Module Name:src
Committed By: riastradh
Date: Sat Jun 29 13:01:14 UTC 2024
Modified Files:
src/sys/netipsec: key.c keysock.c
Log Message:
netipsec: Use _NET_STAT* API instead of direct array access.
PR kern/58380
To generate a diff of this commit:
cvs rdiff -u -r1.282
Module Name:src
Committed By: riastradh
Date: Sat Jun 29 13:01:14 UTC 2024
Modified Files:
src/sys/netipsec: key.c keysock.c
Log Message:
netipsec: Use _NET_STAT* API instead of direct array access.
PR kern/58380
To generate a diff of this commit:
cvs rdiff -u -r1.282
Module Name:src
Committed By: knakahara
Date: Fri Jul 21 00:44:38 UTC 2023
Modified Files:
src/sys/netipsec: key.c
Log Message:
Use kmem_free instead of kmem_intr_free, as key_freesaval() is not called in
softint after key.c:r1.223.
E.g. key_freesaval() was called the
Module Name:src
Committed By: knakahara
Date: Fri Jul 21 00:44:38 UTC 2023
Modified Files:
src/sys/netipsec: key.c
Log Message:
Use kmem_free instead of kmem_intr_free, as key_freesaval() is not called in
softint after key.c:r1.223.
E.g. key_freesaval() was called the
Module Name:src
Committed By: knakahara
Date: Thu Dec 8 08:07:07 UTC 2022
Modified Files:
src/sys/netipsec: ipsec.c key.c
Log Message:
Fix: sp->lastused should be updated by time_uptime, and refactor a little.
To generate a diff of this commit:
cvs rdiff -u -r1.176
Module Name:src
Committed By: knakahara
Date: Thu Dec 8 08:07:07 UTC 2022
Modified Files:
src/sys/netipsec: ipsec.c key.c
Log Message:
Fix: sp->lastused should be updated by time_uptime, and refactor a little.
To generate a diff of this commit:
cvs rdiff -u -r1.176
Module Name:src
Committed By: knakahara
Date: Thu Dec 8 08:05:03 UTC 2022
Modified Files:
src/sys/netipsec: ipsecif.c key.c key.h
Log Message:
Fix: update lastused of ipsecif(4) IPv6 out SP.
To generate a diff of this commit:
cvs rdiff -u -r1.20 -r1.21
Module Name:src
Committed By: knakahara
Date: Thu Dec 8 08:05:03 UTC 2022
Modified Files:
src/sys/netipsec: ipsecif.c key.c key.h
Log Message:
Fix: update lastused of ipsecif(4) IPv6 out SP.
To generate a diff of this commit:
cvs rdiff -u -r1.20 -r1.21
Module Name:src
Committed By: knakahara
Date: Wed Nov 9 08:18:53 UTC 2022
Modified Files:
src/sys/netipsec: ipsec.c
Log Message:
Fix IPv4 security policy with port number does not work for forwarding packets.
To generate a diff of this commit:
cvs rdiff -u -r1.175
Module Name:src
Committed By: knakahara
Date: Wed Nov 9 08:18:53 UTC 2022
Modified Files:
src/sys/netipsec: ipsec.c
Log Message:
Fix IPv4 security policy with port number does not work for forwarding packets.
To generate a diff of this commit:
cvs rdiff -u -r1.175
Module Name:src
Committed By: christos
Date: Wed Oct 19 21:28:03 UTC 2022
Modified Files:
src/sys/netipsec: key.c xform_ipcomp.c
Log Message:
PR/56836: Andrew Cagney: IPv6 ESN tunneling IPcomp has corrupt header
Always always send / expect CPI in IPcomp header
Fixes
Module Name:src
Committed By: christos
Date: Wed Oct 19 21:28:03 UTC 2022
Modified Files:
src/sys/netipsec: key.c xform_ipcomp.c
Log Message:
PR/56836: Andrew Cagney: IPv6 ESN tunneling IPcomp has corrupt header
Always always send / expect CPI in IPcomp header
Fixes
Module Name:src
Committed By: knakahara
Date: Tue Aug 23 09:25:10 UTC 2022
Modified Files:
src/sys/netipsec: ipsec_input.c
Log Message:
Improve IPsec log when no key association found for SA. Implemented by
ohishi@IIJ.
