Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with
or
.
Download ZIP
Commits on Jul 16, 2000
  1. changed the static buffer in if_name() to an array of array

    jinmei authored
    to be more context safe.
  2. cleanup receiver side processing a bit.

    itojun authored
    make sure to check error code from getnameinfo.
  3. about nonce size.

    sakane authored
  4. added some description about the padding.

    sakane authored
    added initial_contact.
  5. more sync with netbsd

    itojun authored
  6. sync better with netbsd (no rc5 in kernel)

    itojun authored
  7. %d->%u.

    sakane authored
  8. added a option to randomize values in a padding.

    sakane authored
    clarified to randomize length.
  9. s/IPSEC_IPV6FWD/IPSEC/

    itojun authored
    include opt_ipsec for netbsd
  10. * sys/netinet6/ip6_forward.c: enable IPSEC_IPV6FWD case by default.

    itojun authored
      (actually, previous default behavior was wrong as it transmits
      forwarded packets in clear, even though the policy asks for
      encryption)
  11. enable IPSEC_IPV6FWD by default. the default behavior (no IPSEC_IPV6FWD)

    itojun authored
    was harmful as it forwards IPv6 packet in clear.
  12. * kame/ping6:

    itojun authored
      - check duplicated replies for node information query (*)
      - fill nonce field for node information query (*)
      - use generic icmp6 printer for echo/echo reply/ni reply/ni reply,
        when ident/nonce does not match
      - clarlify outgoign packet construction a bit
      (*) based on patch from yoshfuji, cleaned up by itojun
  13. - check duplicated replies for node information query (*)

    itojun authored
    - fill nonce field for node information query (*)
    - use generic icmp6 printer for echo/echo reply/ni reply/ni reply,
      when ident/nonce does not match
    - clarlify outgoign packet construction a bit
    
    (*) based on patch from yoshfuji, cleaned up by itojun
  14. name-lookup 05 -> 06

    itojun authored
  15. * sys/netinet6/icmp6.c: ICMPv6 node information query now based on

    itojun authored
      06 draft (ping6 -w).
  16. support name-lookups-06 draft.

    itojun authored
    - link-local queries are now permitted, so "ping6 -w ff02::1" is now legal
      (we still have some issue with Subject address validation)
    - "code" field for NOOP/supported-qtype is now clarified
  17. o support DN type of ID payload.

    sakane authored
  18. cope with old kame headers

    itojun authored
Commits on Jul 15, 2000
  1. fixed some of message when a error happens.

    sakane authored
  2. add kazuo horikawa

    itojun authored
  3. KAME PR 271

    itojun authored
  4. * sys/netinet6/in6.h; do not pull sys/queue.h in (it is not

    itojun authored
      necessary anyways)
    * sys/net/pfkeyv2.h: correct conformance to RFC2367 (SADB_[EA]ALG_xx
      symbol name).  beware: the change breaks backward compatibility.
      setkey and racoon MUST be recompiled after updating include files.
  5. update RFC2367 PF_KEY conformance (SADB_[EA]ALG_xx symbol). beware of…

    itojun authored
    … binary backward compatibility breakage
  6. in6.h should not pull sys/queue.h (netbsd PR)

    itojun authored
  7. delete a tab space.

    sakane authored
  8. o support RESPONDER-LIFETIME and rekeying

    sakane authored
  9. wording.

    sakane authored
  10. unused varibale

    itojun authored
  11. cleared reallocated buffer.

    sakane authored
  12. - Fixed the place of checking whether delete payload is protected whe…

    sakane authored
    …n delete
    
      notification is received.
    - When a delete payload is received, SAs to be deleted are in outbound only.
      So destination IP address have to check before SA will be deleted.
    - Delete phase 1 handler when a delete notification has been received.
      Renamed purge_spi() to purge_ipsec_spi() accompanied with above chanege.
  13. * kame/route6d: if a routing entry exists for aggregate prefix (-A),

    itojun authored
      do not overwrite it (exit with error).  it should be a safer behavir.
  14. if a routing entry exists for aggregate prefix (-A), do not overwrite…

    itojun authored
    … it.
    
    two guys made exactly the same mistake.  it is a good reason to take more
    safer side...
    (by specifying interface prefix to -A, route6d nukes interface prefix)
Commits on Jul 14, 2000
  1. fixed making a ID payload of IPv4 address type. There was unnecessary…

    sakane authored
    … space
    
    of a address.
Something went wrong with that request. Please try again.