Module Name:src
Committed By: andvar
Date: Mon Sep 2 18:56:20 UTC 2024
Modified Files:
src/sys/netipsec: key.c
Log Message:
s/timehander/timehandler/ in the comment.
To generate a diff of this commit:
cvs rdiff -u -r1.284 -r1.285 src/sys/netipsec/key.c
Please note that
Module Name:src
Committed By: andvar
Date: Mon Sep 2 18:56:20 UTC 2024
Modified Files:
src/sys/netipsec: key.c
Log Message:
s/timehander/timehandler/ in the comment.
To generate a diff of this commit:
cvs rdiff -u -r1.284 -r1.285 src/sys/netipsec/key.c
Please note that
Module Name:src
Committed By: riastradh
Date: Sat Jun 29 13:01:14 UTC 2024
Modified Files:
src/sys/netipsec: key.c keysock.c
Log Message:
netipsec: Use _NET_STAT* API instead of direct array access.
PR kern/58380
To generate a diff of this commit:
cvs rdiff -u -r1.282 -
Module Name:src
Committed By: riastradh
Date: Sat Jun 29 13:01:14 UTC 2024
Modified Files:
src/sys/netipsec: key.c keysock.c
Log Message:
netipsec: Use _NET_STAT* API instead of direct array access.
PR kern/58380
To generate a diff of this commit:
cvs rdiff -u -r1.282 -
Module Name:src
Committed By: knakahara
Date: Fri Jul 21 00:44:38 UTC 2023
Modified Files:
src/sys/netipsec: key.c
Log Message:
Use kmem_free instead of kmem_intr_free, as key_freesaval() is not called in
softint after key.c:r1.223.
E.g. key_freesaval() was called the fo
Module Name:src
Committed By: knakahara
Date: Fri Jul 21 00:44:38 UTC 2023
Modified Files:
src/sys/netipsec: key.c
Log Message:
Use kmem_free instead of kmem_intr_free, as key_freesaval() is not called in
softint after key.c:r1.223.
E.g. key_freesaval() was called the fo
Module Name:src
Committed By: knakahara
Date: Thu Dec 8 08:07:07 UTC 2022
Modified Files:
src/sys/netipsec: ipsec.c key.c
Log Message:
Fix: sp->lastused should be updated by time_uptime, and refactor a little.
To generate a diff of this commit:
cvs rdiff -u -r1.176 -r1.
Module Name:src
Committed By: knakahara
Date: Thu Dec 8 08:07:07 UTC 2022
Modified Files:
src/sys/netipsec: ipsec.c key.c
Log Message:
Fix: sp->lastused should be updated by time_uptime, and refactor a little.
To generate a diff of this commit:
cvs rdiff -u -r1.176 -r1.
Module Name:src
Committed By: knakahara
Date: Thu Dec 8 08:05:03 UTC 2022
Modified Files:
src/sys/netipsec: ipsecif.c key.c key.h
Log Message:
Fix: update lastused of ipsecif(4) IPv6 out SP.
To generate a diff of this commit:
cvs rdiff -u -r1.20 -r1.21 src/sys/netipsec/
Module Name:src
Committed By: knakahara
Date: Thu Dec 8 08:05:03 UTC 2022
Modified Files:
src/sys/netipsec: ipsecif.c key.c key.h
Log Message:
Fix: update lastused of ipsecif(4) IPv6 out SP.
To generate a diff of this commit:
cvs rdiff -u -r1.20 -r1.21 src/sys/netipsec/
Module Name:src
Committed By: knakahara
Date: Wed Nov 9 08:18:53 UTC 2022
Modified Files:
src/sys/netipsec: ipsec.c
Log Message:
Fix IPv4 security policy with port number does not work for forwarding packets.
To generate a diff of this commit:
cvs rdiff -u -r1.175 -r1.1
Module Name:src
Committed By: knakahara
Date: Wed Nov 9 08:18:53 UTC 2022
Modified Files:
src/sys/netipsec: ipsec.c
Log Message:
Fix IPv4 security policy with port number does not work for forwarding packets.
To generate a diff of this commit:
cvs rdiff -u -r1.175 -r1.1
Module Name:src
Committed By: christos
Date: Wed Oct 19 21:28:03 UTC 2022
Modified Files:
src/sys/netipsec: key.c xform_ipcomp.c
Log Message:
PR/56836: Andrew Cagney: IPv6 ESN tunneling IPcomp has corrupt header
Always always send / expect CPI in IPcomp header
Fixes kern
Module Name:src
Committed By: christos
Date: Wed Oct 19 21:28:03 UTC 2022
Modified Files:
src/sys/netipsec: key.c xform_ipcomp.c
Log Message:
PR/56836: Andrew Cagney: IPv6 ESN tunneling IPcomp has corrupt header
Always always send / expect CPI in IPcomp header
Fixes kern
Module Name:src
Committed By: knakahara
Date: Tue Aug 23 09:25:10 UTC 2022
Modified Files:
src/sys/netipsec: ipsec_input.c
Log Message:
Improve IPsec log when no key association found for SA. Implemented by
ohishi@IIJ.
