aboutsummaryrefslogtreecommitdiffstats
path: root/src/libhydra/plugins/kernel_netlink/kernel_netlink_ipsec.c
Commit message (Expand)AuthorAgeFilesLines
* kernel-netlink: Enable TFC padding only for tunnel mode ESP SAsTobias Brunner2013-11-191-2/+2
* kernel-netlink: Convert ports in acquires to ICMP[v6] type and codeTobias Brunner2013-10-171-3/+8
* kernel-netlink: Properly install policies with ICMP[v6] types and codesTobias Brunner2013-10-171-1/+12
* kernel: Use a time_t to report use time in query_policy()Martin Willi2013-10-111-1/+1
* kernel: Use a time_t to report use time in query_sa()Martin Willi2013-10-111-1/+1
* kernel-netlink: Allow to override xfrm_acq_expires valueAnsis Atteka2013-09-231-6/+10
* kernel-netlink: Fix calculation of ESN bitmap lengthTobias Brunner2013-08-211-4/+12
* kernel-netlink: use watcher to receive kernel events for net/ipsecMartin Willi2013-07-181-18/+12
* kernel-netlink: install selectors on SA for transport/BEET mode without proto...Martin Willi2013-06-191-0/+6
* kernel-netlink: reject policy refcount if the reqid differsMartin Willi2013-06-191-4/+17
* kernel-interface: add an exchange initiator parameter to add_sa()Martin Willi2013-06-111-2/+3
* kernel-netlink: add outer addresses to policy when using BEET modeMichael Rossberg2013-05-241-1/+1
* kernel-interface: query SAD for last use time if SPD query didn't yield oneMartin Willi2013-05-061-1/+7
* kernel-interface: get_address_by_ts() can tell if a returned IP is virtualMartin Willi2013-05-061-1/+1
* kernel-netlink: remove obsolete pluto specific behaviorMartin Willi2013-05-061-7/+1
* Merge branch 'radius-ext'Martin Willi2013-03-181-2/+10
|\
| * kernel_ipsec_t.query_sa() additionally returns the number of processed packetsMartin Willi2013-03-141-2/+10
* | Use netlink_add_attribute() to copy over attributes during update_sa()Martin Willi2013-03-151-9/+6
* | Use a helper function to add XFRM_MARK attributeMartin Willi2013-03-151-81/+37
* | Use netlink_reserve() helper function in XFRM to simplify message constructionMartin Willi2013-03-151-175/+72
* | Avoid unneeded termination of netlink algorithm name arrays with END_OF_LISTMartin Willi2013-03-151-13/+14
* | When adding Netlink attributes, increase header length with potential alignmentMartin Willi2013-03-111-32/+30
|/
* Merge branch 'vip-shunts'Martin Willi2013-03-011-4/+13
|\
| * Install a route for shunt policiesMartin Willi2013-02-201-5/+13
* | Merge branch 'opaque-ports'Martin Willi2013-03-011-1/+1
|\ \
| * | Use a complete port range in traffic_selector_create_from_{subnet,cidr}Martin Willi2013-02-211-2/+1
| |/
* / Indicate support for processing ESPv3 TFC padding in Netlink IPsec backendMartin Willi2013-03-011-1/+7
|/
* Moved debug.[ch] to utils folderTobias Brunner2012-10-241-1/+1
* Moved data structures to new collections subfolderTobias Brunner2012-10-241-2/+2
* Use proper offset when adding mark attribute in kernel-netlink pluginTobias Brunner2012-10-151-1/+1
* Also add mark when querying current replay state in kernel-netlink pluginTobias Brunner2012-10-151-2/+21
* Fixed update_sa in kernel-netlink plugin if marks are usedTobias Brunner2012-10-111-0/+18
* Make sure we successfully opened xfrm_acq_expiresTobias Brunner2012-09-281-1/+1
* Clarified code when hashing/comparing cached policies in kernel-netlinkTobias Brunner2012-09-281-5/+4
* Use proper argument for sizeof when copying replay stateTobias Brunner2012-09-281-1/+1
* Algorithm names are not always static anymore, avoid string overflowsTobias Brunner2012-09-281-5/+10
* Allow replay windows smaller than the default of 32Tobias Brunner2012-09-271-4/+6
* Make sure the if_name member of cached route entries is initialized to NULLTobias Brunner2012-09-221-2/+5
* Make it easy to check if an address is locally usable via changed get_interfa...Tobias Brunner2012-09-211-4/+3
* Use source address in get_nexthop() callTobias Brunner2012-09-211-1/+2
* Added algorithm lookup via kernel_interface_t to the various kernel interfacesTobias Brunner2012-09-131-8/+27
* Consistently log XFRM mark masks with 0 prefix in kernel-netlink pluginTobias Brunner2012-09-121-13/+13
* Let kernel interfaces decide how to enable UDP decapsulation of ESP packets.Tobias Brunner2012-08-081-0/+28
* Centralized thread cancellation in processor_tTobias Brunner2012-06-251-12/+4
* Don't compare ports when comparing cached routes.Tobias Brunner2012-06-151-2/+2
* Disabled listening for kernel events in starter.Tobias Brunner2012-06-081-22/+31
* Route reinstallation in kernel_ipsec_t implementations is not needed anymore.Tobias Brunner2012-05-021-6/+1
* Use single DBG2 statements in kernel_netlink plugin (i.e. ignore mark.value).Tobias Brunner2012-03-271-86/+26
* Merge branch 'ikev1-clean' into ikev1-masterMartin Willi2012-03-201-22/+19
|\
| * Be less verbose when deleting SAs triggered by a hard expireMartin Willi2012-03-201-22/+19
generated by cgit v1.2.3 (git 2.25.1) at 2025-07-23 14:30:24 +0000