freebsd-nq

Author	SHA1	Message	Date
Hajimu UMEMOTO	86b51224d4	we have ppsratecheck().	2003-10-22 19:23:51 +00:00
Hajimu UMEMOTO	9bcf770ca8	IP6Q_LOCK_CHECK -> IP6Q_LOCK_ASSERT. Sugested by: sam	2003-10-22 19:03:49 +00:00
Hajimu UMEMOTO	66bb118edd	drop the code of HAVE_NRL_INPCB part. our system doesn't use NRL style INPCB.	2003-10-22 18:52:57 +00:00
Hajimu UMEMOTO	31e8f7e530	pretect ip6 reassemble queue by use of mutex. Submitted by: rwatson (with modification)	2003-10-22 15:32:56 +00:00
Hajimu UMEMOTO	9888c40195	- implement lock around IPv6 reassembly, to avoid panic due to frag6_drain (mutex version will come later). - limit number of fragments (not fragment queues) in kernel. Obtained from: KAME	2003-10-22 15:29:42 +00:00
Hajimu UMEMOTO	1ab976cb03	protect sid_default and sid. Submitted by: rwatson (with modification)	2003-10-22 15:13:36 +00:00
Hajimu UMEMOTO	65b01ff848	reduce calling in6_addr2zoneid().	2003-10-22 15:12:06 +00:00
SUZUKI Shinsuke	b18521ee3b	more strict sanity check for ESP tail Obtained from: KAME	2003-10-22 10:44:59 +00:00
Hajimu UMEMOTO	9a4f9608ad	- change scope to zone. - change node-local to interface-local. - better error handling of address-to-scope mapping. - use in6_clearscope(). Obtained from: KAME	2003-10-21 20:05:32 +00:00
Hajimu UMEMOTO	31b3783c8d	correct linkmtu handling. Obtained from: KAME	2003-10-20 15:27:48 +00:00
Hajimu UMEMOTO	9132d5071c	- revert to old rijndael code. new rijndael code broke gbde. - since aes-xcbc-mac and aes-ctr require functions in new rijndael code, aes-xcbc-mac and aes-ctr are disabled for now.	2003-10-19 21:28:34 +00:00
Hajimu UMEMOTO	2d0e1cf17a	rtfree() must be called in lock context. Reported by: jhay	2003-10-18 17:46:23 +00:00
Hajimu UMEMOTO	ae360dddc7	nuke duplicate function and unused function. Obtained from: KAME	2003-10-17 17:50:09 +00:00
Hajimu UMEMOTO	e0cac38a6d	revert wrongly dropped null check by previous commit.	2003-10-17 17:34:31 +00:00
Hajimu UMEMOTO	31b1bfe1b0	- add dom_if{attach,detach} framework. - transition to use ifp->if_afdata. Obtained from: KAME	2003-10-17 15:46:31 +00:00
Sam Leffler	e312432731	fix horribly botched MFp4 merge	2003-10-16 19:55:28 +00:00
Sam Leffler	3c92002f24	pfil hooks can modify packet contents so check if the destination address has been changed when PFIL_HOOKS is enabled and, if it has, arrange for the proper action by ip*_forward. Submitted by: Pyun YongHyeon Supported by: FreeBSD Foundation	2003-10-16 18:57:45 +00:00
Sam Leffler	ba00f0096d	MFp4: correct locking issues in nd6_lookup Supported by: FreeBSD Foundation	2003-10-14 18:49:08 +00:00
Hajimu UMEMOTO	66c7fe4056	use BF_ecb_encrypt(). Obtained from: KAME	2003-10-13 19:26:08 +00:00
Hajimu UMEMOTO	b42ac57f4f	- support AES counter mode for ESP. - use size_t as return type of schedlen(), as there's no error check needed. - clear key schedule buffer before freeing. Obtained from: KAME	2003-10-13 14:57:41 +00:00
Hajimu UMEMOTO	79203b9869	support AES XCBC MAC for AH. Obtained from: KAME	2003-10-13 04:56:04 +00:00
Hajimu UMEMOTO	c65ee7c758	- support AES XCBC MAC for AH - correct SADB_X_AALG_RIPEMD160HMAC to 8 Obtained from: KAME	2003-10-13 04:54:51 +00:00
Hajimu UMEMOTO	d5d49fe472	include opencrypto/rmd160.h	2003-10-12 18:33:30 +00:00
Hajimu UMEMOTO	faf228234c	remove unused variable. Obtained from: KAME	2003-10-12 15:14:33 +00:00
Hajimu UMEMOTO	7128815095	- avoid hardcoded values. - correct signedness mixups. - log fix. - preparation for 64bit sequence number. introduce SA id (unique ID for SA - SPI is useless as duplicated SPI is allowed) - no need to malloc/free cksum buffer. Obtained from: KAME	2003-10-12 12:03:25 +00:00
Hajimu UMEMOTO	83ca448c94	- always check for optlen overrun. - panic if NULL is passed to ah_sumsiz (as we never do it, and callers do not properly check negative returns). Obtained from: KAME	2003-10-12 11:18:04 +00:00
Hajimu UMEMOTO	00c62ed413	- correct signedness mixups. - avoid assuming result buffer size Obtained from: KAME	2003-10-12 11:08:18 +00:00
Hajimu UMEMOTO	0c72771dea	avoid hardcoding MD5 result length (16) Obtained from: KAME	2003-10-12 09:51:32 +00:00
