summaryrefslogtreecommitdiffstats
path: root/sys/netinet/if_ether.c
Commit message (Collapse)AuthorAgeFilesLines
* Shorten 'bad gateway' AF_LINK message.bms2003-10-031-1/+1
| | | | Submitted by: green
* Make arp_rtrequest()'s 'bad gateway' messages slightly more informative,bms2003-10-031-1/+4
| | | | | | to aid me in tracking down LLINFO inconsistencies in the routing table. Discussed with: fenner
* Only delete the route if arplookup() tried to create it. Do not deletebms2003-10-031-8/+13
| | | | | | | | | RTF_STATIC routes. Do not check for RTF_HOST so as to avoid being DoSed when an RTF_GENMASK route exists in the table. Add a more verbose comment about exactly what this code does. Submitted by: ru
* By popular demand, added the "static ARP" per-interface option.ru2003-10-011-2/+4
|
* Fix a logic error in the check to see if arplookup() should free the route.bms2003-09-241-2/+1
| | | | | Noticed by: Mike Hogsett Reviewed by: ru
* Fix a bug in arplookup(), whereby a hostile party on a locallybms2003-09-231-6/+14
| | | | | | | | attached network could exhaust kernel memory, and cause a system panic, by sending a flood of spoofed ARP requests. Approved by: jake (mentor) Reported by: Apple Product Security <product-security@apple.com>
* Update netisr handling; Each SWI now registers its queue, and all queuejlemon2003-03-041-42/+31
| | | | | | | | | | drain routines are done by swi_net, which allows for better queue control at some future point. Packets may also be directly dispatched to a netisr instead of queued, this may be of interest at some installations, but currently defaults to off. Reviewed by: hsu, silby, jayanth, sam Sponsored by: DARPA, NAI Labs
* Back out M_* changes, per decision of the TRB.imp2003-02-191-1/+1
| | | | Approved by: trb
* Avoid multiply for preemptive arp calculation since it hits everyorion2003-02-081-6/+7
| | | | | | ethernet packet sent. Prompted by: Jeffrey Hsu <hsu@FreeBSD.org>
* MFS 1.64.2.22: Re-enable non pre-emptive ARP requests.orion2003-02-041-14/+15
| | | | | Submitted by: "Diomidis Spinellis" <dds@aueb.gr> PR: kern/46116
* Avoid lock order reversal by expanding the scope of thehsu2003-01-281-15/+5
| | | | AF_INET radix tree lock to cover the ARP data structures.
* Remove M_TRYWAIT/M_WAITOK/M_WAIT. Callers should use 0.alfred2003-01-211-1/+1
| | | | Merge M_NOWAIT/M_DONTWAIT into a single flag M_NOWAIT.
* SMP locking for ARP.hsu2003-01-171-6/+21
|
* Clear the target hardware address field when generating an ARP request.tmm2003-01-101-0/+1
| | | | | Reviewed by: nectar MFC after: 1 week
* Introduce support for Mandatory Access Control and extensiblerwatson2002-07-311-0/+5
| | | | | | | | | | kernel access control. When generating an ARP query, invoke a MAC entry point to permit the MAC framework to label its mbuf appropriately for the interface. Obtained from: TrustedBSD Project Sponsored by: DARPA, NAI Labs
* Solve the 'unregistered netisr 18' information notice with a sledgehammer.peter2002-06-201-4/+7
| | | | | | Register the ISR early, but do not actually kick off the timer until we see some activity. This still saves us from running the arp timers on a system with no network cards.
* Reset token-ring source routing control field on receipt of ethernet framekbyanc2002-05-151-0/+1
| | | | | without source routing information. This restores the behaviour in this scenario to that of prior to my last commit.
