-09 | Kill a couple of if_get()s only needed to increment per-ifp IPv6 stats. | Martin Pieuchot |
| 2015-06-16 | Store a unique ID, an interface index, rather than a pointer to the | Martin Pieuchot |
| 2015-06-11 | Move away from using hzto(9); OK dlg | Mike Belopuhov |
| 2015-05-13 | test mbuf pointers against NULL not 0 | Jonathan Gray |
| 2015-04-17 | Stubs and support code for NIC-enabled IPsec bite the dust. | Mike Belopuhov |
| 2015-04-14 | make ipsp_address thread safe; ok mpi | Mike Belopuhov |
| 2015-04-10 | replace the use of ifqueues for most input queues serviced by netisr | David Gwynne |
| 2015-03-26 | Remove bits of unfinished IPsec proxy support. DNS' KX records, anyone? | Mike Belopuhov |
| 2015-01-24 | Userland (base & ports) was adapted to always include <netinet/in.h> | Theo de Raadt |
| 2014-12-19 | unifdef INET in net code as a precursor to removing the pretend option. | Ted Unangst |
| 2014-12-05 | Explicitly include <net/if_var.h> instead of pulling it in <net/if.h>. | Martin Pieuchot |