To generate a diff of this commit:
cvs rdiff -u -r
Module Name:src
Committed By: knakahara
Date: Tue Aug 23 09:25:10 UTC 2022
Modified Files:
src/sys/netipsec: ipsec_input.c
Log Message:
Improve IPsec log when no key association found for SA. Implemented by
ohishi@IIJ.
To generate a diff of this commit:
cvs rdiff -u -r
Module Name:src
Committed By: ozaki-r
Date: Wed May 25 04:15:44 UTC 2022
Modified Files:
src/sys/netipsec: xform_esp.c
Log Message:
ipsec: don't assert for the format of incoming packets
To generate a diff of this commit:
cvs rdiff -u -r1.105 -r1.106 src/sys/netipsec/xfo
Module Name:src
Committed By: ozaki-r
Date: Wed May 25 04:15:44 UTC 2022
Modified Files:
src/sys/netipsec: xform_esp.c
Log Message:
ipsec: don't assert for the format of incoming packets
To generate a diff of this commit:
cvs rdiff -u -r1.105 -r1.106 src/sys/netipsec/xfo
Module Name:src
Committed By: riastradh
Date: Sun May 22 11:39:08 UTC 2022
Modified Files:
src/sys/netipsec: xform.h xform_ah.c xform_esp.c xform_ipcomp.c
xform_ipip.c xform_tcp.c
Log Message:
netipsec: Nothing uses xf_zeroize return value. Nix it.
To genera
Module Name:src
Committed By: riastradh
Date: Sun May 22 11:39:08 UTC 2022
Modified Files:
src/sys/netipsec: xform.h xform_ah.c xform_esp.c xform_ipcomp.c
xform_ipip.c xform_tcp.c
Log Message:
netipsec: Nothing uses xf_zeroize return value. Nix it.
To genera
Module Name:src
Committed By: christos
Date: Thu May 19 19:18:03 UTC 2022
Modified Files:
src/sys/netipsec: ipsec_input.c
Log Message:
PR/56840: Andrew Cagney: use the proper polarity hton/ntoh macros (no
functional change).
Factor out spi retrieving code into a function.
Module Name:src
Committed By: christos
Date: Thu May 19 19:18:03 UTC 2022
Modified Files:
src/sys/netipsec: ipsec_input.c
Log Message:
PR/56840: Andrew Cagney: use the proper polarity hton/ntoh macros (no
functional change).
Factor out spi retrieving code into a function.
Module Name:src
Committed By: christos
Date: Wed May 18 15:20:18 UTC 2022
Modified Files:
src/sys/netipsec: key.c key_debug.c key_debug.h
Log Message:
PR/56841: Andrew Cagney: debug-log IPcomp CPI lookups:
- debug-logs why an SPI is rejected
- adds missing __VA_OPT
Module Name:src
Committed By: christos
Date: Wed May 18 15:20:18 UTC 2022
Modified Files:
src/sys/netipsec: key.c key_debug.c key_debug.h
Log Message:
PR/56841: Andrew Cagney: debug-log IPcomp CPI lookups:
- debug-logs why an SPI is rejected
- adds missing __VA_OPT
Module Name:src
Committed By: andvar
Date: Wed Dec 8 20:03:26 UTC 2021
Modified Files:
src/sys/netipsec: ipsec.c
Log Message:
s/speficication/specification/
To generate a diff of this commit:
cvs rdiff -u -r1.172 -r1.173 src/sys/netipsec/ipsec.c
Please note that diffs
Module Name:src
Committed By: andvar
Date: Wed Dec 8 20:03:26 UTC 2021
Modified Files:
src/sys/netipsec: ipsec.c
Log Message:
s/speficication/specification/
To generate a diff of this commit:
cvs rdiff -u -r1.172 -r1.173 src/sys/netipsec/ipsec.c
Please note that diffs
Module Name:src
Committed By: msaitoh
Date: Wed Nov 10 16:55:20 UTC 2021
Modified Files:
src/sys/netipsec: keydb.h
Log Message:
s/assocciation/association/ in comment.
To generate a diff of this commit:
cvs rdiff -u -r1.23 -r1.24 src/sys/netipsec/keydb.h
Please note tha
Module Name:src
Committed By: msaitoh
Date: Wed Nov 10 16:55:20 UTC 2021
Modified Files:
src/sys/netipsec: keydb.h
Log Message:
s/assocciation/association/ in comment.
