![[BACK]](/icons/back.gif){kind=icon}
Up to [local] / src / sys / netinet
Request diff between arbitrary revisions
Default branch: MAIN
Revision 1.20.2.4, Wed Jul 4 10:54:26 2001 UTC (22 years, 11 months ago) by niklas
Branch: SMP
Changes since 1.20.2.3: +1 -1 lines
FILE REMOVED
Merge in -current from two days ago in the SMP branch. As usual with merges, they do not indicate progress, so do not hold your breath for working SMP, and do not mail me and ask about the state of it. It has not changed. There is work ongoing, but very, very slowly. The commit is done in parts as to not lock up the tree in too big chunks at a time.
Revision 1.31, Wed May 30 02:12:26 2001 UTC (23 years ago) by deraadt
Branch: MAIN
CVS Tags: UBC_SYNC_B,
UBC_SYNC_A,
SMP_SYNC_B,
SMP_SYNC_A,
HEAD
Changes since 1.30: +1 -1 lines
FILE REMOVED
Remove ipf. Darren Reed has interpreted his (old, new, whichever) licence in a way that makes ipf not free according to the rules we established over 5 years ago, at www.openbsd.org/goals.html (and those same basic rules govern the other *BSD projects too). Specifically, Darren says that modified versions are not permitted. But software which OpenBSD uses and redistributes must be free to all (be they people or companies), for any purpose they wish to use it, including modification, use, peeing on, or even integration into baby mulching machines or atomic bombs to be dropped on Australia. Furthermore, we know of a number of companies using ipf with modification like us, who are now in the same situation, and we hope that some of them will work with us to fill this gap that now exists in OpenBSD (temporarily, we hope).
Revision 1.20.2.3 / (download) - annotate - [select for diffs], Mon May 14 22:40:06 2001 UTC (23 years ago) by niklas
Branch: SMP
Changes since 1.20.2.2: +688 -182 lines
Diff to previous 1.20.2.2 (colored) to branchpoint 1.20 (colored)
merge in approximately 2.9 into SMP branch
Revision 1.30 / (download) - annotate - [select for diffs], Fri May 11 17:20:11 2001 UTC (23 years ago) by aaron
Branch: MAIN
Changes since 1.29: +2 -2 lines
Diff to previous 1.29 (colored)
Check m_pullup() and m_pullup2() return for NULL, not 0; itojun@ ok
Revision 1.29 / (download) - annotate - [select for diffs], Tue May 8 19:58:01 2001 UTC (23 years, 1 month ago) by fgsch
Branch: MAIN
Changes since 1.28: +11 -7 lines
Diff to previous 1.28 (colored)
IPfilter 3.4.17; kjell@ deraadt@ ok.
Revision 1.28 / (download) - annotate - [select for diffs], Tue Jan 30 04:23:55 2001 UTC (23 years, 4 months ago) by kjell
Branch: MAIN
CVS Tags: OPENBSD_2_9_BASE,
OPENBSD_2_9
Changes since 1.27: +9 -9 lines
Diff to previous 1.27 (colored)
re-add local ipf changes that were whacked in the 3.4.16 merge. userland to follow
Revision 1.27 / (download) - annotate - [select for diffs], Wed Jan 17 04:47:11 2001 UTC (23 years, 4 months ago) by fgsch
Branch: MAIN
Changes since 1.26: +675 -169 lines
Diff to previous 1.26 (colored)
IPF 3.4.15. (IPv6 not working yet). Note: before building the userland part you need to do make includes.
Revision 1.26 / (download) - annotate - [select for diffs], Thu Aug 10 05:50:25 2000 UTC (23 years, 9 months ago) by kjell
Branch: MAIN
CVS Tags: OPENBSD_2_8_BASE,
OPENBSD_2_8
Changes since 1.25: +7 -3 lines
Diff to previous 1.25 (colored)
Import ipf 3.3.18. Fixes more problems with the in-kernel FTP proxy, some nat state bugs, and ups the default state table size. See sbin/ipf/HISTORY for details.
