Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with HTTPS or Subversion.

Download ZIP
tag: freebsd4_snap_…
Commits on Jul 23, 2000
  1. * sys/netinet6/esp_core.c: cache intermediate key for ESP encryption

    itojun authored
      algorithms, into SAs.  this will drastically improve performance
      for algorithms with long key setup time (blowfish).
      KAME PR 229.  suggested by sommerfeld.
  2. add an DIAGNOSTIC case for MCLBYTES assumption

    itojun authored
Commits on Jul 22, 2000
  1. use latest ipv6 patch. (7/21/2000)

    sumikawa authored
Commits on Jul 21, 2000
  1. * kame/kame/racoon:

    sakane authored
    Trying to conform with draft-ietf-mobileip-ipv6-12.  If "support_mip6"
    in remote directive is on, both values of ID payloads in phase 2
    exchange are always used as the addresses of end-point of IPsec-SAs.
  2. try to conform with draft-ietf-mobileip-ipv6-12. If "support_mip6" in…

    sakane authored
    … remote
    
    directive is on, both values of ID payloads in phase 2 exchange are always
    used as the addresses of end-point of IPsec-SAs.
  3. * netbsd/pkgsrc/mail/sendmail.beta: use 8.11.0.

    itojun authored
    * netbsd/pkgsrc/net/netperf: use the latest IPv6 patch (7/21).
  4. use latest ipv6 patch. (7/21/2000)

    itojun authored
  5. included <sys/queue.h> if necessary (mainly because in6_var.h

    jinmei authored
    need this header file...)
  6. 2000-07-21 JINMEI, Tatuya <jinmei@isl.rdc.toshiba.co.jp>

    jinmei authored
    	* kame/kame/bgpd/bgp.c: clarification about the advanced API;
    	do not use IPV6_PKTOPTIONS in pure RFC2292 (i.e. not 2292bis)
    	paths.
  7. corrected config dump.

    jinmei authored
  8. Added several changes of racoon during TAHI test event.

    sakane authored
    Tue Jul 18 JST 2000 sakane@ydc.co.jp
    	* kame/kame/racoon:
    	- don't send notify message in processing of information exchange.
    	- fixed a possible memory leak when error occure.
    	- added some message about comparing each values in proposal.
    	- improved to delete phase1 SA when delete message is received OR
    	  initial contact is received.
    
    Mon Jul 17 JST 2000 sakane@ydc.co.jp
    	* kame/kame/racoon:
    	- commented when id payload of subnet type with full bit masked.
    
    Sun Jul 16 JST 2000 sakane@ydc.co.jp
    	* kame/kame/racoon:
    	- commented when id payload of subnet type with full bit masked.
    	- racoon.conf are updated about padding option.
    
    Sat Jul 15 JST 2000 sakane@ydc.co.jp
    	* kame/kame/racoon:
    	- fixed the place of checking whether delete payload is protected
    	  when delete notification is received.
    	- When a IKE node receive a delete payload, the node always delete
    	  outbount SAs only.  So destination IP address have to check before
    	  SA will be deleted.
    	- Delete phase 1 handler when a delete notification has been received.
    	  Renamed purge_spi() to purge_ipsec_spi() accompanied with above
    	  chanege.
    	- commented about the reason why we don't send delete payload
    	  for outbound SAs.
    	- added a option to randomize values in a padding.  clarified to
    	  randomize length.
    	- fixed some of memory leak.
    
    Fri Jul 14 JST 2000 sakane@ydc.co.jp
    	* kame/kame/racoon:
    	- enable to switch sending initial contact.
    	- try to send delete payload on phase 1 when phase 1 sa is deleted
    	- fixed to compare address family in two sockaddrs.
    	- fixed making a length of IPv6 ID payload.  it was used a length of
    	  struct in_addr.
    	- fixed a part of sending a notification on phase 2.
    	- fixed making a ID payload of type of IPv4 address.  There was
    	  unnecessary space in a address part.
  9. disabled in6_ifdetach() for bsdi

    jinmei authored
    (just for cleanup)
  10. remove unnecessary spl in blowfish code (now achieves 24Mbps on PenII…

    itojun authored
    …-300
    
    loopback with blowfish-cbc, transport mode, 128bit key).
    improve code-sharing.  some netbsd KNF.
Commits on Jul 20, 2000
  1. speedup esp encryption, by pre-computing intermediate key. now

    itojun authored
    blowfish-cbc yields 15Mbps.  suggested by sommerfeld@netbsd.org.
    
    XXX UPDATE pfkey message code (netkey/key.c) seems to have possibility for
    memory leak.  if we transmit UPDATE more than once for a sa, the code
    would overwrite key_enc/auth.  is my observation correct?
  2. corrected BGP interface manupilation, especially about use of

    jinmei authored
    the (new and old) advanced API according to a suggestion from itojun
    (kame-snap 2949).
  3. do not rely upon algorithm name ordering

    itojun authored
  4. sys/queue.h (freebsd2)

    itojun authored
  5. sys/queue.h

    itojun authored
  6. sys/netinet6/*var.h require sys/queue.h

    itojun authored
  7. improve english in comment

    itojun authored
  8. improve english in comment

    itojun authored
Commits on Jul 19, 2000
  1. * freebsd3/ports/{libpcap,tcpdump}: use 7/17 weekly snap.

    sumikawa authored
    * freebsd3/ports/mtr: use latest IPv6 patch.
  2. upgrade to 07/17 weekly snap.

    sumikawa authored
  3. Upgrade IPv6 patch to 20000719.

    sumikawa authored
    It fixes the problem mtr does not work on IPv4-only kernel.
    
    PR:		ports/19339 (FreeBSD)
    Submitted by:	kbyanc@posi.net
  4. make compilable on KLD modules in freebsd4.

    sumikawa authored
  5. rename. previous commit was mistaken.

    sakane authored
  6. some pattern of IPsec environment.

    sakane authored
  7. netbsd-current does not have rc5-cbc

    itojun authored
  8. * kame/rtsold/rtsol.c, kame/rtadvd/rtadvd.c: ip6_var.h requires

    itojun authored
      sys/queue.h.
    * netbsd/pkgsrc/net/{libpcap,tcpdump}: use 7/17 weekly snap.
  9. use 7/17 weekly snap

    itojun authored
Something went wrong with that request. Please try again.