To generate a diff of this commit:
cvs rdiff -u -r1.23 -r1.24 src/sys/netipsec/keydb.h
Please note tha
Module Name:src
Committed By: knakahara
Date: Thu Nov 14 03:17:08 UTC 2019
Modified Files:
src/sys/netipsec: key.c
Log Message:
Reduce load for IKE negotiations when the system has many IPv6 addresses.
e.g. the system has many vlan(4), gif(4) or ipsecif(4) with link local
Module Name:src
Committed By: knakahara
Date: Thu Nov 14 03:17:08 UTC 2019
Modified Files:
src/sys/netipsec: key.c
Log Message:
Reduce load for IKE negotiations when the system has many IPv6 addresses.
e.g. the system has many vlan(4), gif(4) or ipsecif(4) with link local
Module Name:src
Committed By: knakahara
Date: Tue Nov 12 05:13:29 UTC 2019
Modified Files:
src/sys/netipsec: key.c
Log Message:
Fix SA can be expaired wrongly when there are many SPs.
When key_timehandler_spd() spent over one second, the "now" argument of
key_timehandler_
Module Name:src
Committed By: knakahara
Date: Tue Nov 12 05:13:29 UTC 2019
Modified Files:
src/sys/netipsec: key.c
Log Message:
Fix SA can be expaired wrongly when there are many SPs.
When key_timehandler_spd() spent over one second, the "now" argument of
key_timehandler_
Module Name:src
Committed By: knakahara
Date: Wed Aug 7 10:10:00 UTC 2019
Modified Files:
src/sys/netipsec: ipsec.c
Log Message:
ipsec_getpolicybysock() should also call key_havesp() like
ipsec_getpolicybyaddr().
That can reduce KEYDEBUG messages.
To generate a diff o
Module Name:src
Committed By: knakahara
Date: Wed Aug 7 10:10:00 UTC 2019
Modified Files:
src/sys/netipsec: ipsec.c
Log Message:
ipsec_getpolicybysock() should also call key_havesp() like
ipsec_getpolicybyaddr().
That can reduce KEYDEBUG messages.
To generate a diff o
Module Name:src
Committed By: maxv
Date: Sun Aug 4 14:30:36 UTC 2019
Modified Files:
src/sys/netipsec: key.c
Log Message:
Fix info leaks.
To generate a diff of this commit:
cvs rdiff -u -r1.265 -r1.266 src/sys/netipsec/key.c
Please note that diffs are not public domain
Module Name:src
Committed By: maxv
Date: Sun Aug 4 14:30:36 UTC 2019
Modified Files:
src/sys/netipsec: key.c
Log Message:
Fix info leaks.
To generate a diff of this commit:
cvs rdiff -u -r1.265 -r1.266 src/sys/netipsec/key.c
Please note that diffs are not public domain
Module Name:src
Committed By: ozaki-r
Date: Tue Jul 23 04:29:27 UTC 2019
Modified Files:
src/sys/netipsec: key.c
Log Message:
ipsec: fix a regression of the update API
The update API updates an SA by creating a new SA and removing an existing SA.
The previous change remov
Module Name:src
Committed By: ozaki-r
Date: Tue Jul 23 04:29:27 UTC 2019
Modified Files:
src/sys/netipsec: key.c
Log Message:
ipsec: fix a regression of the update API
The update API updates an SA by creating a new SA and removing an existing SA.
The previous change remov
Module Name:src
Committed By: ozaki-r
Date: Wed Jul 17 07:07:59 UTC 2019
Modified Files:
src/sys/netipsec: key.c
Log Message:
Avoid a race condition between SA (sav) manipulations
An sav can be removed from belonging list(s) twice resulting in an assertion
failure of psli
Module Name:src
Committed By: ozaki-r
Date: Wed Jul 17 07:07:59 UTC 2019
Modified Files:
src/sys/netipsec: key.c
Log Message:
Avoid a race condition between SA (sav) manipulations
An sav can be removed from belonging list(s) twice resulting in an assertion
failure of psli
Module Name:src
Committed By: maxv
Date: Tue Jul 9 16:56:24 UTC 2019
Modified Files:
src/sys/netipsec: ipsec.c
Log Message:
Fix uninitialized variable: in ipsec_checkpcbcache(), spidx.dir is not
initialized, and the padding of the spidx structure is not initialized
either
Module Name:src
Committed By: maxv
Date: Tue Jul 9 16:56:24 UTC 2019
Modified Files:
src/sys/netipsec: ipsec.c
Log Message:
Fix uninitialized variable: in ipsec_checkpcbcache(), spidx.dir is not
initialized, and the padding of the spidx structure is not initialized
either
Module Name:src
Committed By: christos
Date: Wed Jun 12 22:23:50 UTC 2019
Modified Files:
src/sys/netipsec: ipsec.h keysock.c xform_ah.c xform_esp.c
xform_ipcomp.c xform_ipip.c xform_tcp.c
Log Message:
make DPRINTF use varyadic cpp macros, and merge with IPSECL
Module Name:src
Committed By: christos
Date: Wed Jun 12 22:23:50 UTC 2019
Modified Files:
src/sys/netipsec: ipsec.h keysock.c xform_ah.c xform_esp.c
xform_ipcomp.c xform_ipip.c xform_tcp.c
Log Message:
make DPRINTF use varyadic cpp macros, and merge with IPSECL
Module Name:src
Committed By: christos
Date: Wed Jun 12 22:23:07 UTC 2019
Modified Files:
src/sys/netipsec: key.c
Log Message:
fix typo in comment, improve error message, add default case handling to
set error.
