summaryrefslogtreecommitdiff
path: root/usr.sbin/sasyncd/pfkey.c
AgeCommit message (Collapse)Author
2006-06-02whitespace cleanup, no binary change.Moritz Jodeit
2006-06-02Make sasyncd fail back correctly with carp preemption enabled.Ryan Thomas McBride
Hold the carp demotion when booting, to prevent carp from preempting until we've sync'd with our peers. This adds a new CTL_ENDSNAP message to the exchange between the sasync daemons to indicate when the complete snapshot has been sent. Undemote after 60 seconds, or when recieve a CTL_ENDSNAP from all our peers. Syntax is slightly changed, removing the 'carp' keyword (so do "interface carp0" rather than "carp interface carp0". Adds 'group <ifgroup>', defaults to the 'carp' group. ok moritz@
2006-02-15remove "the the" in comment; ok jmc@David Krause
2006-01-26fix some format strings and add a missingMoritz Jodeit
argument to a log_err() call. ok ho@
2005-05-28Optionally prevent syncing failover node-node SA/SPD info (master side).Hakan Olsson
2005-05-27Implement SPD (IPsec flow) snapshots.Hakan Olsson
2005-05-26add a 'flushmode' to control how the master handles FLUSH to slaves. tweak ↵Hakan Olsson
some loglevels.
2005-05-26disable SPD snapshot for nowHakan Olsson
2005-05-26Don't alloc/free zero-sized SADB/SPD buffers.Hakan Olsson
2005-05-24Now that all "other" SADB_DUMP fields are zero, we don't have fix it here.Hakan Olsson
2005-05-24Remove some debugging cruft.Hakan Olsson
2005-05-24When peers connect, have the master daemon look at in-kernel SAs and feedHakan Olsson
these to the new peer. Adds privsep as fetching SADB and SPD kernel data requires privileges.
2005-05-23Various logging fixes, handle peer disconnects better.Hakan Olsson
2005-05-22No more SSL between peers, instead do shared key AES & SHAHakan Olsson
2005-03-30Move sasyncd(8), for IPsec SA synchronization, in-tree. Work in progress.Hakan Olsson
deraadt@ ok.
generated by cgit v1.2.3 (git 2.25.1) at 2025-01-26 19:15:18 +0000