index
:
src
cvs/HEAD
kms/intel
kms/radeon
master
OpenBSD base system
summary
refs
log
tree
commit
diff
log msg
author
committer
range
path:
root
/
sys
/
net
/
pf.c
Age
Commit message (
Expand
)
Author
2023-05-03
Remove net lock from DIOCGETRULESET and DIOCGETRULESETS
Klemens Nanni
2023-04-28
Relax the "pass all" rule so all forms of neighbor advertisements are allowed
Peter Hessler
2023-03-23
fix off-by-one in pf_state_expires() bounds test
Jonathan Gray
2023-03-04
pf(4) should be enforcing TTL=1 to packets sent to 224.0.0.1 only.
Alexandr Nedvedicky
2023-01-22
Fix pf_anchor_stackframe commit to revert pf rule matching to the
YASUOKA Masahiko
2023-01-12
Binding the accept socket in TCP input relies on the fact that the
Alexander Bluhm
2023-01-06
PF_ANCHOR_STACK_MAX is insufficient protection against stack overflow.
Alexandr Nedvedicky
2023-01-05
more consistently name pf_state * variables "st".
David Gwynne
2023-01-04
move the pf_state_tree_id type from pfvar.h to pfvar_priv.h.
David Gwynne
2023-01-04
move the pf_state_tree rb tree type from pfvar.h to pfvar_priv.h
David Gwynne
2023-01-02
use the pf generated toeplitz hash when setting the mbuf flow id.
David Gwynne
2022-12-27
Fix array bounds mismatch with clang 15
Patrick Wildt
2022-12-24
fix and enable toeplitz hashing of pf_state_keys again.
David Gwynne
2022-12-23
disable the use of the has in the pf state key lookup (for now).
David Gwynne
2022-12-22
use stoeplitz to generate a hash/flowid for state keys.
David Gwynne
2022-12-21
tiny whitespace tweak.
David Gwynne
2022-12-21
consistently use the PF_REF wrappers around refcnts.
David Gwynne
2022-12-21
prefix pf_state_key and pf_state_item struct bits to make them more unique.
David Gwynne
2022-12-16
always keep pf_state_keys attached to pf_states.
David Gwynne
2022-11-25
revert pf.c r1.1152 again: move pf_purge out from under the kernel lock
Alexander Bluhm
2022-11-25
Revert previous commit. It was not properly tested and produces splassert
Mark Kettenis
2022-11-25
get rid of NET_LOCK in the pf purge work
David Gwynne
2022-11-12
Put pf_state_import() under NPFSYNC>0 to fix build without pfsync
Klemens Nanni
2022-11-11
try pf.c r1.1143 again: move pf_purge out from under the kernel lock
David Gwynne
2022-11-11
add a mutex to struct pf_state and init it.
David Gwynne
2022-11-11
rename pfsync_up() to pfsync_is_up()
David Gwynne
2022-11-11
rewrite the pf_state_peer_ntoh and pf_state_peer_hton macros as functions.
David Gwynne
2022-11-10
revert pf_state mtx commit, because it breaks tree.
Alexandr Nedvedicky
2022-11-10
Add a mutex to pf_state structure. Mutex retain a consistency
Alexandr Nedvedicky
2022-11-09
simplify expiration of 'once' rules.
Alexandr Nedvedicky
2022-11-08
This diff fixes panic tripped by KASSERT(st->sync_state == PFSYNC_S_NONE)
Alexandr Nedvedicky
2022-11-07
revert "move pf_purge out from under the kernel lock".
David Gwynne
2022-11-07
move pf_purge out from under the kernel lock and avoid the hogging cpu
David Gwynne
2022-11-06
move pfsync_state_import in if_pfsync.c to pf_state_import in pf.c
David Gwynne
2022-10-10
Recalculate checksum of normalised packet
Bjorn Ketelaars
2022-09-03
Use a mutex to update tcp_maxidle, tcp_iss, and tcp_now. This
Alexander Bluhm
2022-09-03
When divert-reply is used, keep some pf states after pcb is dropped if
YASUOKA Masahiko
2022-08-30
Refactor internet PCB lookup function. Rename in_pcbhashlookup()
Alexander Bluhm
2022-08-08
To make protocol input functions MP safe, internet PCB need protection.
Alexander Bluhm
2022-07-20
Add a pool for the allocation of the pf_anchor struct.
Moritz Buhl
2022-06-28
fix syncookies in conjunction with tcp fast port reuse.
Henning Brauer
2022-06-26
Allow waiting during ktable allocation in pf_ioctl.
mbuhl
2022-06-13
fix logic bug in pf_find_state()
Henning Brauer
2022-05-23
In pf the kernel paniced if IP options in packet within ICMP payload
Alexander Bluhm
2022-05-23
Fix white space.
Alexander Bluhm
2022-05-18
Remove #ifdef DDB specific includes, added in 1.968 but related code bits
Miod Vallat
2022-05-05
Clean up divert_packet(). Function does not return error, make it
Alexander Bluhm
2022-05-03
Make pf(4) more paranoid about IGMP/MLP messages. MLD/IGMP messages
Alexandr Nedvedicky
2022-04-29
IGMP and ICMP6 MLD packets always have the router alert option set.
Alexander Bluhm
2022-03-17
fix typos; Martin Vahlensieck
Stuart Henderson
[next]