| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
|
|
|
|
|
| |
new FAST_IPSEC based IPsec stack.
Approved by: re
Reviewed by: bz
Notes:
svn path=/head/; revision=171148
|
| |
|
|
|
|
|
|
|
|
|
| |
were unused or already in if_var.h so add if_name() to if_var.h and
remove net_osdep.h along with all references to it.
Longer term we may want to kill off if_name() entierly since all modern
BSDs have if_xname variables rendering it unnecessicary.
Notes:
svn path=/head/; revision=160981
|
| |
|
|
| |
Notes:
svn path=/head/; revision=139826
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
its users.
netisr_queue() now returns (0) on success and ERRNO on failure. At the
moment ENXIO (netisr queue not functional) and ENOBUFS (netisr queue full)
are supported.
Previously it would return (1) on success but the return value of IF_HANDOFF()
was interpreted wrongly and (0) was actually returned on success. Due to this
schednetisr() was never called to kick the scheduling of the isr. However this
was masked by other normal packets coming through netisr_dispatch() causing the
dequeueing of waiting packets.
PR: kern/70988
Found by: MOROHOSHI Akihiko <moro@remus.dti.ne.jp>
MFC after: 3 days
Notes:
svn path=/head/; revision=134391
|
| |
|
|
|
|
|
|
|
|
|
| |
to happen before the call to m_cat().
- correct signedness mixups.
- remove variable that is only assigned too but not referenced.
Obtained from: KAME
Notes:
svn path=/head/; revision=122743
|
| |
|
|
|
|
|
| |
Obtained from: KAME
Notes:
svn path=/head/; revision=121814
|
| |
|
|
|
|
|
|
|
|
|
|
| |
- implement the tunnel egress rule in ip_ecn_egress() in ip_ecn.c.
make ip{,6}_ecn_egress() return integer to tell the caller that
this packet should be dropped.
- handle ECN at fragment reassembly in ip_input.c and frag6.c.
Obtained from: KAME
Notes:
svn path=/head/; revision=121684
|
| |
|
|
|
|
|
| |
Obtained from: KAME
Notes:
svn path=/head/; revision=121335
|
| |
|
|
|
|
|
|
|
| |
- style.
Obtained from: KAME
Notes:
svn path=/head/; revision=120891
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
drain routines are done by swi_net, which allows for better queue control
at some future point. Packets may also be directly dispatched to a netisr
instead of queued, this may be of interest at some installations, but
currently defaults to off.
Reviewed by: hsu, silby, jayanth, sam
Sponsored by: DARPA, NAI Labs
Notes:
svn path=/head/; revision=111888
|
| |
|
|
|
|
|
| |
Approved by: trb
Notes:
svn path=/head/; revision=111119
|
| |
|
|
|
|
|
| |
Merge M_NOWAIT/M_DONTWAIT into a single flag M_NOWAIT.
Notes:
svn path=/head/; revision=109623
|
| |
|
|
|
|
|
|
|
| |
reference the pkthdr now in the destination of the move
Sponsored by: Vernier Networks
Notes:
svn path=/head/; revision=108825
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
were sometimes propagated using M_COPY_PKTHDR which actually did
something between a "move" and a "copy" operation. This is replaced
by M_MOVE_PKTHDR (which copies the pkthdr contents and "removes" it
from the source mbuf) and m_dup_pkthdr which copies the packet
header contents including any m_tag chain. This corrects numerous
problems whereby mbuf tags could be lost during packet manipulations.
These changes also introduce arguments to m_tag_copy and m_tag_copy_chain
to specify if the tag copy work should potentially block. This
introduces an incompatibility with openbsd which we may want to revisit.
Note that move/dup of packet headers does not handle target mbufs
that have a cluster bound to them. We may want to support this;
for now we watch for it with an assert.
Finally, M_COPYFLAGS was updated to include M_FIRSTFRAG|M_LASTFRAG.
Supported by: Vernier Networks
Reviewed by: Robert Watson <rwatson@FreeBSD.org>
Notes:
svn path=/head/; revision=108466
|
| |
|
|
|
|
|
|
| |
Obtained from: KAME
MFC after: 2 days
Notes:
svn path=/head/; revision=102347
|
| |
|
|
|
|
|
|
| |
Obtained from: KAME
MFC after: 1 week
Notes:
svn path=/head/; revision=100277
|
| |
|
|
|
|
|
|
|
|
| |
(based on freebsd4-snap-20020128)
Reviewed by: ume
MFC after: 1 week
Notes:
svn path=/head/; revision=95023
|
| |
|
|
|
|
|
|
|
|
|
| |
{esp6, ah6}_ctlinput. Previous ones were uninitialized
auto variables, which were completely bogus.
Obtained from: KAME
MFC after: 1 week
Notes:
svn path=/head/; revision=93133
|
| |
|
|
|
|
|
| |
-Wuninitialized warning.
Notes:
svn path=/head/; revision=91453
|
| |
|
|
|
|
|
|
|
|
| |
IPV4 code. For now they will still have some in the developing stuff (IPv6)
Submitted by: Keiichi SHIMA / <keiichi@iij.ad.jp>
Obtained from: KAME
Notes:
svn path=/head/; revision=83187
|
| |
|
|
|
|
|
|
|
| |
to make ip use the standard protosw structure again.
Obtained from: Well, KAME I guess.
Notes:
svn path=/head/; revision=82884
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This work was based on kame-20010528-freebsd43-snap.tgz and some
critical problem after the snap was out were fixed.
There are many many changes since last KAME merge.
TODO:
- The definitions of SADB_* in sys/net/pfkeyv2.h are still different
from RFC2407/IANA assignment because of binary compatibility
issue. It should be fixed under 5-CURRENT.
- ip6po_m member of struct ip6_pktopts is no longer used. But, it
is still there because of binary compatibility issue. It should
be removed under 5-CURRENT.
Reviewed by: itojun
Obtained from: KAME
MFC after: 3 weeks
Notes:
svn path=/head/; revision=78064
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
before adding/removing packets from the queue. Also, the if_obytes and
if_omcasts fields should only be manipulated under protection of the mutex.
IF_ENQUEUE, IF_PREPEND, and IF_DEQUEUE perform all necessary locking on
the queue. An IF_LOCK macro is provided, as well as the old (mutex-less)
versions of the macros in the form _IF_ENQUEUE, _IF_QFULL, for code which
needs them, but their use is discouraged.
Two new macros are introduced: IF_DRAIN() to drain a queue, and IF_HANDOFF,
which takes care of locking/enqueue, and also statistics updating/start
if necessary.
Notes:
svn path=/head/; revision=69152
|
| |
|
|
|
|
|
| |
IPsec packet output. KAME PR 280.
Notes:
svn path=/head/; revision=64701
|
| |
|
|
|
|
|
|
|
|
| |
API changes:
- additional IPv6 ioctls
- IPsec PF_KEY API was changed, it is mandatory to upgrade setkey(8).
(also syntax change)
Notes:
svn path=/head/; revision=62587
|
| |
|
|
| |
Notes:
svn path=/head/; revision=59760
|
| |
|
|
|
|
|
| |
Remove ~60 unneeded #include <sys/malloc.h>
Notes:
svn path=/head/; revision=59391
|
|
|
pr_input() routines prototype is also changed to support IPSEC and IPV6
chained protocol headers.
Reviewed by: freebsd-arch, cvs-committers
Obtained from: KAME project
Notes:
svn path=/head/; revision=55009
|
