src - OpenBSD base system

Age	Commit message (Collapse)	Author
2005-05-23	don't deny access to "special" tables in get_addrs	Henning Brauer
	with this, when you know their name you can list their contents with pfctl ok ryan
2005-05-23	repair updates for the tables used for (interface) notation	Henning Brauer
	the way it is done is completely retarded, needs fixing with ryan
2005-05-22	missing #if NPF > 0 around ifgroups attachments	Henning Brauer

2005-05-22	no need to search for the kif before callig pf_get_kif, it does that for us	Henning Brauer

2005-05-22	allow pf to match on interface groups	Henning Brauer
	pass on mygroup ... markus ok
2005-05-22	honour the 'no' in 'no scrub' rules for IP normalizations. found by	Daniel Hartmeier
	mzozd at ad2u dot gr. ok henning@, mcbride@
2005-05-21	make every interface join a group called "all", mcbride ok	Henning Brauer

2005-05-21	KNF	Henning Brauer

2005-05-21	clean up and rework the interface absraction code big time, rip out multiple	Henning Brauer
	useless layers of indirection and make the code way cleaner overall. this is just the start, more to come... worked very hard on by Ryan and me in Montreal last week, on the airplane to vancouver and yesterday here in calgary. it hurt. ok ryan theo
2005-05-15	typo	Henning Brauer

2005-05-15	ANSI, mostly from Toni Mueller <openbsd-tech@oeko.net>	Henning Brauer

2005-05-14	- Add IPv6 over GRE.	Brad Smith
	- u_short -> u_int16_t - Change default MTU to 1476 (same value that Cisco and other *BSD's use). - Mark gre(4) interfaces as IFT_TUNNEL (Encapsulation interface). From NetBSD - Support setting the MTU Be very careful when upgrading, the change in default MTU might cause problems with an existing OpenBSD <-> OpenBSD setup. Thanks to Stephen Marley <stephen dot marley at catwoman dot cl-is dot com> for some testing.
2005-05-13	Fix for a panic experienced when authenticating a pppoe session on an amd64 ↵	Brad Smith
	system. From: i4b project via FreeBSD via Jason Ackley Fixes PR 4190 & 4196 ok canacar@
2005-05-10	support NULL encryption for ESP; ok hshoexer, ho	Markus Friedl

2005-05-10	In DIOCKILLSTATES: take into account the direction of the state when	Joel Knight
	matching source and destination addresses/ports. ok henning@ dhartmei@ mpf@
2005-05-09	ansify. no binary change.	Marco Pfatschbacher
	OK henning, krw, brad, moritz
2005-05-04	set RUNNING on open; from Alexey E. Suslikov; ok henning, claudio	Markus Friedl

2005-05-03	typo, automaticaly -> automatically	Brad Smith

2005-04-28	Don't detach interface from pf's perspective until after IPv6 is done with it.	Christopher Pascoe
	ok dlg@ henning@
2005-04-25	csum -> csum_flags	Brad Smith
	ok krw@ canacar@
2005-04-25	Use ETHERTYPE_VLAN.	Brad Smith

