CVS commit: src/sys/net/npf

Module Name:src Committed By: christos Date: Wed Jan 27 17:39:13 UTC 2021 Modified Files: src/sys/net/npf: npf_os.c Log Message: Don't silently ignore the errors from npfctl_run_op. We end up returning packets to userland that are missing required fields (like in rule_add

CVS commit: src/sys/net/npf

Module Name:src Committed By: christos Date: Mon Jan 25 17:18:55 UTC 2021 Modified Files: src/sys/net/npf: npf_conn.c npf_tableset.c Log Message: s/npf_config_lock/npf->config_lock/ in the comments To generate a diff of this commit: cvs rdiff -u -r1.32 -r1.33

CVS commit: src/sys/net/npf

Module Name:src Committed By: christos Date: Mon Jan 25 17:17:19 UTC 2021 Modified Files: src/sys/net/npf: npf_os.c Log Message: Fix locking issue: npf_default_pass needs to be called with the config lock held. To generate a diff of this commit: cvs rdiff -u -r1.19

CVS commit: src/sys/net/npf

Module Name:src Committed By: riastradh Date: Fri Aug 28 06:35:51 UTC 2020 Modified Files: src/sys/net/npf: npf_portmap.c Log Message: npf: Remove harmless vestiges of debugging hacks. To generate a diff of this commit: cvs rdiff -u -r1.6 -r1.7

CVS commit: src/sys/net/npf

Module Name:src Committed By: riastradh Date: Thu Aug 27 18:49:36 UTC 2020 Modified Files: src/sys/net/npf: npf_worker.c Log Message: npf: Don't stop early after sleeping and before processing instances. We already check winfo->exit below, after processing instances and

CVS commit: src/sys/net/npf

Module Name:src Committed By: maxv Date: Tue Aug 18 07:53:24 UTC 2020 Modified Files: src/sys/net/npf: npf_os.c Log Message: Add missing cases, to prevent memory corruption. Reported-by: syzbot+f8b8a689a3560dda2...@syzkaller.appspotmail.com To generate a diff of this

CVS commit: src/sys/net/npf

Module Name:src Committed By: rmind Date: Sat May 30 20:54:54 UTC 2020 Modified Files: src/sys/net/npf: npf_worker.c Log Message: npf_worker_sys{init,fini}: initialize/destroy the exit_cv condvar. To generate a diff of this commit: cvs rdiff -u -r1.8 -r1.9

CVS commit: src/sys/net/npf

Module Name:src Committed By: christos Date: Wed Feb 12 01:34:55 UTC 2020 Modified Files: src/sys/net/npf: npf_ruleset.c Log Message: PR/54950: Lloyd Parkes: Avoid NULL deref. To generate a diff of this commit: cvs rdiff -u -r1.49 -r1.50 src/sys/net/npf/npf_ruleset.c

CVS commit: src/sys/net/npf

Module Name:src Committed By: riastradh Date: Sat Dec 14 15:21:51 UTC 2019 Modified Files: src/sys/net/npf: npf_conndb.c Log Message: Skip npf_config_sync if nothing to do. Saves an unnecessary pserialize_perform every second. To generate a diff of this commit: cvs

CVS commit: src/sys/net/npf

Module Name:src Committed By: mrg Date: Wed Feb 27 21:37:24 UTC 2019 Modified Files: src/sys/net/npf: npf_os.c Log Message: work around a GCC 7 vs sparc (32 bit) issue i haven't figured out the real cause of yet. mark npf_init() as non-static. for a yet-unknown reason,

CVS commit: src/sys/net/npf

Module Name:src Committed By: christos Date: Mon Oct 29 15:37:07 UTC 2018 Modified Files: src/sys/net/npf: npf_ctl.c npf_state.c Log Message: We need to have rump tests work in two modes: 1. npf unit tests. In this case only the npf subsystem is created and

CVS commit: src/sys/net/npf

Module Name:src Committed By: christos Date: Fri Oct 26 23:35:06 UTC 2018 Modified Files: src/sys/net/npf: npf_state.c Log Message: enable the sampling function for _NPF_RUMP To generate a diff of this commit: cvs rdiff -u -r1.19 -r1.20 src/sys/net/npf/npf_state.c

CVS commit: src/sys/net/npf

Module Name:src Committed By: rmind Date: Sat Sep 29 18:00:36 UTC 2018 Modified Files: src/sys/net/npf: npf_sendpkt.c Log Message: npf_return_tcp: fix no-INET6 case. To generate a diff of this commit: cvs rdiff -u -r1.20 -r1.21 src/sys/net/npf/npf_sendpkt.c Please note