To generate a diff of this commit:
cvs rdiff -u
Module Name:src
Committed By: knakahara
Date: Tue Aug 23 09:25:10 UTC 2022
Modified Files:
src/sys/netipsec: ipsec_input.c
Log Message:
Improve IPsec log when no key association found for SA. Implemented by
ohishi@IIJ.
To generate a diff of this commit:
cvs rdiff -u
Module Name:src
Committed By: ozaki-r
Date: Wed May 25 04:15:44 UTC 2022
Modified Files:
src/sys/netipsec: xform_esp.c
Log Message:
ipsec: don't assert for the format of incoming packets
To generate a diff of this commit:
cvs rdiff -u -r1.105 -r1.106
Module Name:src
Committed By: ozaki-r
Date: Wed May 25 04:15:44 UTC 2022
Modified Files:
src/sys/netipsec: xform_esp.c
Log Message:
ipsec: don't assert for the format of incoming packets
To generate a diff of this commit:
cvs rdiff -u -r1.105 -r1.106
Module Name:src
Committed By: riastradh
Date: Sun May 22 11:39:08 UTC 2022
Modified Files:
src/sys/netipsec: xform.h xform_ah.c xform_esp.c xform_ipcomp.c
xform_ipip.c xform_tcp.c
Log Message:
netipsec: Nothing uses xf_zeroize return value. Nix it.
To
Module Name:src
Committed By: riastradh
Date: Sun May 22 11:39:08 UTC 2022
Modified Files:
src/sys/netipsec: xform.h xform_ah.c xform_esp.c xform_ipcomp.c
xform_ipip.c xform_tcp.c
Log Message:
netipsec: Nothing uses xf_zeroize return value. Nix it.
To
Module Name:src
Committed By: christos
Date: Thu May 19 19:18:03 UTC 2022
Modified Files:
src/sys/netipsec: ipsec_input.c
Log Message:
PR/56840: Andrew Cagney: use the proper polarity hton/ntoh macros (no
functional change).
Factor out spi retrieving code into a function.
Module Name:src
Committed By: christos
Date: Thu May 19 19:18:03 UTC 2022
Modified Files:
src/sys/netipsec: ipsec_input.c
Log Message:
PR/56840: Andrew Cagney: use the proper polarity hton/ntoh macros (no
functional change).
Factor out spi retrieving code into a function.
Module Name:src
Committed By: christos
Date: Wed May 18 15:20:18 UTC 2022
Modified Files:
src/sys/netipsec: key.c key_debug.c key_debug.h
Log Message:
PR/56841: Andrew Cagney: debug-log IPcomp CPI lookups:
- debug-logs why an SPI is rejected
- adds missing
Module Name:src
Committed By: christos
Date: Wed May 18 15:20:18 UTC 2022
Modified Files:
src/sys/netipsec: key.c key_debug.c key_debug.h
Log Message:
PR/56841: Andrew Cagney: debug-log IPcomp CPI lookups:
- debug-logs why an SPI is rejected
- adds missing
Module Name:src
Committed By: andvar
Date: Wed Dec 8 20:03:26 UTC 2021
Modified Files:
src/sys/netipsec: ipsec.c
Log Message:
s/speficication/specification/
To generate a diff of this commit:
cvs rdiff -u -r1.172 -r1.173 src/sys/netipsec/ipsec.c
Please note that diffs
Module Name:src
Committed By: andvar
Date: Wed Dec 8 20:03:26 UTC 2021
Modified Files:
src/sys/netipsec: ipsec.c
Log Message:
s/speficication/specification/
To generate a diff of this commit:
cvs rdiff -u -r1.172 -r1.173 src/sys/netipsec/ipsec.c
Please note that diffs
Module Name:src
Committed By: msaitoh
Date: Wed Nov 10 16:55:20 UTC 2021
Modified Files:
src/sys/netipsec: keydb.h
Log Message:
s/assocciation/association/ in comment.
To generate a diff of this commit:
cvs rdiff -u -r1.23 -r1.24 src/sys/netipsec/keydb.h
Please note
Module Name:src
Committed By: msaitoh
Date: Wed Nov 10 16:55:20 UTC 2021
Modified Files:
src/sys/netipsec: keydb.h
Log Message:
s/assocciation/association/ in comment.
