summaryrefslogtreecommitdiffstats
path: root/sys/netinet/libalias
Commit message (Collapse)AuthorAgeFilesLines
* Don't spam the console with loaded modules during boot and/or duringn_hibma2010-11-031-1/+0
| | | | | | | startup of ppp. Note: This cannot be hidden behind bootverbose as this file is included from lib/libalias as well.
* mdoc: drop even more redundant .Pp callsuqs2010-10-191-1/+0
| | | | | | No change in rendered output, less mandoc lint warnings. Tool provided by: Nobuyuki Koganemaru n-kogane at syd.odn.ne.jp
* Don't use struct timezone.ed2010-08-081-4/+2
| | | | | The timezone structure acquired by gettimeofday() is not used at all. Just remove it.
* machine/cpu.h isn't appropriate for this file,so remove itimp2010-07-161-1/+0
|
* Remove extraneous semicolons, no functional changes.mbr2010-01-072-2/+2
| | | | | Submitted by: Marc Balmer <marc@msys.ch> MFC after: 1 week
* (S)LIST_HEAD_INITIALIZER takes a (S)LIST_HEAD as an argument.antoine2009-12-281-2/+2
| | | | | | | | | Fix some wrong usages. Note: this does not affect generated binaries as this argument is not used. PR: 137213 Submitted by: Eygene Ryabinkin (initial version) MFC after: 1 month
* Move inet_aton() (specular to inet_ntoa(), already present in libkern)attilio2009-11-121-104/+0
| | | | | | | | into libkern in order to made it usable by other modules than alias_proxy. Obtained from: Sandvine Incorporated Sponsored by: Sandvine Incorporated MFC: 1 week
* Close a stream file descriptor leak.brueffer2009-10-281-0/+1
| | | | | | PR: 138130 Submitted by: Patroklos Argyroudis <argp@census-labs.com> MFC after: 1 week
* What's the point of adjusting a checksum if we are going to toss thepiso2009-04-111-7/+4
| | | | packet? Anticipate the check/return code.
* Plug two bugs introduced with modules conversion:piso2009-04-112-7/+5
| | | | | | -UdpAliasIn(): correctly check return code after modules ran. -alias_nbt: in case of malformed packets (or some other unrecoverable error), toss the packet.
* Remove stale comments.piso2009-04-111-3/+0
|
* -don't pass down, to module's fingerprint function, unused data likepiso2009-04-0810-28/+34
| | | | | | a pointer to the ip header. -style -spacing
* This commit fixes the issue with alias_sctp.c. Norrs2009-02-141-2/+39
| | | | | | | | | | | | | | longer do we require SCTP to be in the kernel for the lib to be able to handle SCTP. We do this by moving the CRC32c checksum into libkern/crc32.c and then adjusting all routines to use the common methods. Note that this will improve the performance of iSCSI since they were using the old single 256 bit table lookup versus the slicing 8 algorithm (which gives a 4x speed up in CRC32c calculation :-D) Reviewed by:rwatson, gnn, scottl, paolo MFC after: 4 week? (assuming we MFC the alias_sctp changes)
* Add SCTP NAT support.piso2009-02-075-4/+2985
|\ | | | | | | Submitted by: CAIA (http://caia.swin.edu.au)
| * Import sctp nat support in ipfw obtained from CAIA - http://caia.swin.edu.au.piso2008-12-286-8/+3105
| |
* | Silent userland warnings about missing prototypes.piso2009-01-153-0/+3
|/ | | | Submitted by: Roman Divacky <rdivacky@freebsd.org>
* Conditionally compile out V_ globals while instantiating the appropriatezec2008-12-101-0/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | container structures, depending on VIMAGE_GLOBALS compile time option. Make VIMAGE_GLOBALS a new compile-time option, which by default will not be defined, resulting in instatiations of global variables selected for V_irtualization (enclosed in #ifdef VIMAGE_GLOBALS blocks) to be effectively compiled out. Instantiate new global container structures to hold V_irtualized variables: vnet_net_0, vnet_inet_0, vnet_inet6_0, vnet_ipsec_0, vnet_netgraph_0, and vnet_gif_0. Update the VSYM() macro so that depending on VIMAGE_GLOBALS the V_ macros resolve either to the original globals, or to fields inside container structures, i.e. effectively #ifdef