CVS commit: src/sys/net/npf

Module Name:src Committed By: christos Date: Wed Sep 12 21:58:38 UTC 2018 Modified Files: src/sys/net/npf: npf.c npf_alg.c npf_impl.h Log Message: Fix lockdebug diagnostic error of trying to acquire an rw_lock from a pserialized active context. From riastradh@ To

CVS commit: src/sys/net/npf

Module Name:src Committed By: maxv Date: Fri Aug 31 14:16:07 UTC 2018 Modified Files: src/sys/net/npf: npf_ext_normalize.c npf_impl.h npf_inet.c Log Message: Introduce npf_set_mss(). When the MSS is not 16bit-aligned, it sets: 0 8 16 24

CVS commit: src/sys/net/npf

Module Name:src Committed By: maxv Date: Tue Jul 10 16:49:09 UTC 2018 Modified Files: src/sys/net/npf: npf_handler.c Log Message: Modify the logic in npf_reassembly. Don't call nbuf_reset, we don't need it since we don't read the IPv4 header anymore. If

CVS commit: src/sys/net/npf

Module Name:src Committed By: maxv Date: Tue Jul 10 15:25:01 UTC 2018 Modified Files: src/sys/net/npf: npf_handler.c Log Message: Simplify the pointer handling. Set *mp = NULL at the beginning of the function. In npf_reassembly, pass a simple boolean instead of a ** mbuf

CVS commit: src/sys/net/npf

Module Name:src Committed By: maxv Date: Tue Jul 10 14:04:07 UTC 2018 Modified Files: src/sys/net/npf: npf_handler.c Log Message: Update the pointer when fast-kicking, because it may have been freed. Before my changes the nonsensical pointer ininitialization held, but

CVS commit: src/sys/net/npf

Module Name:src Committed By: maxv Date: Tue Jul 10 12:31:46 UTC 2018 Modified Files: src/sys/net/npf: npf_handler.c Log Message: Set con = NULL just once, instead of doing it in each branch. To generate a diff of this commit: cvs rdiff -u -r1.39 -r1.40

CVS commit: src/sys/net/npf

Module Name:src Committed By: maxv Date: Fri May 11 13:52:49 UTC 2018 Modified Files: src/sys/net/npf: npf_nat.c Log Message: Improve comment, it's not just IPv4. To generate a diff of this commit: cvs rdiff -u -r1.42 -r1.43 src/sys/net/npf/npf_nat.c Please note that

CVS commit: src/sys/net/npf

Module Name:src Committed By: christos Date: Mon Apr 23 15:36:30 UTC 2018 Modified Files: src/sys/net/npf: npf_nat.c Log Message: PR/53207: David Binderman: Use logical and To generate a diff of this commit: cvs rdiff -u -r1.41 -r1.42 src/sys/net/npf/npf_nat.c Please

CVS commit: src/sys/net/npf

Module Name:src Committed By: mrg Date: Tue Apr 10 04:29:57 UTC 2018 Modified Files: src/sys/net/npf: npf_sendpkt.c Log Message: apply some INET6 so this compiles in INET6-less kernels again. To generate a diff of this commit: cvs rdiff -u -r1.18 -r1.19

CVS commit: src/sys/net/npf

Module Name:src Committed By: maxv Date: Sun Apr 8 05:51:46 UTC 2018 Modified Files: src/sys/net/npf: npf_inet.c Log Message: Fix bug I introduced in previous commit. To generate a diff of this commit: cvs rdiff -u -r1.49 -r1.50 src/sys/net/npf/npf_inet.c Please note

CVS commit: src/sys/net/npf

Module Name:src Committed By: maxv Date: Sat Apr 7 09:20:25 UTC 2018 Modified Files: src/sys/net/npf: npf_ext_normalize.c Log Message: Fix an inverted logic. nbuf_cksum_barrier returns true when the direction is PFIL_OUT and TSO is active; that is to say, it returns

CVS commit: src/sys/net/npf

Module Name:src Committed By: maxv Date: Sat Apr 7 09:06:27 UTC 2018 Modified Files: src/sys/net/npf: npf_inet.c Log Message: Rewrite npf_fetch_tcpopts: * Instead of doing several nbuf_advance/nbuf_ensure_contig and playing with gotos, fetch the TCP options only

