summaryrefslogtreecommitdiffstats
path: root/sys/netinet
Commit message (Collapse)AuthorAgeFilesLines
* Last major round (Unless Bruce thinks of somthing :-) of malloc changes.phk1997-10-124-7/+9
| | | | | | | | Distribute all but the most fundamental malloc types. This time I also remembered the trick to making things static: Put "static" in front of them. A couple of finer points by: bde
* Distribute and statizice a lot of the malloc M_* types.phk1997-10-113-3/+9
| | | | Substantial input from: bde
* Don't allow the window to be increased beyond what is possible tofenner1997-10-071-3/+3
| | | | | | | | | | | | represent in the TCP header. The old code did effectively: win = min(win, MAX_ALLOWED); win = max(win, what_i_think_i_advertised_last_time); so if what_i_think_i_advertised_last_time is bigger than can be represented in the header (e.g. large buffers and no window scaling) then we stuff a too-big number into a short. This fix reverses the order of the comparisons. PR: kern/4712
* Killed the SYN_RECEIVED addition from rev 1.52. It results in legitimatedg1997-10-022-12/+2
| | | | | | RST's being ignored, keeping a connection around until it times out, and thus has the opposite effect of what was intended (which is to make the system more robust to DoS attacks).
* Don't consider a SYN/ACK with CC but no CCECHO a proper T/TCPfenner1997-09-302-18/+22
| | | | | | handshake. Reviewed by: Rich Stevens <rstevens@kohala.com>
* Export ipstat via sysctl. Don't understand why this wasn't done before.wollman1997-09-252-3/+7
|
* Update for new callout interface.gibbs1997-09-211-4/+6
|
* Make TCPDEBUG a new-style option.joerg1997-09-169-9/+27
|
* Fixed gratuitous ANSIisms.bde1997-09-165-14/+16
|
* Prevent overflow with fragmented packetsache1997-09-151-26/+67
| | | | Reviewed by: wollman
* Update network code to use poll support.peter1997-09-144-8/+8
|
* Some mbuf -> sockaddr changes seem to have been missed here.peter1997-09-131-7/+7
|
* Allow a compile-time override of the ipfw deny rule. For a 'firewall'peter1997-09-101-8/+16
| | | | | | | | | | you don't want this (and the documentation explains why), but if you use ipfw as an as-needed casual filter as needed which normally runs as 'allow all' then having the kernel and /sbin/ipfw get out of sync is a *MAJOR* pain in the behind. PR: 4141 Submitted by: Heikki Suonsivu <hsu@mail.clinet.fi>
* Some staticized variables were still declared to be extern.bde1997-09-076-20/+6
|
* Upgrade to 2.4 (Fix -PKT_ALIAS_UNREGISTERED_ONLY)brian1997-09-065-4/+17
| | | | | | | Submitted by: Charles Mott <cmott@srv.net> Add __libalias_version so that ppp can derive the correct library name for dlopen()
* Added used #include - don't depend on <sys/mbuf.h> includingbde1997-09-021-1/+2
| | | | <sys/malloc.h> (unless we only use the bogusly shared M*WAIT flags).
* ICMP Timestamp Request messages could have harbored the same sort ofwollman1997-08-252-2/+9
| | | | | problem as Echo Requests when broad/multicast. When multicast echo responses are disabled, also do the same for timestamp responses.
* Configurably don't reply to broadcast or multicast echos. There are stillwollman1997-08-252-2/+13
| | | | | | potential problems with other automatic-reply ICMPs, but some of them may depend on broadcast/multicast to operate. (This code can simply be moved to the `reflect' label to generalize it.)
* Fixed logging of verbose limited packets.alex1997-08-231-4/+5
| | | | | PR: 4351 Submitted by: Ron Bickers <rbickers@intercenter.net>
* Fix all areas of the system (or at least all those in LINT) to avoid storingwollman1997-08-169-78/+87
| | | | | | | | socket addresses in mbufs. (Socket buffers are the one exception.) A number of kernel APIs needed to get fixed in order to make this happen. Also, fix three protocol families which kept PCBs in mbufs to not malloc them instead. Delete some old compatibility cruft while we're at it, and add some new routines in the in_cksum family.
