| Age | Commit message (Expand) | Author |
|---|
| 2015-04-17 | Stubs and support code for NIC-enabled IPsec bite the dust. | Mike Belopuhov |
| 2015-04-11 | the hfsc pools are only used in hfsc.c, so move the init of them | David Gwynne |
| 2015-04-08 | Destination table needs it's own negation flag passed to the pfr_update_stats. | Mike Belopuhov |
| 2015-03-18 | remove the congestion handling from struct ifqueue. | David Gwynne |
| 2015-03-16 | When state creations happen in short term by outgoing packets of one | YASUOKA Masahiko |
| 2015-03-14 | Remove some includes include-what-you-use claims don't | Jonathan Gray |
| 2015-02-14 | Rather than using 0xff as a placeholder for "don't check prio", use 0xff to | Stuart Henderson |
| 2015-02-12 | change log(matches) semantics slightly to make it more useful. since it | Henning Brauer |
| 2015-02-10 | include the "set prio" values. | Henning Brauer |
| 2015-02-10 | since we inherit prio (as in, the queuing priority) from outside sources, | Henning Brauer |
| 2015-02-09 | correctly reset max_win if the SYN-ACK lacks a wscale option. pf | Markus Friedl |
| 2015-02-07 | pf synproxy will do the 3WHS on behalf of the target machine, and once | Henning Brauer |
| 2015-02-05 | Make sure pf(4) does not see embedded scopes. | Martin Pieuchot |
| 2015-01-24 | Userland (base & ports) was adapted to always include <netinet/in.h> | Theo de Raadt |
| 2014-12-19 | unifdef INET in net code as a precursor to removing the pretend option. | Ted Unangst |
| 2014-12-11 | Do not use "struct route" when it is not necessary. | Martin Pieuchot |
| 2014-11-20 | Rework the handling of interfaces and IPv6 addresses for local delivery. | Martin Pieuchot |
| 2014-11-18 | move arc4random prototype to systm.h. more appropriate for most code | Ted Unangst |
| 2014-11-16 | remove now unnecessary casts from hash update calls. | Ted Unangst |
| 2014-11-16 | convert to use sha512 for pf iss. ok deraadt dlg | Ted Unangst |
| 2014-11-16 | mix the rdomain (rtable?) into the hash for tcp iss generation. | David Gwynne |
| 2014-11-11 | Ask networking stack to recalculate the ICMPv6 checksum in pf_route6 | Mike Belopuhov |
| 2014-11-01 | Rename rtalloc1() into rtalloc(9) and convert its flags to only enable | Martin Pieuchot |
| 2014-10-14 | Use rtfree() instead of RTFREE(), NULLify some free'd route pointers and | Martin Pieuchot |
| 2014-10-08 | Use rtalloc1() instead of rtalloc_noclone(). | Martin Pieuchot |
| 2014-09-27 | Kill rtalloc() and update rtalloc1() and rtalloc_mpath() to no longer | Martin Pieuchot |
| 2014-08-12 | Finally implement what's stated in the man page regarding parent | Mike Belopuhov |
| 2014-08-12 | Make sure that pf_step_into_anchor always saves a pointer to the rule | Mike Belopuhov |
| 2014-08-12 | Apart from some minor code reshuffling the big change is that we | Mike Belopuhov |
| 2014-07-22 | Fewer <netinet/in_systm.h> ! | Martin Pieuchot |
| 2014-07-13 | Put back a m_copyback() that got lost in rev 1.837 of pf.c. This | Alexander Bluhm |
| 2014-07-10 | Simplify the way divert(4) sends packets to userspace: Instead of | Lawrence Teo |
| 2014-07-02 | u_int32_t's can't go negative | Mike Belopuhov |
| 2014-06-25 | pf_translate doesn't use the mbuf argument anymore. | Mike Belopuhov |
| 2014-05-20 | Assign the queue ID to the correct packet header when sending ICMP messages. | Martin Pieuchot |
| 2014-04-24 | ewps... repair qid assignment | Henning Brauer |
| 2014-04-22 | Remove some altq tentacles. | Martin Pieuchot |
| 2014-04-21 | ip_output() using varargs always struck me as bizarre, esp since it's only | Henning Brauer |
| 2014-04-21 | we'll do fine without casting NULL to struct foo * / void * | Henning Brauer |
| 2014-04-19 | shrink pf by 445 lines. | Henning Brauer |
| 2014-04-18 | pf_send_tcp: ask the stack to do the cksum instead of doing it manually | Henning Brauer |
| 2014-04-14 | "struct pkthdr" holds a routing table ID, not a routing domain one. | Martin Pieuchot |
| 2014-03-10 | When translating packets from one address family to another, pass the | Jeremie Courreges-Anglas |
| 2014-03-10 | When setting up the packet description, also retrieve the Traffic Class | Jeremie Courreges-Anglas |
| 2014-01-25 | Simplify and shorten the way ICMP checksums are verified in | Lawrence Teo |
| 2014-01-24 | in pf_check_proto_cksum, updtae the swcksum counters if we cksummed in | Henning Brauer |
| 2014-01-23 | since the cksum rewrite the counters for hardware checksummed packets | Henning Brauer |
| 2014-01-22 | 7x bcopy -> memcpy, impossibility of overlaps verified. ok benno dlg | Henning Brauer |
| 2014-01-20 | support negated matches on the rcvif, ok dlg benno | Henning Brauer |
| 2014-01-03 | Switch frequently allocated structs from malloc(M_DEVBUF) to separate pools. | pelikan |