VIMAGE_GLOBALS #define V_rt_tables rt_tables #else #define V_rt_tables vnet_net_0._rt_tables #endif Update SYSCTL_V_*() macros to operate either on globals or on fields inside container structs. Extend the internal kldsym() lookups with the ability to resolve selected fields inside the virtualization container structs. This applies only to the fields which are explicitly registered for kldsym() visibility via VNET_MOD_DECLARE() and vnet_mod_register(), currently this is done only in sys/net/if.c. Fix a few broken instances of MODULE_GLOBAL() macro use in SCTP code, and modify the MODULE_GLOBAL() macro to resolve to V_ macros, which in turn result in proper code being generated depending on VIMAGE_GLOBALS. De-virtualize local static variables in sys/contrib/pf/net/pf_subr.c which were prematurely V_irtualized by automated V_ prepending scripts during earlier merging steps. PF virtualization will be done separately, most probably after next PF import. Convert a few variable initializations at instantiation to initialization in init functions, most notably in ipfw. Also convert TUNABLE_INT() initializers for V_ variables to TUNABLE_FETCH_INT() in initializer functions. Discussed at: devsummit Strassburg Reviewed by: bz, julian Approved by: julian (mentor) Obtained from: //depot/projects/vimage-commit2/... X-MFC after: never Sponsored by: NLnet Foundation, The FreeBSD Foundation
* Improve the entropy of the source port randomization for network addresscsjp2008-08-301-6/+6
| | | | | | | | | translation. It turns out this is useful for applications which require source port randomization for security (i.e. dns servers). Discussed with: secteam Requested by: mlaier MFC after: 2 weeks
* Partially revert previous commit. DeleteLink() does not deletes permanentmav2008-06-221-1/+5
| | | | | links so we should be aware of it and try to delete every link only once or we will loop forever.
* Implement UDP transparent proxy support.mav2008-06-211-10/+76
| | | | | PR: bin/54274 Submitted by: Nicolai Petri <nicolai@petri.cc>
* Add support for PORT/EPRT FTP commands in lowercase.mav2008-06-211-96/+21
| | | | | | | Use strncasecmp() instead of huge local implementation to reduce code size. Check space presence after command/code. PR: kern/73034
* Increase LINK_TABLE_OUT_SIZE from 101 to 4001 like LINK_TABLE_IN_SIZEmav2008-06-012-70/+23
| | | | | | | | | | | | | to reduce performance degradation under heavy outgoing scan/flood. Scalability is now much more important then several kilobytes of RAM. Remove unneded TCP-specific expiration handeling. Before this connected TCP sessions could never expire. Now connected TCP sessions will expire after 24hours of inactivity. Simplify HouseKeeping() to avoid several mul/div-s per packet. Taking into account increased LINK_TABLE_OUT_SIZE, precision is still much more then required.
* Make m_megapullup() more intelligent:mav2008-06-011-12/+32
| | | | | | - to increase performance do not reallocate mbuf when possible, - to support up to 16K packets (was 2K max) use mbuf cluster of proper size. This change depends on recent ng_nat and ip_fw_nat changes.
* Fix packet fragmentation support broken by copy/paste error in rev.1.60.mav2008-06-011-2/+2
| | | | ip_id should be u_short, but not u_char.
* Fix build, together with a bit of style breakage.marck2008-05-021-1/+1
|
* Explicitate the newpacket size.piso2008-03-191-12/+13
| | | | | Bug pointed out by: many Pointy hat to: me :(
* Don't abuse stack space while in kernel land, use heap instead.piso2008-03-171-5/+10
|
* -Don't pass down the entire pkt to ProtoAliasIn, ProtoAliasOut, FragmentInpiso2008-03-123-305/+43
| | | | | and FragmentOut. -Axe the old PacketAlias API: it has been deprecated since 5.x.
* MFP4:piso2008-03-067-77/+67
| | | | | | restrict the utilization of direct pointers to the content of ip packet. These modifications are functionally nop()s thus can be merged with no side effects.
