CVS log for src/lib/libnpf/npf.c

Up to [cvs.NetBSD.org] / src / lib / libnpf

Request diff between arbitrary revisions

Default branch: MAIN
Current tag: MAIN

Revision 1.19 / (download) - annotate - [select for diffs], Wed Mar 20 00:29:46 2013 UTC (2 months ago) by christos
Branch: MAIN
CVS Tags: agc-symver-base, agc-symver, HEAD
Changes since 1.18: +42 -3 lines
Diff to previous 1.18 (colored)

Make ALG's autoloadable by providing in the config file:
	alg "algname"

Revision 1.18 / (download) - annotate - [select for diffs], Sat Feb 16 21:11:16 2013 UTC (3 months ago) by rmind
Branch: MAIN
CVS Tags: tls-maxphys-nbase, tls-maxphys-base
Changes since 1.17: +6 -9 lines
Diff to previous 1.17 (colored)

- Convert NPF dynamic rule ID to just incremented 64-bit counter.
- Fix multiple bugs.  Also, update the man page.

Revision 1.17 / (download) - annotate - [select for diffs], Sun Feb 10 23:47:37 2013 UTC (3 months, 1 week ago) by rmind
Branch: MAIN
Changes since 1.16: +42 -2 lines
Diff to previous 1.16 (colored)

- Fix NPF config reload with dynamic rules present.
- Implement list and flush commands on a dynamic ruleset.

Revision 1.16 / (download) - annotate - [select for diffs], Sat Feb 9 03:35:33 2013 UTC (3 months, 1 week ago) by rmind
Branch: MAIN
Changes since 1.15: +189 -64 lines
Diff to previous 1.15 (colored)

NPF:
- Implement dynamic NPF rules.  Controlled through npf(3) library of via
  npfctl rule command.  A rule can be removed using a unique identifier,
  returned on addition, or using a key which is SHA1 hash of the rule.
  Adjust npftest and add a regression test.
- Improvements to rule inspection mechanism.
- Initial BPF support as an alternative to n-code.
- Minor fixes; bump the version.

Revision 1.15 / (download) - annotate - [select for diffs], Sun Dec 23 21:01:05 2012 UTC (4 months, 3 weeks ago) by rmind
Branch: MAIN
CVS Tags: yamt-pagecache-base8
Changes since 1.14: +21 -8 lines
Diff to previous 1.14 (colored)

- Add NPF version check in proplist as well, not only ioctl.  Bump the version.
- Fix a bug in table entry lookup.
- Updates/fixes to the man pages.  Misc.

Revision 1.14 / (download) - annotate - [select for diffs], Sun Oct 28 16:27:20 2012 UTC (6 months, 3 weeks ago) by rmind
Branch: MAIN
CVS Tags: yamt-pagecache-base7, yamt-pagecache-base6
Changes since 1.13: +6 -5 lines
Diff to previous 1.13 (colored)

Fix for npfctl show case.  Improve some description while here.

Revision 1.13 / (download) - annotate - [select for diffs], Sun Sep 16 13:47:42 2012 UTC (8 months ago) by rmind
Branch: MAIN
Changes since 1.12: +68 -28 lines
Diff to previous 1.12 (colored)

Implement dynamic NPF extensions interface.  An extension consists of
dynamically loaded module (.so) supplementing npfctl(8) and a kernel
module.  Move normalisation and logging functionality into their own
extensions.  More improvements to come.

Revision 1.12 / (download) - annotate - [select for diffs], Wed Aug 15 18:44:56 2012 UTC (9 months ago) by rmind
Branch: MAIN
Branch point for: tls-maxphys
Changes since 1.11: +4 -4 lines
Diff to previous 1.11 (colored)

- {npf_mk_rproc,npf_nat_save}: fix the fetching of {rproc-ptr,id_ptr}.
- npf_rproc_setlog: initialise variables to 0, as keys may not exist.

Bugs found by mlelstv@ while testing on Amiga.

Revision 1.11 / (download) - annotate - [select for diffs], Sun Aug 12 03:35:14 2012 UTC (9 months, 1 week ago) by rmind
Branch: MAIN
Changes since 1.10: +71 -2 lines
Diff to previous 1.10 (colored)

- Extend npftest: add ruleset inspection testing from the config generated
  by npfctl debug functionality.  Auto-create npftest interfaces for this.
- NPF sessions: combine protocol and interface into a separate substructure,
  share between the entries and thus fix the handling of them.  Constify.
- npftest: add regression tests for NAT policies.
- npf_build_nat: simplify and fix bi-NAT regression.
- Bump yacc stack size for npfctl.

Revision 1.10 / (download) - annotate - [select for diffs], Sun Jul 15 00:22:59 2012 UTC (10 months ago) by rmind
Branch: MAIN
Changes since 1.9: +6 -5 lines
Diff to previous 1.9 (colored)

- Rework NPF tables and fix support for IPv6.  Implement tree table type
  using radix / Patricia tree.  Universal IPv4/IPv6 comparator for ptree(3)
  was contributed by Matt Thomas.
- NPF tables: update regression tests, improve npfctl(8) error messages.
- Fix few bugs when using kernel modules and handle module autounloader.
- Few other fixes and misc cleanups.
- Bump the version.

Revision 1.9 / (download) - annotate - [select for diffs], Sun Jul 1 23:21:07 2012 UTC (10 months, 2 weeks ago) by rmind
Branch: MAIN
Changes since 1.8: +43 -2 lines
Diff to previous 1.8 (colored)

NPF improvements:
- Add NPF_OPCODE_PROTO to match the address and/or protocol only.
- Update parser to support arbitrary "pass proto <name/number>".
- Fix IPv6 address and protocol handling (add a regression test).
- Fix few theorethical races in session handling module.
- Misc fixes, simplifications and some clean up.

Revision 1.8 / (download) - annotate - [select for diffs], Sun Apr 1 19:16:24 2012 UTC (13 months, 2 weeks ago) by rmind
Branch: MAIN
CVS Tags: yamt-pagecache-base5, yamt-pagecache-base4
Changes since 1.7: +105 -6 lines
Diff to previous 1.7 (colored)

Add NPF config retrieval routines.

Revision 1.7 / (download) - annotate - [select for diffs], Sun Feb 5 00:37:13 2012 UTC (15 months, 2 weeks ago) by rmind
Branch: MAIN
CVS Tags: netbsd-6-base
Branch point for: netbsd-6
Changes since 1.6: +43 -8 lines
Diff to previous 1.6 (colored)

Multiple NPF fixes, add better error reporting from kernel side, add some
asserts, bump the version.

Revision 1.6 / (download) - annotate - [select for diffs], Sun Jan 15 00:49:47 2012 UTC (16 months ago) by rmind
Branch: MAIN
Changes since 1.5: +22 -4 lines
Diff to previous 1.5 (colored)

- Expire all sessions on flush.
- Enable checking for zero mask in IP{4,6}MATCH after npfctl changes.
- Make locking symmetric for npf_ruleset_inspect().
- Sync function prototypes in npf(3) man page with reality.
- Rename NPF_TABLE_RBTREE to NPF_TABLE_TREE.

Revision 1.5 / (download) - annotate - [select for diffs], Sat Nov 26 23:42:27 2011 UTC (17 months, 3 weeks ago) by christos
Branch: MAIN
Changes since 1.4: +11 -9 lines
Diff to previous 1.4 (colored)

- consistency with types
- prefer sizeof(*var)

Revision 1.4 / (download) - annotate - [select for diffs], Sat Nov 26 23:11:19 2011 UTC (17 months, 3 weeks ago) by rmind
Branch: MAIN
Changes since 1.3: +20 -8 lines
Diff to previous 1.3 (colored)

Add _npf_config_setsubmit() function.

Revision 1.3 / (download) - annotate - [select for diffs], Fri Nov 4 01:00:28 2011 UTC (18 months, 2 weeks ago) by zoltan
Branch: MAIN
CVS Tags: yamt-pagecache-base3, yamt-pagecache-base2
Changes since 1.2: +8 -5 lines
Diff to previous 1.2 (colored)

Add IPv6 support for NPF.

Revision 1.2 / (download) - annotate - [select for diffs], Wed Feb 2 15:17:37 2011 UTC (2 years, 3 months ago) by rmind
Branch: MAIN
CVS Tags: yamt-pagecache-base, cherry-xenmp-base, cherry-xenmp, bouyer-quota2-nbase, bouyer-quota2-base
Branch point for: yamt-pagecache, bouyer-quota2
Changes since 1.1: +9 -9 lines
Diff to previous 1.1 (colored)

npf_nat_create: fix attributes.

Revision 1.1 / (download) - annotate - [select for diffs], Wed Feb 2 02:20:25 2011 UTC (2 years, 3 months ago) by rmind
Branch: MAIN

NPF checkpoint:
- Add libnpf(3) - a library to control NPF (configuration, ruleset, etc).
- Add NPF support for ftp-proxy(8).
- Add rc.d script for NPF.
- Convert npfctl(8) to use libnpf(3) and thus make it less depressive.
  Note: next clean-up step should be a parser, once dholland@ will finish it.
- Add more documentation.
- Various fixes.

This form allows you to request diff's between any two revisions of a file. You may select a symbolic revision name using the selection box or you may type in a numeric name using the type-in text box.

Diffs between
and

CVSweb <webmaster@jp.NetBSD.org>

Preferred Diff type:
View only Branch:
Sort log by: