| Commit message (Collapse) | Author | Age | Files | Lines |
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
IFF_DRV_RUNNING, as well as the move from ifnet.if_flags to
ifnet.if_drv_flags. Device drivers are now responsible for
synchronizing access to these flags, as they are in if_drv_flags. This
helps prevent races between the network stack and device driver in
maintaining the interface flags field.
Many __FreeBSD__ and __FreeBSD_version checks maintained and continued;
some less so.
Reviewed by: pjd, bz
MFC after: 7 days
|
|
|
|
|
|
|
|
|
|
| |
states - has to drop the lock when calling back to ip_output(), the state
purge timeout might run and gc the state. This results in a rb-tree
inconsistency. With this change we flag expiring states while holding the
lock and back off if the flag is already set.
Reported by: glebius
MFC after: 2 weeks
|
|
|
|
|
|
| |
Submitted by: Keiichi SHIMA <keiichi__at__iijlab.net>
Reviewed by: mlaier
Obtained from: KAME
|
|
|
|
|
|
|
| |
netstat (seperate commit).
Requested by: glebius
MFC after: 1 week
|
|
|
|
|
|
|
|
| |
actually work. Also use the right semantics for IF_HANDOFF to get correct
stats.
Reported and tested by: Sascha Luck <sascha at c4inet dot net>
Approved by: re (blanket)
|
|
|
|
|
|
|
|
| |
(1) "ipf -T" is broken for fetching single entries and
(2) loading rules with numbered collections does not order insertion right.
(3) stats aren't accumulated for hash table memory failures
Approved by: re (dwhite)
|
|
|
|
| |
Approved by: re (dwhite)
|
|
|
|
|
|
| |
Requested by: yongari (serveral times)
Approved by: re (blanket)
MFC after: 1 week
|
|
|
|
|
|
|
|
|
|
|
|
| |
of just dropping the lock around the ip_output call. This used to cause
corrupted state tree walks for some call-paths.
In a second stage all callouts will be marked MPSAFE according to the
setting of mpsafenet.
Reported and tested by: Matthew Grooms <mgrooms at seton dot org>
MFC after: 3 days
X-MFC after: Marking callouts MPSAFE + 1 week
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
struct ifnet or the layer 2 common structure it was embedded in have
been replaced with a struct ifnet pointer to be filled by a call to the
new function, if_alloc(). The layer 2 common structure is also allocated
via if_alloc() based on the interface type. It is hung off the new
struct ifnet member, if_l2com.
This change removes the size of these structures from the kernel ABI and
will allow us to better manage them as interfaces come and go.
Other changes of note:
- Struct arpcom is no longer referenced in normal interface code.
Instead the Ethernet address is accessed via the IFP2ENADDR() macro.
To enforce this ac_enaddr has been renamed to _ac_enaddr.
- The second argument to ether_ifattach is now always the mac address
from driver private storage rather than sometimes being ac_enaddr.
Reviewed by: sobomax, sam
|
|\
| |
| |
| | |
which included commits to RCS files with non-trunk default branches.
|
| | |
|
| |
| |
| |
| | |
parse bpf strings for filter rules in ipf.conf
|
| |
| |
| |
| |
| | |
kernel it is being compiled against and subsequently enable using BPF for
packet matching in ipf rules.
|
| | |
|
| | |
|
| |
| |
| |
| | |
imports.
|
| | |
|
| |
| |
| |
| |
| | |
an interface pointer. This simplifies a couple of uses
and removes some XXX workarounds.
|
| |
| |
| |
| |
| |
| |
| |
| | |
missing and will be implemented in a second step. This is functional as is.
