| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
|
|
|
| |
- When making a pcb from a sync cache, do not forget to copy inc_isipv6.
Obtained from: KAME
MFC After: 1 week
|
|
|
|
| |
reference.
|
|
|
|
| |
Objection from: ru
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
spares (the size of the field was changed from u_short to u_int to
reflect what it really ends up being). Accordingly, change users of
xucred to set and check this field as appropriate. In the kernel,
this is being done inside the new cru2x() routine which takes a
`struct ucred' and fills out a `struct xucred' according to the
former. This also has the pleasant sideaffect of removing some
duplicate code.
Reviewed by: rwatson
|
| |
|
|
|
|
| |
Reviewed by: fenner
|
|
|
|
| |
Submitted by: Marco Molteni <molter@tin.it>
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
were destined for a broadcast IP address. All TCP packets with a
broadcast destination must be ignored. The system only ignored packets
that were _link-layer_ broadcasts or multicast. We need to check the
IP address too since it is quite possible for a broadcast IP address
to come in with a unicast link-layer address.
Note that the check existed prior to CSRG revision 7.35, but was
removed. This commit effectively backs out that nine-year-old change.
PR: misc/35022
|
|
|
|
|
|
|
|
|
| |
so that after the first time we can follow the pointer instead
of having to scan the list.
This was the intended behaviour from day one.
PR: 34639
MFC-after: 3 days
|
|
|
|
|
| |
from the current listen socket instead of the cached (and possibly stale)
TCB pointer.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
deprecated in favor of the POSIX-defined lowercase variants.
o Change all occurrences of NTOHL() and associated marcros in the
source tree to use the lowercase function variants.
o Add missing license bits to sparc64's <machine/endian.h>.
Approved by: jake
o Clean up <machine/endian.h> files.
o Remove unused __uint16_swap_uint32() from i386's <machine/endian.h>.
o Remove prototypes for non-existent bswapXX() functions.
o Include <machine/endian.h> in <arpa/inet.h> to define the
POSIX-required ntohl() family of functions.
o Do similar things to expose the ntohl() family in libstand, <netinet/in.h>,
and <sys/param.h>.
o Prepend underscores to the ntohl() family to help deal with
complexities associated with having MD (asm and inline) versions, and
having to prevent exposure of these functions in other headers that
happen to make use of endian-specific defines.
o Create weak aliases to the canonical function name to help deal with
third-party software forgetting to include an appropriate header.
o Remove some now unneeded pollution from <sys/types.h>.
o Add missing <arpa/inet.h> includes in userland.
Tested on: alpha, i386
Reviewed by: bde, jake, tmm
|
|
|
|
| |
MFC after: 1 day
|
|
|
|
|
|
| |
update our lazy reference to the inpcb structure, as it may have changed.
Found by: dima
|
|
|
|
| |
Submitted by: archie
|
|
|
|
|
|
|
|
|
|
| |
this is a low-functionality change that changes the kernel to access the main
thread of a process via the linked list of threads rather than
assuming that it is embedded in the process. It IS still embeded there
but remove all teh code that assumes that in preparation for the next commit
which will actually move it out.
Reviewed by: peter@freebsd.org, gallatin@cs.duke.edu, benno rice,
|
|
|
|
|
|
|
| |
when the original packet contains an IPv6 extension header.
Obtained from: KAME
MFC after: 1 week
|
|
|
|
| |
as const char.
|
|
|
|
|
|
|
|
|
|
|
|
| |
some time. _All_ packets, regardless of destination, were accepted by
the machine as if addressed to it.
Jump back to 'pass' processing for a teed packet instead of falling
through as if it was ours.
PR: kern/31130
Reviewed by: -net, luigi
MFC after: 2 weeks
|
|
|
|
| |
Submitted by: emy@boostworks.com
|
|
|
|
|
|
|
|
| |
- Clear the cached destination before getting another cached route.
Otherwise, garbage in the padding space (which might be filled in if it was
used for IPv4) could annoy rtalloc.
Obtained from: KAME
|
|
|
|
|
|
|
|
| |
appear outside a host.
PR: 30792, 33996
Obtained from: ip_input.c
MFC after: 1 week
|
|
|
|
|
|
|
|
|
|
| |
(We should be able to handle locally originated IP packets, and
these do not have m_pkthdr.rcvif set.)
PR: kern/32806, kern/33766
Reviewed by: luigi
Fix tested by: Maxim Konovalov <maxim@macomnet.ru>,
Erwin Lansing <erwin@lansing.dk>
|
|
|
|
|
|
| |
us to load protocols at runtime, and avoids the use of common variables.
Also fix the ip6_intrq assignment so that it works at all.
|
|
|
|
| |
MFC after: 1 day
|
|
|
|
|
|
| |
multicast router. This is overkill; it should be possible to
delay to hardware interfaces and only pre-calculate when forwarding
to a tunnel.
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
The following steps are involved:
a) the IP options related to routing (LSRR and SSRR) are processed
as though the router were a host,
b) the other IP options are processed as usual only if the packet
is destined for the router; otherwise they are ignored.
PR: kern/23123
Discussed in: freebsd-hackers
|
|
|
|
|
|
|
| |
when forwarding an incoming packet to another machine.
Obtained from: Vicor Production tree
MFC after: 3 weeks
|
|
|
|
| |
Submitted by: Igor Timkin <ivt@gamma.ru>
|
| |
|
|
|
|
|
|
| |
arc4random() routine to generate ISNs instead of creating them with MD5().
Suggested by: silby
|
|
|
|
| |
(instead of int) to keep the 64 bit platforms happy.
|
|
|
|
|
|
|
| |
An old route will be NULL at that point if a packet were initially
routed to an interface (using the IP_ROUTETOIF flag.)
Submitted by: Igor Timkin <ivt@gamma.ru>
|
|
|
|
|
|
|
|
|
|
|
|
| |
All TCP ISNs that are sent out are valid cookies, which allows entries
in the syncache to be dropped and still have the ACK accepted later.
As all entries pass through the syncache, there is no sudden switchover
from cache -> cookies when the cache is full; instead, syncache entries
simply have a reduced lifetime. More details may be found in the
"Resisting DoS attacks with a SYN cache" paper in the Usenix BSDCon 2002
conference proceedings.
Sponsored by: DARPA, NAI Labs
|
|
|
|
|
|
| |
option -- TcpAliasOut() did not catch the IP header length change.
Submitted by: Stepachev Andrey <aka50@mail.ru>
|
|
|
|
| |
Obtained from: TrustedBSD Project
|
|
|
|
|
|
|
| |
number.
Submitted by: Ilmar S. Habibulin <ilmar@watson.org>
Obtained from: TrustedBSD Project
|
| |
|
| |
|
| |
|
| |
|
|
|
|
|
|
|
|
|
|
| |
Now that we've increased the size of our send / receive buffers, bursting
an entire window onto the network may cause congestion. As a result,
we will slow start beginning with a flightsize of 4 packets.
Problem reported by: Thomas Zenker <thz@Lennartz-electronic.de>
MFC after: 3 days
|
|
|
|
| |
is initialized in case we take the T/TCP path.
|
| |
|
| |
|
| |
|
| |
|
|
|
|
| |
also don't use ANSI string concatenation.
|
|
|
|
|
| |
enables TCP keepalives using the net.inet.tcp.always_keepalive by default.
Synchronize the kernel default with the userland default.
|