#
272461 |
|
02-Oct-2014 |
gjb |
Copy stable/10@r272459 to releng/10.1 as part of the 10.1-RELEASE process.
Approved by: re (implicit) Sponsored by: The FreeBSD Foundation |
#
256281 |
|
10-Oct-2013 |
gjb |
Copy head (r256279) to stable/10 as part of the 10.0-RELEASE cycle.
Approved by: re (implicit) Sponsored by: The FreeBSD Foundation
|
#
171135 |
|
01-Jul-2007 |
gnn |
Commit IPv6 support for FAST_IPSEC to the tree. This commit includes all remaining changes for the time being including user space updates.
Submitted by: bz Approved by: re
|
#
169425 |
|
09-May-2007 |
gnn |
Integrate the Camellia Block Cipher. For more information see RFC 4132 and its bibliography.
Submitted by: Tomoyuki Okazaki <okazaki at kick dot gr dot jp> MFC after: 1 month
|
#
125681 |
|
11-Feb-2004 |
bms |
Initial import of RFC 2385 (TCP-MD5) digest support.
This is the second of two commits; bring in the userland support to finish.
Teach libipsec and setkey about the tcp-md5 class of security associations, thus allowing administrators to add per-host keys to the SADB for use by the tcpsignature_compute() function.
Document that a single SPI must be used until such time as the code which adds support to the SPD to specify flows for tcp-md5 treatment is suitable for production.
Sponsored by: sentex.net
|
#
122107 |
|
05-Nov-2003 |
ume |
- plug memory leak. - fixed a length of the sadb extension in the case of pfkey_send_x5(). - used getprotobynumber() for printing a upper layer protocol name. - modified the output format against the change of the setkey syntax about a icmp6 type/code. - don't enumerate reserved fields. use memset.
Obtained from: KAME
|
#
121572 |
|
26-Oct-2003 |
ume |
- errx() doesn't need `\n'. - use %u for unsigned variable.
Obtained from: KAME
|
#
121316 |
|
21-Oct-2003 |
ume |
stop use of NI_WITHSCOPEID. it was deprecated.
Obtained from: KAME
|
#
121071 |
|
13-Oct-2003 |
ume |
- support AES counter mode for ESP. - use size_t as return type of schedlen(), as there's no error check needed. - clear key schedule buffer before freeing.
Obtained from: KAME
|
#
121061 |
|
13-Oct-2003 |
ume |
- support AES XCBC MAC for AH - correct SADB_X_AALG_RIPEMD160HMAC to 8
Obtained from: KAME
|
#
121021 |
|
12-Oct-2003 |
ume |
- RIPEMD160 support - pass size arg to ah->result (avoid assuming result buffer size)
Obtained from: KAME
|
#
113590 |
|
17-Apr-2003 |
sumikawa |
Buffer size is not enough in the previous commit. Use 128.
Pointed out by: nectar MFC after: 1 week
|
#
113556 |
|
16-Apr-2003 |
sumikawa |
Make character buffer more bigger.
Obtained from: KAME MFC after: 1 week
|
#
92917 |
|
21-Mar-2002 |
obrien |
Remove __P() usage.
|
#
84208 |
|
30-Sep-2001 |
dillon |
Add __FBSDID()s to libipsec
|
#
81215 |
|
06-Aug-2001 |
ume |
printed current sequence number of the SA. accordingly, changed into sadb_x_sa2_sequence from sadb_x_sa2_reserved3 in the sadb_x_sa2 structure. Also the output of setkey is changed. sequence number of the sadb is replaced to the end of the output.
Obtained from: KAME
|
#
78064 |
|
11-Jun-2001 |
ume |
Sync with recent KAME. This work was based on kame-20010528-freebsd43-snap.tgz and some critical problem after the snap was out were fixed. There are many many changes since last KAME merge.
TODO: - The definitions of SADB_* in sys/net/pfkeyv2.h are still different from RFC2407/IANA assignment because of binary compatibility issue. It should be fixed under 5-CURRENT. - ip6po_m member of struct ip6_pktopts is no longer used. But, it is still there because of binary compatibility issue. It should be removed under 5-CURRENT.
Reviewed by: itojun Obtained from: KAME MFC after: 3 weeks
|
#
62583 |
|
04-Jul-2000 |
itojun |
synchronize with latest kame tree.
behavior change: policy syntax was changed. you may need to update your setkey(8) configuration files.
|
#
55505 |
|
06-Jan-2000 |
shin |
libipsec and IPsec related apps. (and some KAME related man pages)
Reviewed by: freebsd-arch, cvs-committers Obtained from: KAME project
|