| Age | Commit message (Expand) | Author |
|---|
| 2000-05-25 | net.inet.ip.gif_ttl (and IPv6 counterpart) is never used. | Jun-ichiro itojun Hagino |
| 2000-05-24 | Update to ipf 3.3.16. among other things, this addresses a security issue | Kjell Wooding |
| 2000-05-15 | parse IPv4 options more carefully. make boundary checks against every | Jun-ichiro itojun Hagino |
| 2000-05-15 | Add comment on input MSS calculation based on previous PMTUD results, | Angelos D. Keromytis |
| 2000-05-15 | Fix sanity check that caused really short packets (ICMPs with less | Angelos D. Keromytis |
| 2000-05-10 | ipf 3.3.14, fixes an ipnat problem and ip option mishandling, which the bridg... | Theo de Raadt |
| 2000-05-10 | make sure ip_timestamp is aligned correctly | Jason Wright |
| 2000-05-06 | avoid underflow on unsigned value arithmetic (when optlen < 4). | Jun-ichiro itojun Hagino |
| 2000-05-06 | avoid unaligned access in timestamp; http://www.newhackcity.net/advisories/20... | Theo de Raadt |
| 2000-05-04 | Bypass routes only worked for one packet, then they effectively became a | Niklas Hallqvist |
| 2000-05-01 | Update to ipfilter 3.3.13. This should be the last of the 3.3.x releases. | Kjell Wooding |
| 2000-04-28 | actually m_adj tries to drop tcp header part. it is better to | Jun-ichiro itojun Hagino |
| 2000-04-27 | mbuf is freed by sbappend(), move the references to th up. found by art@ | Niels Provos |
| 2000-04-27 | add TCP port 587 to default list of reserved ports not to allocate dynamicall... | Todd C. Miller |
| 2000-04-27 | avoid infinite loop in in{6,}_pcbnotify (can occurs on family mismatch) | Jun-ichiro itojun Hagino |
| 2000-04-26 | add ARCTYPE_INET6 | Jakob Schlyter |
| 2000-04-25 | Avoid divide-by-zero; from FreeBSD PR/8990 and NetBSD PR/6541. Use the same fix | Aaron Campbell |
| 2000-04-25 | when fixing up the header, copy from the right sized datatype (fixes IPsec | Jason Wright |
| 2000-04-21 | NRL pcb issue; inp_{f,l}addr{,6} is a union so we need to be sure about | Jun-ichiro itojun Hagino |
| 2000-04-19 | tdb_ref should be signed, this avoid a problem with flushing the TDB | Angelos D. Keromytis |
| 2000-04-18 | Remove the ethernet header from the mbuf before passing it on to | Angelos D. Keromytis |
| 2000-04-14 | make "option TCPDEBUG" kernel compile. | Jun-ichiro itojun Hagino |
| 2000-04-14 | for layer 3 protocols that does not support path MTU discovery | Jun-ichiro itojun Hagino |
| 2000-04-13 | When fragmenting a packet, inherit the multicast and broadcast flags so that | Artur Grabowski |
| 2000-04-13 | #ifndef the definitions of IPSTATE_MAX and IPSTATE_SIZE | Kjell Wooding |
| 2000-04-12 | bump ipf version (3.3.12a) to go with last commit | Kjell Wooding |
| 2000-04-12 | FTP Proxy changes introduced in 3.3.12 were too agressive. Tone down | Kjell Wooding |
| 2000-04-11 | Don't add an extra 20 bytes to ip_len, m_pkthdr.len is already updated | Angelos D. Keromytis |
| 2000-04-10 | Oops on sanity logic. | Angelos D. Keromytis |
| 2000-04-09 | Pass ip_off and ip_len in the correct byte order to icmp_error(); this | Angelos D. Keromytis |
| 2000-04-06 | only call get_random_bytes() once in m_pad() | Theo de Raadt |
| 2000-04-05 | Update to ipf 3.3.12. Most fixes relate to hardening of | Kjell Wooding |
| 2000-04-04 | Verbiage fix. | Angelos D. Keromytis |
| 2000-03-30 | Only allocate space for a copy of the authenticator if authentication | Angelos D. Keromytis |
| 2000-03-30 | Set re_rt to NULL, so we don't double free. | Angelos D. Keromytis |
| 2000-03-29 | Be consistent about packet properties. | Angelos D. Keromytis |
| 2000-03-29 | Fix problem with TCP/UDP and ACLs. | Angelos D. Keromytis |
| 2000-03-29 | Minor cleanup. | Angelos D. Keromytis |
| 2000-03-29 | Note to self: test before committing. | Angelos D. Keromytis |
| 2000-03-29 | Conform to crypto framework changes for IVs. | Angelos D. Keromytis |
| 2000-03-28 | Allow authentication-only ESP (must have broken it in the previous | Angelos D. Keromytis |
| 2000-03-28 | Set the protocol family in the destination address of bypass flows. | Angelos D. Keromytis |
| 2000-03-27 | As I threatened a while ago, ingress IPsec ACL-checking is turned on | Angelos D. Keromytis |
| 2000-03-25 | Fix typo causing crash if ESP was used with only authentication or | Angelos D. Keromytis |
| 2000-03-22 | comment out ifconfig undo code. they are necessary to avoid memory | Jun-ichiro itojun Hagino |
| 2000-03-21 | Fix casting so it compiles on alphas (testing by janjaap@stack.nl, | Angelos D. Keromytis |
| 2000-03-21 | Fix function to comply with prototype. Kind of moot, as tcp signatures | Angelos D. Keromytis |
| 2000-03-17 | remove multiple function declarations. | Artur Grabowski |
| 2000-03-17 | Cryptographic services framework, and software "device driver". The | Angelos D. Keromytis |
| 2000-03-13 | Import of Darren Reed's IPFilter 3.3.11. See sbin/ipf/HISTORY for detailed | Kjell Wooding |