To generate a diff of this commit:
cvs rdiff -u -r1.23 -r1.24 src/sys/netipsec/keydb.h
Please note
Module Name:src
Committed By: knakahara
Date: Mon Oct 5 09:51:25 UTC 2020
Modified Files:
src/sys/netipsec: xform_esp.c
Log Message:
Make sequence number of esp header MP-safe for IPsec Tx side. reviewed by
ozaki-r@n.o
In IPsec Tx side, one Security Association can be
Module Name:src
Committed By: knakahara
Date: Mon Oct 5 09:51:25 UTC 2020
Modified Files:
src/sys/netipsec: xform_esp.c
Log Message:
Make sequence number of esp header MP-safe for IPsec Tx side. reviewed by
ozaki-r@n.o
In IPsec Tx side, one Security Association can be
Module Name:src
Committed By: knakahara
Date: Fri Mar 13 06:55:35 UTC 2020
Modified Files:
src/sys/netipsec: key.c
Log Message:
Fix kern/55066. Pointed out and fixed by Chuck Zmudzinski, thanks.
ok'ed by ozaki-r@n.o
To generate a diff of this commit:
cvs rdiff -u
Module Name:src
Committed By: knakahara
Date: Fri Mar 13 06:55:35 UTC 2020
Modified Files:
src/sys/netipsec: key.c
Log Message:
Fix kern/55066. Pointed out and fixed by Chuck Zmudzinski, thanks.
ok'ed by ozaki-r@n.o
To generate a diff of this commit:
cvs rdiff -u
Module Name:src
Committed By: knakahara
Date: Fri Jan 31 06:54:19 UTC 2020
Modified Files:
src/sys/netipsec: ipsecif.c
Log Message:
Fix IPv6 over IPv4 ipsecif(4) uses IPv4 SP wrongly. Pointed out by ohishi@IIJ.
XXX pullup-8, pullup-9
To generate a diff of this commit:
Module Name:src
Committed By: knakahara
Date: Fri Jan 31 06:54:19 UTC 2020
Modified Files:
src/sys/netipsec: ipsecif.c
Log Message:
Fix IPv6 over IPv4 ipsecif(4) uses IPv4 SP wrongly. Pointed out by ohishi@IIJ.
XXX pullup-8, pullup-9
To generate a diff of this commit:
Module Name:src
Committed By: knakahara
Date: Thu Nov 14 03:17:08 UTC 2019
Modified Files:
src/sys/netipsec: key.c
Log Message:
Reduce load for IKE negotiations when the system has many IPv6 addresses.
e.g. the system has many vlan(4), gif(4) or ipsecif(4) with link
Module Name:src
Committed By: knakahara
Date: Thu Nov 14 03:17:08 UTC 2019
Modified Files:
src/sys/netipsec: key.c
Log Message:
Reduce load for IKE negotiations when the system has many IPv6 addresses.
e.g. the system has many vlan(4), gif(4) or ipsecif(4) with link
Module Name:src
Committed By: knakahara
Date: Tue Nov 12 05:13:29 UTC 2019
Modified Files:
src/sys/netipsec: key.c
Log Message:
Fix SA can be expaired wrongly when there are many SPs.
When key_timehandler_spd() spent over one second, the "now" argument of
Module Name:src
Committed By: knakahara
Date: Tue Nov 12 05:13:29 UTC 2019
Modified Files:
src/sys/netipsec: key.c
Log Message:
Fix SA can be expaired wrongly when there are many SPs.
When key_timehandler_spd() spent over one second, the "now" argument of
Module Name:src
Committed By: knakahara
Date: Wed Aug 7 10:10:00 UTC 2019
Modified Files:
src/sys/netipsec: ipsec.c
Log Message:
ipsec_getpolicybysock() should also call key_havesp() like
ipsec_getpolicybyaddr().
That can reduce KEYDEBUG messages.
To generate a diff
Module Name:src
Committed By: knakahara
Date: Wed Aug 7 10:10:00 UTC 2019
Modified Files:
src/sys/netipsec: ipsec.c
Log Message:
ipsec_getpolicybysock() should also call key_havesp() like
ipsec_getpolicybyaddr().
