summaryrefslogtreecommitdiff
path: root/sys/netinet6
AgeCommit message (Collapse)Author
2005-11-29something in the eurobsdcon route-a-thon broke my simple home networkJolan Luff
router so back out the routing stuff to pre-eurobsdcon where my machine doesn't crash immediately. i am happy to test diffs and report success/failures but i am not happy to have instantaneous crashes when i reboot with a new kernel that was compiled from pristine sources. if you are going to be an elitist asshole then you could at least make sure your code works. ok and "be crass towards them" deraadt@
2005-11-27don't let anything outside route.c access the routing table heads directly,Henning Brauer
but go through a provided wrapper. also provide rt_lookup() instead of doing the lookup manually in many places. ryan ok
2005-11-20splimp -> splvm. mbuf allocation here.Brad Smith
ok henning@
2005-10-22In icmp6_redirect_output(), sip6 is initialised to point to the data area ofBrad Smith
m0. But m0 may be freed later, so trying to use sip6 at the end of this function is wrong. My guess is that we want to reference the data area of m (the mbuf about to be send) instead at this point. Fix a panic on Xen (where a data area of a mbuf may be unmapped when the mbuf is freed), and probably potential data/pool corruption in other cases. From bouyer NetBSD ok deraadt@
2005-10-14avoid silly static variables that even caused nesting issues,Brad Smith
not to mention reentrancy concerns. From christos NetBSD ok deraadt@
2005-10-14bye bye more compile time knobs, use the sysctl to enable v6 forwarding.Brad Smith
ok deraadt@
2005-09-19sin6_scope_id maps to interface indices for link local addresses only!Brad Smith
(unlikely to be used with other scopes for now, but we should be correct anyway) From drochner NetBSD ok deraadt@
2005-09-19remove the unused in6_ifindex2scopeid()Brad Smith
if at all, it works with site-local addresses whose fate is uncertain to say the least From drochner NetBSD ok deraadt@
2005-08-11New counter for not joined IPv4 multicast groups.Marco Pfatschbacher
Don't count link local scope multicast as not forwardable. This stops ips_cantforward growing on carp(4) networks. tested and ok mcbride@, ok markus@.
2005-06-24simplify port allocation in pcb_bind(); based on freebsd; ok claudio henningMarkus Friedl
2005-05-23carp needs a multicast kludge storage.Marco Pfatschbacher
Fixes PR 4211. OK mcbride@
2005-05-09Make sure that prefixes get purged.Brad Smith
Fixes PR 3939. From NetBSD ok itojun@
2005-04-21remove (now obsolete) handling of IFT_PROPVIRTUAL/bridge*. tested by camield@Jun-ichiro itojun Hagino
2005-03-06move pf_test6() call slightly up, so pf gets called for incoming packetsDaniel Hartmeier
on loopback interfaces, and IPv6 behaves like IPv4 in this regard. only affects packets on loopback. ok itojun@
2005-02-10remove #if 0'ed code (which was experimental and should never be used)Jun-ichiro itojun Hagino
2005-01-18Rewriting the lladdr can now be done without using mbuf tags.Marco Pfatschbacher
Advertisements run through the carp interface first. So we just take the address from ifp0. While we're there, also remove carp_macmatch6, which isn't used anymore. Proposed by mcbride@ ok mcbride@, pascoe@
2005-01-17should not check "code" field on icmp6 too big message. from kameJun-ichiro itojun Hagino
2005-01-11correctly deal with unspecified (zero) interface number in IPV6_MULTICAST_IF,Damien Miller
IPV6_{JOIN,LEAVE}_GROUP ioctls; ok itojun@
2004-12-21Check that if_type != IFT_CARP before using ifp->if_carp.Ryan Thomas McBride
2004-12-07Convert carp(4) to behave more like a regular interface, much in the sameRyan Thomas McBride
style as vlan(4). carp interfaces no longer require the physical interface to be on the same subnet as the carp interface, or even that the physical interface has an adress at all, so CARP can now be used on /30 networks. ok deraadt@ henning@
2004-11-17wrong paren. Patrick LatifiJun-ichiro itojun Hagino
2004-11-10Fix 'netstat -sp pim6'Ryan Thomas McBride
From Pavlin Radoslavov
2004-10-28treat IFT_CARP like IFT_PROPVIRTUAL, ryan daniel okHenning Brauer
2004-10-28remove onlink assumption behavior (consider destination on-link if defaultJun-ichiro itojun Hagino
router list is empty) based on recent IETF ipv6 discussion (RFC2461 5.2). fix "ndp -I delete". markus ok
2004-10-18g/c ip6_flow_seq. found by mcbride. mcbride okJun-ichiro itojun Hagino
2004-10-07missing dohooks(), needed for (em0:network) style notation with v6, was notHenning Brauer
updated properly in all cases. from cedric
2004-08-24revert. itojun notes that 128 is ok because of bitlen check.Ted Unangst
add a comment to this effect since many of us were confused. ok deraadt@
2004-08-23make sure we do not overwrite checksum field on shared mbuf.Jun-ichiro itojun Hagino
markus, henning, deraadt, mcbride ok
2004-08-21correct bounds checks. found at/by Coverity.Ted Unangst
ok deraadt@
2004-07-14completely revert to r1.31, there were still problems on the forwardingDaniel Hartmeier
path
2004-07-12remove PF_FORWARD (which was introduced by ipv6 reass-on-scrub).Jun-ichiro itojun Hagino
daniel found it.
