From owner-cvs-all  Tue Sep  5 20:10:46 2000
Delivered-To: cvs-all@freebsd.org
Received: from freefall.freebsd.org (freefall.FreeBSD.org [216.136.204.21])
	by hub.freebsd.org (Postfix) with ESMTP
	id 40A3337B422; Tue,  5 Sep 2000 20:10:43 -0700 (PDT)
Received: (from billf@localhost)
	by freefall.freebsd.org (8.9.3/8.9.2) id UAA19323;
	Tue, 5 Sep 2000 20:10:43 -0700 (PDT)
	(envelope-from billf@FreeBSD.org)
Message-Id: <200009060310.UAA19323@freefall.freebsd.org>
From: Bill Fumerola <billf@FreeBSD.org>
Date: Tue, 5 Sep 2000 20:10:43 -0700 (PDT)
To: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org
Subject: cvs commit: src/sys/netinet ip_fw.c
X-FreeBSD-CVS-Branch: HEAD
Sender: owner-cvs-all@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

billf       2000/09/05 20:10:43 PDT

  Modified files:
    sys/netinet          ip_fw.c 
  Log:
  1. IP_FW_F_{UID,GID} are _not_ commands, they are extras. The sanity checking
  for them does not belong in the IP_FW_F_COMMAND switch, that mask doesn't even
  apply to them(!).
  
  2. You cannot add a uid/gid rule to something that isn't TCP, UDP, or IP.
  
  XXX - this should be handled in ipfw(8) as well (for more diagnostic output),
  but this at least protects bogus rules from being added.
  
  Pointy hat:	green
  
  Revision  Changes    Path
  1.139     +8 -3      src/sys/netinet/ip_fw.c



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message