CVS commit: src

Mindaugas Rasiukevicius Wed, 10 Nov 2010 22:30:46 -0800

Module Name:    src
Committed By:   rmind
Date:           Thu Nov 11 06:30:40 UTC 2010


Modified Files:
        src/sys/modules/npf: Makefile
        src/sys/net/npf: files.npf npf.h npf_alg.c npf_alg_icmp.c npf_ctl.c
            npf_handler.c npf_impl.h npf_inet.c npf_instr.c npf_mbuf.c
            npf_nat.c npf_ncode.h npf_processor.c npf_ruleset.c npf_sendpkt.c
            npf_session.c npf_tableset.c
        src/usr.sbin/npf/npfctl: npf_data.c npf_ncgen.c npf_parser.c npfctl.c
            npfctl.h
Added Files:
        src/sys/net/npf: npf_state.c

Log Message:
NPF checkpoint:
- Add proper TCP state tracking as described in Guido van Rooij paper,
  plus handle TCP Window Scaling option.
- Completely rework npf_cache_t, reduce granularity, simplify code.
- Add npf_addr_t as an abstraction, amend session handling code, as well
  as NAT code et al, to use it.  Now design is prepared for IPv6 support.
- Handle IPv4 fragments i.e. perform packet reassembly.
- Add support for IPv4 ID randomization and minimum TTL enforcement.
- Add support for TCP MSS "clamping".
- Random bits for IPv6.  Various fixes and clean-up.


To generate a diff of this commit:
cvs rdiff -u -r1.2 -r1.3 src/sys/modules/npf/Makefile
cvs rdiff -u -r1.2 -r1.3 src/sys/net/npf/files.npf src/sys/net/npf/npf_ctl.c \
    src/sys/net/npf/npf_nat.c src/sys/net/npf/npf_ncode.h \
    src/sys/net/npf/npf_processor.c src/sys/net/npf/npf_ruleset.c \
    src/sys/net/npf/npf_sendpkt.c src/sys/net/npf/npf_tableset.c
cvs rdiff -u -r1.3 -r1.4 src/sys/net/npf/npf.h src/sys/net/npf/npf_alg_icmp.c \
    src/sys/net/npf/npf_handler.c src/sys/net/npf/npf_impl.h \
    src/sys/net/npf/npf_inet.c src/sys/net/npf/npf_instr.c
cvs rdiff -u -r1.1 -r1.2 src/sys/net/npf/npf_alg.c
cvs rdiff -u -r1.4 -r1.5 src/sys/net/npf/npf_mbuf.c \
    src/sys/net/npf/npf_session.c
cvs rdiff -u -r0 -r1.1 src/sys/net/npf/npf_state.c
cvs rdiff -u -r1.3 -r1.4 src/usr.sbin/npf/npfctl/npf_data.c
cvs rdiff -u -r1.2 -r1.3 src/usr.sbin/npf/npfctl/npf_ncgen.c \
    src/usr.sbin/npf/npfctl/npf_parser.c src/usr.sbin/npf/npfctl/npfctl.h
cvs rdiff -u -r1.1 -r1.2 src/usr.sbin/npf/npfctl/npfctl.c

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

CVS commit: src

Reply via email to