summaryrefslogtreecommitdiffstats
path: root/sys/netinet/tcp_input.c (follow)
Commit message (Collapse)AuthorAgeFilesLines
...
* Replace RSA-derived md5 code with code derived from Colin Plumb's PD version.millert2004-05-071-2/+2
| | | | | | This moves md5.c out of libkern and into sys/crypto where it belongs (as requested by markus@). Note that md5.c is still mandatory (dev/rnd.c uses it). Verified with IPsec + hmac-md5 and tcp md5sig. OK henning@ and hshoexer@
* The tcp specific routing metrics are almost never used so reduce the routingclaudio2004-05-041-60/+4
| | | | | | | table from these metrics. struct rt_msghdr used by the routing socket is not affected and so most userland apps don't need to be changed. some man page polishing by jmc@ OK henning@ markus@ theo@
* - allow the user to force the TCP mss below the fail-safe 216 with a lowfrantzen2004-04-261-3/+5
| | | | | | | | interface MTU. - break a tcp_output() -> tcp_mtudisc() -> tcp_output() infinite recursion when the TCP mss ends up larger than the interface MTU (when the if_mtu is smaller than the tcp header). connections will still stall feedback from itojun@, claudio@ and provos and testing from beck@
* add tcps_rcvacktooold; ok deraadtmarkus2004-04-201-2/+2
|
* Unbreak INET6less kernels.grange2004-04-151-2/+3
| | | | ok markus
* allow TCP packet with IPv4 option (we have been dropping these).itojun2004-04-151-45/+15
| | | | simplify some of the codepath by using IP6_EXTHDR_GET. markus ok
* syn_cache_get: send RST instead of RST+ACK in response to ACK; ok deraadtmarkus2004-04-141-3/+2
|
* factor out dropafterack_ratelim code, use ratelimitmarkus2004-04-121-15/+25
| | | | for tcps_rcvacktoomuch, too; drop very old ACKs; ok deraadt@
* on in-window SYN, send back rate-limited ACK; ok dhartmei frantzen markusderaadt2004-04-041-3/+11
|
* typo in comment (fragment->segment); ok itojun@markus2004-03-171-3/+3
|
* limit total number of queued out-of-order packets to NMBCLUSTERS/2; ok mcbridemarkus2004-03-021-8/+20
|
* implement tcp_drain() similar to ip_drain(); ok mcbride@markus2004-02-271-1/+8
|
* make mss signed; avoids large mss if ifp==NULL; ok itojun@markus2004-02-111-2/+2
|
* check TF_SIGNATURE when calculating the mss; add TCPOLEN_SIGLEN andmarkus2004-02-101-2/+6
| | | | avoid magic constants; ok henning@
* take RFC2460 section 5 last paragraph into consideration when we compute MSSitojun2004-02-051-5/+14
| | | | | (if path MTU < 1280, use 1280 as packet size and attach fragment header). markus ok
* !sack_disable -> sack_enable; ok deraadt@markus2004-01-311-17/+16
|
* reset TCPT_KEEP to tcp_keepidle when switching to ESTABLISHED;markus2004-01-291-2/+4
| | | | ok henning, deraadt
* turn off TF_SIGNATURE on the listen socket if there is no matching SA.markus2004-01-291-10/+23
| | | | | allows using a single listen socket for both tcpmd5 and plain tcp. ok aaron, henning.
