| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2010-01-13 | Remove random component of auto-generated table names in loaded rules. | Ryan Thomas McBride | |
| 2010-01-13 | typo in panic message | joshua stein | |
| 2010-01-13 | Change M_WAITOK --> M_WAITOK | M_CANFAIL | Charles Longeau | |
| With input from oga@ While there, remove dead assignment and newly created unused variable (found by LLVM/Clang Static Analyzer) ok oga@ krw@ | |||
| 2010-01-13 | Fix a couple of typos/mispellings in comments | Darren Tucker | |
| 2010-01-13 | match the 'use 127.0.0.1/8 instead of 127.0.0.1 for clarity' change in netstart | Todd T. Fries | |
| sure henning@ | |||
| 2010-01-12 | factor m_pulldown out of the message handlers up into pfsync_input now | David Gwynne | |
| that it knows how big the messages are. rework the message handlers to use the pfsync_subheader.len value to iterate over the message regions. deprecate the EOF subheader since trying to pulldown a 0 byte buffer is fail. ok mcbride@ sperreault@ | |||
| 2010-01-12 | bring sd.c r1.180 over to the other drivers now using the antisemaphore, | David Gwynne | |
| ie, dont clear the WAITING flag when restarting the xxstart loops. | |||
| 2010-01-12 | Add input and user protocol hook to handle GRE packets by pipex. | YASUOKA Masahiko | |
| ok @dlg | |||
| 2010-01-12 | when generating rdr rules, ensure the nat address is PF_ADDR_NONE to avoid | David Gwynne | |
| confusing pf. | |||
| 2010-01-12 | Update to ncurses 5.7, with local changes reapplied. | Nicholas Marriott | |
| This is around eight years worth of changes (previously we were around ncurses 5.2), too many to list - many bug fixes and also a few new functions. A major bump for libcurses, libpanel, libform and libmenu. ok deraadt | |||
| 2010-01-12 | save errno wrapping in a signal handler | Theo de Raadt | |
| 2010-01-12 | check for bogus clock ticks sent by the device; helps tracking | Alexandre Ratchov | |
| bugs in device drivers. | |||
| 2010-01-12 | When attaching a new stream, if the "extra" latency is zero, then | Alexandre Ratchov | |
| don't trigger a zero-length clock tick. Fixes duplicate start ticks seen by full-duplex clients. | |||
| 2010-01-12 | Fix for a legacy free PC, where the keyboard controller doesn't behave. | Dale Rahn | |
| Clues on how to fix it from miod. ok miod@, Sure deraadt@ | |||
| 2010-01-12 | allow 'update-only' installs | Marc Espie | |
| 2010-01-12 | sync comment with reality, -f won't be documented. | Jasper Lievisse Adriaanse | |
| as discussed with jmc@, otto@ and millert@ ok otto@ millert@ | |||
| 2010-01-12 | We actually have to keep the translate/route spec addresses around after | Ryan Thomas McBride | |
| collapsing into tables, so that we can handle all possible address family expansions. | |||
| 2010-01-12 | better word MSS in pf.conf.5, from Lars Nooden; | Jason McIntyre | |
| the changes in pppoe.4 are just to keep things consistent... | |||
| 2010-01-12 | Set roundrobin flag correctly, and don't treat a bare interface | Ryan Thomas McBride | |
| like a dynamic one in the routespec. | |||
| 2010-01-12 | Only print route specs with @if notation if there is an IP address. | Ryan Thomas McBride | |
| 2010-01-12 | no nat is no longer legal | Ryan Thomas McBride | |
| convert nat/rdr/binat rules to nat-to/rdr-to/binat-to | |||
| 2010-01-12 | { if0, if1 } is ambiguous in a route spec, and this should have been | Ryan Thomas McBride | |
| rejected before (I'm surprised this worked) | |||
| 2010-01-12 | nat-anchor, rdr-anchor, binat-anchor are no longer legal in the grammar. | Ryan Thomas McBride | |
| 2010-01-12 | Add restrictions to make @if illegal in outside of routing specs; | Ryan Thomas McBride | |
| Fix binat-to sanity checks. | |||
| 2010-01-12 | Unbreak 10/8 and friends. | Ryan Thomas McBride | |
| 2010-01-12 | Fix some issues in redir spec handling, discovered thanks to dlg testing | Ryan Thomas McBride | |