That can reduce KEYDEBUG messages.
To generate a diff
Module Name:src
Committed By: maxv
Date: Sun Aug 4 14:30:36 UTC 2019
Modified Files:
src/sys/netipsec: key.c
Log Message:
Fix info leaks.
To generate a diff of this commit:
cvs rdiff -u -r1.265 -r1.266 src/sys/netipsec/key.c
Please note that diffs are not public
Module Name:src
Committed By: maxv
Date: Sun Aug 4 14:30:36 UTC 2019
Modified Files:
src/sys/netipsec: key.c
Log Message:
Fix info leaks.
To generate a diff of this commit:
cvs rdiff -u -r1.265 -r1.266 src/sys/netipsec/key.c
Please note that diffs are not public
Module Name:src
Committed By: ozaki-r
Date: Tue Jul 23 04:29:27 UTC 2019
Modified Files:
src/sys/netipsec: key.c
Log Message:
ipsec: fix a regression of the update API
The update API updates an SA by creating a new SA and removing an existing SA.
The previous change
Module Name:src
Committed By: ozaki-r
Date: Tue Jul 23 04:29:27 UTC 2019
Modified Files:
src/sys/netipsec: key.c
Log Message:
ipsec: fix a regression of the update API
The update API updates an SA by creating a new SA and removing an existing SA.
The previous change
Module Name:src
Committed By: ozaki-r
Date: Wed Jul 17 07:07:59 UTC 2019
Modified Files:
src/sys/netipsec: key.c
Log Message:
Avoid a race condition between SA (sav) manipulations
An sav can be removed from belonging list(s) twice resulting in an assertion
failure of
Module Name:src
Committed By: ozaki-r
Date: Wed Jul 17 07:07:59 UTC 2019
Modified Files:
src/sys/netipsec: key.c
Log Message:
Avoid a race condition between SA (sav) manipulations
An sav can be removed from belonging list(s) twice resulting in an assertion
failure of
Module Name:src
Committed By: maxv
Date: Tue Jul 9 16:56:24 UTC 2019
Modified Files:
src/sys/netipsec: ipsec.c
Log Message:
Fix uninitialized variable: in ipsec_checkpcbcache(), spidx.dir is not
initialized, and the padding of the spidx structure is not initialized
Module Name:src
Committed By: maxv
Date: Tue Jul 9 16:56:24 UTC 2019
Modified Files:
src/sys/netipsec: ipsec.c
Log Message:
Fix uninitialized variable: in ipsec_checkpcbcache(), spidx.dir is not
initialized, and the padding of the spidx structure is not initialized
Module Name:src
Committed By: christos
Date: Wed Jun 12 22:23:50 UTC 2019
Modified Files:
src/sys/netipsec: ipsec.h keysock.c xform_ah.c xform_esp.c
xform_ipcomp.c xform_ipip.c xform_tcp.c
Log Message:
make DPRINTF use varyadic cpp macros, and merge with
Module Name:src
Committed By: christos
Date: Wed Jun 12 22:23:50 UTC 2019
Modified Files:
src/sys/netipsec: ipsec.h keysock.c xform_ah.c xform_esp.c
xform_ipcomp.c xform_ipip.c xform_tcp.c
Log Message:
make DPRINTF use varyadic cpp macros, and merge with
Module Name:src
Committed By: christos
Date: Wed Jun 12 22:23:07 UTC 2019
Modified Files:
src/sys/netipsec: key.c
Log Message:
fix typo in comment, improve error message, add default case handling to
set error.
To generate a diff of this commit:
cvs rdiff -u -r1.262
Module Name:src
Committed By: christos
Date: Wed Jun 12 22:23:07 UTC 2019
Modified Files:
src/sys/netipsec: key.c
Log Message:
fix typo in comment, improve error message, add default case handling to
set error.
