1
0
mirror of https://git.FreeBSD.org/src.git synced 2024-12-24 11:29:10 +00:00
freebsd/sys/netipsec
David Malone 1f44b0a1b5 Get rid of the RANDOM_IP_ID option and make it a sysctl. NetBSD
have already done this, so I have styled the patch on their work:

        1) introduce a ip_newid() static inline function that checks
        the sysctl and then decides if it should return a sequential
        or random IP ID.

        2) named the sysctl net.inet.ip.random_id

        3) IPv6 flow IDs and fragment IDs are now always random.
        Flow IDs and frag IDs are significantly less common in the
        IPv6 world (ie. rarely generated per-packet), so there should
        be smaller performance concerns.

The sysctl defaults to 0 (sequential IP IDs).

Reviewed by:	andre, silby, mlaier, ume
Based on:	NetBSD
MFC after:	2 months
2004-08-14 15:32:40 +00:00
..
ah_var.h
ah.h
esp_var.h
esp.h
ipcomp_var.h
ipcomp.h
ipip_var.h
ipsec6.h
ipsec_input.c
ipsec_mbuf.c
ipsec_osdep.h
ipsec_output.c Fix ipip_output() to always set *mp to NULL on failure, even if 'm' 2004-01-20 22:45:10 +00:00
ipsec.c o add missing break 2004-01-27 17:45:28 +00:00
ipsec.h Initial import of RFC 2385 (TCP-MD5) digest support. 2004-02-11 04:26:04 +00:00
key_debug.c
key_debug.h
key_var.h
key.c Fix a paste-o in key_cmpspidx_withmask(). 2004-06-22 17:17:44 +00:00
key.h
keydb.h
keysock.c Add required includes for post-sorwakeup() change to fix FAST_IPSEC 2004-06-23 01:58:22 +00:00
keysock.h
xform_ah.c
xform_esp.c change SYSINIT starting point to be consistent with other modules 2004-01-27 17:43:49 +00:00
xform_ipcomp.c change SYSINIT starting point to be consistent with other modules 2004-01-27 17:43:49 +00:00
xform_ipip.c Get rid of the RANDOM_IP_ID option and make it a sysctl. NetBSD 2004-08-14 15:32:40 +00:00
xform_tcp.c Fix a debugging printf snafu. 2004-04-20 14:53:35 +00:00
xform.h