| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 1999-03-27 | add SADB_X_BINDSA to pfkey allowing incoming SAs to refer to an outgoing | Niels Provos | |
| SA to be used, use this SA in ip_output if available. allow mobile road warriors for bind SAs with wildcard dst and src addresses. check IPSEC AUTH and ESP level when receiving packets, drop them if protection is insufficient. add stats to show dropped packets because of insufficient IPSEC protection. -- phew. this was all done in canada. dugsong and linh provided the ride and company. | |||
| 1999-03-24 | Reworked udp_output() to minimize the number of if() statements needed to get | cmetz | |
| packets out. Also had the nice side effect of fewer blocks now move around by ifdefs, which makes it more readable. | |||
| 1999-02-17 | inet6 indent | Theo de Raadt | |
| 1999-02-04 | report on no udp checksum | Theo de Raadt | |
| 1999-01-15 | IN_MULTICAST takes network order addresses | Niklas Hallqvist | |
| 1999-01-11 | Use bzero instead of memset in the kernel | Niklas Hallqvist | |
| 1999-01-11 | netinet merge of NRL stuff. some indent and shrinkage needed; NRL/cmetz | Theo de Raadt | |
| 1999-01-07 | in_pcblookup() now takes ptr to both ip address arguments | Theo de Raadt | |
| 1998-12-31 | mangle uh_sum as before, but recover it for icmp errors | Theo de Raadt | |
| 1998-12-28 | ensure the ip packet embedded inside an icmp packet has correct ip_len, | Theo de Raadt | |
| ip_off, ip_id. for udp, also correct uh_sum. ip_sum is still set to 0; (all this debugged using nmap) | |||
| 1998-05-18 | first step to the setsockopt/getsockopt interface as described in | Niels Provos | |
| draft-mcdonald-simple-ipsec-api, kernel notifies (EMT_REQUESTSA) signal userland key management applications when security services are requested. this is only for outgoing connections at the moment, incoming packets are not yet checked against the selected socket policy. | |||
| 1998-01-24 | sysctl for def sizes for tcp/udp send/recv queues | Michael Shalayeff | |
| 1997-09-07 | for broadcast/multicast packets, correct m_pkthdr.len on the way up to the ↵ | Theo de Raadt | |
| socket; drochner@zelz26.zel.kfa-juelich.de | |||
| 1997-08-09 | The list of tcp/udp ports not to allocate dynamically is now | Todd C. Miller | |
| a bitmask configurable via sysctl([38]). The default values have not changed. If one wants to change the list it should be done early on in /etc/rc. | |||
| 1997-07-24 | cmd is a u_long | Theo de Raadt | |
| 1997-06-27 | udp icmp errors had ip_len 20 bytes too large; stevens p774; ↵ | Theo de Raadt | |
| koji@math.human.nagoya-u.ac.jp | |||
| 1997-02-16 | udp packets less than min udp packet length are bad; davem@jenolan.rutgers.edu | Theo de Raadt | |
| 1997-01-26 | Make ip_len and ip_off unsigned values; don't transmit or accept packets | Thorsten Lockert | |
| larger than the maximum IP packet size. From NetBSD. | |||
| 1996-07-05 | release temporary binding if M_PREPEND fails; netbsd pr#2605; ↵ | Theo de Raadt | |
| tegge@idt.unit.no; improved by me | |||
| 1996-05-15 | let udpcksum control generation, but not cheking of udp cksums. | Michael Shalayeff | |
| 1996-05-02 | udpcksum should never be off in the modern world | Theo de Raadt | |
| 1996-04-21 | partial sync with netbsd 960418, more to come | Theo de Raadt | |
| 1996-03-03 | From NetBSD: 960217 merge | Niklas Hallqvist | |
| 1995-12-14 | from netbsd: | Theo de Raadt | |
| make netinet work on systems where pointers and longs are 64 bits (like the alpha). Biggest problem: IP headers were overlayed with structure which included pointers, and which therefore didn't overlay properly on 64-bit machines. Solution: instead of threading pointers through IP header overlays, add a "queue element" structure to do the threading, and point it at the ip headers. | |||
| 1995-10-18 | initial import of NetBSD tree | Theo de Raadt | |
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |