summaryrefslogtreecommitdiff
path: root/sys/netinet
AgeCommit message (Expand)Author
2021-12-08Start documenting the locking strategy of struct tdb fields. NoteAlexander Bluhm
2021-12-07In ipo_tdb the flow contains a reference counted TDB cache. ThisAlexander Bluhm
2021-12-03Add tdb_delete_locked() to replace duplicate tdb deletion code inTobias Heider
2021-12-03Add TDB reference counting to ipsp_spd_lookup(). If an outputAlexander Bluhm
2021-12-02ipsec_common_input_cb() extracted the inner IP header of IPsecAlexander Bluhm
2021-12-02Allow to build kernel without IPSEC or INET6 defines.Alexander Bluhm
2021-12-01Reintroduce the TDBF_DELETED flag. Checking next pointer to figureAlexander Bluhm
2021-12-01Let ipsp_spd_lookup() return an error instead of a TDB. The TDBAlexander Bluhm
2021-11-30Remove unused parameter from ipsp_spd_inp().Alexander Bluhm
2021-11-29The network stack currently uses IPL_SOFTNET. Consistently initializeAlexander Bluhm
2021-11-29Using a void pointer for temporary allocated TDB in pfkeyv2 doesAlexander Bluhm
2021-11-26Put a mutex assert locked into puttdb_locked().Alexander Bluhm
2021-11-26Replace TDBF_DELETED flag with check if tdb was already unlinked.Tobias Heider
2021-11-25move label to fix RAMDISKTheo de Raadt
2021-11-25Implement reference counting for IPsec tdbs. Not all cases areAlexander Bluhm
2021-11-24When sending ICMP packets for IPsec path MTU discovery, the firstAlexander Bluhm
2021-11-22Copy code from ip_forward() to ip6_forward() to fix Path MTU discoveryAlexander Bluhm
2021-11-21Add the new `ipsec_exctdb' ipsec(4) counter to count and expose to theVitaliy Makkoveev
2021-11-21Fix whitespace and long lines.Alexander Bluhm
2021-11-18printing udpencap_port in ddb requires ntohs not ntohl. use better formatStuart Henderson
2021-11-16To debug IPsec and tdb refcounting it is useful to have "show tdb"Alexander Bluhm
2021-11-11Do not call ip_deliver() recursively from IPsec. As there is noAlexander Bluhm
2021-11-08Use plen consistently.Tobias Heider
2021-11-04The authenticator is removed elsewhere.Tobias Heider
2021-11-01In ipsec_common_input_cb() pass mbuf pointer to pf_test() so thatAlexander Bluhm
2021-10-27The crypto layer needs the kernel lock. ah_zeroize() takes it whenAlexander Bluhm
2021-10-25The implementation of ipsp_spd_inp() is side effect free. It mayAlexander Bluhm
2021-10-25Call a locked variant of tdb_unlink() from tdb_walk(). Fixes aAlexander Bluhm
2021-10-25Protect the tdb hashes with a mutex. Move initialization out ofAlexander Bluhm
2021-10-25Fix use of uninitialized variable 'rpl'.Tobias Heider
2021-10-24Merge esp_input_cb() intp esp_input().Tobias Heider
2021-10-24Remove code duplication by merging the v4 and v6 input functionsAlexander Bluhm
2021-10-24Refactor ah_input() and ah_output() for new crypto API.Tobias Heider
2021-10-24Refactor ipcomp_input() and ipcomp_output(). Remove obsolete code relatedTobias Heider
2021-10-24There are more m_pullup() in IPsec input. Pass down the pointerAlexander Bluhm
2021-10-24Remove 'struct tdb_crypto' allocations from esp_input() and esp_output().Tobias Heider
2021-10-24Remove crp_etype and return errors directly from crypto_invoke()Tobias Heider
2021-10-24Pass the error of the IPsec callback to the caller. The droppedAlexander Bluhm
2021-10-23There is an m_pullup() down in AH input. As it may free or changeAlexander Bluhm
2021-10-23Fix use-after-free in ipcomp_output() introduced by previous commit.Alexander Bluhm
2021-10-23Retire asynchronous crypto API as it is no longer required by any driver andTobias Heider
2021-10-22Make error handling in IPsec consistent. Pass errors to the callers.Alexander Bluhm
2021-10-22After deleting hifn(4) the only provider for the LZS compressionAlexander Bluhm
2021-10-21Remove code to run crypto operations in a task queue. The code wasTobias Heider
2021-10-21Remove duplicate variable ibytes, use plen instead.Tobias Heider
2021-10-13Remove redundant NULL checks in IPsec which are never reached.Alexander Bluhm
2021-10-13The function crypto_dispatch() never returns an error. Make itAlexander Bluhm
2021-10-13The function ipip_output() was registered as .xf_output() xformAlexander Bluhm
2021-10-05Cleanup the error handling in ipsec ipip_output() and consistentlyAlexander Bluhm
2021-10-05Move setting ipsec mtu into a function. The NULL and invalid checkAlexander Bluhm
generated by cgit v1.2.3 (git 2.25.1) at 2025-01-25 15:37:42 +0000