CVS commit: src/sys/net/npf

Module Name:src Committed By: maxv Date: Fri Apr 6 14:50:55 UTC 2018 Modified Files: src/sys/net/npf: npf_inet.c Log Message: If we're trying to read the mss on a packet that for some reason has two MAXSEG options, we find ourselves patching the second option with the

CVS commit: src/sys/net/npf

Module Name:src Committed By: maxv Date: Fri Mar 23 08:34:57 UTC 2018 Modified Files: src/sys/net/npf: npf_alg_icmp.c Log Message: In addition to checking L4 in the cache, here we also need to check the protocol. The NPF entry point does not ensure that ICMPv6

CVS commit: src/sys/net/npf

Module Name:src Committed By: maxv Date: Fri Mar 23 08:28:54 UTC 2018 Modified Files: src/sys/net/npf: npf_inet.c Log Message: If we fail to advance inside TCP/UDP/ICMPv4/ICMPv6, stop pretending L4 is unknown, and error out right away. This prevents bugs in machinery, if

CVS commit: src/sys/net/npf

Module Name:src Committed By: maxv Date: Thu Mar 22 12:16:11 UTC 2018 Modified Files: src/sys/net/npf: npf_alg_icmp.c Log Message: Ah, fix compilation. I tested my previous change by loading the kernel module from the filesystem, but the Makefile didn't have DIAGNOSTIC

CVS commit: src/sys/net/npf

Module Name:src Committed By: maxv Date: Thu Mar 22 09:04:25 UTC 2018 Modified Files: src/sys/net/npf: npf_inet.c Log Message: Retrieve the complete IPv4 header right away, and make sure we did retrieve the IPv6 option header we were iterating on. To generate a diff of

CVS commit: src/sys/net/npf

Module Name:src Committed By: maxv Date: Thu Mar 22 08:57:47 UTC 2018 Modified Files: src/sys/net/npf: npf_alg_icmp.c npf_inet.c Log Message: Change npf_cache_all so that it ensures the potential ICMP Query Id is in the nbuf. In such a way that we don't need to ensure

CVS commit: src/sys/net/npf

Module Name:src Committed By: maxv Date: Thu Mar 22 07:32:07 UTC 2018 Modified Files: src/sys/net/npf: npf_alg_icmp.c Log Message: Fix use-after-free. The nbuf can be reallocated as a result of caching 'enpc', so it is necessary to recache 'npc', otherwise it contains

CVS commit: src/sys/net/npf

Module Name:src Committed By: maxv Date: Wed Mar 21 15:36:28 UTC 2018 Modified Files: src/sys/net/npf: npf_inet.c Log Message: Add XXX (we don't handle IPv6 Jumbograms), and whitespace. To generate a diff of this commit: cvs rdiff -u -r1.43 -r1.44

CVS commit: src/sys/net/npf

Module Name:src Committed By: maxv Date: Wed Mar 21 10:08:16 UTC 2018 Modified Files: src/sys/net/npf: npf_inet.c Log Message: Don't read the L4 payload after IPPROTO_AH when handling IPv6 packets. AH must be considered as the payload, otherwise a block all

CVS commit: src/sys/net/npf

Module Name:src Committed By: maxv Date: Sat Mar 17 10:42:24 UTC 2018 Modified Files: src/sys/net/npf: npf_sendpkt.c Log Message: Set the scopes before calling icmp6_error(). This fixes a bug similar to the one I fixed in rev1.17: since the scopes were not set the packet

CVS commit: src/sys/net/npf

Module Name:src Committed By: maxv Date: Sat Mar 17 10:21:09 UTC 2018 Modified Files: src/sys/net/npf: npf_inet.c Log Message: Fix the IPv6 payload computation in npf_tcpsaw. It was incorrect, and this caused the "return-rst" rules to send back an RST with the wrong ACK

CVS commit: src/sys/net/npf

Module Name:src Committed By: maxv Date: Wed Mar 14 09:32:04 UTC 2018 Modified Files: src/sys/net/npf: npf_sendpkt.c Log Message: Fix the "return-rst" rule on IPv6 packets. The scopes needed to be set on the addresses before invoking ip6_output, because ip6_output needs

CVS commit: src/sys/net/npf

Module Name:src Committed By: maxv Date: Tue Mar 13 16:23:40 UTC 2018 Modified Files: src/sys/net/npf: npf_inet.c Log Message: Mmh, put back the RFC6946 check (about dummy fragments), otherwise NPF is not happy in npf_reassembly, because NPC_IPFRAG is again returned after

