svn commit: r211501 - in head/sys: modules modules/send netinet
anchie at fer.hr
Thu Aug 19 11:55:04 UTC 2010
A man page for the kernel side SeND, and an updated port with Secure
Neighbor Discovery application will follow soon.
Ana Kukec wrote:
> Author: anchie
> Date: Thu Aug 19 11:31:03 2010
> New Revision: 211501
> URL: http://svn.freebsd.org/changeset/base/211501
> MFp4: anchie_soc2009 branch:
> Add kernel side support for Secure Neighbor Discovery (SeND), RFC 3971.
> The implementation consists of a kernel module that gets packets from
> the nd6 code, sends them to user space on a dedicated socket and reinjects
> them back for further processing.
> Hooks are used from nd6 code paths to divert relevant packets to the
> send implementation for processing in user space. The hooks are only
> triggered if the send module is loaded. In case no user space
> application is connected to the send socket, processing continues
> normaly as if the module would not be loaded. Unloading the module
> is not possible at this time due to missing nd6 locking.
> The native SeND socket is similar to a raw IPv6 socket but with its own,
> internal pseudo-protocol.
> Approved by: bz (mentor)
> head/sys/modules/send/Makefile (contents, props changed)
> head/sys/netinet6/send.c (contents, props changed)
> head/sys/netinet6/send.h (contents, props changed)
More information about the svn-src-all