| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2001-05-30 | Add comments on what the credential types are. | Angelos D. Keromytis | |
| 2001-05-30 | MBOX->USERFQDN, noticed by markus@ | Angelos D. Keromytis | |
| 2001-05-30 | IPSP_IDENTITY_MBOX -> IPSP_IDENTITY_FQDN, and print type of creds/auth | Angelos D. Keromytis | |
| in kernfs | |||
| 2001-05-30 | - gather statistics (ipackets, ierrors, collisions, etc) from txp itself | Jason Wright | |
| - better spl handling | |||
| 2001-05-30 | Update for new prototypes. | Angelos D. Keromytis | |
| 2001-05-30 | No need for last argument in ipip_output() | Angelos D. Keromytis | |
| 2001-05-30 | Update to match prototypes. | Angelos D. Keromytis | |
| 2001-05-30 | Forgot to update ipsec_output_done() | Angelos D. Keromytis | |
| 2001-05-30 | Match prototype. | Angelos D. Keromytis | |
| 2001-05-30 | Update to match prototype. | Angelos D. Keromytis | |
| 2001-05-30 | With the tags, we don't need to abuse the IPsec API to do socket keying. | Angelos D. Keromytis | |
| 2001-05-30 | Handle TDBF_SKIPCRYPTO on output, and PACKET_TAG_IPSEC_IN_CRYPTO_DONE | Angelos D. Keromytis | |
| on input. | |||
| 2001-05-30 | Import/export authentication information for SA. | Angelos D. Keromytis | |
| 2001-05-30 | Free remote authentication material on TDB free. | Angelos D. Keromytis | |
| 2001-05-30 | Keep track of remote authentication material (like public key) as well. | Angelos D. Keromytis | |
| 2001-05-30 | Correctly free information attached to the policy. | Angelos D. Keromytis | |
| 2001-05-30 | Free local auth on TDB free. | Angelos D. Keromytis | |
| 2001-05-30 | Fields to store local auth information in policy and TDB. | Angelos D. Keromytis | |
| 2001-05-30 | Check the LOCAL_AUTH payload. | Angelos D. Keromytis | |
| 2001-05-30 | Add AUTH payload. | Angelos D. Keromytis | |
| 2001-05-30 | define txp_command() in terms of txp_command2(). | Jason Wright | |
| 2001-05-30 | expand txp_command2 to handle extension desciptors for long commands | Jason Wright | |
| 2001-05-30 | - better handling for capabilities: check the card to make sure it supports | Jason Wright | |
| IPsec offloading before claiming to have that capability. - also add cksum offload capabilities (commented out for now) | |||
| 2001-05-30 | Un-bus_dma(9) mcr1 context and mcr operations (causes problems under load). | Jason Wright | |
| Reimplement mcr2 bus_dma handling. | |||
| 2001-05-30 | Remove ipf. Darren Reed has interpreted his (old, new, whichever) | Theo de Raadt | |
| licence in a way that makes ipf not free according to the rules we established over 5 years ago, at www.openbsd.org/goals.html (and those same basic rules govern the other *BSD projects too). Specifically, Darren says that modified versions are not permitted. But software which OpenBSD uses and redistributes must be free to all (be they people or companies), for any purpose they wish to use it, including modification, use, peeing on, or even integration into baby mulching machines or atomic bombs to be dropped on Australia. Furthermore, we know of a number of companies using ipf with modification like us, who are now in the same situation, and we hope that some of them will work with us to fill this gap that now exists in OpenBSD (temporarily, we hope). | |||
| 2001-05-30 | Remove ipf. Darren Reed has interpreted his (old, new, whichever) | Theo de Raadt | |
| licence in a way that makes ipf not free according to the rules we established over 5 years ago, at www.openbsd.org/goals.html (and those same basic rules govern the other *BSD projects too). Specifically, Darren says that modified versions are not permitted. But software which OpenBSD uses and redistributes must be free to all (be they people or companies), for any purpose they wish to use it, including modification, use, peeing on, or even integration into baby mulching machines or atomic bombs to be dropped on Australia. Furthermore, we know of a number of companies using ipf with modification like us, who are now in the same situation, and we hope that some of them will work with us to fill this gap that now exists in OpenBSD (temporarily, we hope). | |||
| 2001-05-29 | pcvt no more | Michael Shalayeff | |
| 2001-05-29 | remove this used to be great console driver; x11 builds w/o it all fine; ↵ | Michael Shalayeff | |
| aaron@, todd@, matthieu@ ok | |||
| 2001-05-29 | Hardware clock support, via adb. | Dale Rahn | |
| This reduces the dependancy on openfirmware somewhat. Since Openfirmware is not actually used for anything, it is no longer necessary to configure it. so several lines of useless dmesg are now gone. This does not have clock setting code enabled yet. All of the code is in place, but needs further testing before it is trusted. I wish Apple would store UTC not localtime in the hardware clock, besides the fact that the clock base is 1904. Need to keep the clock sane for dual boot machines. | |||
| 2001-05-29 | Record last use time for SAs. | Angelos D. Keromytis | |
| 2001-05-29 | Keep track of when a TDB was last marked/unmared as SKIPCRYPTO, and | Angelos D. Keromytis | |
| print the relevant information on KERNFS. | |||
| 2001-05-29 | Fields on TDB for last used and last SKIPCRYPTO status change. | Angelos D. Keromytis | |
| 2001-05-29 | Make sure packets that need crypto processing on the NIC don't escape | Angelos D. Keromytis | |
| (because of routing changes etc.) | |||
| 2001-05-29 | Verify that packets that haven't had crypto applied to them don't make | Angelos D. Keromytis | |
| it out. | |||
| 2001-05-29 | Add ipsp_skipcrypto_{mark,unmark}() | Angelos D. Keromytis | |
| 2001-05-29 | Set, don't OR the capabilities. | Angelos D. Keromytis | |
| 2001-05-28 | #ifdef PMAP_NEW we should call pmap_kremove/pmap_kenter_pa instead of | Todd C. Miller | |
| pmap_remove/pmap_enter. This is needed for when hp300 has true pmap_kremove/pmap_kenter_pa instead of just wrapper functions. | |||
| 2001-05-28 | add BIOC[GS]HDRCMPLT ioctl for BPF, to disable overwriting of link level ↵ | Dug Song | |
| source address in forged frames. from NetBSD. art@ok | |||
| 2001-05-28 | sync | Theo de Raadt | |
| 2001-05-28 | oops | Theo de Raadt | |
| 2001-05-28 | sync | Artur Grabowski | |
| 2001-05-28 | Back out part of last broken, untested change. | Artur Grabowski | |
| It breaks my kernel builds and I don't see any obvious correct solution. | |||
| 2001-05-28 | Set the IFCAP_IPSEC capability. | Angelos D. Keromytis | |
| 2001-05-28 | IPSECv4 -> IPSEC | Angelos D. Keromytis | |
| 2001-05-28 | Copy the packet header only if the original mbuf had a packet header | Angelos D. Keromytis | |
| (just general paranoia). | |||
| 2001-05-28 | sync | Theo de Raadt | |
| 2001-05-28 | new | Theo de Raadt | |
| 2001-05-28 | Remove unused code. | Angelos D. Keromytis | |
| 2001-05-28 | No need for separate ESP/AH interface capabilities. | Angelos D. Keromytis | |
| 2001-05-28 | Don't check IP_ENCAPSULATED. | Angelos D. Keromytis | |
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |