1
0
mirror of https://git.FreeBSD.org/src.git synced 2024-12-18 10:35:55 +00:00
freebsd/sys/net
Bjoern A. Zeeb 19ad9831df Add sysctls to if_enc(4) to control whether the firewalls or
bpf will see inner and outer headers or just inner or outer
headers for incoming and outgoing IPsec packets.

This is useful in bpf to not have over long lines for debugging
or selcting packets based on the inner headers.
It also properly defines the behavior of what the firewalls see.

Last but not least it gives you if_enc(4) for IPv6 as well.

[ As some auxiliary state was not available in the later
  input path we save it in the tdbi. That way tcpdump can give a
  consistent view of either of (authentic,confidential) for both
  before and after states. ]

Discussed with:	thompsa (2007-04-25, basic idea of unifying paths)
Reviewed by:	thompsa, gnn
2007-11-28 22:33:53 +00:00
..
bpf_filter.c Make the type of the memory used by the BPF filter unsigned, so it 2007-09-13 09:00:32 +00:00
bpf_jitter.c
bpf_jitter.h
bpf.c Merge first in a series of TrustedBSD MAC Framework KPI changes 2007-10-24 19:04:04 +00:00
bpf.h Additions from libpcap 0.9.8 unbreak the build. 2007-10-21 13:23:32 +00:00
bpfdesc.h Remove the now-unused NET_{LOCK,UNLOCK,ASSERT}_GIANT() macros, which 2007-08-06 14:26:03 +00:00
bridgestp.c If the STP state machine is stopped then clear the bridge-id and root-id. 2007-08-18 12:06:13 +00:00
bridgestp.h - Ensure the path cost does not exceed 65535 in legacy STP mode. 2007-08-04 21:09:04 +00:00
bsd_comp.c Merge first in a series of TrustedBSD MAC Framework KPI changes 2007-10-24 19:04:04 +00:00
ethernet.h Use a uint16_t type for the vlan tag rather an int. 2007-10-18 21:52:31 +00:00
fddi.h
firewire.h
ieee8023ad_lacp.c Use the safer callout_init_rw() to allow the softclock to grab the 2007-11-21 05:28:49 +00:00
ieee8023ad_lacp.h Allow the LACP state to be queried from userland which at the moment is the 2007-07-05 09:18:57 +00:00
if_arc.h
if_arcsubr.c
if_arp.h
if_atm.h
if_atmsubr.c Merge first in a series of TrustedBSD MAC Framework KPI changes 2007-10-24 19:04:04 +00:00
if_bridge.c 1) dummynet_io() declaration has changed. 2007-11-06 23:01:42 +00:00
if_bridgevar.h Add an option to limit the number of source MACs that can be behind a bridge 2007-11-04 08:32:27 +00:00
if_clone.c
if_clone.h
if_disc.c Add a comment explaining why disc(4) bears the IFF_LOOPBACK flag. 2007-10-27 19:57:41 +00:00
if_dl.h
if_edsc.c Give a hint that softc can contain many things besides ifp. 2007-03-26 09:05:10 +00:00
if_ef.c
if_enc.c Add sysctls to if_enc(4) to control whether the firewalls or 2007-11-28 22:33:53 +00:00
if_ethersubr.c 1) dummynet_io() declaration has changed. 2007-11-06 23:01:42 +00:00
if_faith.c
if_fddisubr.c Merge first in a series of TrustedBSD MAC Framework KPI changes 2007-10-24 19:04:04 +00:00
if_fwsubr.c Merge first in a series of TrustedBSD MAC Framework KPI changes 2007-10-24 19:04:04 +00:00
if_gif.c Merge first in a series of TrustedBSD MAC Framework KPI changes 2007-10-24 19:04:04 +00:00
if_gif.h
if_gre.c Sync comments to code: we now use priv_check() rather than suser() to 2007-06-26 23:01:01 +00:00
if_gre.h
if_iso88025subr.c Merge first in a series of TrustedBSD MAC Framework KPI changes 2007-10-24 19:04:04 +00:00
if_lagg.c Have the lagg interface generate link up/down events, the interface is marked 2007-11-25 06:30:46 +00:00
if_lagg.h Fix two panics in lagg. 2007-10-12 03:03:16 +00:00
if_llc.h
if_loop.c if_loop doesn't need to keep the list of lo(4) interfaces. Today 2007-10-27 18:25:53 +00:00
if_media.c
if_media.h remove IFM_IEEE80211_HT40PLUS and IFM_IEEE80211_HT40MINUS; they 2007-09-18 20:30:40 +00:00
if_mib.c
if_mib.h
if_ppp.c Merge first in a series of TrustedBSD MAC Framework KPI changes 2007-10-24 19:04:04 +00:00
if_ppp.h
if_pppvar.h
if_sl.c
if_slvar.h
if_sppp.h
if_spppfr.c
if_spppsubr.c Cast the ioctl define to the type of the variable being switched on. 2007-06-10 04:53:13 +00:00
if_stf.c Merge first in a series of TrustedBSD MAC Framework KPI changes 2007-10-24 19:04:04 +00:00
if_stf.h
if_tap.c Add a sysctl net.link.tap.up_on_open which defaults to zero; when it 2007-03-19 18:17:31 +00:00
if_tap.h
if_tapvar.h
if_tun.c Merge first in a series of TrustedBSD MAC Framework KPI changes 2007-10-24 19:04:04 +00:00
if_tun.h
if_types.h Remove IPX over IP tunneling support, which allows IPX routing over IP 2007-06-13 14:01:43 +00:00
if_var.h The struct if_data members ifi_recvquota and ifi_xmitquota have been 2007-05-16 18:37:37 +00:00
if_vlan_var.h
if_vlan.c The bridging output function puts the mbuf directly on the interfaces send 2007-10-18 21:22:15 +00:00
if.c Merge first in a series of TrustedBSD MAC Framework KPI changes 2007-10-24 19:04:04 +00:00
if.h Add IFCAP_LRO flag for drivers to announce their TCP Large Receive Offload 2007-06-11 20:08:11 +00:00
iso88025.h
netisr.c Remove the now-unused NET_{LOCK,UNLOCK,ASSERT}_GIANT() macros, which 2007-08-06 14:26:03 +00:00
netisr.h
pfil.c pfil(9) locking take 3: Switch to rmlock(9) 2007-11-25 12:41:47 +00:00
pfil.h pfil(9) locking take 3: Switch to rmlock(9) 2007-11-25 12:41:47 +00:00
pfkeyv2.h Commit the change from FAST_IPSEC to IPSEC. The FAST_IPSEC 2007-07-03 12:13:45 +00:00
ppp_comp.h
ppp_deflate.c
ppp_defs.h
ppp_tty.c
radix.c
radix.h
raw_cb.c
raw_cb.h
raw_usrreq.c
route.c Close a race when trying to lookup a gateway route in rt_check(). 2007-10-22 19:01:26 +00:00
route.h
rtsock.c Do not set the RTF_GATEWAY flag if RTF_LLINFO is set, it doesn't make much 2007-09-08 19:28:45 +00:00
slcompress.c
slcompress.h
slip.h
zlib.c
zlib.h