Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with HTTPS or Subversion.

Download ZIP
Commits on Jun 13, 2000
  1. make it compilable.

    sakane authored
  2. forgot to add important file...

    itojun authored
  3. * - side effects of rtrequest[1](RTM_DELETE)

    jinmei authored
     *	BSDI[34]: delete all cloned routes underneath the route.
     *	FreeBSD[234]: delete all protocol-cloned routes underneath the route.
     *		      note that cloned routes from an interface direct route
     *		      still remain.
     *	NetBSD, OpenBSD: no side effects.
  4. * netbsd/sbin/setkey: move setkey from usr.sbin/setkey to sbin/setkey.

    itojun authored
      we need it for encrypted NFS (sync better with netbsd-current).
  5. move setkey to sbin.

    itojun authored
  6. setkey will move to sbin, since we need to setup keys for NFS traffic

    itojun authored
    before /usr gets mounted (no effect for kame - sync with netbsd-current).
  7. * kame/racoon/safefile.c: be more picky about secret file permission.

    itojun authored
      now pre-shared key file (psk.txt) is required to be owned by the
      uid running racoon (= root), and must not be accessible by others
      (like 0400).
  8. document psk.txt permission restriction.

    itojun authored
  9. nroff correction. ALWAYS break line after terminating period to get the

    itojun authored
    spacing between sentences right.
  10. add safefile.c

    itojun authored
  11. do not permit opening psk.txt with insufficient permission.

    itojun authored
    we may want to add safefile() calls to other locations as well.
    (like certificates)
  12. avoid duplicated define for INET6

    itojun authored
  13. add comment for privileged port check.

    itojun authored
  14. in_pcbbind() uses suser() for privilege control, for all operating sy…

    itojun authored
    …stems.
    
    not sure why we don't use SS_PRIV here.
    
    corrects breakage of freebsd2 inetd (can't bind(2) to privileged IPv6 port).
  15. sys/netkey/key.c fix for SADB_X_SA2.

    itojun authored
  16. pim6dd also seems OK.

    jinmei authored
  17. style nit

    itojun authored
  18. 2000-06-13 JINMEI, Tatuya <jinmei@isl.rdc.toshiba.co.jp>

    jinmei authored
    	* kame/sys/netinet6/nd6_rtr.c (in6_ifadd): made sure to gain a
    	reference counter to in6_ifaddr for the autoconfigured address
    	in bsdi and freebsd2 cases.
    	This fix would be important to those OSes, since the older code
    	woulde cause duplicated free when the lifetime for the address
    	expired.
  19. more correction for ifa_refcnt.

    itojun authored
  20. (in6_ifadd) gain ifa_refcnt regardless of OSes

    jinmei authored
    (I believe this is correct, but please check it > itojun?)
  21. correct netbsd-current ipsec date stamp

    itojun authored
  22. 2000-06-13 JINMEI, Tatuya <jinmei@isl.rdc.toshiba.co.jp>

    jinmei authored
    	* kame/kame/dhcp6/common.c (getifaddr): corrected arguments to
    	in6_addrscopebyif().
    	In response to a report from Hajimu UMEMOTO<ume@bisd.hitachi.co.jp>
  23. corrected arguments to in6_addrscopebyif().

    jinmei authored
    from ume@bisd.hitachi.co.jp
Commits on Jun 12, 2000
  1. * kame/kame/racoon:

    sakane authored
    send error message against sadb_acquire message to the kernel
    when IPsec-SA negotiation fail.
  2. add a row for IPv6 NFS

    itojun authored
  3. send error message against sadb_acquire message to the kernel

    sakane authored
    when IPsec-SA negotiation fail.
Something went wrong with that request. Please try again.