* Move ISO88025 source routing information into sockaddr_dl's sdl_datakbyanc2002-05-071-8/+7
| | | | | | | | | | | | | | | | | | | | | | | | field. This returns the sdl_data field to a variable-length field. More importantly, this prevents a easily-reproduceable data-corruption bug when the interface name plus the hardware address exceed the sdl_data field's original 12 byte limit. However, token-ring interfaces may still overflow the new sdl_data field's 46 byte limit if the interface name exceeds 6 characters (since 6 characters for interface name plus 6 for hardware address plus 34 for source routing = the size of sdl_data). Further refinements could overcome this limitation but would break binary compatibility; this commit only addresses fixing the bug for commonly-occuring cases without breaking binary compatibility with the intention that the functionality can be MFC'ed to -stable. See message ID's (both send to -arch): 20020421013332.F87395-100000@gateway.posi.net 20020430181359.G11009-300000@gateway.posi.net for a more thorough description of the bug addressed and how to reproduce it. Approved by: silence on -arch and -net Sponsored by: NTT Multimedia Communications Labs MFC after: 1 week
* Change callers of mtx_init() to pass in an appropriate lock type name. Injhb2002-04-041-1/+1
| | | | | | | most cases NULL is passed, but in some cases such as network driver locks (which use the MTX_NETWORK_LOCK macro) and UMA zone locks, a name is used. Tested on: i386, alpha, sparc64
* Send periodic ARP requests when ARP entries for hosts we are sendingorion2002-03-201-0/+15
| | | | | | | | | | to are about to expire. This prevents high packet rate flows from experiencing packet drops at the sender following ARP cache entry timeout. PR: kern/25517 Reviewed by: luigi MFC after: 7 days
* Remove __P.alfred2002-03-191-9/+9
|
* Minor style fix.jlemon2001-12-131-2/+2
|
* Fixed remotely exploitable DoS in arpresolve().ru2001-12-051-1/+3
| | | | | | | | | Easily exploitable by flood pinging the target host over an interface with the IFF_NOARP flag set (all you need to know is the target host's MAC address). MFC after: 0 days
* If we are bridging, fall back to using any inet address in the system,jlemon2001-10-251-4/+9
| | | | | | irrespective of receive interface, as a last resort. Submitted by: ru
* Only examine inet addresses of the interface. This was broken in r1.83,jlemon2001-10-201-2/+4
| | | | with the result that the system would reply to an ARP request of 0.0.0.0
* Pull post-4.4BSD change to sys/net/route.c from BSD/OS 4.2.ru2001-10-171-3/+3
| | | | | | | | | | | | | | | | | | | | Have sys/net/route.c:rtrequest1(), which takes ``rt_addrinfo *'' as the argument. Pass rt_addrinfo all the way down to rtrequest1 and ifa->ifa_rtrequest. 3rd argument of ifa->ifa_rtrequest is now ``rt_addrinfo *'' instead of ``sockaddr *'' (almost noone is using it anyways). Benefit: the following command now works. Previously we needed two route(8) invocations, "add" then "change". # route add -inet6 default ::1 -ifp gif0 Remove unsafe typecast in rtrequest(), from ``rtentry *'' to ``sockaddr *''. It was introduced by 4.3BSD-Reno and never corrected. Obtained from: BSD/OS, NetBSD MFC after: 1 month PR: kern/28360
* bring in ARP support for variable length link level addressesfjoe2001-10-141-99/+155
| | | | | | | Reviewed by: jdp Approved by: jdp Obtained from: NetBSD MFC after: 6 weeks
* Add a hash table that contains the list of internet addresses, and usejlemon2001-09-291-17/+24
| | | | | this in place of the in_ifaddr list when appropriate. This improves performance on hosts which have a large number of IP aliases.
* Fix sysctl comment field, s/the the/then thealfred2001-09-041-1/+1
| | | | Pointed out by: ru
* Allow disabling of "arp moved" messages.alfred2001-09-031-6/+12
| | | | Submitted by: Stephen Hurd <deuce@lordlegacy.org>
* Do not perform arp send/resolve on an interface marked NOARP.jlemon2001-06-151-1/+9
| | | | | PR: 25006 MFC after: 2 weeks
* Add a missing m_pullup() before a mtod() in in_arpinput().yar2001-03-271-0/+6
| | | | | PR: kern/22177 Reviewed by: wollman
* Sync with the bridge/dummynet/ipfw code already tested in stable.luigi2001-02-101-9/+4
| | | | | In ip_fw.[ch] change a couple of variable and field names to avoid having types, variables and fields with the same name.
* Fix bad patch from a few days ago. It broke some bridging.julian2001-02-051-9/+10
|
* Mechanical change to use <sys/queue.h> macro API instead ofphk2001-02-041-3/+3
| | | | | | | fondling implementation details. Created with: sed(1) Reviewed by: md5(1)
* Make the code act the same in the case of BRIDGE being defined, but notjulian2001-02-031-16/+26
| | | | | | | turned on, and the case of it not being defined at all. i.e. Disabling bridging re-enables some of the checks it disables. Submitted by: "Rogier R. Mulhuijzen" <drwilco@drwilco.net>
* provide a sysctl 'net.link.ether.inet.log_arp_wrong_iface' to allow onealfred2001-01-061-0/+7
| | | | | | | | to supress logging when ARP replies arrive on the wrong interface: "/kernel: arp: 1.2.3.4 is on dc0 but got reply from 00:00:c5:79:d0:0c on dc1" the default is to log just to give notice about possibly incorrectly configured networks.
