![[BACK]](/icons/back.gif){kind=icon}
Up to [cvs.NetBSD.org] / src / lib / libnpf
Request diff between arbitrary revisions
Default branch: MAIN
Current tag: MAIN
Revision 1.16 / (download) - annotate - [select for diffs], Wed Mar 20 00:29:46 2013 UTC (2 months ago) by christos
Branch: MAIN
CVS Tags: agc-symver-base,
agc-symver,
HEAD
Changes since 1.15: +6 -1
lines
Diff to previous 1.15 (colored)
Make ALG's autoloadable by providing in the config file: alg "algname"
Revision 1.15 / (download) - annotate - [select for diffs], Sat Feb 16 21:11:17 2013 UTC (3 months ago) by rmind
Branch: MAIN
CVS Tags: tls-maxphys-nbase,
tls-maxphys-base
Changes since 1.14: +3 -3
lines
Diff to previous 1.14 (colored)
- Convert NPF dynamic rule ID to just incremented 64-bit counter. - Fix multiple bugs. Also, update the man page.
Revision 1.14 / (download) - annotate - [select for diffs], Sun Feb 10 23:47:38 2013 UTC (3 months, 1 week ago) by rmind
Branch: MAIN
Changes since 1.13: +3 -1
lines
Diff to previous 1.13 (colored)
- Fix NPF config reload with dynamic rules present. - Implement list and flush commands on a dynamic ruleset.
Revision 1.13 / (download) - annotate - [select for diffs], Sat Feb 9 03:35:33 2013 UTC (3 months, 1 week ago) by rmind
Branch: MAIN
Changes since 1.12: +12 -10
lines
Diff to previous 1.12 (colored)
NPF: - Implement dynamic NPF rules. Controlled through npf(3) library of via npfctl rule command. A rule can be removed using a unique identifier, returned on addition, or using a key which is SHA1 hash of the rule. Adjust npftest and add a regression test. - Improvements to rule inspection mechanism. - Initial BPF support as an alternative to n-code. - Minor fixes; bump the version.
Revision 1.12 / (download) - annotate - [select for diffs], Sun Dec 23 21:01:05 2012 UTC (4 months, 4 weeks ago) by rmind
Branch: MAIN
CVS Tags: yamt-pagecache-base8
Changes since 1.11: +6 -6
lines
Diff to previous 1.11 (colored)
- Add NPF version check in proplist as well, not only ioctl. Bump the version. - Fix a bug in table entry lookup. - Updates/fixes to the man pages. Misc.
Revision 1.11 / (download) - annotate - [select for diffs], Sun Sep 16 13:47:42 2012 UTC (8 months ago) by rmind
Branch: MAIN
CVS Tags: yamt-pagecache-base7,
yamt-pagecache-base6
Changes since 1.10: +12 -7
lines
Diff to previous 1.10 (colored)
Implement dynamic NPF extensions interface. An extension consists of dynamically loaded module (.so) supplementing npfctl(8) and a kernel module. Move normalisation and logging functionality into their own extensions. More improvements to come.
Revision 1.10 / (download) - annotate - [select for diffs], Sun Aug 12 03:35:14 2012 UTC (9 months, 1 week ago) by rmind
Branch: MAIN
Branch point for: tls-maxphys
Changes since 1.9: +6 -1
lines
Diff to previous 1.9 (colored)
- Extend npftest: add ruleset inspection testing from the config generated by npfctl debug functionality. Auto-create npftest interfaces for this. - NPF sessions: combine protocol and interface into a separate substructure, share between the entries and thus fix the handling of them. Constify. - npftest: add regression tests for NAT policies. - npf_build_nat: simplify and fix bi-NAT regression. - Bump yacc stack size for npfctl.
Revision 1.9 / (download) - annotate - [select for diffs], Sun Jul 15 00:22:59 2012 UTC (10 months, 1 week ago) by rmind
Branch: MAIN
Changes since 1.8: +3 -2
lines
Diff to previous 1.8 (colored)
- Rework NPF tables and fix support for IPv6. Implement tree table type using radix / Patricia tree. Universal IPv4/IPv6 comparator for ptree(3) was contributed by Matt Thomas. - NPF tables: update regression tests, improve npfctl(8) error messages. - Fix few bugs when using kernel modules and handle module autounloader. - Few other fixes and misc cleanups. - Bump the version.
