Age | Commit message (Collapse) | Author | |
---|---|---|---|
2002-06-07 | missing bzero! - now linklocal tcp works correctly | Jun-ichiro itojun Hagino | |
2002-06-04 | spaces to tabs, remove trailing whitespace | jasoni | |
2002-05-31 | respect rmx_mtu (cached PMTUD result) on outbound. deraadt/angelos ok | Jun-ichiro itojun Hagino | |
2002-05-31 | Socket-specific IPsec policy. | Angelos D. Keromytis | |
2002-05-31 | Per-socket policies and authentication. Finally. | Angelos D. Keromytis | |
2002-05-31 | Socket-related IPsec sockoptions --- cleanups etc. | Angelos D. Keromytis | |
2002-05-31 | Move some common code to separate routines; also, fix the problem of | Angelos D. Keromytis | |
using the same SA for different traffic classes. Now, different SAs will be renegotiated as needed. XXX It's a sub-optimal (but correct) solution, as it looks for an exact match -- it should be checking for subset/subnet. One of these days... | |||
2002-05-31 | New fields in policy and TDB. | Angelos D. Keromytis | |
2002-05-31 | Keep an policy attached to each socket (that needs it), and cleanup as | Angelos D. Keromytis | |
needed on socket tear-down. | |||
2002-05-31 | Fix a DoS attack whereby an attacker could cause the replay counter to | Angelos D. Keromytis | |
advance with unauthenticated packets, thereby causing valid packets to be discarded as replays. This has been sitting in my tree for a while, and I've forgotten who it was that pointed out the problem. | |||
2002-05-30 | minor KNF. nuke obsolete IFF_LINK0 support completely | Jun-ichiro itojun Hagino | |
2002-05-29 | attach nd_ifinfo structure to if_afdata. | Jun-ichiro itojun Hagino | |
split IPv6 MTU (advertised by RA) from real link MTU. sync with kame | |||
2002-05-29 | move per-interface ip6/icmp6 stat to ifnet->if_afdata. sync w/kame | Jun-ichiro itojun Hagino | |
2002-05-28 | kill register; ok deraadt@ | jasoni | |
2002-05-28 | Factor out IP fragmentation code into its own function so it can be | jasoni | |
reused. - ok jason@, dhartmei@ | |||
2002-05-26 | remove extra spaces, tabs, and semicolon. | Federico G. Schwindt | |
2002-05-24 | add net.inet.icmp.tstamprepl sysctl for timestamp control; jason@ackley.net | Theo de Raadt | |
2002-05-16 | bring in ECN support from KAME. | Kenjiro Cho | |
it consists of - ECN support in TCP - tunnel-egress and fragment reassembly rules in layer-3 not to lose congestion info at tunnel-egress and fragment reassembly to enable ECN in TCP, build a kernel with TCP_ECN, and then, turn it on by "sysctl -w net.inet.tcp.ecn=1". ok deraadt@ | |||
2002-05-07 | move ether_crc32_le to if_ethersubr.c. Add ether_crc32_be | Nathan Binkert | |
2002-04-24 | Update IPsec-related comments. | Angelos D. Keromytis | |
2002-04-24 | Add hooks to struct ifnet that allow to register callbacks that will be | Daniel Hartmeier | |
notified of interface address changes. ok provos@, angelos@ | |||
2002-04-03 | Don't process WCCPv1-style GRE packets, unless allowed (via sysctl | Angelos D. Keromytis | |
variable); GRE processing must also be allowed. From joeycoleman@acm.org, ok deraadt@ niklas@ | |||
2002-04-01 | cleanup in_broadcast. don't consider /32 addrs as broadcast. | Jun-ichiro itojun Hagino | |
2002-03-27 | suppress "duplicate IP" message when booting machines with no initial IP. | Ian Darwin | |
2002-03-24 | m_freem(NULL) bad style, ok jason@ | Niklas Hallqvist | |
2002-03-24 | WCCP support (trivial hack, it's not the complete protocol, but it'll | Angelos D. Keromytis | |
accept packets from Cisco boxes) --- from joeycoleman@acm.org | |||
2002-03-19 | drop TCP connections to broadcast address. | Jun-ichiro itojun Hagino | |
From: "Crist J. Clark" <cjclark@alum.mit.edu> | |||
2002-03-15 | Kill #if __STDC__ used to do K&R vs. ANSI varargs/stdarg; just do things | Todd C. Miller | |
the ANSI way. | |||
2002-03-14 | Final __P removal plus some cosmetic fixups | Todd C. Miller | |
