summaryrefslogtreecommitdiff
path: root/sys/netinet
AgeCommit message (Collapse)Author
2002-06-07missing bzero! - now linklocal tcp works correctlyJun-ichiro itojun Hagino
2002-06-04spaces to tabs, remove trailing whitespacejasoni
2002-05-31respect rmx_mtu (cached PMTUD result) on outbound. deraadt/angelos okJun-ichiro itojun Hagino
2002-05-31Socket-specific IPsec policy.Angelos D. Keromytis
2002-05-31Per-socket policies and authentication. Finally.Angelos D. Keromytis
2002-05-31Socket-related IPsec sockoptions --- cleanups etc.Angelos D. Keromytis
2002-05-31Move some common code to separate routines; also, fix the problem ofAngelos D. Keromytis
using the same SA for different traffic classes. Now, different SAs will be renegotiated as needed. XXX It's a sub-optimal (but correct) solution, as it looks for an exact match -- it should be checking for subset/subnet. One of these days...
2002-05-31New fields in policy and TDB.Angelos D. Keromytis
2002-05-31Keep an policy attached to each socket (that needs it), and cleanup asAngelos D. Keromytis
needed on socket tear-down.
2002-05-31Fix a DoS attack whereby an attacker could cause the replay counter toAngelos D. Keromytis
advance with unauthenticated packets, thereby causing valid packets to be discarded as replays. This has been sitting in my tree for a while, and I've forgotten who it was that pointed out the problem.
2002-05-30minor KNF. nuke obsolete IFF_LINK0 support completelyJun-ichiro itojun Hagino
2002-05-29attach nd_ifinfo structure to if_afdata.Jun-ichiro itojun Hagino
split IPv6 MTU (advertised by RA) from real link MTU. sync with kame
2002-05-29move per-interface ip6/icmp6 stat to ifnet->if_afdata. sync w/kameJun-ichiro itojun Hagino
2002-05-28kill register; ok deraadt@jasoni
2002-05-28Factor out IP fragmentation code into its own function so it can bejasoni
reused. - ok jason@, dhartmei@
2002-05-26remove extra spaces, tabs, and semicolon.Federico G. Schwindt
2002-05-24add net.inet.icmp.tstamprepl sysctl for timestamp control; jason@ackley.netTheo de Raadt
2002-05-16bring in ECN support from KAME.Kenjiro Cho
it consists of - ECN support in TCP - tunnel-egress and fragment reassembly rules in layer-3 not to lose congestion info at tunnel-egress and fragment reassembly to enable ECN in TCP, build a kernel with TCP_ECN, and then, turn it on by "sysctl -w net.inet.tcp.ecn=1". ok deraadt@
2002-05-07move ether_crc32_le to if_ethersubr.c. Add ether_crc32_beNathan Binkert
2002-04-24Update IPsec-related comments.Angelos D. Keromytis
2002-04-24Add hooks to struct ifnet that allow to register callbacks that will beDaniel Hartmeier
notified of interface address changes. ok provos@, angelos@
2002-04-03Don't process WCCPv1-style GRE packets, unless allowed (via sysctlAngelos D. Keromytis
variable); GRE processing must also be allowed. From joeycoleman@acm.org, ok deraadt@ niklas@
2002-04-01cleanup in_broadcast. don't consider /32 addrs as broadcast.Jun-ichiro itojun Hagino
2002-03-27suppress "duplicate IP" message when booting machines with no initial IP.Ian Darwin
2002-03-24m_freem(NULL) bad style, ok jason@Niklas Hallqvist
2002-03-24WCCP support (trivial hack, it's not the complete protocol, but it'llAngelos D. Keromytis
accept packets from Cisco boxes) --- from joeycoleman@acm.org
2002-03-19drop TCP connections to broadcast address.Jun-ichiro itojun Hagino
From: "Crist J. Clark" <cjclark@alum.mit.edu>
2002-03-15Kill #if __STDC__ used to do K&R vs. ANSI varargs/stdarg; just do thingsTodd C. Miller
the ANSI way.