CVS commit: src/sys/net/npf

Module Name:src Committed By: maxv Date: Tue Mar 13 09:04:03 UTC 2018 Modified Files: src/sys/net/npf: npf_handler.c npf_inet.c Log Message: Fix two consecutive mistakes. The first mistake was npf_inet.c rev1.37: "Don't reassemble ipv6 fragments, instead treat

CVS commit: src/sys/net/npf

Module Name:src Committed By: maxv Date: Mon Mar 12 12:45:26 UTC 2018 Modified Files: src/sys/net/npf: npf_alg_icmp.c Log Message: Remove dead branches, 'npc' can't be NULL (and it is dereferenced earlier). To generate a diff of this commit: cvs rdiff -u -r1.25 -r1.26

CVS commit: src/sys/net/npf

Module Name:src Committed By: maxv Date: Thu Mar 8 07:54:14 UTC 2018 Modified Files: src/sys/net/npf: npf_inet.c Log Message: Switch nptr to uint8_t, and use nbuf_ensure_contig. Makes us use fewer magic values. To generate a diff of this commit: cvs rdiff -u -r1.38

CVS commit: src/sys/net/npf

Module Name:src Committed By: maxv Date: Thu Mar 8 07:06:13 UTC 2018 Modified Files: src/sys/net/npf: npf.h npf_handler.c npf_inet.c Log Message: Declare NPC_FMTERR, and use it to kick malformed packets. Several sanity checks are added in IPv6; after we see the first

CVS commit: src/sys/net/npf

Module Name:src Committed By: maxv Date: Fri Dec 15 21:00:26 UTC 2017 Modified Files: src/sys/net/npf: npf.h Log Message: Fix a vulnerability in NPF, that allows whatever incoming IPv6 packet to bypass a certain number of filtering rules. Basically there is an integer

CVS commit: src/sys/net/npf

Module Name:src Committed By: rmind Date: Sun Dec 10 01:18:21 UTC 2017 Modified Files: src/sys/net/npf: npf_ctl.c npf_impl.h npf_ruleset.c npf_worker.c Log Message: - npf_mk_rules: enforce unique names for the dynamic rulesets. - npf_worker_unregister: merge fix for the

CVS commit: src/sys/net/npf

Module Name:src Committed By: rmind Date: Sun Dec 10 00:07:36 UTC 2017 Modified Files: src/sys/net/npf: npf_alg_icmp.c npf_bpf.c npf_conn.c npf_conn.h npf_ext_normalize.c Log Message: - npf_cop_table: handle non-IP packets in the ether (fixes PR/52290). -

CVS commit: src/sys/net/npf

Module Name:src Committed By: ozaki-r Date: Mon Oct 30 03:02:35 UTC 2017 Modified Files: src/sys/net/npf: npf_ctl.c Log Message: Fix npfclt reload on rump kernels It fails because npfctl cannot get an errno when it calls ioctl to the (rump) kernel; npfctl (libnpf)

CVS commit: src/sys/net/npf

Module Name:src Committed By: pgoyette Date: Thu Jul 20 23:37:56 UTC 2017 Modified Files: src/sys/net/npf: npf_os.c Log Message: The nof module depends on some stuff from the bpf module, so set the required modules list accordingly. To generate a diff of this commit:

CVS commit: src/sys/net/npf

Module Name:src Committed By: christos Date: Wed May 17 18:56:12 UTC 2017 Modified Files: src/sys/net/npf: npf_ctl.c Log Message: Allow npf to be used "normally" from a rump kernel, not just from the test harness (problem reported by Frank Kardel) To generate a diff of

CVS commit: src/sys/net/npf

Module Name:src Committed By: christos Date: Fri Mar 10 02:21:37 UTC 2017 Modified Files: src/sys/net/npf: npf_tableset.c Log Message: fix MIN/MAX confusion. To generate a diff of this commit: cvs rdiff -u -r1.26 -r1.27 src/sys/net/npf/npf_tableset.c Please note that

CVS commit: src/sys/net/npf

Module Name:src Committed By: christos Date: Sun Feb 19 20:27:22 UTC 2017 Modified Files: src/sys/net/npf: npf_handler.c npf_inet.c Log Message: Don't reassemble ipv6 fragments, instead treat the first fragment as a regular packet (subject to filtering rules), and pass