To generate a diff of this commit:
cvs rdiff -u -r1.262
Module Name:src
Committed By: christos
Date: Wed Jun 12 01:32:30 UTC 2019
Modified Files:
src/sys/netipsec: key.c
Log Message:
Fix double free: key_setsaval() free's newsav by calling key_freesaval()
and key_api_update() calls key_delsav() when key_setsaval() fails which
Module Name:src
Committed By: christos
Date: Wed Jun 12 01:32:30 UTC 2019
Modified Files:
src/sys/netipsec: key.c
Log Message:
Fix double free: key_setsaval() free's newsav by calling key_freesaval()
and key_api_update() calls key_delsav() when key_setsaval() fails which
Module Name:src
Committed By: knakahara
Date: Fri Apr 12 07:12:12 UTC 2019
Modified Files:
src/sys/netipsec: ipsecif.c
Log Message:
remove a variable which is no longer used.
To generate a diff of this commit:
cvs rdiff -u -r1.14 -r1.15 src/sys/netipsec/ipsecif.c
Module Name:src
Committed By: knakahara
Date: Fri Apr 12 07:12:12 UTC 2019
Modified Files:
src/sys/netipsec: ipsecif.c
Log Message:
remove a variable which is no longer used.
To generate a diff of this commit:
cvs rdiff -u -r1.14 -r1.15 src/sys/netipsec/ipsecif.c
Module Name:src
Committed By: maxv
Date: Tue Feb 26 06:52:34 UTC 2019
Modified Files:
src/sys/netipsec: keysock.c
Log Message:
Fix locking: it is fine if the lock is already key_so_mtx, this can happen
in socketpair. In that case don't take it.
Ok ozaki-r@
Reported-by:
Module Name:src
Committed By: maxv
Date: Tue Feb 26 06:52:34 UTC 2019
Modified Files:
src/sys/netipsec: keysock.c
Log Message:
Fix locking: it is fine if the lock is already key_so_mtx, this can happen
in socketpair. In that case don't take it.
Ok ozaki-r@
Reported-by:
Module Name:src
Committed By: knakahara
Date: Wed Dec 26 08:58:51 UTC 2018
Modified Files:
src/sys/netipsec: ipsec_output.c ipsecif.c key.c
Log Message:
ipsecif(4) supports multiple peers in the same NAPT.
E.g. ipsec0 connects between NetBSD_A and NetBSD_B, ipsec1
Module Name:src
Committed By: knakahara
Date: Wed Dec 26 08:58:51 UTC 2018
Modified Files:
src/sys/netipsec: ipsec_output.c ipsecif.c key.c
Log Message:
ipsecif(4) supports multiple peers in the same NAPT.
E.g. ipsec0 connects between NetBSD_A and NetBSD_B, ipsec1
Module Name:src
Committed By: maxv
Date: Mon Dec 24 15:57:15 UTC 2018
Modified Files:
src/sys/netipsec: keysock.c keysock.h
Log Message:
Remove unused function.
To generate a diff of this commit:
cvs rdiff -u -r1.66 -r1.67 src/sys/netipsec/keysock.c
cvs rdiff -u -r1.11
Module Name:src
Committed By: maxv
Date: Mon Dec 24 15:57:15 UTC 2018
Modified Files:
src/sys/netipsec: keysock.c keysock.h
Log Message:
Remove unused function.
To generate a diff of this commit:
cvs rdiff -u -r1.66 -r1.67 src/sys/netipsec/keysock.c
cvs rdiff -u -r1.11
Module Name:src
Committed By: knakahara
Date: Fri Dec 7 09:11:04 UTC 2018
Modified Files:
src/sys/netipsec: ipsecif.c
Log Message:
ipsecif(4) should not increment drop counter by errors not related to if_snd.
Pointed out by ozaki-r@n.o, thanks.
To generate a diff of
Module Name:src
Committed By: knakahara
Date: Fri Dec 7 09:11:04 UTC 2018
Modified Files:
src/sys/netipsec: ipsecif.c
Log Message:
ipsecif(4) should not increment drop counter by errors not related to if_snd.
Pointed out by ozaki-r@n.o, thanks.
To generate a diff of
Module Name:src
Committed By: maxv
Date: Sat Oct 27 05:42:23 UTC 2018
Modified Files:
src/sys/netipsec: ipsec.c ipsec.h ipsec_input.c
Log Message:
Localify one function, and switch to C99 types while here.
