summaryrefslogtreecommitdiffstats
path: root/sys/netinet/ip_spd.c (follow)
Commit message (Expand)AuthorAgeFilesLines
* miscellaneous typo fixes:jfb2005-02-171-2/+2
* First step towards more sane time handling in the kernel -- this changestholo2004-06-211-5/+5
* make it possble to use IPsec over link-local address (policy table usesitojun2004-06-211-3/+3
* simpler ipsp_aux_match() API; ok henning, hshoexermarkus2004-04-141-17/+14
* Check for undersized IP header, found by jbm@, ok angelos@dhartmei2002-11-121-1/+9
* whitespaceitojun2002-06-091-2/+2
* Per-socket policies and authentication. Finally.angelos2002-05-311-63/+382
* Search the correct ACQUIRE list --- shifflett@nps.navy.milangelos2002-02-181-2/+2
* It looks like there has been one crack smoking and a few cut and pastes.art2002-01-231-3/+3
* Pool deals fairly well with physical memory shortage, but it doesn't dealart2002-01-231-5/+3
* at least ; required after label or case; openbsd@davidkrause.comderaadt2002-01-021-1/+2
* Reset the error return value if the cached TDB matches theangelos2001-09-241-1/+2
* When the outgoing socket has BYPASS set, don't bother calling theangelos2001-08-211-5/+4
* bcmp done wrong, detected at bakeoff. Hint: always useniklas2001-08-151-2/+2
* Don't drop packets if we're using an ACQUIRE policy and some errorangelos2001-08-061-15/+12
* Use TAILQ_FOREACH() instead of hand-crafted for loops.angelos2001-06-271-5/+3
* When determining whether there's a pending acquire wrt a policy, lookangelos2001-06-271-4/+4
* Attach IPsec acquire state to policy entries, and relevant cleanups.angelos2001-06-271-3/+15
* Don't cache packets that hit policies -- we'll do that at the PCB forangelos2001-06-271-91/+18
* Use the ACQUIRE sequence number to "wake up" acquire state kept andangelos2001-06-261-73/+45
* ifdef out some currently unused codeangelos2001-06-261-1/+3
* Rewrite ipsp_clear_acquire() to be more readable, after all the KNF'ingangelos2001-06-261-75/+69
* Use pool(9) for IPsec acquires too.angelos2001-06-261-12/+19
* Use pool(9) for IPsec policy structures.angelos2001-06-261-6/+15
* Keep the PFKEY sequence number at the TDB, plus a little bit of KNFangelos2001-06-261-8/+12
* KNFangelos2001-06-261-700/+692
* Copyright.angelos2001-06-251-4/+3
* use new timeouts for spd expirations; ho@ okmickey2001-06-241-36/+8
* Trim include files.angelos2001-06-081-8/+2
* Simplify SPD logic (and correct some input cases).angelos2001-06-071-335/+138
* Match prototype.angelos2001-05-301-3/+3
* Correctly free information attached to the policy.angelos2001-05-301-4/+6
* Check that SAs also match on the credentials and the IDs. This meansangelos2001-05-051-23/+30
* Missing splx in error handling.art2001-04-231-1/+3
* Minor changes, preparing for real socket-attached TDBs; also, moreangelos2001-04-141-3/+3
* allow host-to-host negotiations if no gateway has been specified.provos2001-04-101-5/+9
* Move offsetof define into sys/param.hcsapuntz2001-04-061-5/+1
* Allow tdbi's to appear in mbufs throughout the stack; this allowsangelos2001-03-281-3/+7
* include <machine/cpu.h>, since schednetisr needs to do a splsoftnetbjc2001-03-151-1/+3
* Pretty.angelos2001-02-281-2/+7
* Handle failures more gracefully.angelos2001-02-281-10/+11
* Keep the last packet sent or received that matched an SPD entry, andangelos2001-02-281-86/+167
* Compile in non-INET6 kernels.angelos2000-12-141-3/+9
* Always look for a suitable TDB if the gateway is left unspecified.angelos2000-12-141-5/+32
* All-1s addresses as policy destinations is also reserved for futureangelos2000-11-171-29/+51
* Fix compile error if lacking -DINET6chris2000-10-181-1/+3
* ASKPOLICY message; used by key management to inquire about policyangelos2000-10-141-10/+184
* Make sure there's enough data on the mbuf for the TCP/UDP ports (ifangelos2000-09-291-1/+15
* Fix checking for incoming packets when the remote gateway has beenangelos2000-09-271-11/+41
* Add IDENTITY payloads to flow establishment (and cleanup accordingly)angelos2000-09-201-1/+5
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.