Revision 1.24.2.1 / (download) - annotate - [select for diffs], Sat May 27 20:45:17 2000 UTC (24 years ago) by jason
Branch: OPENBSD_2_7
Changes since 1.24: +23 -33 lines
Diff to previous 1.24 (colored) next main 1.25 (colored)
Pull in patch from current: Errata: A misuse of ipf(8) keep-state rules can result in firewall rules being bypassed. Fix (kjell): Update to ipf 3.3.16. among other things, this addresses a security issue with certain rule configurations: * don't add TCP state if it is an RST packet and (attempt) to send out RST/ICMP packets in a manner that bypasses IP Filter.
Revision 1.25 / (download) - annotate - [select for diffs], Wed May 24 21:59:10 2000 UTC (24 years ago) by kjell
Branch: MAIN
Changes since 1.24: +23 -33 lines
Diff to previous 1.24 (colored)
Update to ipf 3.3.16. among other things, this addresses a security issue with certain rule configurations: * don't add TCP state if it is an RST packet and (attempt) to send out RST/ICMP packets in a manner that bypasses IP Filter.
Revision 1.24 / (download) - annotate - [select for diffs], Wed May 10 20:40:52 2000 UTC (24 years ago) by deraadt
Branch: MAIN
CVS Tags: OPENBSD_2_7_BASE
Branch point for: OPENBSD_2_7
Changes since 1.23: +11 -5 lines
Diff to previous 1.23 (colored)
ipf 3.3.14, fixes an ipnat problem and ip option mishandling, which the bridge code cares about
Revision 1.23 / (download) - annotate - [select for diffs], Mon May 1 06:16:47 2000 UTC (24 years, 1 month ago) by kjell
Branch: MAIN
Changes since 1.22: +4 -4 lines
Diff to previous 1.22 (colored)
Update to ipfilter 3.3.13. This should be the last of the 3.3.x releases. This patch fixes mostly ICMP timeout problems, as the ftp proxy changes were imported previously.
Revision 1.20.2.2 / (download) - annotate - [select for diffs], Fri Mar 24 09:09:34 2000 UTC (24 years, 2 months ago) by niklas
Branch: SMP
Changes since 1.20.2.1: +5 -3 lines
Diff to previous 1.20.2.1 (colored) to branchpoint 1.20 (colored)
Sync with -current
Revision 1.22 / (download) - annotate - [select for diffs], Mon Mar 13 23:40:17 2000 UTC (24 years, 2 months ago) by kjell
Branch: MAIN
Changes since 1.21: +4 -2 lines
Diff to previous 1.21 (colored)
Import of Darren Reed's IPFilter 3.3.11. See sbin/ipf/HISTORY for detailed changelog. Documentation changes are now way behind. Volunteers?
Revision 1.20.2.1 / (download) - annotate - [select for diffs], Sun Feb 20 11:57:22 2000 UTC (24 years, 3 months ago) by niklas
Branch: SMP
Changes since 1.20: +1 -1 lines
Diff to previous 1.20 (colored)
Merge in recent code from the trunk
Revision 1.21 / (download) - annotate - [select for diffs], Wed Feb 16 22:34:17 2000 UTC (24 years, 3 months ago) by kjell
Branch: MAIN
Changes since 1.20: +0 -0 lines
Diff to previous 1.20 (colored)
Import IPFilter 3.3.9. Primarily, bugfixes since 3.3.8. See sbin/ipf/HISTORY for details.
Revision 1.20 / (download) - annotate - [select for diffs], Tue Feb 1 19:29:57 2000 UTC (24 years, 4 months ago) by kjell
Branch: MAIN
CVS Tags: SMP_BASE
Branch point for: SMP
Changes since 1.19: +17 -4 lines
Diff to previous 1.19 (colored)
Update to IPFilter 3.3.8. Man pages still to go. See sbin/ipf/HISTORY for details.
Revision 1.19 / (download) - annotate - [select for diffs], Fri Dec 17 06:17:07 1999 UTC (24 years, 5 months ago) by kjell
Branch: MAIN
Changes since 1.18: +3 -4 lines
Diff to previous 1.18 (colored)
Update to Darren Reed's IPFilter 3.3.5 Fixes: realaudio proxy issues, "log level" printing, and source address for icmp replies (was reversed). Thoughtfully submitted by techs@obfuscation.org
Revision 1.18 / (download) - annotate - [select for diffs], Wed Dec 15 07:04:20 1999 UTC (24 years, 5 months ago) by itojun
Branch: MAIN
Changes since 1.17: +3 -8 lines
Diff to previous 1.17 (colored)
don't check INET too much, it will make trouble with lkm compilation.
Revision 1.17 / (download) - annotate - [select for diffs], Wed Dec 15 05:20:20 1999 UTC (24 years, 5 months ago) by kjell
Branch: MAIN
Changes since 1.16: +394 -156 lines
Diff to previous 1.16 (colored)
Import of Darren Reed's IPFilter 3.3.4, including OpenBSD patches. Many, many enhancements and improvements, including new in-kernel proxies, enhancements to logging, and many bugfixes. Note: Man pages have not yet been re-converted to mdoc.
Revision 1.16 / (download) - annotate - [select for diffs], Wed Dec 8 06:50:18 1999 UTC (24 years, 6 months ago) by itojun
Branch: MAIN
CVS Tags: kame_19991208
Changes since 1.15: +8 -3 lines
Diff to previous 1.15 (colored)
bring in KAME IPv6 code, dated 19991208.
replaces NRL IPv6 layer. reuses NRL pcb layer. no IPsec-on-v6 support.
see sys/netinet6/{TODO,IMPLEMENTATION} for more details.
GENERIC configuration should work fine as before. GENERIC.v6 works fine
as well, but you'll need KAME userland tools to play with IPv6 (will be
bringed into soon).
Revision 1.15 / (download) - annotate - [select for diffs], Fri Feb 19 20:52:22 1999 UTC (25 years, 3 months ago) by kjell
Branch: MAIN
CVS Tags: OPENBSD_2_6_BASE,
OPENBSD_2_6,
OPENBSD_2_5_BASE,
OPENBSD_2_5
Changes since 1.14: +5 -5 lines
Diff to previous 1.14 (colored)
fix definition of plen for ICMP (ping -s73 problem)
Revision 1.14 / (download) - annotate - [select for diffs], Fri Feb 5 05:58:49 1999 UTC (25 years, 4 months ago) by deraadt
Branch: MAIN
Changes since 1.13: +125 -95 lines
Diff to previous 1.13 (colored)
ipf 3.2.10; work by kjell
Revision 1.13 / (download) - annotate - [select for diffs], Tue Sep 15 09:51:17 1998 UTC (25 years, 8 months ago) by pattonme
Branch: MAIN
CVS Tags: OPENBSD_2_4_BASE,
OPENBSD_2_4
Changes since 1.12: +126 -92 lines
Diff to previous 1.12 (colored)
Updated to v3.2.9 of Darren's codebase. His code reimplements variable locking, replaces u_long's with u_32_t to properly handle 64bit archs. Wrapped OpenBSD specific preprocessor logic.