* Simpler version of the previous commit.des2007-12-061-5/+2
|
* Fix strict alias warnings.jb2007-11-231-2/+5
|
* o Kill EOLWS while I'm here.maxim2007-04-301-2/+2
|
* o Fix strtoul() error conditions check.maxim2007-04-301-1/+1
| | | | | | PR: kern/108211 Submitted by: Yong Tang MFC after: 2 weeks
* Prevent the usage of an uninitialized variable: do not acceptpiso2007-04-071-0/+11
| | | | | | | | | | StartMediaTx message before an OpnRcvChnAck message was received. Reviewed by: glebius Approved by: glebius (mentor) MFC after: 3 days Found with: Coverity Prevent(tm) CID: 498
* Silence Coverity about an unused variable.piso2007-04-071-1/+1
| | | | | | | Reviewed by: glebius Approved by: glebius (mentor) MFC after: 3 days CID: 538
* Include string.h for non-kernel builds to get proper memcpy prototype.kan2007-04-041-0/+1
|
* Include string.h for non-kernel builds to get proper strcpy, strlenkan2007-04-041-0/+1
| | | | prototypes.
* Do not assign result of (char *) cast to u_char * variable.kan2007-04-041-1/+1
|
* o made in kernel libalias mpsafepiso2006-12-156-94/+327
| | | | | | | | o fixed a comment o made in kernel libalias a bit less verbose (disabled automatic logging everytime a new link is added or deleted) Approved by: glebius (mentor)
* Make libalias.conf parsing a bit smarter.piso2006-12-011-10/+18
| | | | | | | | This closes PR kern/106112. While here, add mbuf's #includes i forgot in the previous commit. Approved by: gleb
* Remove m_megapullup from ng_nat and put it under libalias.piso2006-12-012-0/+41
| | | | Approved by: gleb
* Fix TFTP NAT support by making sure the appropriate fingerprinting checksmarcus2006-11-071-2/+4
| | | | | | are done. Reviewed by: piso
* Merge the rest of my changes.ru2006-10-111-13/+26
|
* Various mdoc and grammar fixes.piso2006-10-081-279/+282
| | | | | Approved by: glebius Reviewed by: glebius, ru
* Compilation.piso2006-09-271-1/+1
|
* Summer of Code 2005: improve libalias - part 1 of 2piso2006-09-2618-266/+2052
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | With the first part of my previous Summer of Code work, we get: -made libalias modular: -support for 'particular' protocols (like ftp/irc/etcetc) is no more hardcoded inside libalias, but it's available through external modules loadable at runtime -modules are available both in kernel (/boot/kernel/alias_*.ko) and user land (/lib/libalias_*) -protocols/applications modularized are: cuseeme, ftp, irc, nbt, pptp, skinny and smedia -added logging support for kernel side -cleanup After a buildworld, do a 'mergemaster -i' to install the file libalias.conf in /etc or manually copy it. During startup (and after every HUP signal) user land applications running the new libalias will try to read a file in /etc called libalias.conf: that file contains the list of modules to load. User land applications affected by this commit are ppp and natd: if libalias.conf is present in /etc you won't notice any difference. The only kernel land bit affected by this commit is ng_nat: if you are using ng_nat, and it doesn't correctly handle ftp/irc/etcetc sessions anymore, remember to kldload the correspondent module (i.e. kldload alias_ftp). General information and details about the inner working are available in the libalias man page under the section 'MODULAR ARCHITECTURE (AND ipfw(4) SUPPORT)'. NOTA BENE: this commit affects _ONLY_ libalias, ipfw in-kernel nat support will be part of the next libalias-related commit. Approved by: glebius Reviewed by: glebius, ru
* o Kill BUGS section as it is not valid since rev. 1.4 alias_pptp.c.maxim2006-07-041-6/+1
| | | | | Spotted by: ru.unix.bsd activists MFC after: 1 week
* Fix prototype.ru2005-11-241-1/+1
|
* Use monotonic 'time_uptime' instead of 'time_second' as timebaseandre2005-09-191-3/+3
| | | | for timeouts.
* Libalias incorrectly applies proxy rules to the global divertphk2005-06-271-1/+5
| | | | | | | socket: it should only look for existing translation entries, not create new ones (no matter how it got the idea). Approved by: re(scottl)
OpenPOWER on IntegriCloud