To generate a diff of this commit:
cvs rdiff -u -r1.165 -r1.166
Module Name:src
Committed By: maxv
Date: Sat Oct 27 05:42:23 UTC 2018
Modified Files:
src/sys/netipsec: ipsec.c ipsec.h ipsec_input.c
Log Message:
Localify one function, and switch to C99 types while here.
To generate a diff of this commit:
cvs rdiff -u -r1.165 -r1.166
Module Name:src
Committed By: ozaki-r
Date: Thu Aug 23 01:55:38 UTC 2018
Modified Files:
src/sys/netipsec: key.c
Log Message:
Don't call key_ismyaddr, which may sleep, in a pserialize read section
Use mutex here instead of pserialize because using mutex is simpler than
Module Name:src
Committed By: ozaki-r
Date: Thu Aug 23 01:55:38 UTC 2018
Modified Files:
src/sys/netipsec: key.c
Log Message:
Don't call key_ismyaddr, which may sleep, in a pserialize read section
Use mutex here instead of pserialize because using mutex is simpler than
Module Name:src
Committed By: christos
Date: Wed Jul 4 19:20:25 UTC 2018
Modified Files:
src/sys/netipsec: key.c
Log Message:
merge duplicated code, more informative debugging.
To generate a diff of this commit:
cvs rdiff -u -r1.255 -r1.256 src/sys/netipsec/key.c
Module Name:src
Committed By: christos
Date: Wed Jul 4 19:20:25 UTC 2018
Modified Files:
src/sys/netipsec: key.c
Log Message:
merge duplicated code, more informative debugging.
To generate a diff of this commit:
cvs rdiff -u -r1.255 -r1.256 src/sys/netipsec/key.c
Module Name:src
Committed By: maxv
Date: Thu May 31 15:34:25 UTC 2018
Modified Files:
src/sys/netipsec: ipsec_mbuf.c
Log Message:
Clarify, remove superfluous things.
To generate a diff of this commit:
cvs rdiff -u -r1.27 -r1.28 src/sys/netipsec/ipsec_mbuf.c
Please note
Module Name:src
Committed By: maxv
Date: Thu May 31 15:34:25 UTC 2018
Modified Files:
src/sys/netipsec: ipsec_mbuf.c
Log Message:
Clarify, remove superfluous things.
To generate a diff of this commit:
cvs rdiff -u -r1.27 -r1.28 src/sys/netipsec/ipsec_mbuf.c
Please note
Module Name:src
Committed By: maxv
Date: Thu May 31 15:06:45 UTC 2018
Modified Files:
src/sys/netipsec: ipsec_output.c
Log Message:
Adapt rev1.75, suggested by Alexander Bluhm. Relax the checks to allow
protocols smaller than two bytes (only IPPROTO_NONE). While here
Module Name:src
Committed By: maxv
Date: Thu May 31 15:06:45 UTC 2018
Modified Files:
src/sys/netipsec: ipsec_output.c
Log Message:
Adapt rev1.75, suggested by Alexander Bluhm. Relax the checks to allow
protocols smaller than two bytes (only IPPROTO_NONE). While here
Module Name:src
Committed By: maxv
Date: Thu May 31 06:25:41 UTC 2018
Modified Files:
src/sys/netipsec: xform_ah.c
Log Message:
Constify ipseczeroes, and remove one use of it.
To generate a diff of this commit:
cvs rdiff -u -r1.105 -r1.106 src/sys/netipsec/xform_ah.c
Module Name:src
Committed By: maxv
Date: Thu May 31 06:25:41 UTC 2018
Modified Files:
src/sys/netipsec: xform_ah.c
Log Message:
Constify ipseczeroes, and remove one use of it.
To generate a diff of this commit:
cvs rdiff -u -r1.105 -r1.106 src/sys/netipsec/xform_ah.c
Module Name:src
Committed By: maxv
Date: Thu May 31 06:14:18 UTC 2018
Modified Files:
src/sys/netipsec: xform_esp.c
Log Message:
Add a comment and a KASSERT. I remember wondering whether this check was a
problem, since ARC4 has a blocksize of one. Normally ARC4 can't be
Module Name:src
Committed By: maxv
Date: Thu May 31 06:14:18 UTC 2018
Modified Files:
src/sys/netipsec: xform_esp.c
Log Message:
Add a comment and a KASSERT. I remember wondering whether this check was a
problem, since ARC4 has a blocksize of one. Normally ARC4 can't be
Module Name:src
Committed By: maxv
Date: Thu May 31 05:52:09 UTC 2018
Modified Files:
src/sys/netipsec: xform_esp.c
Log Message:
style
To generate a diff of this commit:
cvs rdiff -u -r1.94 -r1.95 src/sys/netipsec/xform_esp.c
Please note that diffs are not public
Module Name:src
Committed By: maxv
Date: Thu May 31 05:52:09 UTC 2018
Modified Files:
src/sys/netipsec: xform_esp.c
Log Message:
style
To generate a diff of this commit:
cvs rdiff -u -r1.94 -r1.95 src/sys/netipsec/xform_esp.c
Please note that diffs are not public
Module Name:src
Committed By: maxv
Date: Wed May 30 18:02:41 UTC 2018
Modified Files:
src/sys/netipsec: xform_ah.c
Log Message:
Correctly handle the padding for IPv6-AH, as specified by RFC4302. Seen in
a FreeBSD bug report, by Jason Mader.
The RFC specifies that under
Module Name:src
Committed By: maxv
Date: Wed May 30 18:02:41 UTC 2018
Modified Files:
src/sys/netipsec: xform_ah.c
Log Message:
Correctly handle the padding for IPv6-AH, as specified by RFC4302. Seen in
a FreeBSD bug report, by Jason Mader.
The RFC specifies that under
Module Name:src
Committed By: maxv
Date: Wed May 30 17:17:11 UTC 2018
Modified Files:
src/sys/netipsec: xform.h xform_ah.c xform_esp.c
Log Message:
Introduce ah_authsiz, which computes the length of the ICV only. Use it in
esp_hdrsiz, and clarify.
Until now we were using
Module Name:src
Committed By: maxv
Date: Wed May 30 17:17:11 UTC 2018
Modified Files:
src/sys/netipsec: xform.h xform_ah.c xform_esp.c
Log Message:
Introduce ah_authsiz, which computes the length of the ICV only. Use it in
esp_hdrsiz, and clarify.
Until now we were using
Module Name:src
Committed By: maxv
Date: Wed May 30 16:49:38 UTC 2018
Modified Files:
src/sys/netipsec: xform_esp.c
Log Message:
Apply the previous change in esp_input too, same as esp_output.
To generate a diff of this commit:
cvs rdiff -u -r1.92 -r1.93
Module Name:src
Committed By: maxv
Date: Wed May 30 16:49:38 UTC 2018
Modified Files:
src/sys/netipsec: xform_esp.c
Log Message:
Apply the previous change in esp_input too, same as esp_output.
To generate a diff of this commit:
cvs rdiff -u -r1.92 -r1.93
Module Name:src
Committed By: maxv
Date: Wed May 30 16:43:29 UTC 2018
Modified Files:
src/sys/netipsec: xform_esp.c
Log Message:
Remove dead code, 'espx' is never NULL and dereferenced earlier, so no need
to NULL-check all the time.
To generate a diff of this commit:
Module Name:src
Committed By: maxv
Date: Wed May 30 16:43:29 UTC 2018
Modified Files:
src/sys/netipsec: xform_esp.c
Log Message:
Remove dead code, 'espx' is never NULL and dereferenced earlier, so no need
to NULL-check all the time.
To generate a diff of this commit:
Module Name:src
Committed By: maxv
Date: Wed May 30 16:32:26 UTC 2018
Modified Files:
src/sys/netipsec: xform_esp.c
Log Message:
Simplify the padding computation. Until now 'padlen' contained the ESP
Trailer (two bytes), and we were doing minus two all the time.
Declare
Module Name:src
Committed By: maxv
Date: Wed May 30 16:32:26 UTC 2018
Modified Files:
src/sys/netipsec: xform_esp.c
Log Message:
Simplify the padding computation. Until now 'padlen' contained the ESP
Trailer (two bytes), and we were doing minus two all the time.
Declare
Module Name:src
Committed By: maxv
Date: Wed May 30 16:15:19 UTC 2018
Modified Files:
src/sys/netipsec: xform_esp.c
Log Message:
Rename padding -> padlen, pad -> tail, and clarify.
