aboutsummaryrefslogtreecommitdiff
path: root/sys/netipsec
Commit message (Expand)AuthorAgeFilesLines
* Another step assimilating IPv[46] PCB code - directly useBjoern A. Zeeb2008-12-152-42/+24
* Second round of putting global variables, which were virtualizedBjoern A. Zeeb2008-12-131-0/+2
* Conditionally compile out V_ globals while instantiating the appropriateMarko Zec2008-12-102-0/+12
* Rather than using hidden includes (with cicular dependencies),Bjoern A. Zeeb2008-12-026-14/+17
* Unhide declarations of network stack virtualization structs fromMarko Zec2008-11-283-7/+5
* Unify ipsec[46]_delete_pcbpolicy in ipsec_delete_pcbpolicy.Bjoern A. Zeeb2008-11-273-24/+2
* Merge more of currently non-functional (i.e. resolving toMarko Zec2008-11-264-27/+19
* Unbreak the build without INET6.Bjoern A. Zeeb2008-11-251-0/+2
* Change the initialization methodology for global variables scheduledMarko Zec2008-11-198-51/+129
* Retire the MALLOC and FREE macros. They are an abomination unto style(9).Dag-Erling Smørgrav2008-10-232-4/+4
* Step 1.5 of importing the network stack virtualization infrastructureMarko Zec2008-10-0212-99/+448
* Commit step 1 of the vimage project, (network stack)Bjoern A. Zeeb2008-08-1712-344/+354
* Increase statistic counters for enc0 interface when enabledVANHULLEBUS Yvan2008-08-122-0/+22
* Add lifetime informations to generated SPD entries when SPDDUMPVANHULLEBUS Yvan2008-08-051-0/+17
* Fill in a few sysctl descriptions.Tom Rhodes2008-07-261-24/+29
* Document a few sysctls. While here, remove dead codeTom Rhodes2008-07-202-27/+24
* Remove unused support for local and foreign addresses in generic rawRobert Watson2008-07-091-3/+0
* Enter the 1990s. Use real function declaration.Julian Elischer2008-06-291-1/+1
* In addition to the ipsec_osdep.h removal a week ago, now also eliminateBjoern A. Zeeb2008-05-248-24/+0
* Remove last bits of OS adaptation code from the IPSec code.George V. Neville-Neil2008-05-172-310/+8
* Fix a bug that when getting/dumping the soft lifetime we reportedBjoern A. Zeeb2008-03-241-1/+1
* Import change from KAME, rev. 1.362 kame/kame/sys/netkey/key.cBjoern A. Zeeb2008-03-241-1/+1
* Add ';' missed with the SYSINIT changes.Bjoern A. Zeeb2008-03-211-1/+1
* In keeping with style(9)'s recommendations on macros, use a ';'Robert Watson2008-03-161-1/+1
* Correct IPsec behaviour with a 'use' level in SP but no SA available.Bjoern A. Zeeb2008-03-141-22/+33
* Remove the "Fast " from theBjoern A. Zeeb2008-03-141-1/+1
* Fix bugs when allocating and passing information of current lifetime andBjoern A. Zeeb2008-03-022-6/+29
* Rather than passing around a cached 'priv', pass in an ucred toBjoern A. Zeeb2008-02-023-13/+16
* Add sysctls to if_enc(4) to control whether the firewalls orBjoern A. Zeeb2007-11-285-7/+72
* Adjust a comment that suggest that we might consider a panic.Bjoern A. Zeeb2007-11-281-1/+3
* Move the priv check before the malloc call for so_pcb.Bjoern A. Zeeb2007-11-161-6/+6
* Add a missing priv check in key_attach to prevent non-su usersBjoern A. Zeeb2007-11-121-0/+7
* Fix for an infinite loop in processing ESP, IPv6 packets.George V. Neville-Neil2007-09-121-4/+17
* Remove the now-unused NET_{LOCK,UNLOCK,ASSERT}_GIANT() macros, whichRobert Watson2007-08-063-30/+0
* Replace hard coded options by their defined PFIL_{IN,OUT} names.Bjoern A. Zeeb2007-07-193-3/+6
* Commit the change from FAST_IPSEC to IPSEC. The FAST_IPSECGeorge V. Neville-Neil2007-07-031-2/+2
* Commit IPv6 support for FAST_IPSEC to the tree.George V. Neville-Neil2007-07-019-114/+64
* 'spi' and the return value of ntohl are unsigned. Remove the extra >=0Bjoern A. Zeeb2007-06-161-1/+6
* In case of failure we can directly return ENOBUFS becauseBjoern A. Zeeb2007-06-161-10/+3
* Add a missing return so that we drop out in case of an error andBjoern A. Zeeb2007-06-151-3/+2
* With the current code 'src' is never NULL. Nevertheless move the check forBjoern A. Zeeb2007-06-151-1/+3
* Looking at {ah,esp}_input_cb it seems we might be able to end upBjoern A. Zeeb2007-06-151-1/+1
* s,#,*, in a multi-line comment. This is C.Bjoern A. Zeeb2007-06-151-1/+1
* Though we are only called for the three security protocols we canBjoern A. Zeeb2007-06-151-0/+4
* Eliminate now-unused SUSER_ALLOWJAIL arguments to priv_check_cred(); inRobert Watson2007-06-121-3/+1
* In ipsec6_output_tunnel() make sure that the SA contents do not change.Bjoern A. Zeeb2007-05-291-1/+8
* fix typo: s,applyed,applied,gBjoern A. Zeeb2007-05-291-2/+2
* Implement ICMPv6 support in ipsec6_get_ulp().Bjoern A. Zeeb2007-05-291-0/+10
* Add missingBjoern A. Zeeb2007-05-291-0/+1
* Integrate the Camellia Block Cipher. For more information see RFC 4132George V. Neville-Neil2007-05-091-0/+3