| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2008-09-03 | Remove dead code: ip6_copypktopts() is not used anywhere. | Marco Pfatschbacher | |
| OK deraadt@, henning@ | |||
| 2008-08-08 | Do not latch the IPSec tdb to the inpcb unconditionally. This has | Alexander Bluhm | |
| been moved to the protocol layer from ip_output at 2002/05/31. The IPv6 part has been forgotten so packets could get encrypted unintentionally. ok hshoexer markus | |||
| 2008-07-30 | Call ip6_clearpktopts() on error in copypktopts() instead of freeing | Can Erkin Acar | |
| every field individually. ok claudio@ markus@ henning@ deraadt@ | |||
| 2008-06-11 | ANSIfy to sync with KAME. From Karl Sjodahl <dunceor@gmail.com>. | Ryan Thomas McBride | |
| ok todd deraadt naddy bluhm | |||
| 2008-06-09 | Introduce a facility to generate unpredictable 32 bit numbers with | Damien Miller | |
| near maximal (2^32) cycle times. These are useful for network IDs in cases where there are negative consequences to ID prediction and/or reuse. Use the idgen32() functions to generate IPv6 IDs and NFS client/server XIDs. Pseudorandom permutation code in crypto/idgen.c based on public domain skip32.c from Greg Rose. feedback & ok thib@ deraadt@ | |||
| 2008-03-31 | strictly interpret msg_controllen to be the exact total length of the | Theo de Raadt | |
| cmsg's, including alignments, ie. the sum of CMSG_SPACE()'s. any other interpretation would be in violation of various unix specifications. RFC3542 section 20.2 is totally and completely wrong -- it is not allowed to over-ride the specification of msg_controllen, since the intent is that one could mix-and-match various types of cmsg's and an exact match is therefore required. ok kettenis, tested by many | |||
| 2007-06-01 | apply the "skip ipsec if there are no flows" speedup diff to IPv6 too. | Henning Brauer | |
| we need a pointer to the inpcb to decide, which was not previously passed to ip6_output, so this diff is a little bigger. from itojun, ok ryan | |||
| 2007-02-08 | - AH: when computing crypto checksum for output, massage source-routing | Jun-ichiro itojun Hagino | |
| header. - ipsec_input: fix mistake in IPv6 next-header chasing. - ipsec_output: look for the position to insert AH more carefully. - ip6_output: enable use of AH with extension headers. avoid tunnellinng when source-routing header is present. ok by deraad, naddy, hshoexer | |||
| 2006-12-10 | In ip6_output(), make sure ia is initialized before it is used. | Miod Vallat | |
| 2006-12-09 | switch IPv6 advanced API from RFC2292 to RFC3542 (2292 is superseded by 3542). | Jun-ichiro itojun Hagino | |
| the kernel still handles RFC2292 set/getsockopts, so that compiled binary has no trouble running. userland sees RFC3542 symbols only on header file so new code has to use RFC3542 API. bump libc shlib minor for function additions. tested on i386/amd64 by jmc, i386 by brad. checked by deraadt. | |||
| 2006-12-08 | leftover from interface-local multicast change. | Jun-ichiro itojun Hagino | |
| 2006-11-17 | change semantics of ff01::/16 to interface local multicast | Jun-ichiro itojun Hagino | |
| (to sync up with more recent IPv6 spec) ok from: deraadt mcbride | |||
| 2006-06-18 | Add support for equal-cost multipath IP. | Christopher Pascoe | |
| To minimise path disruptions, this implements recommendations made in RFC2992 - the hash-threshold mechanism to select paths based on source/destination IP address pairs, and inserts multipath routes in the middle of the route table. To enable multipath distribution, use: sysctl net.inet.ip.multipath=1 and/or: sysctl net.inet6.ip6.multipath=1 testing norby@ ok claudio@ henning@ hshoexer@ | |||
| 2006-06-16 | adjust functions dealing with the routing table to take a table ID as | Henning Brauer | |
| parameter so they can work on alternate tables. table 0 hardcoded for many callers yet, that will be adapted step by step. input + ok claudio norby hshoexer | |||
| 2006-06-16 | More spelling fixes. | Christopher Pascoe | |
| 2006-06-16 | Spelling. | Christopher Pascoe | |
| 2006-05-27 | Do the same thing as for IPv4. Use a sysctl to enable/disable mfrowarding | Claudio Jeker | |
| and additionaly make the code part of the MROUTING option. Put it in deraadt@ | |||
| 2006-03-05 | Use more queue macros rather than doing it by hand; ok otto@ krw@ | Miod Vallat | |
| 2005-01-11 | correctly deal with unspecified (zero) interface number in IPV6_MULTICAST_IF, | Damien Miller | |
| IPV6_{JOIN,LEAVE}_GROUP ioctls; ok itojun@ | |||
| 2004-06-21 | Get rid of pf_test_eh() wrapper. | Ryan Thomas McBride | |
