d/freebsd-nq
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
freebsd-nq/sys/netinet
History
Bill Fumerola 52cf11d8a1 the IP_FW_GET code in ip_fw_ctl() sizes a buffer to hold information 
about rules and dynamic rules. it later fills this buffer with these
rules.

it also takes the opporunity to compare the expiration of the dynamic
rules with the current time and either marks them for deletion or simply
charges the countdown.

unfortunatly it does this all (the sizing, the buffer copying, and the
expiration GC) with no spl protection whatsoever. it was possible for
the dynamic rule(s) to be ripped out from under the request before it
had completed, resulting in corrupt memory dereferencing.

Reviewed by:	ps
MFC before:	4.4-RELEASE, hopefully.
2001-08-26 10:09:47 +00:00
..
libalias
Added TFTP support.
2001-08-21 16:25:38 +00:00
accf_data.c
Remove headers not needed.
2000-10-07 23:15:17 +00:00
accf_http.c
Fix incorrect logic wouldn't disconnect incomming connections that had been
2001-01-03 19:50:23 +00:00
icmp6.h
- Renumber KAME local ICMP types and NDP options numberes beacaues they
2001-06-21 07:08:43 +00:00
icmp_var.h
Clean up RST ratelimiting. Previously, ratelimiting occured before tests
2001-02-11 07:39:51 +00:00
if_atm.c
if_atm.h
if_ether.c
Do not perform arp send/resolve on an interface marked NOARP.
2001-06-15 21:00:32 +00:00
if_ether.h
if_fddi.h
igmp_var.h
igmp.c
Add netstat(1) knob to reset net.inet.{ip|icmp|tcp|udp|igmp}.stats.
2001-06-23 17:17:59 +00:00
igmp.h
in_cksum.c
in_gif.c
gif(4) and stf(4) modernization:
2001-07-02 21:02:09 +00:00
in_gif.h
gif(4) and stf(4) modernization:
2001-07-02 21:02:09 +00:00
in_hostcache.c
Convert more malloc+bzero to malloc+M_ZERO.
2000-12-08 21:51:06 +00:00
in_hostcache.h
in_pcb.c
When running aplication joined multicast address,
2001-08-04 17:10:14 +00:00
in_pcb.h
When running aplication joined multicast address,
2001-08-04 17:10:14 +00:00
in_proto.c
gif(4) and stf(4) modernization:
2001-07-02 21:02:09 +00:00
in_rmx.c
In in_ifadown(), differentiate between whether the interface goes
2001-05-11 14:37:34 +00:00
in_systm.h
in_var.h
Backout damage to the INADDR_TO_IFP() macro in revision 1.7.
2001-07-17 10:30:21 +00:00
in.c
When running aplication joined multicast address,
2001-08-04 17:10:14 +00:00
in.h
Fix a stack of KAME netinet6/in6.h warnings:
2001-06-15 00:37:27 +00:00
ip6.h
Sync with recent KAME.
2001-06-11 12:39:29 +00:00
ip_divert.c
move ipsec security policy allocation into in_pcballoc, before
2001-07-26 19:19:49 +00:00
ip_dummynet.c
Sync with the bridge/dummynet/ipfw code already tested in stable.
2001-02-10 00:10:18 +00:00
ip_dummynet.h
MFS: bridge/ipfw/dummynet fixes (bridge.c will be committed separately)
2001-02-02 00:18:00 +00:00
ip_ecn.c
Sync with recent KAME.
2001-06-11 12:39:29 +00:00
ip_ecn.h
Sync with recent KAME.
2001-06-11 12:39:29 +00:00
ip_encap.c
Somewhat modernize ip_mroute.c:
2001-07-25 20:15:49 +00:00
ip_encap.h
sync with kame tree as of july00. tons of bug fixes/improvements.
2000-07-04 16:35:15 +00:00
ip_flow.c
Bring in fix from NetBSD's revision 1.16:
2001-06-26 09:00:50 +00:00
ip_flow.h
Back out the previous change to the queue(3) interface.
2000-05-26 02:09:24 +00:00
ip_fw.c
the IP_FW_GET code in ip_fw_ctl() sizes a buffer to hold information
2001-08-26 10:09:47 +00:00
ip_fw.h
Introduce a new feature in IPFW: Check of the source or destination
2001-02-13 14:12:37 +00:00
ip_icmp.c
Add netstat(1) knob to reset net.inet.{ip|icmp|tcp|udp|igmp}.stats.
2001-06-23 17:17:59 +00:00
ip_icmp.h
ip_id.c
Add ``options RANDOM_IP_ID'' which randomizes the ID field of IP packets.
2001-06-01 10:02:28 +00:00
ip_input.c
Add netstat(1) knob to reset net.inet.{ip|icmp|tcp|udp|igmp}.stats.
2001-06-23 17:17:59 +00:00
ip_mroute.c
Somewhat modernize ip_mroute.c:
2001-07-25 20:15:49 +00:00
ip_mroute.h
Somewhat modernize ip_mroute.c:
2001-07-25 20:15:49 +00:00
ip_output.c
MFS: Avoid dropping fragments in the absence of an interface address.
2001-08-03 17:36:06 +00:00
ip_var.h
Sync with recent KAME.
2001-06-11 12:39:29 +00:00
ip.h
ipprotosw.h
Make the protoswitch definitiosn checkable in the same way that
2001-08-10 23:17:22 +00:00
raw_ip.c
move ipsec security policy allocation into in_pcballoc, before
2001-07-26 19:19:49 +00:00
tcp_debug.c
sync with kame tree as of july00. tons of bug fixes/improvements.
2000-07-04 16:35:15 +00:00
tcp_debug.h
tcp_fsm.h
tcp_input.c
Correct a typo in a comment: FIN_WAIT2 -> FIN_WAIT_2
2001-08-23 22:34:29 +00:00
tcp_output.c
Eliminate the allocation of a tcp template structure for each
2001-06-23 03:21:46 +00:00
tcp_reass.c
Correct a typo in a comment: FIN_WAIT2 -> FIN_WAIT_2
2001-08-23 22:34:29 +00:00
tcp_seq.h
Much delayed but now present: RFC 1948 style sequence numbers
2001-08-22 00:58:16 +00:00
tcp_subr.c
Much delayed but now present: RFC 1948 style sequence numbers
2001-08-22 00:58:16 +00:00
tcp_timer.c
Much delayed but now present: RFC 1948 style sequence numbers
2001-08-22 00:58:16 +00:00
tcp_timer.h
tcp_timewait.c
Much delayed but now present: RFC 1948 style sequence numbers
2001-08-22 00:58:16 +00:00
tcp_usrreq.c
Much delayed but now present: RFC 1948 style sequence numbers
2001-08-22 00:58:16 +00:00
tcp_var.h
Much delayed but now present: RFC 1948 style sequence numbers
2001-08-22 00:58:16 +00:00
tcp.h
o Minor style(9)ism to make consistent with -STABLE
2001-01-09 18:26:17 +00:00
tcpip.h
Remove struct full_tcpiphdr{}.
2001-02-26 20:10:16 +00:00
udp_usrreq.c
move ipsec security policy allocation into in_pcballoc, before
2001-07-26 19:19:49 +00:00
udp_var.h
remove unused data structure definition, and corresponding macro into*()
2001-02-18 07:10:03 +00:00
udp.h