summaryrefslogtreecommitdiff
path: root/sys/netinet
AgeCommit message (Collapse)Author
1999-11-04Add comment about gettdb() and spl level.Hakan Olsson
1999-11-04gettdb() should be at spltdb().Hakan Olsson
1999-11-04pfkeyv2 aquire should not happen when bypassing IPsec. Add missing splx().Hakan Olsson
1999-11-04Add tdb for IPsec bypass flows. gettdb() should be called at spltdb().Hakan Olsson
1999-11-04Do a little preprocessing on the incoming mbuf: set the MCAST/BCAST m_flagJason Wright
as appropriate
1999-10-29Support multiple enc interfaces.Angelos D. Keromytis
1999-10-29New field in tdb, to be used with bridging.Angelos D. Keromytis
1999-10-29Get rid of unnecessary third argument in *_output routines of IPsec.Angelos D. Keromytis
1999-10-29Remove unused third argument from ipe4_output()Angelos D. Keromytis
1999-10-29Remove unnecessary argument from ipe4_output() and etherip_output()Angelos D. Keromytis
1999-10-29Queue on the bridge interface.Angelos D. Keromytis
1999-10-29Fix some comments.Angelos D. Keromytis
1999-10-28Add etherip.allow sysctl node entry.Angelos D. Keromytis
1999-10-28Add IPPROTO_ETHERIP in the protocol switch; comment out INET6 IPv4-IPv4Angelos D. Keromytis
handling that was re-using ipv4_input() instead of using ip4_input() from netinet/ip_ip4.c
1999-10-28Add Ethernet-IP encapsulation handling.Angelos D. Keromytis
1999-10-28Define IPPROTO_ETHERIP.Angelos D. Keromytis
1999-10-06M_EXT isn't the only test for a cluster any more: also test ext_refJason Wright
1999-09-29Critical reliability fix for IPsec. On i386 splsoftclock is notNiklas Hallqvist
a perfect emulation of a "real" architecture's splsoftclock, as it assumes it is only invoked from higher spl levels. Use splsoftnet instead.
1999-09-26the mbuf copy was still being modified; now totally correct that.Theo de Raadt
1999-09-25line not neededTheo de Raadt
1999-09-23fix same-interface-out-as-in and packet gets corrupted bug noted byTheo de Raadt
james@oaktree.co.uk by re-working icmp embedded-packet code so that ip_forward() m_copy()-aliased packet can be forwarded to ip_output and icmp_error() safely, because no packet tweaking is needed before calling icmp_error()
1999-09-03inet_ntoa4 should manage 4-calls, not just 2Hakan Olsson
1999-09-01increase tcp_iss incrementNiels Provos
1999-08-31correctly update window informationNiels Provos
1999-08-27more SACK hole validity testing; fix a tcp seq arithmetic bug. cmetz and me.Niels Provos
1999-08-27Disable SACK for now, it has problems, deraadt@Todd C. Miller
1999-08-26add an inner xor to make prediction attacks against the ids harder, dueNiels Provos
to an attack pointed out by David Wagner.
1999-08-10Add tdb_satype (PF_KEY SADB_SATYPE_<XXX>) to struct tdbHakan Olsson
1999-08-08undeclared variableNiklas Hallqvist
1999-08-08Fix cases when wanting to communicate with the bridge'Niklas Hallqvist
s remote interfaces, both ARP and local delivery had bugs
1999-08-08Support detaching of network interfaces. Still work to do in ipf, andNiklas Hallqvist
other families than inet.
1999-08-06back out all recent changes, which continue to be a source for nasty bugsTheo de Raadt
1999-08-05Add tdb_walk. tdb_delete() should clean up routes when deleting flows.Hakan Olsson
1999-08-02Ethernet, not 10 Mb/s EthernetTheo de Raadt
1999-07-28Moved the m_data/m_len shave of IP and TCP headers back to its originalcmetz
location, as attempts to do it differently have caused too many problems.
1999-07-22Revert to 1.21Niklas Hallqvist
1999-07-22Reintroduce rev 1.41 which brings us TCP signatures again, but this timeNiklas Hallqvist
hopefully without random kernel data corruption.
1999-07-18Prevent host on one interface from overwriting ARP route entry for aHakan Olsson
host on a different interface. Also add interface name to other overwrite diagnostic messages.
1999-07-18use proper CTheo de Raadt
1999-07-17revert tcp_input.c to before 07/01/1999 - this seems to solve the mysteriousNiels Provos
data corruptions and panics that people have experienced. by reverting we loose tcp signatures and ipv6 cleanups, the code looked correct to me.
1999-07-17A good hashing function for IPsec SAs that should remove the risksNiklas Hallqvist
of running out of memory when adding SPIs.
1999-07-15Protect better against rehashing make the kernel run out of resourcesNiklas Hallqvist
1999-07-15From angelos@, edits by me, demand keying for PF_KEYNiklas Hallqvist
1999-07-13correct non-STDC caseTheo de Raadt
1999-07-06ipsec_in_use could get out of sync. (Also niklas@. angelos@ ok)Hakan Olsson
1999-07-06Added support for TCP MD5 option (RFC 2385).cmetz
1999-07-06Fixed compilation problems when INET6 is enabled.cmetz
1999-07-06Removed bogus ifdef/define lines that resulted from an over-aggressive M-x.cmetz
1999-07-05remove bogus entry from if_enc address list; and rename enc_softc to encifTheo de Raadt
1999-07-03indentTheo de Raadt
generated by cgit v1.2.3 (git 2.25.1) at 2025-01-10 17:35:10 +0000