2004-06-25IPv6 reassembly on "scrub" directive.Jun-ichiro itojun Hagino
caveats: (to be addressed soon) - "scrub in" should queue fragments back into ip6intrq again, but somehow it does not happen - the packet is kept inside reass queue. need investigation - ip6_forwarding path is not tested - does not use red-black tree. somehow red-black tree behaved badly and was not robust. performance issue, the above one is more important. good things: - "scrub out" is perfectly ok - i think now we can inspect upper-layer protocol fields (tcp port) even if ip6 packet is fragmented. - reass queue will be cleaned up properly by timeout (60sec). we might want to impose pool limit as well
2004-06-24"error" could be left uninitializedJun-ichiro itojun Hagino
2004-06-21First step towards more sane time handling in the kernel -- this changesThorsten Lockert
things such that code that only need a second-resolution uptime or wall time, and used to get that from time.tv_secs or mono_time.tv_secs now get this from separate time_t globals time_second and time_uptime. ok art@ niklas@ nordin@
2004-06-21Get rid of pf_test_eh() wrapper.Ryan Thomas McBride
ok cedric@ henning@
2004-06-17correct multicast handling for special groups (like solicited node multicast).Jun-ichiro itojun Hagino
from jinmei@kame
2004-06-16missing paren in macro def. Patrick LatifiJun-ichiro itojun Hagino
2004-06-15avoid creating multiple multicast filter entry for the same group.Jun-ichiro itojun Hagino
notified from Patrick Latifi, deraadt ok
2004-06-12support IPV6_USE_MIN_MTU, to make BIND9 better.Jun-ichiro itojun Hagino
(sorry about the mess yesterday)
2004-06-11back out tree breakage. Like, come onTheo de Raadt
2004-06-11support IPV6_USE_MIN_MTU, which is needed to run BIND9 well. from kameJun-ichiro itojun Hagino
markus ok
2004-06-01there's no use in checking curproc privilege in input path.Jun-ichiro itojun Hagino
equivalent to http://orange.kame.net/dev/cvsweb2.cgi/kame/kame/sys/netinet6/ip6_input.c.diff?r1=1.344&r2=1.345. jinmei@kame
2004-05-19do not loop on nd6_output() when transmission fails. from kameJun-ichiro itojun Hagino
2004-05-07Replace RSA-derived md5 code with code derived from Colin Plumb's PD version.Todd C. Miller
This moves md5.c out of libkern and into sys/crypto where it belongs (as requested by markus@). Note that md5.c is still mandatory (dev/rnd.c uses it). Verified with IPsec + hmac-md5 and tcp md5sig. OK henning@ and hshoexer@
2004-04-25radix tree with multipath support. from kame. deraadt okJun-ichiro itojun Hagino
user visible changes: - you can add multiple routes with same key (route add A B then route add A C) - you have to specify gateway address if there are multiple entries on the table (route delete A B, instead of route delete A) kernel change: - radix_node_head has an extra entry - rnh_deladdr takes extra argument TODO: - actually take advantage of multipath (rtalloc -> rtalloc_mpath)
2004-04-22correct arg to in6_cksum. keiichi@kameJun-ichiro itojun Hagino
2004-03-25Don't use mbuf pointer in error case, when it has been set to NULL.Daniel Hartmeier
From Patrick Latifi. ok markus@, henning@, deraadt@
2004-02-23avoid touching out-of-bound memory if len == 128.Jun-ichiro itojun Hagino
Ted Unangst via Colin Percival
2004-02-15switch to sysctl_int_arr(); ok itojun, henning, miod, deraadtMarkus Friedl
2004-02-06permit IPv6-only operation (permit AF_INET6 bind(2) without IPv4 address).Jun-ichiro itojun Hagino
found by todd fries. markus ok