| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2003-07-11 | Better parsing and -v support for tables: | Cedric Berger | |
| - remove the tableaddrs and tableaddr yacc production and reuse host_list instead. - produce better error messages. - do not load addresses from external file when it is not required (like with -R option). - store initializers in a new node_tinit linked list before putting them into the address buffer (see next point). - add a new print_tabledef() function, which makes "pfctl -nvf" print something useful for table definitions, which in turn makes it possible to write better regress tests (see first chunk of the diff) and bring table definition consistant with other parsed rules. ok dhartmei@ | |||
| 2003-07-10 | vlan tag is 12-bits, not 16-bits | Anil Madhavapeddy | |
| jason@ ok | |||
| 2003-07-10 | Properly determine the capacity for LBA48 drives and also remove | Alexander Yurchenko | |
| the check for obsoleted bits in the identify word 0 since some drives put garbage there. Tested by Peter Galbavy <peter.galbavy@knowtion.net> and avsm@. | |||
| 2003-07-10 | Fix merging of host lists. | Cedric Berger | |
| ok dhartmei@ henning@ | |||
| 2003-07-10 | add missing includes | David Krause | |
| ok deraadt@ millert@ tedu@ | |||
| 2003-07-09 | - remove some .Ss's that worked around the old blank line bug | Jason McIntyre | |
| - remove some unnecessary .Pp's - mdoc a list ok ho@ | |||
| 2003-07-08 | - fix some lists/displays | Jason McIntyre | |
| - use .Dl for one-liners, rather than .Bd | |||
| 2003-07-07 | I never committed the fix for PR 3296, "Dump prints negative numbers for time" | Todd C. Miller | |
| Here it is... | |||
| 2003-07-07 | Repair last commit, the NUL termination of locname is required | Todd C. Miller | |
| for the strlcat() to work since the buffer gets used for each entry in a directory. | |||
| 2003-07-06 | error out instead of silently truncating command-line arguments if they | Anil Madhavapeddy | |
| are too long tdeval@ ok | |||
| 2003-07-06 | protos | Theo de Raadt | |
| 2003-07-06 | knf (cedric did not do it right) | Theo de Raadt | |
| 2003-07-06 | error out on hostspec overflow with a "hostname too long" instead of silently | Anil Madhavapeddy | |
| truncating; deraadt@ ok | |||
| 2003-07-06 | convert strn{cpy,cat}->strl{cpy,cat} in directory processing | Anil Madhavapeddy | |
| comments and from krw@, tdeval@, tedu@ | |||
| 2003-07-04 | KNF after cedric (grmpf) | Henning Brauer | |
| 2003-07-04 | KNF | Henning Brauer | |
| 2003-07-04 | allow for a "pass" modifier on translation rules: | Henning Brauer | |
| nat pass on $ext_if from $a to $b -> $ext_if when the pass modifier is given, the filter ruleset is _not_ evaluated but the packets matching this translation rule are passed unconditionally. ok dhartmei@ cedric@ markus@ | |||
| 2003-07-03 | use realpath() in helpers instead of doing it ourselves every time. | Ted Unangst | |
| also fixes pr1662. from otto moerbeek | |||
| 2003-07-03 | Bye bye atexit(), bye bye globals... | Cedric Berger | |
| The pfctl.c part will probably need some further improvements. ok henning@ | |||
| 2003-07-03 | This patch finally cleanup pfctl_table.c. No more global buffer, | Cedric Berger | |
| and a couple of parsing functions moved to parse.y or pfctl_parser where they belong. I also took the opportunity to replace "void" functions with exit(1) or err() inside by "int" functions, with the caller checking the return value for errors (much cleaner and an old request from Theo) ok dhartmei@ henning@ | |||
| 2003-07-03 | add documentation from mount(8) that "special" device must correspond | Jason McIntyre | |
| to a partition in the disklabel. suggested by Phil Pennock. ok krw@ millert@ | |||
| 2003-07-03 | strncpy->strlcpy | Anil Madhavapeddy | |
| krw@ ok | |||
| 2003-07-02 | convert strncat -> strlcat | Anil Madhavapeddy | |
| millert@ ok | |||
| 2003-07-02 | missing protos | Theo de Raadt | |
| 2003-07-02 | missing protos | Theo de Raadt | |
| 2003-07-01 | - add info from disklabel(8) documenting default label; suggested by millert@ | Jason McIntyre | |
| - .Xr disklabel 8 instead of .Em | |||
| 2003-06-30 | Buffer management functions. | Cedric Berger | |
| ok dhartmei@ | |||
| 2003-06-29 | Replace assert(3) calls with warnx(3), if the warning is relevant at all. | Daniel Hartmeier | |
| 2003-06-29 | tweak; | Jason McIntyre | |
| ok tedu@ | |||
| 2003-06-28 | No need to include the same header twice. | Cedric Berger | |
| Thanks to Max Laier. | |||
| 2003-06-28 | new sysctl, ddb.log | Ted Unangst | |
| 2003-06-27 | Reorg part I: move 3 functions out of pf_table.c to pf_radix.c | Cedric Berger | |
| ok dhartmei@ | |||
| 2003-06-27 | add an example for tagging | Henning Brauer | |
| help and ok jmc@ | |||
| 2003-06-26 | ansi and protos | Theo de Raadt | |
| 2003-06-26 | use err.h | Michael Shalayeff | |
| 2003-06-26 | const the rcsid, and make it say OpenBSD | Ted Unangst | |
| 2003-06-26 | bring protypes into scope. this requires some quirky handling, but in | Theo de Raadt | |
| the end everything is much clearer; ok tedu (itojun might like to see how ifconfig looks after this) | |||
| 2003-06-26 | rename -h files to -h avgfpdir in synopsis to match reality | Ted Unangst | |
| 2003-06-25 | proto repairs | Theo de Raadt | |
| 2003-06-25 | ansi | Theo de Raadt | |
| 2003-06-25 | remove junk protos | Theo de Raadt | |
| 2003-06-25 | allow bridge filter rules to specify a tag. | Henning Brauer | |
| if a packet matches such a rule it is tagged accordingly and pf can filter based on that tag. this allows, for example, bridge to be used as classifier for pf, and thus gives all the power of pf based on mac address filters. please note that currently the bridge filters only apply to packets which are not destined for the local host. ok deraadt@ jason@ dhartmei@ | |||
| 2003-06-24 | clarify that -u only changes the options specified on the command line; | Jason McIntyre | |
| from henning on a mailing list somewhere; ok henning@ | |||
| 2003-06-23 | Enable wicontrol build on sparc. | Miod Vallat | |
| 2003-06-21 | add CAVEATS: disklabel only supports 15 partitions, excluding `c'; | Jason McIntyre | |
| from a thread on misc@; wording, help, and ok nick@ | |||
| 2003-06-21 | fflush(stdout) in pfctl -vvsq endless output. | Daniel Hartmeier | |
| 2003-06-21 | count packets and bidirectionally on state entries, allowing for fine-grained | Damien Miller | |
| traffic reporting w/ pfsync; ok dhartmei@ Note: ABI change (new fields in struct pf_state), requires a rebuild of pfctl and tcpdump. | |||
| 2003-06-20 | some cleanings recommended by lint; dhartmei ok | Theo de Raadt | |
| 2003-06-20 | Be a bit more verbose when we give up on ever seeing a response to the | Hakan Olsson | |
| last message we sent out. In case we initiated the exchange, one possible and common reason is a network level problem (pf, routing, whatnot), if we're the responder, there is also the possibility we were scanned by something like ike-scan. markus@ ok. | |||
| 2003-06-20 | use .Bk/.Ek to keep SYNOPSIS tidy; | Jason McIntyre | |
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |