summaryrefslogtreecommitdiffstats
path: root/sys/netinet/ip_output.c (follow)
Commit message (Collapse)AuthorAgeFilesLines
...
* change arguments to suser. suser now takes the process, and a flagstedu2003-08-151-5/+5
| | | | | | | | | argument. old cred only calls user suser_ucred. this will allow future work to more flexibly implement the idea of a root process. looks like something i saw in freebsd, but a little different. use of suser_ucred vs suser in file system code should be looked at again, for the moment semantics remain unchanged. review and input from art@ testing and further review miod@
* m_copyback()'s 4th arg is const void *, nuke (caddr_t) casts.jason2003-08-141-3/+3
|
* do not flip ip_len/ip_off in netinet stack. deraadt ok.itojun2003-07-091-23/+15
| | | | (please test, especially PF portion)
* Remove the advertising clause in the UCB license which Berkeleymillert2003-06-021-6/+2
| | | | rescinded 22 July 1999. Proofed by myself and Theo.
* kill vaxismsjason2003-03-141-7/+2
|
* KNFderaadt2003-01-311-2/+2
|
* Missing m_pullup() and mbuf corruption. This potentially causeddhartmei2002-10-101-2/+2
| | | | | | | | | | | panic: m_copym0: m == 0 and not COPYALL and/or panic: m_copydata: null muf on bridges running pf with scrubbing enabled. Bug report, test vector and confirmation by Jon Morby. ok jason@, jasoni@
* skip routing table lookup if multicasting/broadcasting and the outgoingitojun2002-06-241-7/+25
| | | | | | interface is specified by setsockopt. from freebsd4, sync with kame (it makes difference when you run routed with RIPv2 enabled - no need for 224/4 route)
* spaces to tabs, remove trailing whitespacejasoni2002-06-041-44/+44
|
* respect rmx_mtu (cached PMTUD result) on outbound. deraadt/angelos okitojun2002-05-311-6/+15
|
* Socket-related IPsec sockoptions --- cleanups etc.angelos2002-05-311-33/+54
|
* kill register; ok deraadt@jasoni2002-05-281-28/+28
|
* Factor out IP fragmentation code into its own function so it can bejasoni2002-05-281-37/+52
| | | | | reused. - ok jason@, dhartmei@
* Kill #if __STDC__ used to do K&R vs. ANSI varargs/stdarg; just do thingsmillert2002-03-151-7/+1
| | | | the ANSI way.
* First round of __P removal in sysmillert2002-03-141-5/+4
|
* disable pmtu for ipsec when the sysctl says so; bug report cjkim2000@yahoo.comprovos2002-01-231-3/+3
|
* add fastroute options similar to what is found in ipfjasoni2001-11-261-1/+8
| | | | ok dhartmei@, frantzen@
* KNFderaadt2001-11-241-10/+10
|
* fix multicast loopback checksums; goeran@cdg.chalmers.se, ok angelosderaadt2001-11-021-1/+9
|
* Uninitialized variable.niklas2001-08-261-2/+2
|
* IPCOMP policy stuff missed the last time roundniklas2001-08-221-1/+2
|
* Don't check for BYPASS options in PCB on ip_output/ip6_output --- thisangelos2001-08-211-19/+1
| | | | is already done in ip_spd_lookup()
* split ip normalization out into a separate file, okay dhartmei@provos2001-07-171-5/+5
|
* IPComp support. angelos@ ok.jjbg2001-07-051-1/+15
|
* move pf_test check to happen after checksum calculation - withoutbeck2001-06-291-13/+14
| | | | | | this packets originating from this host (such as with an rdr to localhost for transparent proxying) do not get checksummed correctly, because the pf code does not have a correct checksum to fix up (ok kjell@)
* first stab at packet normalization. includes full ip reassembly.provos2001-06-281-4/+8
| | | | okay dhartmei@, dugsong@
* Get rid of M_COPY_* macros; either use M_MOVE_* or M_DUP_*, dependingangelos2001-06-271-2/+2
| | | | on how macros should be treated. Code by fgsch@, ok by me and itojun@
* Add length to pkthdr.len directly.angelos2001-06-271-2/+2
|
* Don't cache packets that hit policies -- we'll do that at the PCB forangelos2001-06-271-49/+15
| | | | local packets.
* no longer pass around **mderaadt2001-06-261-19/+11
|
* If a PENDING_TDB tag is attached but no TDB is found, drop the packet.angelos2001-06-251-1/+3
|
* Check the length of the tag (diagnostic)angelos2001-06-251-1/+7
|
* Apply pending TDBs (as indicated by tags). This will be used to handleangelos2001-06-251-4/+13
| | | | | the case of both the socket and system-wide IPsec policy specifying TDBs to be applied to the same packet.
* Don't double-clear M_PKTHDR/tags.angelos2001-06-251-3/+1
|
* Remove unnecessary temporary variable.angelos2001-06-251-3/+2
|
* Always defer output TCP checksumming until ip_output() (or hardware,angelos2001-06-251-12/+22
| | | | | if it exists). Cuts down on code a bit, and we don't need to look at the routing entry at TCP. Based on NetBSD. UDP case to follow.
* put pf before ipsec processing. return error code and free mbuf chainprovos2001-06-251-2/+24
|
* make it compile w/o pfmickey2001-06-241-2/+8
|
* Sync in4_cksum() with NetBSD, and change its use in in_delayed_cksum.angelos2001-06-241-2/+2
|
* Import in_delayed_cksum() and convert to using it; also, don't doangelos2001-06-241-24/+52
| | | | TCP/UDP HW checksumming if doing IP fragmentation. From NetBSD
* Also reset input cached TDB.angelos2001-06-241-1/+15
|
* Resetangelos2001-06-241-2/+18
|
* Initial import of pf, an all-new ipf-compatable packet filter.kjell2001-06-241-1/+12
| | | | Insane amounts of work done my dhartmei. Great work!
* check if ipsec processing increases packet size above allowable mtu.provos2001-06-241-1/+41
| | | | store correct mtu in routing table.
* Remove unneeded ip_id convertions.fgsch2001-06-231-3/+2
| | | | | | Instead of using HTONS macro in some places, use htons directly in the struct member and save us a few bytes. Fix comment.
* Only use IP checksumming if the output interface is not in bridgeangelos2001-06-231-6/+11
| | | | mode. We can't deal with that well.
* m_copyback(), not m_copydata()angelos2001-06-231-5/+5
|
* Software-compute TCP/UDP checksum if we are going to do IPsec or if theangelos2001-06-231-5/+16
| | | | output interface does not support hardware checksumming.
* Placeholder, reminder to fix TCP/UDP checksumming right before doing IPsec.angelos2001-06-231-1/+17
|
* Count input/output hardware-checksummed IP packets.angelos2001-06-231-16/+17
|
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.