CVS commit: src/sys/net/npf

Module Name:src Committed By: christos Date: Sun Feb 19 02:11:19 UTC 2017 Modified Files: src/sys/net/npf: npf_impl.h Log Message: forgot to commit this (new prototype) To generate a diff of this commit: cvs rdiff -u -r1.68 -r1.69 src/sys/net/npf/npf_impl.h Please note

CVS commit: src/sys/net/npf

Module Name:src Committed By: christos Date: Sat Feb 18 23:27:32 UTC 2017 Modified Files: src/sys/net/npf: npf_ext_log.c npf_if.c Log Message: provide a copy function used for logging that does not lock, but can return trash. To generate a diff of this commit: cvs rdiff

CVS commit: src/sys/net/npf

Module Name:src Committed By: mlelstv Date: Sat Feb 18 18:08:16 UTC 2017 Modified Files: src/sys/net/npf: npf_ext_log.c Log Message: npf_ifmap_getname requires the config to be locked. For now, just prevent the crash. To generate a diff of this commit: cvs rdiff -u

CVS commit: src/sys/net/npf

Module Name:src Committed By: christos Date: Sun Jan 29 00:15:54 UTC 2017 Modified Files: src/sys/net/npf: if_npflog.c npf.h npf_conn.c npf_conn.h npf_ctl.c npf_ext_log.c npf_ext_normalize.c npf_ext_rndblock.c npf_handler.c npf_impl.h npf_rproc.c

CVS commit: src/sys/net/npf

Module Name:src Committed By: ryo Date: Fri Jan 27 17:25:34 UTC 2017 Modified Files: src/sys/net/npf: npf_os.c Log Message: Don't hold softnet_lock if NET_MPSAFE. Some functions lock softnet_lock while waiting in pserialize_perform() in pfil_add_hook(). (e.g.

CVS commit: src/sys/net/npf

Module Name:src Committed By: rmind Date: Tue Jan 3 00:58:05 UTC 2017 Modified Files: src/sys/net/npf: npf_conf.c npf_ifaddr.c npf_impl.h npf_os.c Log Message: NPF: fix the interface table initialisation on load. To generate a diff of this commit: cvs rdiff -u -r1.10

CVS commit: src/sys/net/npf

Module Name:src Committed By: christos Date: Mon Jan 2 23:02:04 UTC 2017 Modified Files: src/sys/net/npf: npf_os.c Log Message: make this compile as a module. To generate a diff of this commit: cvs rdiff -u -r1.3 -r1.4 src/sys/net/npf/npf_os.c Please note that diffs

CVS commit: src/sys/net/npf

Module Name:src Committed By: christos Date: Wed Dec 28 21:55:04 UTC 2016 Modified Files: src/sys/net/npf: npf_impl.h npf_rproc.c npf_ruleset.c Log Message: export rprocs too so we don't lose them. To generate a diff of this commit: cvs rdiff -u -r1.64 -r1.65

CVS commit: src/sys/net/npf

Module Name:src Committed By: rmind Date: Mon Dec 26 23:59:48 UTC 2016 Modified Files: src/sys/net/npf: npf_os.c Log Message: Convert NPF to the latest pfil(9) changes. To generate a diff of this commit: cvs rdiff -u -r1.1 -r1.2 src/sys/net/npf/npf_os.c Please note

CVS commit: src/sys/net/npf

Module Name:src Committed By: rmind Date: Mon Dec 26 23:39:18 UTC 2016 Modified Files: src/sys/net/npf: npf.h Log Message: Bump NPF_VERSION to 19. To generate a diff of this commit: cvs rdiff -u -r1.52 -r1.53 src/sys/net/npf/npf.h Please note that diffs are not public

CVS commit: src/sys/net/npf

Module Name:src Committed By: rmind Date: Mon Dec 26 23:10:46 UTC 2016 Modified Files: src/sys/net/npf: npf_state_tcp.c Log Message: npf_tcp_fsm: fix for the NPF_TCPS_SYN_RECEIVED state. SYN re-transmission after SYN-ACK was seen by NPF should not terminate the

CVS commit: src/sys/net/npf

Module Name:src Committed By: rmind Date: Mon Dec 26 21:16:06 UTC 2016 Modified Files: src/sys/net/npf: lpm.c Log Message: Fix kmem_free() in hashmap_remove(). To generate a diff of this commit: cvs rdiff -u -r1.2 -r1.3 src/sys/net/npf/lpm.c Please note that diffs are