Revision 1.8 / (download) - annotate - [select for diffs], Sun Jul 1 23:21:07 2012 UTC (10 months, 2 weeks ago) by rmind
Branch: MAIN
Changes since 1.7: +18 -16
lines
Diff to previous 1.7 (colored)
NPF improvements: - Add NPF_OPCODE_PROTO to match the address and/or protocol only. - Update parser to support arbitrary "pass proto <name/number>". - Fix IPv6 address and protocol handling (add a regression test). - Fix few theorethical races in session handling module. - Misc fixes, simplifications and some clean up.
Revision 1.7 / (download) - annotate - [select for diffs], Sun Apr 1 19:16:24 2012 UTC (13 months, 2 weeks ago) by rmind
Branch: MAIN
CVS Tags: yamt-pagecache-base5,
yamt-pagecache-base4
Changes since 1.6: +11 -2
lines
Diff to previous 1.6 (colored)
Add NPF config retrieval routines.
Revision 1.6 / (download) - annotate - [select for diffs], Sun Feb 5 00:37:13 2012 UTC (15 months, 2 weeks ago) by rmind
Branch: MAIN
CVS Tags: netbsd-6-base
Branch point for: netbsd-6
Changes since 1.5: +14 -1
lines
Diff to previous 1.5 (colored)
Multiple NPF fixes, add better error reporting from kernel side, add some asserts, bump the version.
Revision 1.5 / (download) - annotate - [select for diffs], Sun Jan 15 00:49:47 2012 UTC (16 months, 1 week ago) by rmind
Branch: MAIN
Changes since 1.4: +2 -1
lines
Diff to previous 1.4 (colored)
- Expire all sessions on flush.
- Enable checking for zero mask in IP{4,6}MATCH after npfctl changes.
- Make locking symmetric for npf_ruleset_inspect().
- Sync function prototypes in npf(3) man page with reality.
- Rename NPF_TABLE_RBTREE to NPF_TABLE_TREE.
Revision 1.4 / (download) - annotate - [select for diffs], Sat Nov 26 23:42:27 2011 UTC (17 months, 3 weeks ago) by christos
Branch: MAIN
Changes since 1.3: +5 -5
lines
Diff to previous 1.3 (colored)
- consistency with types - prefer sizeof(*var)
Revision 1.3 / (download) - annotate - [select for diffs], Sat Nov 26 23:11:19 2011 UTC (17 months, 3 weeks ago) by rmind
Branch: MAIN
Changes since 1.2: +4 -1
lines
Diff to previous 1.2 (colored)
Add _npf_config_setsubmit() function.
Revision 1.2 / (download) - annotate - [select for diffs], Fri Nov 4 01:00:28 2011 UTC (18 months, 2 weeks ago) by zoltan
Branch: MAIN
CVS Tags: yamt-pagecache-base3,
yamt-pagecache-base2
Changes since 1.1: +2 -2
lines
Diff to previous 1.1 (colored)
Add IPv6 support for NPF.
Revision 1.1 / (download) - annotate - [select for diffs], Wed Feb 2 02:20:25 2011 UTC (2 years, 3 months ago) by rmind
Branch: MAIN
CVS Tags: yamt-pagecache-base,
cherry-xenmp-base,
cherry-xenmp,
bouyer-quota2-nbase,
bouyer-quota2-base
Branch point for: yamt-pagecache,
bouyer-quota2
NPF checkpoint: - Add libnpf(3) - a library to control NPF (configuration, ruleset, etc). - Add NPF support for ftp-proxy(8). - Add rc.d script for NPF. - Convert npfctl(8) to use libnpf(3) and thus make it less depressive. Note: next clean-up step should be a parser, once dholland@ will finish it. - Add more documentation. - Various fixes.