Remove IPsec and related code from the system

Operating Systems / DragonFlyBSD - Sascha Wildner [online.de] - 21 April 2018 21:28 EDT

It was unmaintained ever since we inherited it from FreeBSD 4.8.

In fact, we had two implementations from that time: IPSEC and FAST_IPSEC. FAST_IPSEC is the implementation to which FreeBSD has moved since, but it didn't even build in DragonFly.

Fixes for dports have been committed to DeltaPorts.

755d70b8f2 Remove IPsec and related code from the system.
Makefile_upgrade.inc | 24 +
UPDATING | 8 +
etc/defaults/rc.conf | 2 -
etc/mtree/BSD.include.dist | 4 -
etc/rc.d/Makefile | 3 +-
etc/rc.d/ipsec | 70 -
etc/rc.d/rtadvd | 9 -
gnu/usr.bin/groff/tmac/fr.ISO8859-1 | 1 -
gnu/usr.bin/groff/tmac/ru.KOI8-R | 1 -
include/Makefile | 5 +-
lib/Makefile | 1 -
lib/libc/gen/sysctl.3 | 9 +-
lib/libc/net/getnameinfo.c | 1 -
lib/libipsec/Makefile | 56 -
lib/libipsec/ipsec_dump_policy.c | 299 --
lib/libipsec/ipsec_get_policylen.c | 47 -
lib/libipsec/ipsec_set_policy.3 | 277 --
lib/libipsec/ipsec_strerror.3 | 88 -
lib/libipsec/ipsec_strerror.c | 88 -
lib/libipsec/ipsec_strerror.h | 64 -
lib/libipsec/libpfkey.h | 91 -
lib/libipsec/pfkey.c | 1986 ---------
lib/libipsec/pfkey_dump.c | 587 ---
lib/libipsec/policy_parse.y | 425 --
lib/libipsec/policy_token.l | 151 -
lib/libipsec/test-policy.c | 334 --
sbin/ping/Makefile | 5 -
sbin/ping/ping.8 | 11 +-
sbin/ping/ping.c | 77 +-
sbin/ping6/Makefile | 6 +-
sbin/ping6/ping6.8 | 22 +-
sbin/ping6/ping6.c | 121 +-
share/initrd/sbin.libcrypto/Makefile | 1 -
share/initrd/sbin/Makefile | 2 +-
share/man/man4/Makefile | 2 -
share/man/man4/aesni.4 | 3 +-
share/man/man4/crypto.4 | 3 +-
share/man/man4/fast_ipsec.4 | 107 -
share/man/man4/hifn.4 | 5 +-
share/man/man4/ip6.4 | 10 +-
share/man/man4/ipsec.4 | 326 --
share/man/man4/padlock.4 | 9 +-
share/man/man4/pfsync.4 | 22 +-
share/man/man4/safe.4 | 5 +-
share/man/man4/tcp.4 | 5 +-
share/man/man4/txp.4 | 12 +-
share/man/man4/ubsec.4 | 6 +-
share/man/man5/rc.conf.5 | 15 +-
share/man/man7/hier.7 | 4 +-
share/man/man9/crypto.9 | 24 +-
share/mk/bsd.libnames.mk | 1 -
sys/conf/files | 39 -
sys/conf/options | 10 +-
sys/config/LINT64 | 41 +-
sys/config/VKERNEL64 | 4 -
sys/crypto/blowfish/bf_ecb.c | 85 -
sys/net/pf/if_pfsync.c | 17 -
sys/net/pfkeyv2.h | 402 --
sys/netinet/in.h | 4 +-
sys/netinet/in_pcb.c | 35 -
sys/netinet/in_pcb.h | 4 +-
sys/netinet/in_proto.c | 116 -
sys/netinet/ip_divert.c | 1 -
sys/netinet/ip_icmp.c | 22 -
sys/netinet/ip_input.c | 205 -
sys/netinet/ip_output.c | 336 --
sys/netinet/raw_ip.c | 41 -
sys/netinet/tcp_input.c | 34 -
sys/netinet/tcp_output.c | 18 -
sys/netinet/tcp_subr.c | 58 -
sys/netinet/tcp_syncache.c | 23 -
sys/netinet/tcp_usrreq.c | 5 -
sys/netinet/udp_usrreq.c | 44 -
sys/netinet6/ah.h | 102 -
sys/netinet6/ah6.h | 63 -
sys/netinet6/ah_core.c | 1537 -------
sys/netinet6/ah_input.c | 1037 -----
sys/netinet6/ah_output.c | 574 ---
sys/netinet6/esp.h | 112 -
sys/netinet6/esp6.h | 60 -
sys/netinet6/esp_aesctr.c | 447 ---
sys/netinet6/esp_camellia.c | 81 -
sys/netinet6/esp_core.c | 1057 -----
sys/netinet6/esp_input.c | 978 -----
sys/netinet6/esp_output.c | 699 ----
sys/netinet6/esp_rijndael.c | 109 -
sys/netinet6/icmp6.c | 16 -
sys/netinet6/in6.h | 4 -
sys/netinet6/in6_pcb.c | 24 -