* support for RFC3390 (Increasing TCP's Initial Window); ok deraadt, itojunmarkus2004-01-291-9/+10
|
* don't increase the cwnd on syn-ack; ok itojun@, deraadt@markus2004-01-291-10/+1
|
* add gettdbbysrcdst(), just like gettdb(), but compares tdb_src as well; ok mcbride@markus2004-01-221-19/+30
|
* es tanzt das KNFmarkus2004-01-151-55/+54
|
* move call to tcp_mss_update() from syn_cache_add() to syn_cache_get(),markus2004-01-151-12/+4
| | | | | when the 3-way handshake completes (and not on the listen pcb). ok itojun, dhartmei
* syncache+ipv6 support for TCP_SIGNATURE; with itojun; ok deraadtmarkus2004-01-141-33/+153
|
* bring back the old TCP_SIGNATURE code from tcp_input.c rev 1.45markus2004-01-131-8/+148
| | | | and make it compile (does not work yet); ok deraadt@
* pass pcb and not socket to ip_output; #ifdef SACK; ok itojun@markus2004-01-131-13/+7
|
* decrease min mss to (256 - 40); ok deraadtmarkus2004-01-091-3/+3
|
* crank mss limit from 64 to 256; ok itojun@, dhartmei@markus2004-01-071-3/+3
|
* cleanup obsolete comment from NRL code. markus okitojun2004-01-071-50/+32
|
* import netbsd's version of David Borman's syncache codemarkus2004-01-061-385/+1289
| | | | http://www.kohala.com/start/borman.97jun06.txt; ok deraadt@, henning@
* check for multicast early, remove redundant checks; ok itojun, mcbridemarkus2003-12-211-34/+20
|
* switch to CIRCLEQ_FOREACH_REVERSE in tcpdropoldhalfopen() andmarkus2003-12-081-9/+5
| | | | avoid dropping youngest TCB; ok henning deraadt
* Mbuf tag tcp and udp packets which are translated to localhost, andmcbride2003-12-081-3/+5
| | | | | | | | | | | | | use the the presence of this tag to reverse the match order in in{6}_pcblookup_listen(). Some daemons (such as portmap) do a double bind, binding to both * and localhost in order to differentiate local from non-local connections, and potentially granting more privilege to local ones. This change ensures that redirected connections to localhost do not appear local to such a daemon. Bulk of changes from dhartmei@, some changes markus@ ok dhartmei@ deraadt@
* add in(6)_pcblookup_listen() and replace all calls to in_pcblookup()markus2003-11-041-6/+5
| | | | | | with either in(6)_pcbhashlookup() or in(6)_pcblookup_listen(); in_pcblookup is now only used by bind(2); speeds up pcb lookup for listening sockets; from Claudio Jeker
* use random number generator to generate IPv6 fragment ID/flowlabel.itojun2003-10-011-5/+3
| | | | cleanup IPv6 flowlabel handling. deraadt ok
* do not flip ip_len/ip_off in netinet stack. deraadt ok.itojun2003-07-091-5/+1
| | | | (please test, especially PF portion)
* backout following:itojun2003-06-091-87/+139
| | | | | | >use m_pulldown not m_pullup2. fix some bugs in IPv6 tcp_trace(). PR 3283 fixed (confirmed)
* Remove the advertising clause in the UCB license which Berkeleymillert2003-06-021-6/+2
| | | | rescinded 22 July 1999. Proofed by myself and Theo.
* use IN6_LINKMTU for IPv6 link MTU. sync w/kameitojun2003-05-291-1/+10
|
* use m_pulldown not m_pullup2. fix some bugs in IPv6 tcp_trace().itojun2003-05-291-139/+87
|
* Bad switch condition used for SO_DEBUG, ok itojun@dhartmei2003-05-191-2/+2
|
* Fix logic error introduced when importing a Stevens' bug fix in r1.20;miod2003-04-291-2/+2
| | | | from provos@, ok dhartmei@
* Fix an mbuf leak, where each incoming IPv6 TCP connection (to a listeningdhartmei2003-02-141-2/+2
| | | | socket) would leak one MT_SONAME mbuf. ok deraadt@, henning@
* fix pointer signedness mixup.itojun2002-09-111-3/+3
|
* never append data to shutdown(s, SHUT_RD) socket. can lead to unexpecteditojun2002-09-051-5/+13
| | | | kernel resource consumption. NetBSD PR 18185
* be consistent with other KAME source, use "ip6" for ip6_hdr, not "ipv6".itojun2002-08-191-22/+22
|
* merge in IPv6 deprecated address handling from KAME.itojun2002-08-191-1/+43
|
* redo socketbuf speedup.provos2002-08-081-4/+4
|
* backout the tree break. ok pb@, art@todd2002-08-081-4/+4
|
* socket buf speedup from thorpej@netbsd, okay art@ ericj@:provos2002-08-081-4/+4
| | | | | | | | | | | | | | | | Make insertion of data into socket buffers O(C): * Keep pointers to the first and last mbufs of the last record in the socket buffer. * Use the sb_lastrecord pointer in the sbappend*() family of functions to avoid traversing the packet chain to find the last record. * Add a new sbappend_stream() function for stream protocols which guarantee that there will never be more than one record in the socket buffer. This function uses the sb_mbtail pointer to perform the data insertion. Make TCP use sbappend_stream(). On a profiling run, this makes sbappend of a TCP transmission using a 1M socket buffer go from 50% of the time to .02% of the time. Thanks to Bill Sommerfeld and YAMAMOTO Takashi for their debugging assistance!
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.