d/freebsd-dev
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
eb18708ec8
freebsd-dev/sys
History
Robert Wing eb18708ec8 syncache: accept packet with no SA when TCP_MD5SIG is set 
When TCP_MD5SIG is set on a socket, all packets are dropped that don't
contain an MD5 signature. Relax this behavior to accept a non-signed
packet when a security association doesn't exist with the peer.

This is useful when a listen socket set with TCP_MD5SIG wants to handle
connections protected with and without MD5 signatures.

Reviewed by:	bz (previous version)
Sponsored by:   nepustil.net
Sponsored by:   Klara Inc.
Differential Revision:	https://reviews.freebsd.org/D33227
2022-01-08 16:32:14 -09:00
..
amd64 amd64 pmap: preset A and M bits for pmap_qenter() and pmap_kenter() mappings 2022-01-08 06:34:18 +02:00
arm bus_dma: Deduplicate locking helper functions. 2022-01-05 13:50:40 -08:00
arm64 bus_dma: Deduplicate locking helper functions. 2022-01-05 13:50:40 -08:00
bsm
cam Fix build. Sorry. 2022-01-07 14:33:51 -05:00
cddl Remove mips dtrace. 2022-01-07 09:00:56 -07:00
compat LinuxKPI: 802.11 handle IEEE80211_CONF_IDLE better 2022-01-09 00:59:50 +00:00
conf Add driver for marvell, a37x0 peripheral clocks 2022-01-04 13:26:35 +01:00
contrib iwlwifi: import correct firmware versions for select Intel iwlwifi/mvm 2021-12-31 11:51:18 +00:00
crypto sys/crypto: Use C99 fixed-width integer types. 2021-12-28 09:41:38 -08:00
ddb ddb: Remove SOFTWARE_SSTEP support 2022-01-07 09:25:33 -07:00
dev mps/mpr: Relax doorbell polling precision. 2022-01-07 21:34:49 -05:00
dts
fs msdosfs: use mntfs vnode for pm_devvp 2022-01-08 06:21:58 +02:00
gdb
geom geom label msdosfs: sanity check BPB before using it for io request 2022-01-08 05:41:44 +02:00
gnu
i386 Silent some warnings for i386 kernel build 2022-01-06 07:53:04 +02:00
isa sys/isa: Use C99 fixed-width integer types. 2021-12-28 09:41:57 -08:00
kern Add vfs_remount_ro() 2022-01-08 05:41:44 +02:00
kgssapi
libkern sys/libkern: Use C99 fixed-width integer types. 2021-12-28 09:42:11 -08:00
modules neta: need clknode_if.h 2022-01-04 16:01:14 -07:00
net Fix ifa refcount leak in ifa_ifwithnet() 2022-01-06 15:04:24 -05:00
net80211 net80211: adjust a printf to toeee80211_note 2021-12-26 17:26:58 +00:00
netgraph domains: make domain_init() initialize only global state 2022-01-03 10:15:22 -08:00
netinet syncache: accept packet with no SA when TCP_MD5SIG is set 2022-01-08 16:32:14 -09:00
netinet6 domains: make domain_init() initialize only global state 2022-01-03 10:15:22 -08:00
netipsec syncache: accept packet with no SA when TCP_MD5SIG is set 2022-01-08 16:32:14 -09:00
netpfil ipfilter module: Style(9) requires a space after return 2022-01-03 18:46:49 -08:00
netsmb
nfs nfs: don't truncate directory cookies to 32-bits in the NFS server 2021-12-15 20:54:57 -07:00
nfsclient
nfsserver
nlm sys/nlm: Use C99 fixed-width integer types. 2021-12-28 09:42:42 -08:00
ofed domains: init with standard SYSINIT(9) or VNET_SYSINIT() 2022-01-03 10:15:22 -08:00
opencrypto OCF: Add crypto_clonereq(). 2022-01-04 14:22:12 -08:00
powerpc powerpc/aim: ifdef DDB pmap debugging functions 2022-01-07 08:56:57 -07:00
riscv bus_dma: Deduplicate locking helper functions. 2022-01-05 13:50:40 -08:00
rpc sys/rpc: Use C99 fixed-width integer types. 2021-12-28 09:43:15 -08:00
security Thread creation privilege for realtime group 2021-12-15 00:01:58 +02:00
sys Add vfs_remount_ro() 2022-01-08 05:41:44 +02:00
teken
tests
tools arm64: Don't rely on host readelf for u-boot booti image generation 2021-12-24 19:25:20 +00:00
ufs When doing a read-only mount of a UFS filesystem using gjournal(8), 2022-01-02 14:04:39 -08:00
vm Dump page tracking no longer needed on mips 2022-01-06 06:00:39 +02:00
x86 bus_dma: Deduplicate locking helper functions. 2022-01-05 13:50:40 -08:00
xdr sys/xdr: Use C99 fixed-width integer types. 2021-12-28 09:43:26 -08:00
xen Create wrapper for Giant taken for newbus 2021-12-09 17:04:45 -07:00
Makefile Fix 'make cscope' with ALL_ARCH defined 2022-01-07 11:53:52 -04:00