* Lock down the network interface queues. The queue mutex must be obtainedjlemon2000-11-251-1/+12
| | | | | | | | | | | | | | before adding/removing packets from the queue. Also, the if_obytes and if_omcasts fields should only be manipulated under protection of the mutex. IF_ENQUEUE, IF_PREPEND, and IF_DEQUEUE perform all necessary locking on the queue. An IF_LOCK macro is provided, as well as the old (mutex-less) versions of the macros in the form _IF_ENQUEUE, _IF_QFULL, for code which needs them, but their use is discouraged. Two new macros are introduced: IF_DRAIN() to drain a queue, and IF_HANDOFF, which takes care of locking/enqueue, and also statistics updating/start if necessary.
* Extra sanity check when arp proxyall is enabled. Don't send an arpdwmalone2000-07-131-0/+26
| | | | | | | | | | reply if the requesting machine isn't on the interface we believe it should be. Prevents arp wars when you plug cables in the wrong way around. PR: 9848 Submitted by: Ian Dowse <iedowse@maths.tcd.ie> Not objected to by: wollman
* Back out the previous change to the queue(3) interface.jake2000-05-261-2/+2
| | | | | | It was not discussed and should probably not happen. Requested by: msmith and others
* Change the way that the queue(3) structures are declared; don't assume thatjake2000-05-231-2/+2
| | | | | | | | the type argument to *_HEAD and *_ENTRY is a struct. Suggested by: phk Reviewed by: phk Approved by: mdodd
* PR: kern/17872wes2000-04-111-10/+3
| | | | Submitted by: csg@waterspout.com (C. Stephen Gunn)
* Peter Johnson found another log() call without a trailing newline.joerg2000-03-291-1/+1
| | | | | | | All three of them have been introduced in rev 1.64, so i guess i've got all of them now. :) Submitted by: Peter Johnson <locke@mcs.net>
* Added two missing newlines in calls to log(9).joerg2000-03-281-2/+2
| | | | | | | | Reported in Usenet by: locke@mcs.net (Peter Johnson) While i was at it, prepended a 0x to the %D output, to make it clear that the printed value is in hex (i assume %D has been chosen over %#x to obey network byte order).
* Fix parens in m_pullup() line in arp handling code. The code wasdillon2000-03-231-1/+1
| | | | | | | improperly doing the equivalent of (m = (function() == NULL)) instead of ((m = function()) == NULL). This fixes a NULL pointer dereference panic with runt arp packets.
* o Replace most magic numbers related to token ring with #defineslile2000-03-191-30/+31
| | | | | | | | | | from iso88025.h. o Add minimal llc support to iso88025_input. o Clean up most of the source routing code. * Submitted by: Nikolai Saoukh <nms@otdel-1.org>
* The function arpintr() incorrectly checks m->m_len to detect incompleterwatson2000-03-111-13/+36
| | | | | | | | | | | | | | ARP packets. This can incorrectly reject complete frames since the frame could be stored in more than one mbuf. The following patches fix the length comparisson, and add several diagnostic log messages to the interrupt handler for out-of-the-norm ARP packets. This should make ARP problems easier to detect, diagnose and fix. Submitted by: C. Stephen Gunn <csg@waterspout.com> Approved by: jkh Reviewed by: rwatson
* Clean up some loose ends in the network code, including the X.25 and ISOpeter2000-02-131-3/+1
| | | | | | | #ifdefs. Clean out unused netisr's and leftover netisr linker set gunk. Tested on x86 and alpha, including world. Approved by: jkh
* Append missing newline to log() message for permanent ARP modificationsheldonh1999-10-181-1/+1
| | | | | | | attempt warning, which was added in rev 1.48 . PR: 14371 Submitted by: sec@pi.musin.de (Stefan `Sec` Zehl)
* Re-arrange the arp code so that fddi arps work properly.lile1999-09-161-29/+46
|
OpenPOWER on IntegriCloud