To generate a diff of this commit:
cvs rdiff -u -r1.262 -r1.
Module Name:src
Committed By: christos
Date: Wed Jun 12 22:23:07 UTC 2019
Modified Files:
src/sys/netipsec: key.c
Log Message:
fix typo in comment, improve error message, add default case handling to
set error.
To generate a diff of this commit:
cvs rdiff -u -r1.262 -r1.
Module Name:src
Committed By: christos
Date: Wed Jun 12 01:32:30 UTC 2019
Modified Files:
src/sys/netipsec: key.c
Log Message:
Fix double free: key_setsaval() free's newsav by calling key_freesaval()
and key_api_update() calls key_delsav() when key_setsaval() fails which
c
Module Name:src
Committed By: christos
Date: Wed Jun 12 01:32:30 UTC 2019
Modified Files:
src/sys/netipsec: key.c
Log Message:
Fix double free: key_setsaval() free's newsav by calling key_freesaval()
and key_api_update() calls key_delsav() when key_setsaval() fails which
c
Module Name:src
Committed By: knakahara
Date: Fri May 17 05:27:24 UTC 2019
Modified Files:
src/sys/netipsec: ipsecif.c
Log Message:
Don't clear calculated Tx tos value for IPv[46] over IPv6.
To generate a diff of this commit:
cvs rdiff -u -r1.15 -r1.16 src/sys/netipsec/i
Module Name:src
Committed By: knakahara
Date: Fri May 17 05:27:24 UTC 2019
Modified Files:
src/sys/netipsec: ipsecif.c
Log Message:
Don't clear calculated Tx tos value for IPv[46] over IPv6.
To generate a diff of this commit:
cvs rdiff -u -r1.15 -r1.16 src/sys/netipsec/i
Le 14/05/2018 à 04:16, Ryota Ozaki a écrit :
Module Name:src
Committed By: ozaki-r
Date: Mon May 14 02:16:30 UTC 2018
Modified Files:
src/sys/netipsec: xform_tcp.c
Log Message:
Restore TCP header inclusions for TCP_SIGNATURE
To generate a diff of this commit:
cvs rdiff
On Mar 7, 7:36pm, ja...@uninett.no (Jarle Greipsland) wrote:
-- Subject: Re: CVS commit: src/sys/netipsec
| "Christos Zoulas" writes:
| > Module Name:src
| > Committed By: christos
| > Date: Sat Mar 5 20:13:40 UTC 2016
| >
| > Modifi
"Christos Zoulas" writes:
> Module Name: src
> Committed By: christos
> Date: Sat Mar 5 20:13:40 UTC 2016
>
> Modified Files:
> src/sys/netipsec: key.c
>
> Log Message:
> Fix port matching; we need to ignore ports when they are 0 not only in
> the second saidx but the first one t
Hi,
Thus wrote Manuel Bouyer (bou...@antioche.eu.org):
> On Fri, Apr 01, 2011 at 08:29:30AM +, S.P.Zeidler wrote:
> > Module Name:src
> > Committed By: spz
> > Date: Fri Apr 1 08:29:30 UTC 2011
> >
> > Modified Files:
> > src/sys/netipsec: xform_ipcomp.c
> >
On Jul 30, 2009, at 8:02 PM, Erik Fair wrote:
On Jul 30, 2009, at 07:41, Jonathan A. Kollasch wrote:
Module Name:src
Committed By: jakllsch
Date: Thu Jul 30 14:41:59 UTC 2009
Modified Files:
src/sys/netipsec: ipsec.c
Log Message:
As explained in kern/41701 there's a
On Jul 30, 2009, at 07:41, Jonathan A. Kollasch wrote:
Module Name:src
Committed By: jakllsch
Date: Thu Jul 30 14:41:59 UTC 2009
Modified Files:
src/sys/netipsec: ipsec.c
Log Message:
As explained in kern/41701 there's a missing splx() here.
To generate a diff of thi
56 matches
Mail list logo