src/sys/netkey, branch release/5.2.1 FreeBSD source tree https://cgit-dev.freebsd.org/src/atom?h=release%2F5.2.1 2004-01-27T16:06:22Z MFC 1.65: avoid duplicate free. 2004-01-27T16:06:22Z Hajimu UMEMOTO ume@FreeBSD.org 2004-01-27T16:06:22Z urn:sha1:feb160a56fff5eeb6f3104e308bb742369dbc4c8 Approved by: re (scott) MFC 1.64: invalidate secpolicy pcb cache on key_timehandler. 2004-01-27T16:04:52Z Hajimu UMEMOTO ume@FreeBSD.org 2004-01-27T16:04:52Z urn:sha1:31ed7881ff5cb1d61d4074c98d6ed0838a7500ce Approved by: re (scott) MFC 1.63: add missing key_freesp()s. 2004-01-27T16:03:30Z Hajimu UMEMOTO ume@FreeBSD.org 2004-01-27T16:03:30Z urn:sha1:0db9ecbc9ac0a430424b1c1a72e1c9dfa8fa22e9 Approved by: re (scott) MFC 1.62: don't touch after free. 2004-01-27T16:01:52Z Hajimu UMEMOTO ume@FreeBSD.org 2004-01-27T16:01:52Z urn:sha1:0b783ecd8b16574f488aa32b9a23a6ce7a62dbda Approved by: re (scott) missing splx. 2003-11-28T14:34:42Z Hajimu UMEMOTO ume@FreeBSD.org 2003-11-28T14:34:42Z urn:sha1:dd8b0111cb37d1d383194ea4b113500d93376545 this is a NOOP change, and primarily merged for consistency with -STABLE. Approved by: re (rwatson) Introduce a MAC label reference in 'struct inpcb', which caches 2003-11-18T00:39:07Z Robert Watson rwatson@FreeBSD.org 2003-11-18T00:39:07Z urn:sha1:a557af222b70694470f63e2a0f1bf58c9dcc73fd the MAC label referenced from 'struct socket' in the IPv4 and IPv6-based protocols. This permits MAC labels to be checked during network delivery operations without dereferencing inp->inp_socket to get to so->so_label, which will eventually avoid our having to grab the socket lock during delivery at the network layer. This change introduces 'struct inpcb' as a labeled object to the MAC Framework, along with the normal circus of entry points: initialization, creation from socket, destruction, as well as a delivery access control check. For most policies, the inpcb label will simply be a cache of the socket label, so a new protocol switch method is introduced, pr_sosetlabel() to notify protocols that the socket layer label has been updated so that the cache can be updated while holding appropriate locks. Most protocols implement this using pru_sosetlabel_null(), but IPv4/IPv6 protocols using inpcbs use the the worker function in_pcbsosetlabel(), which calls into the MAC Framework to perform a cache update. Biba, LOMAC, and MLS implement these entry points, as do the stub policy, and test policy. Reviewed by: sam, bms Obtained from: TrustedBSD Project Sponsored by: DARPA, Network Associates Laboratories add sysctl MIB net.key.esp_auth which was wrongly dropped 2003-11-13T12:26:55Z Hajimu UMEMOTO ume@FreeBSD.org 2003-11-13T12:26:55Z urn:sha1:313ab6b4d58772413b9a648118d96fc125043702 during recent KAME merge. ipsec_esp_auth is unused when IPSEC_ESP is not defined. 2003-11-11T17:25:45Z Hajimu UMEMOTO ume@FreeBSD.org 2003-11-11T17:25:45Z urn:sha1:331bf4e6f77b419433c7b7500273aa11e141e5b2 Reported by: Andre Oppermann <oppermann@pipeline.ch> - cleanup SP refcnt issue. 2003-11-04T16:02:05Z Hajimu UMEMOTO ume@FreeBSD.org 2003-11-04T16:02:05Z urn:sha1:0f9ade718da4248226297bed41f3e9e372fd5f4d - share policy-on-socket for listening socket. - don't copy policy-on-socket at all. secpolicy no longer contain spidx, which saves a lot of memory. - deep-copy pcb policy if it is an ipsec policy. assign ID field to all SPD entries. make it possible for racoon to grab SPD entry on pcb. - fixed the order of searching SA table for packets. - fixed to get a security association header. a mode is always needed to compare them. - fixed that the incorrect time was set to sadb_comb_{hard|soft}_usetime. - disallow port spec for tunnel mode policy (as we don't reassemble). - an user can define a policy-id. - clear enc/auth key before freeing. - fixed that the kernel crashed when key_spdacquire() was called because key_spdacquire() had been implemented imcopletely. - preparation for 64bit sequence number. - maintain ordered list of SA, based on SA id. - cleanup secasvar management; refcnt is key.c responsibility; alloc/free is keydb.c responsibility. - cleanup, avoid double-loop. - use hash for spi-based lookup. - mark persistent SP "persistent". XXX in theory refcnt should do the right thing, however, we have "spdflush" which would touch all SPs. another solution would be to de-register persistent SPs from sptree. - u_short -> u_int16_t - reduce kernel stack usage by auto variable secasindex. - clarify function name confusion. ipsec_*_policy -> ipsec_*_pcbpolicy. - avoid variable name confusion. (struct inpcbpolicy *)pcb_sp, spp (struct secpolicy **), sp (struct secpolicy *) - count number of ipsec encapsulations on ipsec4_output, so that we can tell ip_output() how to handle the packet further. - When the value of the ul_proto is ICMP or ICMPV6, the port field in "src" of the spidx specifies ICMP type, and the port field in "dst" of the spidx specifies ICMP code. - avoid from applying IPsec transport mode to the packets when the kernel forwards the packets. Tested by: nork Obtained from: KAME correct %d/%u mismatch. 2003-11-02T12:28:04Z Hajimu UMEMOTO ume@FreeBSD.org 2003-11-02T12:28:04Z urn:sha1:2dc334e089e30fae4adb186266fe10b38d2e6a34 Obtained from: KAME