summaryrefslogtreecommitdiffstats
path: root/sys/netinet6
Commit message (Collapse)AuthorAgeFilesLines
* statically configured IPv6 address is properly added/deleted nowsuz2005-10-311-75/+51
| | | | | | Obtained from: KAME Reported in: freebsd-net@freebsd MFC after: 1 day
* fixed a compilation failure on amd64/sparc64/ia64suz2005-10-222-4/+6
| | | | | Submitted by: max MFC after: 2 month
* nuked non-existing commandssuz2005-10-211-5/+0
|
* sync with KAME regarding NDPsuz2005-10-2113-711/+1367
| | | | | | | | | | | | - introduced fine-grain-timer to manage ND-caches and IPv6 Multicast-Listeners - supports Router-Preference <draft-ietf-ipv6-router-selection-07.txt> - better prefix lifetime management - more spec-comformant DAD advertisement - updated RFC/internet-draft revisions Obtained from: KAME Reviewed by: ume, gnn MFC after: 2 month
* perform NUD on an IPv6-aware point-to-point interfacesuz2005-10-211-0/+2
| | | | | Obtained from: KAME MFC after: 1 week
* sync with KAME (renamed a macro IPV6_DADOUTPUT to IPV6_UNSPECSRC)suz2005-10-213-3/+3
| | | | Obtained from: KAME
* sync with KAME (nuked unused code, use NULL to denote a NULL pointer)suz2005-10-193-65/+7
| | | | | Obtained from: KAME Reviewed by: ume, gnn
* sync with KAME (removed a unnecesary non-standard macro)suz2005-10-192-16/+10
| | | | | Obtained from: KAME Reviewd by: ume, gnn
* sync with KAME regarding the following clarification in RFC3542:suz2005-10-193-8/+45
| | | | | | | | | - disable IPv6 operation if DAD fails for some EUI-64 link-local addresses. - export get_hw_ifid() (and rename it) as a subroutine for this process. Obtained from: KAME Reviewd by: ume, gnn MFC after: 2 week
* sync with KAME (don't respond to NI_QTYPE_IPV4ADDR)suz2005-10-191-0/+5
| | | | | Obtained from: KAME Reviewed by: ume, gnn
* supported an ndp command suboption to disable IPv6 in the given interfacesuz2005-10-193-0/+16
| | | | | | Obtained from: KAME Reviewd by: ume, gnn MFC after: 2 week
* added an ioctl option in kernel so that ndp/rtadvd can change some ↵suz2005-10-193-0/+30
| | | | | | | | NDP-related kernel variables based on their configurations (RFC2461 p.43 6.2.1 mandates this for IPv6 routers) Obtained from: KAME Reviewd by: ume, gnn MFC after: 2 weeks
* sync with KAME in the following points:suz2005-10-196-96/+94
| | | | | | | | | | | | - fixed typos - improved some comment descriptions - use NULL, instead of 0, to denote a NULL pointer - avoid embedding a magic number in the code - use nd6log() instead of log() to record NDP-specific logs - nuked an unnecessay white space Obtained from: KAME MFC after: 1 day
* Raw IPv6 checksum must use the protocol number of the last header, instead ↵suz2005-10-191-1/+1
| | | | | | | of the first next-header value. Obtained from: KAME MFC after: 1 day
* fixed a kernel crash when IPv6 PIM-SM routing is enabled and a PIM register ↵suz2005-10-171-9/+17
| | | | | | | message is received Obtained from: KAME MFC After: 3 days
* added a missing unlocksuz2005-10-151-1/+3
| | | | | Submitted by: JINMEI Tatuya MFC After: 1 day
* AES counter mode uses 8byte IV, not 16 bytes.ume2005-10-121-1/+1
| | | | Obtained from: NetBSD
* Use monotonic 'time_uptime' instead of 'time_second' as timebaseandre2005-09-191-5/+5
| | | | for rt->rt_rmx.rmx_expire.
* plugged a possible memory leaksuz2005-09-161-1/+1
| | | | | Obtained from: KAME MFC after: 1 day
* IPv6 was improperly defining its malloc type the same as IPv4 (M_IPMADDR,obrien2005-09-076-35/+35
| | | | | M_IPMOPTS, M_MRTABLE). Thus we had conflicting instantiations. Create an IPv6-specific type to overcome this.
* Add support for multicast to the bridge and allow inet6 addresses to bethompsa2005-09-063-4/+4
| | | | | | | | | | | | | | | | assigned to the interface. IPv6 auto-configuration is disabled. An IPv6 link-local address has a link-local scope within one link, the spec is unclear for the bridge case and it may cause scope violation. An address can be assigned in the usual way; ifconfig bridge0 inet6 xxxx:... Tested by: bmah Reviewed by: ume (netinet6) Approved by: mlaier (mentor) MFC after: 1 week
* Use the correct mbuf type for MGET().andre2005-08-301-1/+1
|
* added a missing unlock (just do the same thing as in netinet/raw_ip.c)suz2005-08-181-0/+1
| | | | | Obtained from: KAME MFC after: 3 days
* - fix race condition using sx lock.ume2005-08-171-14/+24
| | | | | | - use TAILQ_FOREACH() for readability. Suggested by: jhb
* avoid exclusive sleep mutex.ume2005-08-161-3/+3
|
* added a knob to enable path MTU discovery for multicast packets.ume2005-08-134-14/+28
| | | | | | | (by default, it is disabled) Submitted by: suz Obtained from: KAME
* - fix typo in comment.ume2005-08-126-45/+20
| | | | | | | - nuke unused code. Submitted by: suz Obtained from: KAME
* o Make rt_check() function more strict:glebius2005-08-111-0/+6
| | | | | | | | | | - rt0 passed to rt_check() must not be NULL, assert this. - rt returned by rt_check() must be valid locked rtentry, if no error occured. o Modify callers, so that they never pass NULL rt0 to rt_check(). Reviewed by: sam, ume (nd6.c)
* create sysctl tree dynamically. it is required to shareume2005-08-111-10/+21
| | | | | | net.inet6.ip6.fw with upcomming ipfw2 improvement for IPv6. Requested by: bz
* removed RFC1885-related code. it was obsoleted by RFC2463, and theume2005-08-101-52/+0
| | | | | | | code was #ifdef'ed out for a long time. Submitted by: suz Obtained from: KAME
* supports stealth forwarding in IPv6, as well as in IPv4suz2005-08-104-1/+22
| | | | | PR: kern/54625 MFC after: 1 week
* Remove public declarations of variables that were forgotten when they wereobrien2005-08-101-2/+0
| | | | made static.
* Style nit.obrien2005-08-101-1/+1
|
* fixed a kernel crash at the start-up time of an IPv6 multicast daemons osuz2005-08-101-0/+1
| | | | | | (e.g. pim6dd, pim6sd) MFC after: 3 days
* corrected the fourth argument to ni6_addrs().ume2005-08-091-7/+4
|
* Propagate rename of IFF_OACTIVE and IFF_RUNNING to IFF_DRV_OACTIVE andrwatson2005-08-092-3/+3
| | | | | | | | | | | | | | IFF_DRV_RUNNING, as well as the move from ifnet.if_flags to ifnet.if_drv_flags. Device drivers are now responsible for synchronizing access to these flags, as they are in if_drv_flags. This helps prevent races between the network stack and device driver in maintaining the interface flags field. Many __FreeBSD__ and __FreeBSD_version checks maintained and continued; some less so. Reviewed by: pjd, bz MFC after: 7 days
* In preparation for fixing races in ARP (and probably in otherglebius2005-08-091-0/+1
| | | | L2/L3 mappings) make rt_check() return a locked rtentry.
* - Use 'error' variable to store error value, instead of 'i'.glebius2005-08-091-9/+6
| | | | | | | | - Push 'i' into the only block where it is used. - Remove redundant check for rt being NULL. If rt_check() hasn't returned an error, then rt is valid. Reviewed by: gnn
* Modify network protocol consumers of the ifnet multicast address listsrwatson2005-08-022-0/+4
| | | | | | | to lock if_addr_mtx. Problem reported by: Ed Maste <emaste at phaedrus dot sandvine dot ca> MFC after: 1 week
* simplied the fix to FreeBSD-SA-04:06.ipv6. The previous one worriedume2005-07-281-35/+9
| | | | | | | | | | too much even though we actually validate the parameters. This code also is more compatible with other *BSDs, which do copyin within setsockopt(). Submitted by: Keiichi SHIMA <keiichi__at__iijlab.net> Reviewed by: security-officer (nectar) Obtained from: KAME
* Correct a buffer overflow which can occur when decompressing acperciva2005-07-271-7/+9
| | | | | | | | | carefully crafted deflated data stream. [1] Correct problems in the AES-XCBC-MAC IPsec authentication algorithm. [2] Submitted by: suz [2] Security: FreeBSD-SA-05:18.zlib [1], FreeBSD-SA-05:19.ipsec [2]
* nuke duplicate inclusion of scope6_var.h.ume2005-07-261-3/+0
|
* oops, make it compilable. i need sleep. X-(ume2005-07-251-2/+2
|
* restore locks which disappeared wrongly by my previous commit.ume2005-07-251-1/+10
|
* scope cleanup. with this changeume2005-07-2526-1167/+1313
| | | | | | | | | | | | | | | | | | | - most of the kernel code will not care about the actual encoding of scope zone IDs and won't touch "s6_addr16[1]" directly. - similarly, most of the kernel code will not care about link-local scoped addresses as a special case. - scope boundary check will be stricter. For example, the current *BSD code allows a packet with src=::1 and dst=(some global IPv6 address) to be sent outside of the node, if the application do: s = socket(AF_INET6); bind(s, "::1"); sendto(s, some_global_IPv6_addr); This is clearly wrong, since ::1 is only meaningful within a single node, but the current implementation of the *BSD kernel cannot reject this attempt. Submitted by: JINMEI Tatuya <jinmei__at__isl.rdc.toshiba.co.jp> Obtained from: KAME
* always copy ip6_pktopt. remove needcopy and needfreeume2005-07-214-75/+67
| | | | | | | argument/structure member accordingly. Submitted by: Keiichi SHIMA <keiichi__at__iijlab.net> Obtained from: KAME
* simplified udp6_output() and rip6_output(): do not overrideume2005-07-212-24/+21
| | | | | | | | | | in6p_outputopts at the entrance of the functions. this trick was necessary when we passed an in6 pcb to in6_embedscope(), within which the in6p_outputopts member was used, but we do not use this kind of interface any more. Submitted by: Keiichi SHIMA <keiichi__at__iijlab.net> Obtained from: KAME
* be consistent on naming advanced API functions; use ip6_XXXpktopt(s).ume2005-07-215-20/+19
| | | | | Submitted by: Keiichi SHIMA <keiichi__at__iijlab.net> Obtained from: KAME
* NULL is not zero.ume2005-07-211-1/+1
| | | | | Submitted by: Keiichi SHIMA <keiichi__at__iijlab.net> Obtained from: KAME
* do not hardcode if_mtu values in here, except for IFT_{ARC,FDDI} -ume2005-07-201-15/+0
| | | | | | | they need special handling. makes it possible to take advantage of 9k ether frames. Obtained from: NetBSD
OpenPOWER on IntegriCloud