in6_pcbpurgeif() under splnet.
* kame/sys/netinet6/ah_input.c (ah6_ctlinput): * kame/sys/netinet6/esp_input.c (esp6_ctlinput): corrected arguments to key_allocsa(). This fix is very important if you use IPsec, because key_allocsa() in recent snaps has a strong validation check which will cause kernel panic against bogus values.
previous ones were uninitialized auto variables, which were completely bogus.
* kame/sys/netinet6/ip6_output.c (ip6_output): do not update the "dst" address, which is the next-hop address, for multicast destinations. Otherwise, the layer 2 destination address would be bogus.
for multicast destinations.
* freebsd4/sys/netinet6/udp6_usrreq.c (udp6_input): corrected address matching rules for incoming multicast packets, as suggested by Konstantin KABASSANOV <Konstantin.Kabassanov@lip6.fr> Without the change, multicast applications that binds the receiving socket with the multicast address would fail to accept incoming packets.
from: Konstantin KABASSANOV <Konstantin.Kabassanov@lip6.fr>
frag6_drain. (lock performed on netbsd/openbsd only, as other *BSD does not lock during ip_reass)
ifp when creating a reverse tunnel to the HA.
the route for the reverse tunnel.
XXX testers wanted, as sys/net/zlib.c differs by platforms.
and larger than 1232 bytes (excluding IPv4 header) into two IPv6 packet.