2005-04-24	Fix cisco-mode check in lcp up/down.	Can Erkin Acar

2005-04-24	Use the IANA assignment IFT_L2VLAN.	Brad Smith
	From FreeBSD/NetBSD Tested by camield@ and Alexey E. Suslikov <cruel at texnika dot com dot ua> ok camield@
2005-04-22	When synproxy completes the replayed handshake and modifies the state	Daniel Hartmeier
	into a normal one, it sets both peers' sequence windows. Fix a bug where the previously advertised windows are applied to the wrong side (i.e. peer A's seqhi is peer A's seqlo plus peer B's, not A's, window). This went undetected because mostly the windows are similar and/or re- advertised soon. But there are (rare) cases where a synproxy'd connection would stall right after handshake. Found by Gleb Smirnoff.
2005-04-21	Catch failed hook_establish call immediately, rather than misbehaving and	Christopher Pascoe
	panicing at detach time. ok dhartmei@ henning@
2005-04-20	Make vlan(4) aware of its physical interface link state.	Marco Pfatschbacher
	Changes are reported to userland and to other interfaces sitting on top of us. OK henning@, camield@ Tested by camield@ and Alexey E. Suslikov
2005-04-20	Introduce if_linkstatehooks.	Marco Pfatschbacher
	This converts if_link_state_change() to a generic usable callback with dohooks(). OK henning@, camield@ Tested by camield@ and Alexey E. Suslikov
2005-04-20	send raw 802.11 frames with bpf(4) using the IEEE802_11 or	Reyk Floeter
	IEEE802_11_RADIO data link types. ok canacar@ damien@
2005-04-20	the linktype (DLT) should always be of type u_int.	Reyk Floeter
	fine deraadt@
2005-04-18	If the parent interface is not IFF_RUNNING, do not call its start function.	Brad Smith
	This prevent a variety of fun panics. From NetBSD
2005-04-18	revert a change in the previous commit to appease henning@ for the time	Brad Smith
	being.. - Set the interface speed back to zero after ether_ifattach(). RFC 2863 says: "For a sub-layer which has no concept of bandwidth, [ifSpeed] should be zero."
2005-04-17	- In vlan_input()/vlan_input_tag(), always mask off all but the VLID	Brad Smith
	bits from tags extracted from received frames. (Some drivers may already do this masking internally, but doing it here doesn't hurt and insures consistency.) - In vlan_ioctl(), don't let the user set a VLAN ID value with anything besides the VLID bits set, otherwise we will have trouble matching an interface in vlan_input() later. - Set the interface speed back to zero after ether_ifattach(). RFC 2863 says: "For a sub-layer which has no concept of bandwidth, [ifSpeed] should be zero." - Do not call if_down() on a parent interface if it's already down. From FreeBSD Tested by camield@ and Alexey E. Suslikov <cruel at texnika dot com dot ua> ok camield@
2005-04-15	Try this again.	Joel Knight
	When synproxy sends packets to the destination host, make sure to copy the 'tag' from the original state entry into the outgoing mbuf. ok dhartmei@ deraadt@
2005-04-14	back out last, some breakage crept in	Henning Brauer

2005-04-14	When synproxy sends packets to the destination host, make sure to copy	Joel Knight
	the 'tag' from the original state entry into the outgoing mbuf. ok henning@ dhartmei@
2005-04-11	Ignore lcp up/down events in cisco mode	Can Erkin Acar

2005-04-05	Return EINVAL in SIOCSIFLLADDR if new lladdr is a multicast address.	Claudio Jeker
	OK derradt@ tedu@
2005-04-04	Add sysctl for dumping the SPD	Hans-Joerg Hoexer
	ok deraadt, ok markus some time ago
2005-04-01	do not mess with lcp if we are in cisco mode	Can Erkin Acar

2005-03-30	add lladdr command to ifconfig to set MAC address. diffs from freebsd via	Ted Unangst
	Kyunghwan KIM (prs 2117 and 2118) and Fredrik Widlund. ok deraadt
2005-03-25	increment the right counter on error.	Brad Smith

2005-03-24	Unbreak tree, mono_time may no longer be used because of timecounters.	Claudio Jeker
	Use getmicrouptime() instead. Found by grange@ and henning@. OK henning@
2005-03-23	Merge some sppp improvements from NetBSD:	Can Erkin Acar
	1. better timeout and keepalive handling 2. fix some memory leaks on error paths. 3. use arc4random instead of random 4. always send keepalives in cHDLC mode, from claudio@ Tested by Greg Mortensen (san) and jmc@ (pppoe), ok claudio@
2005-03-23	Follow RFC and do not reset timeouts everytime sppp_cp_change_state()	Can Erkin Acar
	is called. Makes two sppp instances to handshake against each other. Tested by Greg Mortensen, ok claudio@
2005-03-15	byte order of mss, only affects synproxy code path, from John L. Scarfone	Daniel Hartmeier

2005-03-04	add state's tag for IPv6, too. spotted by markus@	Daniel Hartmeier

2005-03-03	when tagging, apply the same tag to all packets matching a state entry	Daniel Hartmeier
	(not just to the initial packet). note: kernel/userland abi change (rebuild pfctl). ok henning@
2005-02-27	support 'tagged' in translation rules, non-delayed tag lookup	Daniel Hartmeier
	ok henning@, deraadt@
2005-02-20	Avoid use after free when purging states.	Ryan Thomas McBride
	ok henning@ dhartmei@ claudio@
2005-02-20	ifmedia_set() should not panic, nor can it really fail. So if there is	Brad Smith
	some problem setting the media to the requested value (usually IFM_AUTO), we now force the media selection to IFM_NONE. From NetBSD