Skip to content
This repository

HTTPS clone URL

Subversion checkout URL

You can clone with HTTPS or Subversion.

Download ZIP
branch: master

Oct 03, 2008

  1. 2008-10-03 JINMEI, Tatuya <jinmei@isc.org>

    	* kame/sys/netinet6/nd6_nbr.c (nd6_ns_input),
    	  kame/sys/netinet6/nd6_rtr.c (nd6_rs_input):
    	added stricter validation on source address (for reference purpose
    	only).
    jinmei authored
  2. added stricter validation on source address (for reference purpose only)

    jinmei authored

Feb 29, 2008

  1. (forced commit to update the commit log of rev 1.37)

    the diff was taken from FreeBSD's rev 1.7.4.1.4.1 of ipcomp_input.c
    (which was then incorporated to NetBSD, whose rev is 1.28).
    jinmei authored

Nov 21, 2007

  1. merbed back a fix to invalid pointer access

    (FreeBSD's rev 1.28 of ipcomp_input.c)
    jinmei authored

Aug 04, 2007

  1. removed garbage

    jinmei authored
  2. typo

    jinmei authored
  3. fixed trivial typo

    jinmei authored

Aug 02, 2007

  1. typo

    itojun authored

Jul 25, 2007

  1. update comment on the use of strncpy()

    itojun authored
  2. "null" and "NUL" are different.

    itojun authored
  3. - canceled misuse of strlcpy()

    - added a margin for an internal buffer storing ifname so that the use of
      strlcpy() (where it could be used) is safe.
    jinmei authored
  4. corrected .Xr notation

    jinmei authored
  5. more meat

    add BUGS
    itojun authored
  6. MAN/MAN8

    itojun authored

Jul 24, 2007

  1. manpage. it is a start.

    itojun authored
  2. do not use sprintf(), nor strcpy(). they are unboundded operation.

    for ifr_name people use memcpy() or bcopy() in many cases, but in this case,
    variable "iface" is a char *, so i used strlcpy().
    itojun authored

Jul 11, 2007

  1. It must compare with the hard lifetime.

    NetBSD sys/netkey/key.c does not relate to this fix.
    FreeBSD/NetBSD sys/netipsec/key.c must be modified.
    sakane authored

Jun 14, 2007

  1. make it compile on 4.1-current XXX quickhack

    itojun authored
  2. fix problems with the previous commit.

    verified compilation on openbsd 4.1-current.
    itojun authored
  3. ANSIfy, to reduce diffs with *BSDs.

    based on diff from dunceor at gmail.com.
    XXX not tested yet, sorry, we need to ressurect buildlab configs.
    
    random thoughts:
    - IGMPv3 support needs a serious cleanup.  argument passing is horrible, style
      does not meet style(9) at all.  i'm afraid there could be a lot of bugs.
    - DCCP/SCTP/NAT-PT need someone to maintain them, otherwise we should drop
      them at once.
    - we should pick a platform (one of *BSD) and try to get KAME tree in sync
      with more recent version of *BSD.  otherwise, KAME tree gets more and more
      out-of-date.
    itojun authored

May 22, 2007

  1. RFC3946 (by pekka savola) has all the details on 6to4 packet filtering.

    refer draft-{itojun,cmetz}-*-harmful*.txt and
    draft-ietf-v6ops-security-overview-06.txt (again, by pekka savola).
    itojun authored

May 17, 2007

  1. 2007-05-17 JINMEI, Tatuya <jinmei@isl.rdc.toshiba.co.jp>

    	* kame/sys/netinet6/icmp6.c: Disabled responding to NI queries
    	from a global address by default as specified in RFC4620.
    	It can be re-enabled by setting the 0x8 flag of
    	net.inet6.icmp6.nodeinfo.
    jinmei authored
  2. - Disabled responding to NI queries from a global address by default as

      specified in RFC4620.  A new flag for icmp6_nodeinfo was added to enable the
      feature.
    - Also cleaned up the code so that the semantics of the icmp6_nodeinfo
      flags is clearer (i.e., defined specific macro names instead of using
      hard-coded values).
    jinmei authored
  3. disable aes-ctr for now, block size for aes-ctr is 1 (stream cipher)

    but we do not deal with stream cipher today.
    itojun authored

May 13, 2007

  1. we finally have T-shirt page

    itojun authored
  2. s/yea/yeah/

    itojun authored
  3. update crypto export/import issues URL

    itojun authored

May 11, 2007

  1. update crypto law URL

    itojun authored

May 08, 2007

  1. too big default - reduce it

    itojun authored
  2. clarifying some points in the previous code comment as well as some m…

    …inor
    
    style changes
    jinmei authored

May 06, 2007

  1. comment on "drop packets with more than 1 routing header" code.

    suggested by jinmei.
    itojun authored

May 05, 2007

  1. typo: s/baned/banned/

    itojun authored
  2. comment on the ICMPv6 error return on rthdr0. based on chat w/ jinmei

    itojun authored

May 04, 2007

  1. - added some comments

    - removed an unnecesary code
    suz authored
  2. fixed a memory leak in unresolved ND queue processing. (Reported by H…

    …ikaru Abe)
    suz authored
Something went wrong with that request. Please try again.