| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | DNOLD_IS_ECN introduced by r266941 is not required. | Hiren Panchasara | 2014-06-01 | 1 | -3/+0 |
| * | ECN marking implenetation for dummynet. | Hiren Panchasara | 2014-06-01 | 3 | -5/+81 |
| * | Fix pf(4) to build with MAXCPU set to 256. MAXCPU is actually a count, | John Baldwin | 2014-05-29 | 1 | -1/+1 |
| * | Since ipfw nat configures all options in one step, we should set all bits | Andrey V. Elsukov | 2014-05-18 | 1 | -1/+1 |
| * | Fix wrong formatting of 0.0.0.0/X table records in ipfw(8). | Alexander V. Chernikov | 2014-05-17 | 1 | -0/+1 |
| * | o In pf_normalize_ip() we don't need mtag in | Gleb Smirnoff | 2014-05-17 | 1 | -22/+7 |
| * | Define startup order the same way as it is in dummynet. | Mikolaj Golub | 2014-04-26 | 1 | -2/+2 |
| * | The current API for adding rules with pool addresses is the following: | Gleb Smirnoff | 2014-04-25 | 1 | -1/+3 |
| * | Backport from projects/pf r263908: | Martin Matuska | 2014-04-20 | 2 | -12/+26 |
| |\ |
|
| * | | Set oif only for outgoing packets. | Andrey V. Elsukov | 2014-04-16 | 1 | -1/+1 |
| * | | Backout r257223,r257224,r257225,r257246,r257710. The changes caused | Gleb Smirnoff | 2014-04-16 | 2 | -355/+84 |
| * | | Free resources and error cases; re-indent a curly brace while here. | Christian Brueffer | 2014-04-13 | 1 | -3/+7 |
| * | | Merge from projects/pf r264198: | Martin Matuska | 2014-04-07 | 1 | -6/+12 |
| |\ \ |
|
| | * | | Execute pf_overload_task() in vnet context. Fixes a vnet kernel panic. | Martin Matuska | 2014-04-06 | 1 | -6/+12 |
| | |/ |
|
| | * | De-virtualize UMA zone pf_mtag_z and move to global initialization part. | Martin Matuska | 2014-03-29 | 2 | -12/+24 |
| | * | Merge head up to r263906. | Martin Matuska | 2014-03-29 | 3 | -25/+10 |
| | |\
| |/
|/| |
|
| | * | Merge head up to r262222 (last merge was incomplete). | Martin Matuska | 2014-02-19 | 17 | -174/+332 |
| | |\ |
|
| | * \ | Merge head up to r258343. | Gleb Smirnoff | 2013-11-19 | 1 | -7/+4 |
| | |\ \ |
|
| | * | | | - Split functions that initialize various pf parts into their vimage | Gleb Smirnoff | 2013-11-18 | 4 | -41/+24 |
| | * | | | Merge head r232040 through r258006. | Gleb Smirnoff | 2013-11-11 | 4 | -12/+12 |
| | |\ \ \ |
|
| | * \ \ \ | Merge head r232040 through r257457. | Gleb Smirnoff | 2013-10-31 | 19 | -89/+700 |
| | |\ \ \ \ |
|
| | * \ \ \ \ | Merge head r233826 through r256722. | Gleb Smirnoff | 2013-10-18 | 8 | -59/+108 |
| | |\ \ \ \ \ |
|
| * | | | | | | | Merge from projects/pf r251993 (glebius@): | Martin Matuska | 2014-03-25 | 3 | -45/+43 |
| |\| | | | | | |
|
| | * | | | | | | De-vnet hash sizes and hash masks. | Gleb Smirnoff | 2013-06-19 | 3 | -44/+42 |
| * | | | | | | | Fix breakage in ipfw+VIMAGE after r261590. | Gleb Smirnoff | 2014-03-21 | 1 | -14/+6 |
| * | | | | | | | - Remove rt_metrics_lite and simply put its members into rtentry. | Gleb Smirnoff | 2014-03-05 | 1 | -1/+1 |
| * | | | | | | | Instead of playing games with casts simply add 3 more members to the | Gleb Smirnoff | 2014-03-05 | 1 | -10/+3 |
| * | | | | | | | Revert r262196 | Martin Matuska | 2014-02-19 | 1 | -30/+19 |
| | |_|_|_|_|/
|/| | | | | |
|
| * | | | | | | De-virtualize pf_mtag_z [1] | Martin Matuska | 2014-02-18 | 1 | -19/+30 |
| * | | | | | | Summary: Two quick edits to the implementation notes as they're no | George V. Neville-Neil | 2014-02-15 | 1 | -2/+2 |
| * | | | | | | Under sys/netpfil/ipfw, surround two IPv6-specific static functions with | Dimitry Andric | 2014-02-15 | 2 | -0/+4 |
| * | | | | | | Once pf became not covered by a single mutex, many counters in it became | Gleb Smirnoff | 2014-02-14 | 3 | -46/+72 |
| * | | | | | | Reorder struct ip_fw_chain: | Alexander V. Chernikov | 2014-01-24 | 3 | -10/+12 |
| * | | | | | | Remove NULL pointer dereference. | Gleb Smirnoff | 2014-01-22 | 1 | -1/+0 |
| * | | | | | | Fix resource leak and simplify code for DIOCCHANGEADDR. | Gleb Smirnoff | 2014-01-22 | 1 | -24/+18 |
| * | | | | | | Revert r260548. We really should not use IPFW_WLOCK() here | Alexander V. Chernikov | 2014-01-11 | 1 | -3/+3 |
| * | | | | | | We don't need chain write lock since we're not modifying its contents. | Alexander V. Chernikov | 2014-01-11 | 1 | -3/+3 |
| * | | | | | | When pf_get_translation() fails, it should leave *sn pointer pristine, | Gleb Smirnoff | 2014-01-06 | 1 | -0/+1 |
| * | | | | | | Use rnh_matchaddr instead of rnh_lookup for longest-prefix match. | Alexander V. Chernikov | 2014-01-03 | 1 | -3/+3 |
| * | | | | | | Fix incorrect header guard define in sys/netpfil/pf/pf.h, which snuck in | Dimitry Andric | 2013-12-22 | 1 | -1/+1 |
| * | | | | | | Fix fallout from r258479: in pf_free_src_node() the node must already | Gleb Smirnoff | 2013-12-22 | 1 | -1/+0 |
| * | | | | | | Add net.inet.ip.fw.dyn_keep_states sysctl which | Alexander V. Chernikov | 2013-12-18 | 1 | -1/+24 |
| * | | | | | | Simplify O_NAT opcode handling. | Alexander V. Chernikov | 2013-11-28 | 1 | -19/+16 |
| * | | | | | | Check ipfw table numbers in both user and kernel space before rule addition. | Alexander V. Chernikov | 2013-11-28 | 1 | -1/+1 |
| * | | | | | | In sys/netpfil/ipfw/ip_fw_nat.c:vnet_ipfw_nat_uninit() we call "IPFW_WLOCK(ch... | Craig Rodrigues | 2013-11-25 | 1 | -1/+1 |
| * | | | | | | The DIOCKILLSRCNODES operation was implemented with O(m*n) complexity, | Gleb Smirnoff | 2013-11-22 | 1 | -38/+56 |
| * | | | | | | To support upcoming changes change internal API for source node handling: | Gleb Smirnoff | 2013-11-22 | 1 | -16/+54 |
| * | | | | | | Fix off by ones when scanning source nodes hash. | Gleb Smirnoff | 2013-11-22 | 1 | -3/+3 |
| * | | | | | | Style: don't compare unsigned <= 0. | Gleb Smirnoff | 2013-11-22 | 1 | -3/+3 |
| * | | | | | | add a counter on the struct mq (a queue of mbufs), | Luigi Rizzo | 2013-11-22 | 3 | -0/+32 |