CVS commit: src/sys/net/npf

Module Name:src Committed By: rmind Date: Mon Dec 26 12:44:10 UTC 2016 Modified Files: src/sys/net/npf: lpm.c Log Message: Fix kmem_free() sizes in hashmap_rehash() and lpm_clear(). To generate a diff of this commit: cvs rdiff -u -r1.1 -r1.2 src/sys/net/npf/lpm.c

CVS commit: src/sys/net/npf

Module Name:src Committed By: christos Date: Sat Dec 10 22:09:50 UTC 2016 Modified Files: src/sys/net/npf: npf_conn.c Log Message: revert dir hack. To generate a diff of this commit: cvs rdiff -u -r1.20 -r1.21 src/sys/net/npf/npf_conn.c Please note that diffs are not

CVS commit: src/sys/net/npf

Module Name:src Committed By: christos Date: Sat Dec 10 19:05:46 UTC 2016 Modified Files: src/sys/net/npf: npf.h npf_conn.c npf_conn.h Log Message: Welcome to version 18: - Connection state keys are not stored and loaded using the logical key contents. - connection

CVS commit: src/sys/net/npf

Module Name:src Committed By: christos Date: Sat Dec 10 19:02:18 UTC 2016 Modified Files: src/sys/net/npf: npf_rproc.c Log Message: Add missing extcalls array. This is currently a no-op, but this is what userland does too. Allows npfctl save; npfctl load to work again.

CVS commit: src/sys/net/npf

Module Name:src Committed By: kre Date: Sat Dec 10 09:26:16 UTC 2016 Modified Files: src/sys/net/npf: npf_conn.c Log Message: Remove what looks like remnant (partly removed already) debug code, which could not possibly compile as it was. To generate a diff of this

CVS commit: src/sys/net/npf

Module Name:src Committed By: christos Date: Sat Dec 10 05:41:10 UTC 2016 Modified Files: src/sys/net/npf: npf.c npf.h npf_conn.c npf_conn.h npf_ctl.c npf_impl.h Log Message: add functionality to lookup a nat entry from the connection list. To generate a diff of this

CVS commit: src/sys/net/npf

Module Name:src Committed By: christos Date: Fri Dec 9 02:40:38 UTC 2016 Modified Files: src/sys/net/npf: files.npf npf_impl.h npf_tableset.c Added Files: src/sys/net/npf: lpm.c lpm.h Removed Files: src/sys/net/npf: npf_tableset_ptree.c Log Message: This

CVS commit: src/sys/net/npf

Module Name:src Committed By: christos Date: Fri Dec 9 02:26:36 UTC 2016 Modified Files: src/sys/net/npf: npf.h Log Message: make this compile again To generate a diff of this commit: cvs rdiff -u -r1.48 -r1.49 src/sys/net/npf/npf.h Please note that diffs are not

CVS commit: src/sys/net/npf

Module Name:src Committed By: rmind Date: Thu Dec 8 23:07:12 UTC 2016 Modified Files: src/sys/net/npf: npf.h npf_conn.c npf_handler.c npf_mbuf.c Log Message: NPF: adjust the 'stateful-ends' mechanism to tag the packets and thus pass-through them on other interfaces. Per

CVS commit: src/sys/net/npf

Module Name:src Committed By: jnemeth Date: Mon Nov 7 18:16:07 UTC 2016 Modified Files: src/sys/net/npf: npf_inet.c Log Message: fixup misplaced #endif To generate a diff of this commit: cvs rdiff -u -r1.34 -r1.35 src/sys/net/npf/npf_inet.c Please note that diffs are

CVS commit: src/sys/net/npf

Module Name:src Committed By: christos Date: Wed Apr 20 15:46:08 UTC 2016 Modified Files: src/sys/net/npf: npf_tableset.c Log Message: /32 and /128 are valid netmasks. To generate a diff of this commit: cvs rdiff -u -r1.22 -r1.23 src/sys/net/npf/npf_tableset.c Please

CVS commit: src/sys/net/npf

Module Name:src Committed By: mrg Date: Fri Mar 18 10:09:46 UTC 2016 Modified Files: src/sys/net/npf: npf_inet.c npf_mbuf.c npf_nat.c Log Message: minimal changes necessary to link into an INET6-less kernel. To generate a diff of this commit: cvs rdiff -u -r1.33 -r1.34

CVS commit: src/sys/net/npf

Module Name:src Committed By: mlelstv Date: Thu Dec 17 12:16:21 UTC 2015 Modified Files: src/sys/net/npf: npf_mbuf.c Log Message: handle delayed cksums also for ipv6 To generate a diff of this commit: cvs rdiff -u -r1.14 -r1.15 src/sys/net/npf/npf_mbuf.c Please note