Hajimu UMEMOTO	492528c051	- RIPEMD160 support - pass size arg to ah->result (avoid assuming result buffer size) Obtained from: KAME	2003-10-12 09:41:42 +00:00
Hajimu UMEMOTO	020a816f9e	fixed an endian bug on fragment header scanning Obtained from: KAME	2003-10-10 19:49:52 +00:00
Hajimu UMEMOTO	953ad2fb67	nuke SCOPEDROUTING. Though it was there for a long time, it was never enabled.	2003-10-10 16:04:00 +00:00
Hajimu UMEMOTO	7aab01fa76	switch cast128 implementation to implementation by Steve Reid; smaller footprint. Obtained from: KAME	2003-10-10 15:06:16 +00:00
Hajimu UMEMOTO	0606da6241	- typo. found by markus@openbsd - correct signedness mixup in pointer passing. - drop meaningless variable. Obtained from: KAME	2003-10-09 18:44:54 +00:00
Hajimu UMEMOTO	07eb299520	- typo in comment - style - ANSIfy (there is no functional change.) Obtained from: KAME	2003-10-09 16:13:47 +00:00
Hajimu UMEMOTO	7efe5d92ab	- fix typo in comments. - style. - NULL is not 0. - some variables were renamed. - nuke unused logic. (there is no functional change.) Obtained from: KAME	2003-10-08 18:26:08 +00:00
Sam Leffler	68974f2940	must lock route when the caller provided a route but not an interface; otherwise the subsequent unlock blows up Suffered by: Marcel Moolenaar <marcel@xcllnt.net> Supported by: FreeBSD Foundation	2003-10-07 20:57:35 +00:00
Hajimu UMEMOTO	aa15ec9156	indent	2003-10-07 20:22:01 +00:00
Hajimu UMEMOTO	0527d33302	style and indent. no functional change. Obtained from: KAME	2003-10-07 19:51:22 +00:00
Hajimu UMEMOTO	06cd0a3f97	- fix typo in comment. - style. Obtained from: KAME	2003-10-07 17:46:18 +00:00
Hajimu UMEMOTO	00165f8e92	nuke unused CTL_IPV6PROTO_NAMES macro.	2003-10-07 17:42:31 +00:00
Hajimu UMEMOTO	40e39bbb67	return(code) -> return (code) (reduce diffs against KAME)	2003-10-06 14:02:09 +00:00
Sam Leffler	d1dd20be6e	Locking for updates to routing table entries. Each rtentry gets a mutex that covers updates to the contents. Note this is separate from holding a reference and/or locking the routing table itself. Other/related changes: o rtredirect loses the final parameter by which an rtentry reference may be returned; this was never used and added unwarranted complexity for locking. o minor style cleanups to routing code (e.g. ansi-fy function decls) o remove the logic to bump the refcnt on the parent of cloned routes, we assume the parent will remain as long as the clone; doing this avoids a circularity in locking during delete o convert some timeouts to MPSAFE callouts Notes: 1. rt_mtx in struct rtentry is guarded by #ifdef _KERNEL as user-level applications cannot/do-no know about mutex's. Doing this requires that the mutex be the last element in the structure. A better solution is to introduce an externalized version of struct rtentry but this is a major task because of the intertwining of rtentry and other data structures that are visible to user applications. 2. There are known LOR's that are expected to go away with forthcoming work to eliminate many held references. If not these will be resolved prior to release. 3. ATM changes are untested. Sponsored by: FreeBSD Foundation Obtained from: BSD/OS (partly)	2003-10-04 03:44:50 +00:00
Hajimu UMEMOTO	5d40536819	add randomtab for ip6_randomflowlabel(). Obtained from: KAME	2003-10-01 21:45:57 +00:00
Hajimu UMEMOTO	b79274ba41	randomize IPv6 flowlabel when RANDOM_IP_ID is defined. Obtained from: KAME	2003-10-01 21:24:28 +00:00
Hajimu UMEMOTO	18193b6f63	use arc4random()	2003-10-01 21:10:02 +00:00
Hajimu UMEMOTO	de27a78aca	- include opt_random_ip_id.h - we don't need to obtain microtime when using ip6_randomid.	2003-10-01 20:24:20 +00:00
Hajimu UMEMOTO	8513854d16	we don't need ip6_id when RANDOM_IP_ID is defined.	2003-10-01 18:23:27 +00:00
Hajimu UMEMOTO	01e22dc51b	include opt_random_ip_id.h	2003-10-01 17:28:42 +00:00
Hajimu UMEMOTO	672467eb28	Don't compiled ip6_randomid() in if RANDOM_IP_ID is not defined.	2003-10-01 16:22:58 +00:00
Hajimu UMEMOTO	2923494300	Obey RANDOM_IP_ID. Requested by: sam	2003-10-01 16:00:12 +00:00

1 2 3 4 5 ...

322 Commits