| ok cedric@ henning@ | |||
| 2004-06-12 | support IPV6_USE_MIN_MTU, to make BIND9 better. | Jun-ichiro itojun Hagino | |
| (sorry about the mess yesterday) | |||
| 2004-06-11 | back out tree breakage. Like, come on | Theo de Raadt | |
| 2004-06-11 | support IPV6_USE_MIN_MTU, which is needed to run BIND9 well. from kame | Jun-ichiro itojun Hagino | |
| markus ok | |||
| 2004-02-04 | strictly follow RFC2460 section 5, last paragraph (sender behavior when | Jun-ichiro itojun Hagino | |
| path MTU < 1280). bug found by Georgi Guninski. ok dhartmei | |||
| 2004-02-02 | make the stack compile if NPF=0. ok deraadt@ markus@ | Cedric Berger | |
| 2003-12-10 | use if_indexlim (instead of if_index) and ifindex2ifnet[x] != NULL | Jun-ichiro itojun Hagino | |
| to check if interface exists, as (1) if_index will have different meaning (2) ifindex2ifnet could become NULL when interface gets destroyed, when we introduce dynamically-created interfaces. markus ok | |||
| 2003-11-07 | fix behavior when ipv6mr_interface is 0. reported on netbsd list | Jun-ichiro itojun Hagino | |
| 2003-10-01 | use random number generator to generate IPv6 fragment ID/flowlabel. | Jun-ichiro itojun Hagino | |
| cleanup IPv6 flowlabel handling. deraadt ok | |||
| 2003-10-01 | correct m_cat misuse. i remember it was ok'ed by someone but don't remember ↵ | Jun-ichiro itojun Hagino | |
| who... | |||
| 2003-08-15 | change arguments to suser. suser now takes the process, and a flags | Ted Unangst | |
| argument. old cred only calls user suser_ucred. this will allow future work to more flexibly implement the idea of a root process. looks like something i saw in freebsd, but a little different. use of suser_ucred vs suser in file system code should be looked at again, for the moment semantics remain unchanged. review and input from art@ testing and further review miod@ | |||
| 2003-06-11 | - sync up MLD declaration with RFC3542 (s/MLD6/MLD/) | Jun-ichiro itojun Hagino | |
| - routing header declaration with RFC3542 (note: sizeof(ip6_rthdr0) has changed!) also, sync up with RFC2460 routing header definition (no "strict" source routing mode any more) part of advanced API update (RFC2292 -> 3542). markus, todd, millert, henning ok | |||
| 2003-06-02 | Remove the advertising clause in the UCB license which Berkeley | Todd C. Miller | |
| rescinded 22 July 1999. Proofed by myself and Theo. | |||
| 2002-10-31 | plug memory leak. from sam leffler. sync w/kame | Jun-ichiro itojun Hagino | |
| 2002-09-23 | correct length of PADN option before jumbo payload option. sync w/kame | Jun-ichiro itojun Hagino | |
| deraadt ok | |||
| 2002-09-11 | fix pointer signedness mixup. sync w/kame | Jun-ichiro itojun Hagino | |
| 2002-09-11 | KNF - return is not a function. sync w/kame | Jun-ichiro itojun Hagino | |
| 2002-06-09 | whitespace cleanup | Jun-ichiro itojun Hagino | |
| 2002-06-08 | use splnet for ipsec | Jun-ichiro itojun Hagino | |
| 2002-06-08 | splnet -> splsoftnet where appropriate | Jun-ichiro itojun Hagino | |
| 2002-06-08 | sync with latest KAME in6_ifaddr/prefix/default router manipulation. | Jun-ichiro itojun Hagino | |
| behavior changes: - two iocts used by ndp(8) are now obsolete (backward compat provided). use sysctl path instead. - lo0 does not get ::1 automatically. it will get ::1 when lo0 comes up. | |||
| 2002-06-07 | move IPV6_CHECKSUM processing to ip6_raw_ctloutput(). bunch of KNFs. | Jun-ichiro itojun Hagino | |
| rip6 stats. sync w/kame | |||
| 2002-06-07 | just for consistency/compatibility, have net.inet6.ip6.v6only sysctl MIB, | Jun-ichiro itojun Hagino | |
| as well as set/getsockopt(IPV6_V6ONLY). | |||
| 2002-06-07 | style | Jun-ichiro itojun Hagino | |
| 2002-06-07 | 'fall through' is not a valid LINT keyword. | Jun-ichiro itojun Hagino | |
| 2002-05-31 | do not try to update rmx_mtu if rmx_mtu == 0 (obey ifmtu) | Jun-ichiro itojun Hagino | |
| 2002-05-29 | force fragment to minimum link MTU (1280) when needed (when PMTUD does | Jun-ichiro itojun Hagino | |
| not take effect) - like icmp6 responses or foo-over-IPv6 tunnel. | |||
| 2002-05-29 | attach nd_ifinfo structure to if_afdata. | Jun-ichiro itojun Hagino | |
| split IPv6 MTU (advertised by RA) from real link MTU. sync with kame | |||
| 2002-03-14 | First round of __P removal in sys | Todd C. Miller | |
| 2002-01-21 | remove couple of #if 0'ed portion we will never use | Jun-ichiro itojun Hagino | |
| 2001-12-07 | whitespace/comment sync with kame | Jun-ichiro itojun Hagino | |
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |