Permalink
Commits on Sep 14, 2003
  1. 2^n hash size is better in the kernel. perry

    itojun committed Sep 14, 2003
  2. use prime number for hashing SPI

    itojun committed Sep 14, 2003
Commits on Sep 13, 2003
  1. correct ru_a/b setup for 20bit case

    itojun committed Sep 13, 2003
Commits on Sep 12, 2003
  1. parameters in hif_ifreq are changed

    t-momose committed Sep 12, 2003
  2. Don't use pointers as parameters of ioctl() for mobile node configura…

    …tion
    
    The data that they point are not copied to kernel land.
    t-momose committed Sep 12, 2003
  3. * netbsd/sys/netinet/udp_usrreq.c: send icmp admin prohibit if

      socket policy mismatches.
    itojun committed Sep 12, 2003
  4. use sysctl to dump SAs

    itojun committed Sep 12, 2003
  5. * sys/netkey/key.c: make it possible to get SA/SP dump via sysctl.

    * setkey: use sysctl
    itojun committed Sep 12, 2003
  6. make it possible to DUMP/SPDDUMP via sysctl.

    itojun committed Sep 12, 2003
Commits on Sep 11, 2003
  1. unused variable

    itojun committed Sep 11, 2003
Commits on Sep 10, 2003
  1. forgot to commit

    itojun committed Sep 10, 2003
  2. modify sa3 (not public yet)

    itojun committed Sep 10, 2003
  3. keep backpointer to struct socket in secpolicy

    itojun committed Sep 10, 2003
  4. ip6_savecontrol arg change

    itojun committed Sep 10, 2003
  5. ip6_savecontrol arg change

    itojun committed Sep 10, 2003
  6. style

    itojun committed Sep 10, 2003
  7. ip6_savecontrol arg change

    itojun committed Sep 10, 2003
  8. - remove a couple of NULL checks (should panic)

    - DIAGNOSTIC is not for printf()
    - IN6P_HOPOPTS should only be set on privileged in6p (ip6_output.c)
      so panic if mismatch happens
    - ip6_savecontrol() argument is redundant
    itojun committed Sep 10, 2003
  9. check existence of rootdev/rrootdev on readdir

    itojun committed Sep 10, 2003
  10. fix paren match

    itojun committed Sep 10, 2003
  11. * netbsd/sys/netinet/tcp_input.c: if inbound IPsec policy mismatches

      (like IPsec is required and plaintext packet comes in), respond to
      SYN with RST instead of silently discard the packet.  it will allow
      TCP client to react quickly against the connection failure due to
      IPsec policy mismatch.
    itojun committed Sep 10, 2003
  12. if IPsec inbound policy mismatches, respond to SYN with RST (instead of

    just dropping it), allow client to react quickly.
    itojun committed Sep 10, 2003
Commits on Sep 9, 2003
  1. lint

    itojun committed Sep 9, 2003
  2. s/2553bis/3493

    itojun committed Sep 9, 2003
  3. use 2292bis def for router alert opt

    itojun committed Sep 9, 2003
Commits on Sep 8, 2003
  1. update usage

    itojun committed Sep 8, 2003
  2. non-void function should return value

    itojun committed Sep 8, 2003
  3. dump by using /kern/ipsec*

    itojun committed Sep 8, 2003
  4. grammar, from netbsd

    itojun committed Sep 8, 2003
  5. remove incorrect comment

    itojun committed Sep 8, 2003