| - purge irrelevant addresses from the lists before collapsing - ensure the lists are freed after they're collapsed - more careful ifname copying, avoiding double-free / use-after-free traps | |||
| 2010-01-12 | delete more left-over stuff from vether development | Theo de Raadt | |
| 2010-01-12 | the bridge does bpf for us, so we do not need bpf.h | Theo de Raadt | |
| 2010-01-12 | delete the unused debug macros | Theo de Raadt | |
| 2010-01-12 | do not need rndvar.h anymore | Theo de Raadt | |
| 2010-01-12 | sync | Theo de Raadt | |
| 2010-01-12 | bump this to updater, so that progress is shown again. | Marc Espie | |
| 2010-01-12 | check the new pfsync_subheader len field on input. | David Gwynne | |
| this makes sure there is enough of the message to try and parse it, and allows implementations to skip past regions prefixed by unknown subheaders. based on discussion with mcbride@ deraadt@ and simon perreault | |||
| 2010-01-12 | more auto-cache goodness | Marc Espie | |
| 2010-01-12 | dont let the antisemaphore clear the WAITING flag so NO_CCB doesnt cause | David Gwynne | |
| us to loop forever. follow sdstart through to to an adapters scsi_cmd handler and assume that handler returns NO_CCB to enjoy the bug in full. ok kettenis@ krw@ beck@ | |||
| 2010-01-12 | Add explicit stat so we reliably detect nologin with bad perms. ok djm markus | Darren Tucker | |
| 2010-01-12 | the comment is right, this can indeed go away. | Jasper Lievisse Adriaanse | |
| it's unused inside libkvm, and nothing else is allowed to use it. ok guenther@ "sure" deraadt@ | |||
| 2010-01-12 | two corrections from David A. Holland (netbsd -r1.24 of calendar.history); | Jason McIntyre | |
| 2010-01-12 | tweak previous; | Jason McIntyre | |
| 2010-01-12 | when setting up lo0 use 127.0.0.1/8 instead of 127.0.0.1 for clarity and | Henning Brauer | |
| correctness. it's not 1992 any more, kids. ok mcbride dlg krw | |||
| 2010-01-12 | After calling pipex_pppoe_input(), we must goto done to restore the spl. | YASUOKA Masahiko | |
| ok mcbride@ | |||
| 2010-01-12 | Add TCP/UDP checksum display for v6 and clean up the checksum | Christian Weisgerber | |
| calculation. Mostly from tcpdump.org; ok jsing@ | |||
| 2010-01-12 | Remove simple_unlock() that is mistakenly introduced and add required | YASUOKA Masahiko | |
| splx(). | |||
| 2010-01-12 | Since ifinit() is now safe to be called earlier, call it just before | Theo de Raadt | |
| configure(), since some upcoming changes will require it. ok henning | |||
| 2010-01-12 | Move initialization of the MCLGETI ticker to mbinit(), instead of ifinit() | Theo de Raadt | |
| ok henning | |||
| 2010-01-12 | Unify the various fake ethernet generators as ether_fakeaddr() which | Theo de Raadt | |
| is safe for both hardware devices and virtual devices ok mpf, kettenis, moaning and groaning and slow acceptance from mcbride XXX should loop checking for uniqueness after new henning diff goes in | |||
| 2010-01-12 | Don't leak @if0 format routing host names, pointed out by claudio. | Ryan Thomas McBride | |
| 2010-01-12 | First pass at removing the 'pf_pool' mechanism for translation and routing | Ryan Thomas McBride | |
| actions. Allow interfaces to be specified in special table entries for the routing actions. Lists of addresses can now only be done using tables, which pfctl will generate automatically from the existing syntax. Functionally, this deprecates the use of multiple tables or dynamic interfaces in a single nat or rdr rule. ok henning dlg claudio | |||
| 2010-01-12 | Remove bpfdetach() call right in front of the if_detach() call since | Claudio Jeker | |
| bpfdetach() will be called in if_detach(). Diff by Gleydson Soares | |||
| 2010-01-12 | Delete unused structures. Pointed out by deraadt@. | YASUOKA Masahiko | |
| ok mcbride@ | |||
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |