aboutsummaryrefslogtreecommitdiffstats
path: root/src/libhydra/plugins/kernel_netlink/kernel_netlink_ipsec.c
Commit message (Expand)AuthorAgeFilesLines
* kernel-netlink: install selectors on SA for transport/BEET mode without proto...Martin Willi2013-06-191-0/+6
* kernel-netlink: reject policy refcount if the reqid differsMartin Willi2013-06-191-4/+17
* kernel-interface: add an exchange initiator parameter to add_sa()Martin Willi2013-06-111-2/+3
* kernel-netlink: add outer addresses to policy when using BEET modeMichael Rossberg2013-05-241-1/+1
* kernel-interface: query SAD for last use time if SPD query didn't yield oneMartin Willi2013-05-061-1/+7
* kernel-interface: get_address_by_ts() can tell if a returned IP is virtualMartin Willi2013-05-061-1/+1
* kernel-netlink: remove obsolete pluto specific behaviorMartin Willi2013-05-061-7/+1
* Merge branch 'radius-ext'Martin Willi2013-03-181-2/+10
|\
| * kernel_ipsec_t.query_sa() additionally returns the number of processed packetsMartin Willi2013-03-141-2/+10
* | Use netlink_add_attribute() to copy over attributes during update_sa()Martin Willi2013-03-151-9/+6
* | Use a helper function to add XFRM_MARK attributeMartin Willi2013-03-151-81/+37
* | Use netlink_reserve() helper function in XFRM to simplify message constructionMartin Willi2013-03-151-175/+72
* | Avoid unneeded termination of netlink algorithm name arrays with END_OF_LISTMartin Willi2013-03-151-13/+14
* | When adding Netlink attributes, increase header length with potential alignmentMartin Willi2013-03-111-32/+30
|/
* Merge branch 'vip-shunts'Martin Willi2013-03-011-4/+13
|\
| * Install a route for shunt policiesMartin Willi2013-02-201-5/+13
* | Merge branch 'opaque-ports'Martin Willi2013-03-011-1/+1
|\ \
| * | Use a complete port range in traffic_selector_create_from_{subnet,cidr}Martin Willi2013-02-211-2/+1
| |/
* / Indicate support for processing ESPv3 TFC padding in Netlink IPsec backendMartin Willi2013-03-011-1/+7
|/
* Moved debug.[ch] to utils folderTobias Brunner2012-10-241-1/+1
* Moved data structures to new collections subfolderTobias Brunner2012-10-241-2/+2
* Use proper offset when adding mark attribute in kernel-netlink pluginTobias Brunner2012-10-151-1/+1
* Also add mark when querying current replay state in kernel-netlink pluginTobias Brunner2012-10-151-2/+21
* Fixed update_sa in kernel-netlink plugin if marks are usedTobias Brunner2012-10-111-0/+18
* Make sure we successfully opened xfrm_acq_expiresTobias Brunner2012-09-281-1/+1
* Clarified code when hashing/comparing cached policies in kernel-netlinkTobias Brunner2012-09-281-5/+4
* Use proper argument for sizeof when copying replay stateTobias Brunner2012-09-281-1/+1
* Algorithm names are not always static anymore, avoid string overflowsTobias Brunner2012-09-281-5/+10
* Allow replay windows smaller than the default of 32Tobias Brunner2012-09-271-4/+6
* Make sure the if_name member of cached route entries is initialized to NULLTobias Brunner2012-09-221-2/+5
* Make it easy to check if an address is locally usable via changed get_interfa...Tobias Brunner2012-09-211-4/+3
* Use source address in get_nexthop() callTobias Brunner2012-09-211-1/+2
* Added algorithm lookup via kernel_interface_t to the various kernel interfacesTobias Brunner2012-09-131-8/+27
* Consistently log XFRM mark masks with 0 prefix in kernel-netlink pluginTobias Brunner2012-09-121-13/+13
* Let kernel interfaces decide how to enable UDP decapsulation of ESP packets.Tobias Brunner2012-08-081-0/+28
* Centralized thread cancellation in processor_tTobias Brunner2012-06-251-12/+4
* Don't compare ports when comparing cached routes.Tobias Brunner2012-06-151-2/+2
* Disabled listening for kernel events in starter.Tobias Brunner2012-06-081-22/+31
* Route reinstallation in kernel_ipsec_t implementations is not needed anymore.Tobias Brunner2012-05-021-6/+1
* Use single DBG2 statements in kernel_netlink plugin (i.e. ignore mark.value).Tobias Brunner2012-03-271-86/+26
* Merge branch 'ikev1-clean' into ikev1-masterMartin Willi2012-03-201-22/+19
|\
| * Be less verbose when deleting SAs triggered by a hard expireMartin Willi2012-03-201-22/+19
* | Added support for untruncated MD5 and SHA1 HMACs in ESP as used in RFC 4595.Tobias Brunner2012-02-271-3/+21
* | Always unlock mutex for installed policies in kernel-netlink plugin.Thomas Egerer2011-12-141-1/+5
|/
* Memwipe request after sa update, tooThomas Egerer2011-11-041-0/+1
* Extend xfrm_attr_type_names by newly added enum valuesThomas Egerer2011-11-041-2/+6
* Silently install route again, even if it did not change.Tobias Brunner2011-11-041-1/+6
* Compile warning fixed in kernel interfaces.Tobias Brunner2011-11-041-1/+1
* Implemented flushing of states and policies via XFRM.Tobias Brunner2011-10-211-0/+56
* Disable policy history for pluto.4.5.3Tobias Brunner2011-08-021-21/+46
generated by cgit v1.2.3 (git 2.25.1) at 2025-07-19 15:43:52 +0000