CVS commit: src/sys/net/npf

Module Name:src Committed By: mlelstv Date: Thu Dec 17 12:17:13 UTC 2015 Modified Files: src/sys/net/npf: npf_inet.c Log Message: make DDB print ipv6 addresses too To generate a diff of this commit: cvs rdiff -u -r1.32 -r1.33 src/sys/net/npf/npf_inet.c Please note that

CVS commit: src/sys/net/npf

Module Name:src Committed By: christos Date: Thu Oct 29 15:19:43 UTC 2015 Modified Files: src/sys/net/npf: npf.c Log Message: Simplify even further and fix non-modular kernels: We cannot use the init at attach() trick, because other npf ext modules will load before the

CVS commit: src/sys/net/npf

Module Name:src Committed By: christos Date: Tue Oct 27 19:31:55 UTC 2015 Modified Files: src/sys/net/npf: npf.c Log Message: simplify (and fix) logic. To generate a diff of this commit: cvs rdiff -u -r1.28 -r1.29 src/sys/net/npf/npf.c Please note that diffs are not

CVS commit: src/sys/net/npf

Module Name:src Committed By: christos Date: Tue Oct 27 19:58:09 UTC 2015 Modified Files: src/sys/net/npf: npf.c Log Message: modules don't define MODULAR. To generate a diff of this commit: cvs rdiff -u -r1.29 -r1.30 src/sys/net/npf/npf.c Please note that diffs are

CVS commit: src/sys/net/npf

Module Name:src Committed By: christos Date: Wed Oct 28 01:54:10 UTC 2015 Modified Files: src/sys/net/npf: npf_ctl.c Log Message: remove bogus KASSERT, there are error paths that don't satisfy this. XXX: should improve error reporting to userland. To generate a diff of

CVS commit: src/sys/net/npf

Module Name:src Committed By: martin Date: Mon Oct 19 09:28:25 UTC 2015 Modified Files: src/sys/net/npf: npf.c Log Message: Ifdef npf_init() the same way as all it's callers are protected. To generate a diff of this commit: cvs rdiff -u -r1.27 -r1.28

CVS commit: src/sys/net/npf

Module Name:src Committed By: jmcneill Date: Sun Oct 18 20:39:53 UTC 2015 Modified Files: src/sys/net/npf: npf.c Log Message: Defer initialization of built-in npf module until other pseudo-devices are initialized. MODULE_CLASS_DRIVER modules are now initialized before

CVS commit: src/sys/net/npf

Module Name:src Committed By: christos Date: Mon Oct 19 00:29:57 UTC 2015 Modified Files: src/sys/net/npf: npf.c Log Message: Fix the code so that it works in all 3 cases: non-modular, modular/builtin, modular/filesystem. In the non-modular case we initialize through

CVS commit: src/sys/net/npf

Module Name:src Committed By: christos Date: Sun Oct 18 18:48:01 UTC 2015 Modified Files: src/sys/net/npf: npf.c Log Message: needs to be driver, otherwise it will not load! To generate a diff of this commit: cvs rdiff -u -r1.24 -r1.25 src/sys/net/npf/npf.c Please note

CVS commit: src/sys/net/npf

Module Name:src Committed By: jmcneill Date: Sat Oct 17 13:53:40 UTC 2015 Modified Files: src/sys/net/npf: npf.c Log Message: mark this MODULE_CLASS_MISC as npf_init cannot run when builtin driver modules are initialized To generate a diff of this commit: cvs rdiff -u

CVS commit: src/sys/net/npf

Module Name:src Committed By: rmind Date: Fri Mar 20 23:36:28 UTC 2015 Modified Files: src/sys/net/npf: npf_ctl.c npf_ruleset.c Log Message: NPF: replace the TAILQ of the dynamic rules with a linked list and fix the inheriting of the active dynamic rules during the

CVS commit: src/sys/net/npf

Module Name:src Committed By: rmind Date: Thu Feb 5 22:04:03 UTC 2015 Modified Files: src/sys/net/npf: npf_conn.c Log Message: npf_conn_establish: fix the previous change - drop the reference on error. To generate a diff of this commit: cvs rdiff -u -r1.15 -r1.16

CVS commit: src/sys/net/npf

Module Name:src Committed By: rmind Date: Sun Feb 1 22:41:22 UTC 2015 Modified Files: src/sys/net/npf: npf_conn.c Log Message: - npf_conn_establish: remove a rare race condition when we might destroy a connection when it is still referenced by another thread. -