sys/netinet6/in6_proto.c | 77 -
sys/netinet6/ip6_forward.c | 193 -
sys/netinet6/ip6_input.c | 36 -
sys/netinet6/ip6_output.c | 287 +-
sys/netinet6/ipcomp.h | 79 -
sys/netinet6/ipcomp6.h | 56 -
sys/netinet6/ipcomp_core.c | 342 --
sys/netinet6/ipcomp_input.c | 345 --
sys/netinet6/ipcomp_output.c | 363 --
sys/netinet6/ipsec.c | 3474 ----------------
sys/netinet6/ipsec.h | 352 --
sys/netinet6/ipsec6.h | 87 -
sys/netinet6/nd6_nbr.c | 8 -
sys/netinet6/raw_ip6.c | 51 -
sys/netinet6/udp6_output.c | 8 -
sys/netinet6/udp6_usrreq.c | 63 -
sys/netproto/ipsec/ah.h | 57 -
sys/netproto/ipsec/ah_var.h | 79 -
sys/netproto/ipsec/esp.h | 70 -
sys/netproto/ipsec/esp_var.h | 82 -
sys/netproto/ipsec/ipcomp.h | 56 -
sys/netproto/ipsec/ipcomp_var.h | 68 -
sys/netproto/ipsec/ipip_var.h | 66 -
sys/netproto/ipsec/ipsec.c | 1854 ---------
sys/netproto/ipsec/ipsec.h | 390 --
sys/netproto/ipsec/ipsec6.h | 91 -
sys/netproto/ipsec/ipsec_input.c | 782 ----
sys/netproto/ipsec/ipsec_mbuf.c | 479 ---
sys/netproto/ipsec/ipsec_output.c | 754 ----
sys/netproto/ipsec/key.c | 6966 --------------------------------
sys/netproto/ipsec/key.h | 115 -
sys/netproto/ipsec/key_debug.c | 725 ----
sys/netproto/ipsec/key_debug.h | 89 -
sys/netproto/ipsec/key_var.h | 73 -
sys/netproto/ipsec/keydb.h | 182 -
sys/netproto/ipsec/keysock.c | 584 ---
sys/netproto/ipsec/keysock.h | 83 -
sys/netproto/ipsec/xform.h | 127 -
sys/netproto/ipsec/xform_ah.c | 1205 ------
sys/netproto/ipsec/xform_esp.c | 971 -----
sys/netproto/ipsec/xform_ipcomp.c | 618 ---
sys/netproto/ipsec/xform_ipip.c | 707 ----
sys/netproto/key/key.c | 7366 ----------------------------------
sys/netproto/key/key.h | 84 -
sys/netproto/key/key_debug.c | 726 ----
sys/netproto/key/key_debug.h | 89 -
sys/netproto/key/key_var.h | 73 -
sys/netproto/key/keydb.c | 195 -
sys/netproto/key/keydb.h | 181 -
sys/netproto/key/keysock.c | 641 ---
sys/netproto/key/keysock.h | 83 -
sys/platform/pc64/conf/files | 2 -
sys/platform/vkernel64/conf/files | 2 -
sys/sys/mbuf.h | 13 -
sys/sys/param.h | 3 +-
sys/sys/priv.h | 7 +-
tools/tools/crypto/Makefile | 6 +-
tools/tools/crypto/ipsecstats.c | 180 -
usr.bin/kdump/mkioctls | 2 +-
usr.bin/netstat/Makefile | 3 +-
usr.bin/netstat/ipsec.c | 314 --
usr.bin/netstat/main.c | 61 +-
usr.bin/netstat/netstat.1 | 8 +-
usr.bin/netstat/netstat.h | 7 -
usr.bin/telnet/Makefile | 4 -
usr.bin/telnet/commands.c | 38 -
usr.bin/telnet/externs.h | 8 -
usr.bin/telnet/main.c | 28 +-
usr.sbin/Makefile | 1 -
usr.sbin/authpf/authpf.8 | 56 +-
usr.sbin/inetd/Makefile | 7 +-
usr.sbin/inetd/inetd.8 | 30 +-
usr.sbin/inetd/inetd.c | 134 -
usr.sbin/inetd/inetd.h | 3 -
usr.sbin/mld6query/Makefile | 2 +-
usr.sbin/rrenumd/Makefile | 6 +-
usr.sbin/rrenumd/rrenumd.c | 160 +-
usr.sbin/rtadvd/rtadvd.8 | 3 +-
usr.sbin/setkey/Makefile | 54 -
usr.sbin/setkey/parse.y | 937 -----
usr.sbin/setkey/sample.cf | 220 -
usr.sbin/setkey/scriptdump | 56 -
usr.sbin/setkey/setkey.8 | 627 ---
usr.sbin/setkey/setkey.c | 635 ---
usr.sbin/setkey/test-pfkey.c | 501 ---
usr.sbin/setkey/test-policy.c | 161 -
usr.sbin/setkey/token.l | 323 --
usr.sbin/setkey/vchar.h | 37 -
usr.sbin/traceroute6/Makefile | 6 +-
usr.sbin/traceroute6/traceroute6.c | 98 -
179 files changed, 163 insertions(+), 50991 deletions(-)

Upstream: gitweb.dragonflybsd.org


  • Share