Revision 1.12 / (download) - annotate - [select for diffs], Tue Feb 17 01:39:01 1998 UTC (26 years, 3 months ago) by dgregor
Branch: MAIN
CVS Tags: OPENBSD_2_3_BASE,
OPENBSD_2_3
Changes since 1.11: +3 -2 lines
Diff to previous 1.11 (colored)
$OpenBSD$
Revision 1.11 / (download) - annotate - [select for diffs], Mon Jan 26 04:10:37 1998 UTC (26 years, 4 months ago) by dgregor
Branch: MAIN
Changes since 1.10: +710 -195 lines
Diff to previous 1.10 (colored)
IPF 3.2.3
Revision 1.10 / (download) - annotate - [select for diffs], Mon Jun 23 19:03:47 1997 UTC (26 years, 11 months ago) by kstailey
Branch: MAIN
CVS Tags: OPENBSD_2_2_BASE,
OPENBSD_2_2
Changes since 1.9: +52 -38 lines
Diff to previous 1.9 (colored)
merge in 3.1.11
Revision 1.9 / (download) - annotate - [select for diffs], Thu Apr 3 15:46:36 1997 UTC (27 years, 2 months ago) by kstailey
Branch: MAIN
CVS Tags: OPENBSD_2_1_BASE,
OPENBSD_2_1
Changes since 1.8: +3 -3 lines
Diff to previous 1.8 (colored)
>Number: 3412 >Category: port-alpha >Synopsis: incorrect use of long crashes netbsd/alpha >Confidential: no >Severity: serious >Priority: low >Responsible: gnats-admin (GNATS administrator) >State: open >Class: sw-bug >Submitter-Id: net >Arrival-Date: Sat Mar 29 23:50:01 1997 >Last-Modified: >Originator: Ross Harvey >Organization: Avalon Computer Systems, Inc. >Release: NetBSD-current >Environment: System: NetBSD epsilon.ghs.com 1.2D NetBSD 1.2D (e) #5: Sat Mar 29 22:32:33 PST 1997 ross@epsilon.ghs.com:/bsd/ross/e alpha >Description: Adding "pseudo-device ipfilter 1" to netbsd/alpha will cause it to crash when ifconfig turns on the interface. Ipfilter code in netinet/fil.c uses pointer arithmetic to effectively make structure-to-scalar casts. It uses long when it really wants an int32 and gets alignment faults that crash netbsd/alpha. General 64 bit problem, not exactly alpha. >How-To-Repeat: Add pseudo-device ipfilter 1. Boot your alpha. 2. Try to come up multiuser. The first packet or so will halt everything. >Fix: Apply patch...
Revision 1.8 / (download) - annotate - [select for diffs], Tue Feb 11 22:23:08 1997 UTC (27 years, 3 months ago) by kstailey
Branch: MAIN
Changes since 1.7: +102 -78 lines
Diff to previous 1.7 (colored)
IPF 1.3.7
Revision 1.7 / (download) - annotate - [select for diffs], Thu Oct 24 17:56:20 1996 UTC (27 years, 7 months ago) by tholo
Branch: MAIN
Changes since 1.6: +6 -2 lines
Diff to previous 1.6 (colored)
<sys/dir.h> is for use as a compatibility interface only. Warn if included by kernel modules, and also remove use from any modules that currently attempt to use it.
Revision 1.6 / (download) - annotate - [select for diffs], Tue Oct 8 07:33:24 1996 UTC (27 years, 8 months ago) by niklas
Branch: MAIN
CVS Tags: OPENBSD_2_0_BASE,
OPENBSD_2_0
Changes since 1.5: +56 -31 lines
Diff to previous 1.5 (colored)
Prototype & Stylistic fixes for high -W gcc levels
Revision 1.5 / (download) - annotate - [select for diffs], Thu Jul 18 05:00:55 1996 UTC (27 years, 10 months ago) by dm
Branch: MAIN
Changes since 1.4: +90 -45 lines
Diff to previous 1.4 (colored)
ipfilter 3.1.0
Revision 1.4 / (download) - annotate - [select for diffs], Mon May 13 19:49:31 1996 UTC (28 years ago) by dm
Branch: MAIN
Changes since 1.3: +1 -1 lines
Diff to previous 1.3 (colored)
fix return-rst
Revision 1.3 / (download) - annotate - [select for diffs], Fri May 10 21:38:15 1996 UTC (28 years ago) by dm
Branch: MAIN
Changes since 1.2: +217 -178 lines
Diff to previous 1.2 (colored)
ipfilter 3.0.4
Revision 1.2 / (download) - annotate - [select for diffs], Thu Jan 25 05:41:41 1996 UTC (28 years, 4 months ago) by dm
Branch: MAIN
Changes since 1.1: +167 -63 lines
Diff to previous 1.1 (colored)
IP filter 3.0.1
Revision 1.1 / (download) - annotate - [select for diffs], Sun Jan 7 02:34:01 1996 UTC (28 years, 5 months ago) by dm
Branch: MAIN
from beurton@fnet.fr: Darren Reed's IP filter