To generate a diff of this commit:
cvs rdiff -u -r1.89 -r1.90
Module Name:src
Committed By: maxv
Date: Wed May 30 16:15:19 UTC 2018
Modified Files:
src/sys/netipsec: xform_esp.c
Log Message:
Rename padding -> padlen, pad -> tail, and clarify.
To generate a diff of this commit:
cvs rdiff -u -r1.89 -r1.90
Module Name:src
Committed By: maxv
Date: Tue May 29 16:50:38 UTC 2018
Modified Files:
src/sys/netipsec: xform_ah.c
Log Message:
Strengthen and simplify, once more.
To generate a diff of this commit:
cvs rdiff -u -r1.102 -r1.103 src/sys/netipsec/xform_ah.c
Please note
Module Name:src
Committed By: maxv
Date: Tue May 29 16:50:38 UTC 2018
Modified Files:
src/sys/netipsec: xform_ah.c
Log Message:
Strengthen and simplify, once more.
To generate a diff of this commit:
cvs rdiff -u -r1.102 -r1.103 src/sys/netipsec/xform_ah.c
Please note
Module Name:src
Committed By: ozaki-r
Date: Tue May 29 09:25:44 UTC 2018
Modified Files:
src/sys/netipsec: xform_ah.c
Log Message:
Fix non-INET6 builds
To generate a diff of this commit:
cvs rdiff -u -r1.101 -r1.102 src/sys/netipsec/xform_ah.c
Please note that diffs
Module Name:src
Committed By: ozaki-r
Date: Tue May 29 09:25:44 UTC 2018
Modified Files:
src/sys/netipsec: xform_ah.c
Log Message:
Fix non-INET6 builds
To generate a diff of this commit:
cvs rdiff -u -r1.101 -r1.102 src/sys/netipsec/xform_ah.c
Please note that diffs
Module Name:src
Committed By: maxv
Date: Fri May 18 19:02:49 UTC 2018
Modified Files:
src/sys/netipsec: ipsec_input.c xform_ah.c xform_esp.c
Log Message:
IP6_EXTHDR_GET -> M_REGION_GET, no functional change.
To generate a diff of this commit:
cvs rdiff -u -r1.69 -r1.70
Module Name:src
Committed By: maxv
Date: Fri May 18 19:02:49 UTC 2018
Modified Files:
src/sys/netipsec: ipsec_input.c xform_ah.c xform_esp.c
Log Message:
IP6_EXTHDR_GET -> M_REGION_GET, no functional change.
To generate a diff of this commit:
cvs rdiff -u -r1.69 -r1.70
Le 14/05/2018 à 04:16, Ryota Ozaki a écrit :
Module Name:src
Committed By: ozaki-r
Date: Mon May 14 02:16:30 UTC 2018
Modified Files:
src/sys/netipsec: xform_tcp.c
Log Message:
Restore TCP header inclusions for TCP_SIGNATURE
To generate a diff of this commit:
cvs
Module Name:src
Committed By: ozaki-r
Date: Mon May 14 02:16:30 UTC 2018
Modified Files:
src/sys/netipsec: xform_tcp.c
Log Message:
Restore TCP header inclusions for TCP_SIGNATURE
To generate a diff of this commit:
cvs rdiff -u -r1.20 -r1.21 src/sys/netipsec/xform_tcp.c
Module Name:src
Committed By: ozaki-r
Date: Mon May 14 02:16:30 UTC 2018
Modified Files:
src/sys/netipsec: xform_tcp.c
Log Message:
Restore TCP header inclusions for TCP_SIGNATURE
To generate a diff of this commit:
cvs rdiff -u -r1.20 -r1.21 src/sys/netipsec/xform_tcp.c
Module Name:src
Committed By: maxv
Date: Sun May 13 18:34:59 UTC 2018
Modified Files:
src/sys/netipsec: xform_ah.c xform_esp.c xform_ipcomp.c
Log Message:
Remove unused calls to nat_t_ports_get.
To generate a diff of this commit:
cvs rdiff -u -r1.99 -r1.100
1 - 100 of 889 matches
Mail list logo