2002-03-14Final __P removal plus some cosmetic fixupsTodd C. Miller
2002-03-14First round of __P removal in sysTodd C. Miller
2002-03-09check tiflags instead of th as th might point to freed memory; pointed outNiels Provos
by wayne@stallion.oz.au; also whack register.
2002-03-08use timeout(9) to schedule TCP timers. this avoid traversing allNiels Provos
tcp connections during tcp_slowtimo. apdapted from thorpej@netbsd.org
2002-03-02disable immediate ack on TH_PUSH. make behaviour sysctl tuneable.Niels Provos
from netbsd; also fix a bug where setting TF_ACKNOW didn't actually result in an ack.
2002-03-01remove tcp_fasttimo and convert delayed acks to the timeout(9) API instead.Niels Provos
adapated from netbsd. okay angelos@
2002-03-01sync with KAMEKenjiro Cho
move the function prototype of altq_etherclassify() from netinet/if_ether.h to altq/if_altq.h.
2002-02-26Cut/pasto: don't forget to scan for the source addressJason Wright
2002-02-23Print compression algorithm name too.Angelos D. Keromytis
2002-02-22do not transmit ICMP source quench. from kjc/kameJun-ichiro itojun Hagino
2002-02-19IPsec is written ``IPsec'', not ``IPSec''.Miod Vallat
2002-02-18Search the correct ACQUIRE list --- shifflett@nps.navy.milAngelos D. Keromytis
2002-02-15Don't cast nonexistent return value from splx to (void). ok art@Thomas Nordin
2002-02-15Clean up arpinput (based on similiar changes in NetBSD), also be sure toJason Wright
setup the arpcom when we're allowing lazy matches on bridged interfaces.
2002-02-05when retransmitting a segment after FIN has been sent don't set FINNiels Provos
unless we are transmitting the last of our data. report from jishac@grc.nasa.gov; pr/2368
2002-01-25Add a drain hook to each pool. This hook is called in three cases.Artur Grabowski
1. When a pool hit the hard limit. Just before bailing out/sleeping. 2. When an allocator fails to allocate memory (with PR_NOWAIT). 3. Just before trying to reclaim some page in pool_reclaim. The function called form the hook should try to free some items to the pool if possible. Convert m_reclaim hooks that were embedded in MCLGET, MGET and MGETHDR into a pool drain hook (making the code much cleaner).
2002-01-24allocate tcp reassembly queue via pool; based on netbsd; okay art@ angelos@Niels Provos
2002-01-23disable pmtu for ipsec when the sysctl says so; bug report cjkim2000@yahoo.comNiels Provos
2002-01-23It looks like there has been one crack smoking and a few cut and pastes.Artur Grabowski
PR_FREEHEADER should not be set in pool_init by the caller. It shouldn't be set in pool_init at all. Besides, it's going away soon anyway.
2002-01-23Pool deals fairly well with physical memory shortage, but it doesn't dealArtur Grabowski
well (not at all) with shortages of the vm_map where the pages are mapped (usually kmem_map). Try to deal with it: - group all information the backend allocator for a pool in a separate struct. The pool will only have a pointer to that struct. - change the pool_init API to reflect that. - link all pools allocating from the same allocator on a linked list. - Since an allocator is responsible to wait for physical memory it will only fail (waitok) when it runs out of its backing vm_map, carefully drain pools using the same allocator so that va space is freed. (see comments in code for caveats and details). - change pool_reclaim to return if it actually succeeded to free some memory, use that information to make draining easier and more efficient. - get rid of PR_URGENT, noone uses it.
2002-01-21remove couple of #if 0'ed portion we will never useJun-ichiro itojun Hagino
2002-01-15allocate sackholes with poolNiels Provos