src - OpenBSD base system

Age	Commit message (Collapse)	Author
2003-08-18	catch max-mss values > 65535, report by Gregory Steuck	Daniel Hartmeier

2003-08-18	typos; ho@	Markus Friedl
	note that ping is still not working on -current; however, SA/SPD/flow setup works for testing isakmpd/ipsec on a signle machine.
2003-08-16	more errx/warnx style \n errors; tom.cosgrove@arches-consulting.com	Theo de Raadt

2003-08-11	Dynamic select(2) support; deraadt@ OK	Todd C. Miller

2003-08-09	This patch remove the restriction that tables cannot be used in routing or	Cedric Berger
	redirection rules... The advantage of using tables in redirection/routing rules is not efficiency, in fact it will run slower than straight address pools. However, this brings a lot of flexibility to PF, allowing simple scripts/daemons to add/remove addresses from redirection/routing pools easily. This implementation support all table features, including cidr blocks and negated addresses. So specifying { 10.0.0.0/29 !10.0.0.0 !10.0.0.7 } will correctly round-robin between the six addresses: .1, .2, .3, .4, .5, .6. Tables can also be combined with simple addresses, so the following rule will work as expected: "nat on foo0 -> { 1.1.1.1 <bar> }" ok henning@ mcbride@
2003-08-09	new sentence, new line + small cleanup;	Jason McIntyre
	ok ho@
2003-08-08	refer to RFCs consistently (RFC XXXX);	Jason McIntyre

2003-08-08	Be more careful when using constant_lookup() in messages. Pointed out by	Hakan Olsson
	Jean-Francois Dive, although I opted for a slightly different patch.
2003-08-08	Fine grained selectors for Linux native IPsec. From Jean-Francois Dive.	Hakan Olsson

2003-08-07	add missing tags and make this compile with debug.	Federico G. Schwindt

2003-08-06	Remove some double semicolons (hmm, do two semis equal a maxi?).	Todd C. Miller
	I've skipped the GNU stuff for now. From Patrick Latifi.
2003-08-06	Remove an unused variable and plug a memory leak; Patrick Latifi	Todd C. Miller

2003-08-06	support ESP with cast/blowfish in KAME plattforms	Markus Friedl

2003-08-06	support ESP with cast/blowfish on KAME platforms	Markus Friedl

2003-08-06	ufs -> ffs as requested in pr3391. also rework part talking about	Ted Unangst
	slices/partitions to have more openbsd flavor. ok jmc@
2003-08-05	print info about procfs now that it's there to look at	Ted Unangst

2003-08-05	better wording for the -y option;	Jason McIntyre
	ok fgsch@ tedu@
2003-08-04	Not every suggested patch is perfect :)	Daniel Hartmeier
	ERRX() has two effects: the message printing and goto _error; which causes exit(1). While we don't want the message if pfctl was invoked with -n, we DO want to abort. Otherwise subsequent 'load anchor' statements will get executed, for instance, and the return value is handy for scripts.
2003-08-04	nuke paragraph about snapshots. we don't support them.	Federico G. Schwindt
	henning millert ok.
2003-08-04	don't whine about "cannot load ruleset" when ruleset load wasn't desired	Henning Brauer
	(with pfctl -n) Jared Yanovich <phirerunner@comcast.net>
2003-08-04	spelling, freebsd pr50979 via khalek on irc	Ted Unangst

2003-07-31	Make table tickets per-ruleset instead of global.	Cedric Berger
	Make table tickets u_int32_t for consistency with other parts of PF. Ok dhartmei@ henning@
2003-07-31	remove the old tree when we find a new ticket.	Kenjiro Cho
	this fixes printing obsolete (non-existent) queues. ok henning@
2003-07-30	Remove my email address from my entry in the AUTHORS section	Todd C. Miller

2003-07-30	NULL -> (char *)NULL in execle; ok millert@	Anil Madhavapeddy

2003-07-30	change SIOCDIFADDR/SIOCAIFADDR warnings into errors (now this has correct	Peter Valchev
	return code in certain cases); ok henning itojun
2003-07-29	more pretty	Ted Unangst

2003-07-29	If euid == 0 make datasize unlimited instead of cranking to the max	Todd C. Miller
	value returned by getrlimit(). Avoid resource limit issues when fscking very large filesystems.
2003-07-29	Remove space at end of line.	Cedric Berger
	Ok dhartmei@ henning@
2003-07-29	indent	Theo de Raadt

2003-07-29	spaces	Theo de Raadt

2003-07-29	off-by-one in a printf %s	Anil Madhavapeddy
	markus@ ok a while back
2003-07-28	tweak;	Jason McIntyre
	ok tedu@
2003-07-28	growfs	Ted Unangst

2003-07-28	introducing growfs, compliments of freebsd. cleaned up slightly to obey knf.	Ted Unangst
	requests/oks from many.
2003-07-28	rcsid should say openbsd. make 'em const while here.	Ted Unangst

2003-07-25	add sha2	Markus Friedl

2003-07-25	add sha2 support; ok ho@	Markus Friedl

2003-07-25	packet loss count in floating point (double). Wouter Clarie	Jun-ichiro itojun Hagino

2003-07-24	conform to RFC2367 on SADB_xx naming (local name must be prefixed with	Jun-ichiro itojun Hagino
	SADB_X_xx)
2003-07-24	hmac-sha2-{256,384,512} support in AH/ESP auth. markus ok	Jun-ichiro itojun Hagino

2003-07-24	make packet loss double and print using %.1lf; based on diff from jeffi@rcn.com	Theo de Raadt

2003-07-24	pull header from here	Theo de Raadt

2003-07-23	move junk (bad code, terrible APIs) to the only program that uses it;	Theo de Raadt
	millert ok
2003-07-21	KNF	Henning Brauer

2003-07-21	ld needs -Z flag since W^X. from marius erikson in pr3360. ok drahn@	Ted Unangst

2003-07-19	Simplify struct pf_pooladdr to include struct pf_addr_wrap directly	Cedric Berger
	instead of indirectly trough struct pf_rule_addr. Ryan McBride says: If I'm not mistaken, the code _used_ to use the ports in pf_rule_addr as well. The code was changed to fix some of the bugs with port ranges, but it was too late in the release cycle to make kernel API changes, so the structure was left as is. Needless to say: KERNEL/USERLAND SYNC REQUIRED. ok henning@ mcbride@
2003-07-18	Simplify handling of flags (-R, -N...). Remove PFCTL_FLAG_ALL.	Cedric Berger
	ok dhartmei@
2003-07-16	new default frag/block sizes.	Ted Unangst
	reminded by millert@
2003-07-16	remove default limit of 16 cylinders per group. it's now set to	Ted Unangst
	as many as fit with the other parameters given. change default frag size to 2048, bumping block size to 16k. from freebsd. ok deraadt@ and co.