Age | Commit message (Collapse) | Author | |
---|---|---|---|
2005-11-29 | something in the eurobsdcon route-a-thon broke my simple home network | Jolan Luff | |
router so back out the routing stuff to pre-eurobsdcon where my machine doesn't crash immediately. i am happy to test diffs and report success/failures but i am not happy to have instantaneous crashes when i reboot with a new kernel that was compiled from pristine sources. if you are going to be an elitist asshole then you could at least make sure your code works. ok and "be crass towards them" deraadt@ | |||
2005-11-27 | don't let anything outside route.c access the routing table heads directly, | Henning Brauer | |
but go through a provided wrapper. also provide rt_lookup() instead of doing the lookup manually in many places. ryan ok | |||
2005-11-20 | splimp -> splvm. mbuf allocation here. | Brad Smith | |
ok henning@ | |||
2005-10-22 | In icmp6_redirect_output(), sip6 is initialised to point to the data area of | Brad Smith | |
m0. But m0 may be freed later, so trying to use sip6 at the end of this function is wrong. My guess is that we want to reference the data area of m (the mbuf about to be send) instead at this point. Fix a panic on Xen (where a data area of a mbuf may be unmapped when the mbuf is freed), and probably potential data/pool corruption in other cases. From bouyer NetBSD ok deraadt@ | |||
2005-10-14 | avoid silly static variables that even caused nesting issues, | Brad Smith | |
not to mention reentrancy concerns. From christos NetBSD ok deraadt@ | |||
2005-10-14 | bye bye more compile time knobs, use the sysctl to enable v6 forwarding. | Brad Smith | |
ok deraadt@ | |||
2005-09-19 | sin6_scope_id maps to interface indices for link local addresses only! | Brad Smith | |
(unlikely to be used with other scopes for now, but we should be correct anyway) From drochner NetBSD ok deraadt@ | |||
2005-09-19 | remove the unused in6_ifindex2scopeid() | Brad Smith | |
if at all, it works with site-local addresses whose fate is uncertain to say the least From drochner NetBSD ok deraadt@ | |||
2005-08-11 | New counter for not joined IPv4 multicast groups. | Marco Pfatschbacher | |
Don't count link local scope multicast as not forwardable. This stops ips_cantforward growing on carp(4) networks. tested and ok mcbride@, ok markus@. | |||
2005-06-24 | simplify port allocation in pcb_bind(); based on freebsd; ok claudio henning | Markus Friedl | |
2005-05-23 | carp needs a multicast kludge storage. | Marco Pfatschbacher | |
Fixes PR 4211. OK mcbride@ | |||
2005-05-09 | Make sure that prefixes get purged. | Brad Smith | |
Fixes PR 3939. From NetBSD ok itojun@ | |||
2005-04-21 | remove (now obsolete) handling of IFT_PROPVIRTUAL/bridge*. tested by camield@ | Jun-ichiro itojun Hagino | |
2005-03-06 | move pf_test6() call slightly up, so pf gets called for incoming packets | Daniel Hartmeier | |
on loopback interfaces, and IPv6 behaves like IPv4 in this regard. only affects packets on loopback. ok itojun@ | |||
2005-02-10 | remove #if 0'ed code (which was experimental and should never be used) | Jun-ichiro itojun Hagino | |
2005-01-18 | Rewriting the lladdr can now be done without using mbuf tags. | Marco Pfatschbacher | |
Advertisements run through the carp interface first. So we just take the address from ifp0. While we're there, also remove carp_macmatch6, which isn't used anymore. Proposed by mcbride@ ok mcbride@, pascoe@ | |||
2005-01-17 | should not check "code" field on icmp6 too big message. from kame | Jun-ichiro itojun Hagino | |
2005-01-11 | correctly deal with unspecified (zero) interface number in IPV6_MULTICAST_IF, | Damien Miller | |
IPV6_{JOIN,LEAVE}_GROUP ioctls; ok itojun@ | |||
2004-12-21 | Check that if_type != IFT_CARP before using ifp->if_carp. | Ryan Thomas McBride | |
2004-12-07 | Convert carp(4) to behave more like a regular interface, much in the same | Ryan Thomas McBride | |
style as vlan(4). carp interfaces no longer require the physical interface to be on the same subnet as the carp interface, or even that the physical interface has an adress at all, so CARP can now be used on /30 networks. ok deraadt@ henning@ | |||
2004-11-17 | wrong paren. Patrick Latifi | Jun-ichiro itojun Hagino | |
2004-11-10 | Fix 'netstat -sp pim6' | Ryan Thomas McBride | |
From Pavlin Radoslavov | |||
2004-10-28 | treat IFT_CARP like IFT_PROPVIRTUAL, ryan daniel ok | Henning Brauer | |
2004-10-28 | remove onlink assumption behavior (consider destination on-link if default | Jun-ichiro itojun Hagino | |
router list is empty) based on recent IETF ipv6 discussion (RFC2461 5.2). fix "ndp -I delete". markus ok | |||
2004-10-18 | g/c ip6_flow_seq. found by mcbride. mcbride ok | Jun-ichiro itojun Hagino | |
2004-10-07 | missing dohooks(), needed for (em0:network) style notation with v6, was not | Henning Brauer | |
updated properly in all cases. from cedric | |||
2004-08-24 | revert. itojun notes that 128 is ok because of bitlen check. | Ted Unangst | |
add a comment to this effect since many of us were confused. ok deraadt@ | |||
2004-08-23 | make sure we do not overwrite checksum field on shared mbuf. | Jun-ichiro itojun Hagino | |
markus, henning, deraadt, mcbride ok | |||
2004-08-21 | correct bounds checks. found at/by Coverity. | Ted Unangst | |
ok deraadt@ | |||
2004-07-14 | completely revert to r1.31, there were still problems on the forwarding | Daniel Hartmeier | |
path | |||
2004-07-12 | remove PF_FORWARD (which was introduced by ipv6 reass-on-scrub). | Jun-ichiro itojun Hagino | |
daniel found it. | |||
2004-06-25 | IPv6 reassembly on "scrub" directive. | Jun-ichiro itojun Hagino | |
caveats: (to be addressed soon) - "scrub in" should queue fragments back into ip6intrq again, but somehow it does not happen - the packet is kept inside reass queue. need investigation - ip6_forwarding path is not tested - does not use red-black tree. somehow red-black tree behaved badly and was not robust. performance issue, the above one is more important. good things: - "scrub out" is perfectly ok - i think now we can inspect upper-layer protocol fields (tcp port) even if ip6 packet is fragmented. - reass queue will be cleaned up properly by timeout (60sec). we might want to impose pool limit as well | |||
2004-06-24 | "error" could be left uninitialized | Jun-ichiro itojun Hagino | |
2004-06-21 | First step towards more sane time handling in the kernel -- this changes | Thorsten Lockert | |
things such that code that only need a second-resolution uptime or wall time, and used to get that from time.tv_secs or mono_time.tv_secs now get this from separate time_t globals time_second and time_uptime. ok art@ niklas@ nordin@ | |||
2004-06-21 | Get rid of pf_test_eh() wrapper. | Ryan Thomas McBride | |
ok cedric@ henning@ | |||
2004-06-17 | correct multicast handling for special groups (like solicited node multicast). | Jun-ichiro itojun Hagino | |
from jinmei@kame | |||
2004-06-16 | missing paren in macro def. Patrick Latifi | Jun-ichiro itojun Hagino | |
2004-06-15 | avoid creating multiple multicast filter entry for the same group. | Jun-ichiro itojun Hagino | |
notified from Patrick Latifi, deraadt ok | |||
2004-06-12 | support IPV6_USE_MIN_MTU, to make BIND9 better. | Jun-ichiro itojun Hagino | |
(sorry about the mess yesterday) | |||
2004-06-11 | back out tree breakage. Like, come on | Theo de Raadt | |
2004-06-11 | support IPV6_USE_MIN_MTU, which is needed to run BIND9 well. from kame | Jun-ichiro itojun Hagino | |
markus ok | |||
2004-06-01 | there's no use in checking curproc privilege in input path. | Jun-ichiro itojun Hagino | |
equivalent to http://orange.kame.net/dev/cvsweb2.cgi/kame/kame/sys/netinet6/ip6_input.c.diff?r1=1.344&r2=1.345. jinmei@kame | |||
2004-05-19 | do not loop on nd6_output() when transmission fails. from kame | Jun-ichiro itojun Hagino | |
2004-05-07 | Replace RSA-derived md5 code with code derived from Colin Plumb's PD version. | Todd C. Miller | |
This moves md5.c out of libkern and into sys/crypto where it belongs (as requested by markus@). Note that md5.c is still mandatory (dev/rnd.c uses it). Verified with IPsec + hmac-md5 and tcp md5sig. OK henning@ and hshoexer@ | |||
2004-04-25 | radix tree with multipath support. from kame. deraadt ok | Jun-ichiro itojun Hagino | |
user visible changes: - you can add multiple routes with same key (route add A B then route add A C) - you have to specify gateway address if there are multiple entries on the table (route delete A B, instead of route delete A) kernel change: - radix_node_head has an extra entry - rnh_deladdr takes extra argument TODO: - actually take advantage of multipath (rtalloc -> rtalloc_mpath) | |||
2004-04-22 | correct arg to in6_cksum. keiichi@kame | Jun-ichiro itojun Hagino | |
2004-03-25 | Don't use mbuf pointer in error case, when it has been set to NULL. | Daniel Hartmeier | |
From Patrick Latifi. ok markus@, henning@, deraadt@ | |||
2004-02-23 | avoid touching out-of-bound memory if len == 128. | Jun-ichiro itojun Hagino | |
Ted Unangst via Colin Percival | |||
2004-02-15 | switch to sysctl_int_arr(); ok itojun, henning, miod, deraadt | Markus Friedl | |
2004-02-06 | permit IPv6-only operation (permit AF_INET6 bind(2) without IPv4 address). | Jun-ichiro itojun Hagino | |
found by todd fries. markus ok |