wireguard-openbsd - WireGuard implementation for the OpenBSD kernel

	Commit message (Collapse)	Author	Age	Files	Lines
...
*	don't send UDP encapsulated packets w/o UDP header if encap is disabled; ok ho@	markus	2004-06-21	1	-3/+6
\|
*	UDP encapsulation for ESP in transport mode (draft-ietf-ipsec-udp-encaps-XX.txt)	markus	2003-12-02	1	-1/+30
\| \| \| \|	ok deraadt@
*	do not flip ip_len/ip_off in netinet stack. deraadt ok.	itojun	2003-07-09	1	-8/+3
\| \| \| \|	(please test, especially PF portion)
*	add a counter for times ipcomp is skipped because the packet is below the	jason	2003-02-19	1	-1/+4
\| \| \| \|	minimum compression threshold.
*	Fix a problem where passing NULL as a pointer with varargs does not promote	pefo	2002-08-28	1	-2/+2
\| \| \| \| \| \| \| \|	NULL to full 64 bits on a 64 bit address system. Soultion is to add a (void *) cast before NULL. This makes a 64 bit MIPS kernel work and will probably help future 64 bit ports as well. OK from art@
*	Move mtod() after the m_pullup() --- noted by sam@errno.com (who seems	angelos	2002-07-01	1	-2/+2
\| \| \| \|	to be going over the IPsec code with a magnifying glass)
*	Remove redundant address family check -- sam@errno.com	angelos	2002-06-19	1	-17/+13
\|
*	whitespace	itojun	2002-06-09	1	-5/+5
\|
*	IPsec is written ``IPsec'', not ``IPSec''.	miod	2002-02-19	1	-2/+2
\|
*	Use hzto() to handle overflow of (hz * timeout) cases --- when using	angelos	2001-12-06	1	-3/+14
\| \| \| \|	extremely long SA expirations.
*	Remove IPCOMP option, it's now part of IPSEC option. You still need to	jjbg	2001-08-08	1	-3/+1
\| \| \| \|	enable ipcomp via sysctl to use it. deraadt@ ok.
*	IPComp support. angelos@ ok.	jjbg	2001-07-05	1	-2/+14
\|
*	KNF	angelos	2001-06-26	1	-258/+254
\|
*	Copyright.	angelos	2001-06-25	1	-4/+3
\|
*	path mtu discovery for ipsec. on receiving a need fragment icmp match	provos	2001-06-24	1	-1/+107
\| \| \| \|	against active tdb and store the ipsec header size corrected mtu
*	Trim include files.	angelos	2001-06-08	1	-3/+1
\|
*	Update to match prototypes.	angelos	2001-05-30	1	-13/+8
\|
*	Record last use time for SAs.	angelos	2001-05-29	1	-1/+3
\|
*	Don't use IPV6_ENCAPSULATED, tags are used instead.	angelos	2001-05-28	1	-2/+2
\|
*	New tags.	angelos	2001-05-27	1	-4/+4
\|
*	Add an IPSEC_NEEDED tag if SKIPCRYPTO is set in the TDB	angelos	2001-05-22	1	-4/+13
\|
*	Record outgoing SA processing, do loop detection.	angelos	2001-05-20	1	-3/+21
\|
*	Check m_pullup() and m_pullup2() return for NULL, not 0; itojun@ ok	aaron	2001-05-11	1	-4/+4
\|
*	Minor changes, preparing for real socket-attached TDBs; also, more	angelos	2001-04-14	1	-9/+14
\| \| \| \|	information will be stored in the TDB. ok ho@ provos@
*	Move offsetof define into sys/param.h	csapuntz	2001-04-06	1	-5/+1
\|
*	Allow tdbi's to appear in mbufs throughout the stack; this allows	angelos	2001-03-28	1	-4/+6
\| \| \| \| \| \| \| \| \|	security properties of the packets to be pushed up to the application (not done yet). Eventually, this will be turned into a packet attributes framework. Make sure tdbi's are free'd/cleared properly whenever drivers (or NFS) does weird things with mbufs.
*	convert SA expirations to the new timeouts.	mickey	2001-03-15	1	-3/+6
\| \| \| \| \| \| \| \| \| \|	simplifies expirations handling a lot. tdb_exp_timeout and tdb_soft_timeout are made consistant throughout the code to be a relative time offsets, just like first_use timeouts. tested on singlehost isakmpd setup. lots of dangling spaces and tabs removed. angelos@ ok
*	SA bundles.	angelos	2000-09-19	1	-1/+6
\|
*	Lots and lots of changes.	angelos	2000-09-19	1	-0/+361