* Fix file descriptor leak.brian1997-08-114-2/+11
| | | | | Submitted by: Charles Mott <cmott@srv.net> Identified by: Gordon Burditt
* Support interface names up to 15 characters in length. In order toalex1997-08-081-3/+5
| | | | | | | | | | | | accommodate the expanded name, the ICMP types bitmap has been reduced from 256 bits to 32. A recompile of kernel and user level ipfw is required. To be merged into 2.2 after a brief period in -current. PR: bin/4209 Reviewed by: Archie Cobbs <archie@whistle.com>
* Ensure that the interface name is terminated.alex1997-08-061-1/+2
|
* Update to version 2.2. Only the PacketAlias*()brian1997-08-039-196/+1071
| | | | | | functions should now be used. The old 2.1 stuff is there for backwards compatability. Submitted by: Charles Mott <cmott@snake.srv.net>
* Removed unused #includes.bde1997-08-0212-75/+11
|
* Recalculate ip_sum before passing abrian1997-07-251-1/+15
| | | | | | re-assembled packet to a divert port. Pointed-out by: Ari Suutari <ari@suutari.iki.fi> VS: then name the system in this line, otherwise delete it.
* Remove crufty LBL ifdef that only applies to Suns.fenner1997-07-191-5/+1
| | | | Submitted by: Craig Leres <leres@ee.lbl.gov>
* Fix a bug (apparently very old) that can cause a TCP connection tojdp1997-07-012-4/+4
| | | | | | | | | | | | | | | | | | | | | | be dropped when it has an unusual traffic pattern. For full details as well as a test case that demonstrates the failure, see the referenced PR. Under certain circumstances involving the persist state, it is possible for the receive side's tp->rcv_nxt to advance beyond its tp->rcv_adv. This causes (tp->rcv_adv - tp->rcv_nxt) to become negative. However, in the code affected by this fix, that difference was interpreted as an unsigned number by max(). Since it was negative, it was taken as a huge unsigned number. The effect was to cause the receiver to believe that its receive window had negative size, thereby rejecting all received segments including ACKs. As the test case shows, this led to fruitless retransmissions and eventually to a dropped connection. Even connections using the loopback interface could be dropped. The fix substitutes the signed imax() for the unsigned max() function. PR: closes kern/3998 Reviewed by: davidg, fenner, wollman
* Add for public examination the beginnings of the per-host cache supportwollman1997-06-182-0/+241
| | | | | which will for the basis of RTF_PRCLONING's more efficient, better- designed replacement.
* make it compile with -Walljulian1997-06-041-12/+11
| | | | Submitted by: Archi Cobbs, archie@whistle.com
* Submitted by: Whistle Communications (archie Cobbs)julian1997-06-025-278/+528
| | | | | | | | | | | | | | | these are quite extensive additions to the ipfw code. they include a change to the API because the old method was broken, but the user view is kept the same. The new code allows a particular match to skip forward to a particular line number, so that blocks of rules can be used without checking all the intervening rules. There are also many more ways of rejecting connections especially TCP related, and many many more ... see the man page for a complete description.
* typo fix, s/imp/inp'; move lookup call inside splnet since there werepeter1997-06-011-2/+2
| | | | comments on it being outside.
* Uninitialised inp variable in div_bind().peter1997-05-261-1/+2
| | | | Submitted by: Åge Røbekk <aagero@aage.priv.no>
* This commit was generated by cvs2svn to compensate for changes in r26124,darrenr1997-05-2515-316/+1759
|\ | | | | | | which included commits to RCS files with non-trunk default branches.
| * Import version 3.2alpha7darrenr1997-05-2515-316/+1759
| |
* | Connect the ipdivert div_usrreqs struct to the ip proto switch tablepeter1997-05-252-5/+5
| |
* | Attempt to convert the ip_divert code to use the new-style protocol requestpeter1997-05-241-101/+87
| | | | | | | | | | | | switch. I needed 'LINT' to compile for other reasons so I kinda got the blood on my hands. Note: I don't know how to test this, I don't know if it works correctly.
* | submitted by: archie@whistle.comjulian1997-05-231-2/+2
| | | | | | | | | | | | | | Don't search for interface addresses matching interface "NULL" it's likely to cause a page fault.. this can be triggered by the ipfw code rejecting a locally generated packet (e.g. you decide to make some network unreachable by local users)
* | Create the alias library. This is currently only used bybrian1997-05-238-0/+3984
| | | | | | | | | | | | | | ppp (or will be shortly). Natd can now be updated to use this library rather than carrying its own version of the code. Submitted by: Charles Mott <cmott@srv.net>
* | Disallow writing raw IP packets shorter than the IP header.fenner1997-05-221-2/+3
| |
* | Break apart initialization of s and inp from the declarations integge1997-05-191-5/+9
| | | | | | | | | | in_setsockaddr and in_setpeeraddr. Suggested by: Justin T. Gibbs <gibbs@plutotech.com>
* | Disallow network interrupts while the address is found and copied integge1997-05-191-1/+13
| | | | | | | | | | | | | | in_setsockaddr and in_setpeeraddr. Handle the case where the socket was disconnected before the network interrupts were disabled. Reviewed by: Garrett Wollman <wollman@khavrinen.lcs.mit.edu>
* | Don't send arp request for the ip address 0.0.0.0.tegge1997-05-141-3/+4
| |
* | Bring in some kernel bootp support. This removes the need for netboottegge1997-05-111-1/+5
| | | | | | | | | | | | | | | | to fill in the nfs_diskless structure, at the cost of some kernel bloat. The advantage is that this code works on a wider range of network adapters than netboot. Several new kernel options are documented in LINT. Obtained from: parts of the code comes from NetBSD.
* | This commit was generated by cvs2svn to compensate for changes in r25603,kjc1997-05-092-0/+326
|\ \ | | | | | | | | | which included commits to RCS files with non-trunk default branches.
| * | import Chuck Cranor's ATM driverkjc1997-05-092-0/+326
| /
* | Pull up the IP header in ip_mloopback(). This makes sure that thefenner1997-05-061-6/+8
| | | | | | | | | | | | | | operations on the header inside ip_mloopback() are performed on a private copy instead of a shared cluster. PR: kern/3410
* | Create the default rule with flags IP_FW_F_IN | IP_FW_F_OUT.alex1997-05-061-1/+2
| | | | | | | | Closes PR#3100.
* | The long-awaited mega-massive-network-code- cleanup. Part I.wollman1997-04-2713-78/+99
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This commit includes the following changes: 1) Old-style (pr_usrreq()) protocols are no longer supported, the compatibility glue for them is deleted, and the kernel will panic on boot if any are compiled in. 2) Certain protocol entry points are modified to take a process structure, so they they can easily tell whether or not it is possible to sleep, and also to access credentials. 3) SS_PRIV is no more, and with it goes the SO_PRIVSTATE setsockopt() call. Protocols should use the process pointer they are now passed. 4) The PF_LOCAL and PF_ROUTE families have been updated to use the new style, as has the `raw' skeleton family. 5) PF_LOCAL sockets now obey the process's umask when creating a socket in the filesystem. As a result, LINT is now broken. I'm hoping that some enterprising hacker with a bit more time will either make the broken bits work (should be easy for netipx) or dike them out.
* | Make MOD_* macros almost consistent:dufault1997-04-061-2/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Use the name argument almost the same in all LKM types. Maintain the current behavior for the external (e.g., modstat) name for DEV, EXEC, and MISC types being #name ## "_mod" and SYCALL and VFS only #name. This is a candidate for change and I vote just the name without the "_mod". Change the DISPATCH macro to MOD_DISPATCH for consistency with the other macros. Add an LKM_ANON #define to eliminate the magic -1 and associated signed/unsigned warnings. Add MOD_PRIVATE to support wcd.c's poking around in the lkm structure. Change source in tree to use the new interface. Reviewed by: Bruce Evans
OpenPOWER on IntegriCloud