Tested by: freebsd-pf, pfsense.org
Obtained from: OpenBSD
X-MFC after: never (breaks API/ABI)
|
| |
| |
| |
| |
| |
| |
| | |
/usr/src/sbin/ipf/ipftest/../../../sys/contrib/ipfilter/netinet/ip_frag.c: In function `fr_ipid_newfrag':
/usr/src/sbin/ipf/ipftest/../../../sys/contrib/ipfilter/netinet/ip_frag.c:397: warning: cast to pointer from integer of different size
/usr/src/sbin/ipf/ipftest/../../../sys/contrib/ipfilter/netinet/ip_frag.c: In function `fr_ipid_knownfrag':
/usr/src/sbin/ipf/ipftest/../../../sys/contrib/ipfilter/netinet/ip_frag.c:582: warning: cast from pointer to integer of different size
|
| |
| |
| |
| |
| | |
Someday this should be converted to uint64_t and printstate.c changed to
use those horrid PRiud64 things.
|
| |
| |
| |
| | |
with FreeBSD so we shouldn't be trying to include it here.
|
| |
| |
| |
| |
| | |
- Move SIOCPROXY from ip_nat.h to ip_proxy.h and fix ip_proxy.h so that it
can be easily compiled into kdump, et al.
|
| |
| |
| |
| | |
add another special file in the creation of ioctls.c for kdump.
|
| | |
|
|\ \
| | |
| | |
| | | |
which included commits to RCS files with non-trunk default branches.
|
| | | |
|
| | | |
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
destination windows were confused, one instead of other.
This error was masked, because first segment of just
established connection is usually smaller than initially
announced window, and it was successfully passed. First
window reannouncement corrected erroneous 'seqhi' value.
The error showed up when client connected to synproxy
with zero initial window, and reannounced it after
session establishment.
In collaboration with: dhartmei [we came to same patch independtly]
Reviewed by: mlaier
Sponsored by: Rambler
MFC after: 3 days
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
than defaulting the cmode argument to vn_open() to 0. Supply a default
argument of ALQ_DEFAULT_CMODE (0600) in current callers.
Discussed with/pointed out by: hmp
Reveiwed by: jeff, hmp
MFC after: 3 days
|
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
Submitted by: John L. Scarfone via OpenBSD
Reviewed by: mlaier
Obtained from: OpenBSD, rev. 1.483
MFC after: 2 days
|
|\ \ \
| | | |
| | | |
| | | | |
which included commits to RCS files with non-trunk default branches.
|
| / /
| | |
| | |
| | |
| | | |
Demanded by: DES
Encouraged by: scottl
|
| | |
| | |
| | |
| | | |
for being on a CVS vendor branch. The files were moved via a repo-copy.
|
| | | |
|
| | | |
|
| | |
| | |
| | |
| | |
| | | |
Noticed by: Coverity Prevent analysis tool
Reviewed by: scottl
|
| | | |
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
renamed interfaces.
PR: kern/77645
Reported by: Harald Schmalzbauer <harryNOschmalzbauerSPAMde>
Reviewed by: yongari
MFC after: 3 days
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
was a bad idea, but since it is done like this in the vendor source we keep
it around for older versions. As a safe guard against future misuse we don't
even define CALLOUT_INITIALIZER anymore.
This fixes ALTQ after callout_init_mtx() and takes altq_var.h off the vendor
branch.
Submitted by: Divacky Roman <xdivac02NOstud.fit.vutbrSPAMcz> (w/ changes)
|
| | |
| | |
| | |
| | |
| | |
| | | |
in "pfctl -vvsI" output when pf was statically linked to kernel.
Discussed with: mlaier
|
| | |
| | |
| | |
| | |
| | |
| | | |
untangle struct ifnet and softc/arpcom in the future.
Requested by: brooks
|
| | |
| | |
| | |
| | |
| | |
| | | |
- Add previously removed ISA support.
Submitted by: David S. Madole <david AT madole.net>
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
replacement address for an rdr rule. Some rdr rules have no address family
(when the replacement is a table and no other criterion implies one AF).
In this case, pf would fail to select a replacement address and drop the
packet due to translation failure.
Found by: Gustavo A. Baratto
|
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
like this in init(8), but the code didn't match the documentation.
Submitted by: Juraj Lutter <otis at sk dot FreeBSD dot org>
Agrees: mlaier
|
|\ \ \
| | | |
| | | |
| | | | |
which included commits to RCS files with non-trunk default branches.
|
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
dsutils.c. We need to GC the implicitly-returned object.
Submitted by: Robert.Moore at Intel
MFC after: 1 day
|
|\ \ \ \
| |/ / /
| | | |
| | | | |
which included commits to RCS files with non-trunk default branches.
|