CVS commit: src/sys/net/npf

Module Name:src Committed By: christos Date: Tue Dec 30 19:11:44 UTC 2014 Modified Files: src/sys/net/npf: npf_nat.c Log Message: Don't forget to destroy the mutex before freeing the nat struct on a failed load. XXX: pullup -7 To generate a diff of this commit: cvs

CVS commit: src/sys/net/npf

Module Name:src Committed By: rmind Date: Sat Dec 20 16:19:43 UTC 2014 Modified Files: src/sys/net/npf: npf_conn.c npf_conn.h npf_nat.c Log Message: NPF: set the connection flags atomically in the post-creation logic and fix a tiny race condition window. Might fix

CVS commit: src/sys/net/npf

Module Name:src Committed By: rmind Date: Sun Nov 30 00:40:55 UTC 2014 Modified Files: src/sys/net/npf: npf_conn.c npf_conn.h npf_nat.c npf_ruleset.c Log Message: NPF: - npf_nat_import: take the port only if using the portmap. - Sprinkle some comments and asserts. To

CVS commit: src/sys/net/npf

Module Name:src Committed By: rmind Date: Sun Nov 30 01:37:53 UTC 2014 Modified Files: src/sys/net/npf: npf_conf.c npf_impl.h npf_nat.c npf_ruleset.c Log Message: - npf_config_load: if loading the connections, do not perform any actice NAT policy take over or or portmap

CVS commit: src/sys/net/npf

Module Name:src Committed By: rmind Date: Wed Nov 26 21:25:35 UTC 2014 Modified Files: src/sys/net/npf: npf_nat.c npf_ruleset.c Log Message: NPF: fix the reference counting and share the active NAT portmap correctly when performing the reload. Should fixes PR/49412,

CVS commit: src/sys/net/npf

Module Name:src Committed By: rmind Date: Sun Aug 24 20:36:30 UTC 2014 Modified Files: src/sys/net/npf: npf_conn.c npf_ctl.c npf_nat.c Log Message: - npf_conn_import: add a missing stat counter increment. - npf_nat_import: add a missing reference and make a comment. To

CVS commit: src/sys/net/npf

Module Name:src Committed By: rmind Date: Mon Aug 11 01:54:13 UTC 2014 Modified Files: src/sys/net/npf: npf_conf.c npf_ctl.c npf_impl.h npf_rproc.c npf_ruleset.c npf_tableset.c Log Message: NPF: finish up the rework of npfctl_save() mechanism. To generate a

CVS commit: src/sys/net/npf

Module Name:src Committed By: rmind Date: Sat Jul 26 16:42:03 UTC 2014 Modified Files: src/sys/net/npf: npf_conn.c Log Message: npf_conn_conkey: fix a comment. To generate a diff of this commit: cvs rdiff -u -r1.8 -r1.9 src/sys/net/npf/npf_conn.c Please note that diffs

CVS commit: src/sys/net/npf

Module Name:src Committed By: rmind Date: Fri Jul 25 20:07:32 UTC 2014 Modified Files: src/sys/net/npf: npf_state_tcp.c Log Message: npf_tcp_inwindow: enable strict RST check by default. To generate a diff of this commit: cvs rdiff -u -r1.15 -r1.16

CVS commit: src/sys/net/npf

Module Name:src Committed By: rmind Date: Fri Jul 25 23:07:21 UTC 2014 Modified Files: src/sys/net/npf: npf_conn.c npf_conn.h npf_ctl.c Log Message: npf_mk_connlist: destroy the connections on error path. To generate a diff of this commit: cvs rdiff -u -r1.6 -r1.7

CVS commit: src/sys/net/npf

Module Name:src Committed By: rmind Date: Fri Jul 25 23:21:46 UTC 2014 Modified Files: src/sys/net/npf: npf_conn.c npf_conn.h Log Message: npf_conn_conkey: adjust to return the key length and add a comment describing the key layout. To generate a diff of this commit:

CVS commit: src/sys/net/npf

Module Name:src Committed By: rmind Date: Wed Jul 23 01:48:05 UTC 2014 Modified Files: src/sys/net/npf: npf.h Log Message: npf_iscached: add an assert. To generate a diff of this commit: cvs rdiff -u -r1.45 -r1.46 src/sys/net/npf/npf.h Please note that diffs are not

  1   2   >