summaryrefslogtreecommitdiff
path: root/sys/netinet6/in6.h
diff options
context:
space:
mode:
authorJun-ichiro itojun Hagino <itojun@cvs.openbsd.org>2002-05-28 03:04:39 +0000
committerJun-ichiro itojun Hagino <itojun@cvs.openbsd.org>2002-05-28 03:04:39 +0000
commit53ec36032674958de4f895e731fb895e73b0ba88 (patch)
treef8c0e79e20f60c53d91f8445a2b26ec099fb843e /sys/netinet6/in6.h
parentff76c548fd5e060eba335ca880eee1e8c2d017d1 (diff)
limit number of IPv6 fragments (not the fragment queue size) to
fight against lots-of-frags DoS attacks. sync w/kame
Diffstat (limited to 'sys/netinet6/in6.h')
-rw-r--r--sys/netinet6/in6.h23
1 files changed, 21 insertions, 2 deletions
diff --git a/sys/netinet6/in6.h b/sys/netinet6/in6.h
index 40e88198bd0..f19719db76d 100644
--- a/sys/netinet6/in6.h
+++ b/sys/netinet6/in6.h
@@ -1,4 +1,4 @@
-/* $OpenBSD: in6.h,v 1.26 2002/03/14 01:27:11 millert Exp $ */
+/* $OpenBSD: in6.h,v 1.27 2002/05/28 03:04:38 itojun Exp $ */
/* $KAME: in6.h,v 1.83 2001/03/29 02:55:07 jinmei Exp $ */
/*
@@ -531,9 +531,11 @@ struct in6_pktinfo {
#define IPV6CTL_USE_DEPRECATED 21 /* use deprecated addr (RFC2462 5.5.4) */
#define IPV6CTL_RR_PRUNE 22 /* walk timer for router renumbering */
/*#define IPV6CTL_MAPPED_ADDR 23 not for openbsd */
+/* 24 to 40: resrved */
+#define IPV6CTL_MAXFRAGS 41 /* max fragments */
/* New entries should be added here from current IPV6CTL_MAXID value. */
/* to define items, should talk with KAME guys first, for *BSD compatibility */
-#define IPV6CTL_MAXID 24
+#define IPV6CTL_MAXID 42
#define IPV6CTL_NAMES { \
{ 0, 0 }, \
@@ -560,6 +562,23 @@ struct in6_pktinfo {
{ "use_deprecated", CTLTYPE_INT }, \
{ "rr_prune", CTLTYPE_INT }, \
{ 0, 0 }, \
+ { 0, 0 }, \
+ { 0, 0 }, \
+ { 0, 0 }, \
+ { 0, 0 }, \
+ { 0, 0 }, \
+ { 0, 0 }, \
+ { 0, 0 }, \
+ { 0, 0 }, \
+ { 0, 0 }, \
+ { 0, 0 }, \
+ { 0, 0 }, \
+ { 0, 0 }, \
+ { 0, 0 }, \
+ { 0, 0 }, \
+ { 0, 0 }, \
+ { 0, 0 }, \
+ { "maxfrags", CTLTYPE_INT }, \
}
#endif /* !_XOPEN_SOURCE */
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-23 22:07:51 +0000