2002-03-14 | First round of __P removal in sys | Todd C. Miller | |
2002-03-09 | check tiflags instead of th as th might point to freed memory; pointed out | Niels Provos | |
by wayne@stallion.oz.au; also whack register. | |||
2002-03-08 | use timeout(9) to schedule TCP timers. this avoid traversing all | Niels Provos | |
tcp connections during tcp_slowtimo. apdapted from thorpej@netbsd.org | |||
2002-03-02 | disable immediate ack on TH_PUSH. make behaviour sysctl tuneable. | Niels Provos | |
from netbsd; also fix a bug where setting TF_ACKNOW didn't actually result in an ack. | |||
2002-03-01 | remove tcp_fasttimo and convert delayed acks to the timeout(9) API instead. | Niels Provos | |
adapated from netbsd. okay angelos@ | |||
2002-03-01 | sync with KAME | Kenjiro Cho | |
move the function prototype of altq_etherclassify() from netinet/if_ether.h to altq/if_altq.h. | |||
2002-02-26 | Cut/pasto: don't forget to scan for the source address | Jason Wright | |
2002-02-23 | Print compression algorithm name too. | Angelos D. Keromytis | |
2002-02-22 | do not transmit ICMP source quench. from kjc/kame | Jun-ichiro itojun Hagino | |
2002-02-19 | IPsec is written ``IPsec'', not ``IPSec''. | Miod Vallat | |
2002-02-18 | Search the correct ACQUIRE list --- shifflett@nps.navy.mil | Angelos D. Keromytis | |
2002-02-15 | Don't cast nonexistent return value from splx to (void). ok art@ | Thomas Nordin | |
2002-02-15 | Clean up arpinput (based on similiar changes in NetBSD), also be sure to | Jason Wright | |
setup the arpcom when we're allowing lazy matches on bridged interfaces. | |||
2002-02-05 | when retransmitting a segment after FIN has been sent don't set FIN | Niels Provos | |
unless we are transmitting the last of our data. report from jishac@grc.nasa.gov; pr/2368 | |||
2002-01-25 | Add a drain hook to each pool. This hook is called in three cases. | Artur Grabowski | |
1. When a pool hit the hard limit. Just before bailing out/sleeping. 2. When an allocator fails to allocate memory (with PR_NOWAIT). 3. Just before trying to reclaim some page in pool_reclaim. The function called form the hook should try to free some items to the pool if possible. Convert m_reclaim hooks that were embedded in MCLGET, MGET and MGETHDR into a pool drain hook (making the code much cleaner). | |||
2002-01-24 | allocate tcp reassembly queue via pool; based on netbsd; okay art@ angelos@ | Niels Provos | |
2002-01-23 | disable pmtu for ipsec when the sysctl says so; bug report cjkim2000@yahoo.com | Niels Provos | |
2002-01-23 | It looks like there has been one crack smoking and a few cut and pastes. | Artur Grabowski | |
PR_FREEHEADER should not be set in pool_init by the caller. It shouldn't be set in pool_init at all. Besides, it's going away soon anyway. | |||
2002-01-23 | Pool deals fairly well with physical memory shortage, but it doesn't deal | Artur Grabowski | |
well (not at all) with shortages of the vm_map where the pages are mapped (usually kmem_map). Try to deal with it: - group all information the backend allocator for a pool in a separate struct. The pool will only have a pointer to that struct. - change the pool_init API to reflect that. - link all pools allocating from the same allocator on a linked list. - Since an allocator is responsible to wait for physical memory it will only fail (waitok) when it runs out of its backing vm_map, carefully drain pools using the same allocator so that va space is freed. (see comments in code for caveats and details). - change pool_reclaim to return if it actually succeeded to free some memory, use that information to make draining easier and more efficient. - get rid of PR_URGENT, noone uses it. | |||
2002-01-21 | remove couple of #if 0'ed portion we will never use | Jun-ichiro itojun Hagino | |
2002-01-15 | allocate sackholes with pool | Niels Provos | |