From owner-freebsd-ipfw@FreeBSD.ORG  Mon Jul 11 11:07:05 2011
Return-Path: <owner-freebsd-ipfw@FreeBSD.ORG>
Delivered-To: freebsd-ipfw@FreeBSD.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 48334106567B
	for <freebsd-ipfw@FreeBSD.org>; Mon, 11 Jul 2011 11:07:05 +0000 (UTC)
	(envelope-from owner-bugmaster@FreeBSD.org)
Received: from freefall.freebsd.org (freefall.freebsd.org
	[IPv6:2001:4f8:fff6::28])
	by mx1.freebsd.org (Postfix) with ESMTP id 2E6F28FC2A
	for <freebsd-ipfw@FreeBSD.org>; Mon, 11 Jul 2011 11:07:05 +0000 (UTC)
Received: from freefall.freebsd.org (localhost [127.0.0.1])
	by freefall.freebsd.org (8.14.4/8.14.4) with ESMTP id p6BB75kf077023
	for <freebsd-ipfw@FreeBSD.org>; Mon, 11 Jul 2011 11:07:05 GMT
	(envelope-from owner-bugmaster@FreeBSD.org)
Received: (from gnats@localhost)
	by freefall.freebsd.org (8.14.4/8.14.4/Submit) id p6BB74eb077021
	for freebsd-ipfw@FreeBSD.org; Mon, 11 Jul 2011 11:07:04 GMT
	(envelope-from owner-bugmaster@FreeBSD.org)
Date: Mon, 11 Jul 2011 11:07:04 GMT
Message-Id: <201107111107.p6BB74eb077021@freefall.freebsd.org>
X-Authentication-Warning: freefall.freebsd.org: gnats set sender to
	owner-bugmaster@FreeBSD.org using -f
From: FreeBSD bugmaster <bugmaster@FreeBSD.org>
To: freebsd-ipfw@FreeBSD.org
Cc: 
Subject: Current problem reports assigned to freebsd-ipfw@FreeBSD.org
X-BeenThere: freebsd-ipfw@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: IPFW Technical Discussions <freebsd-ipfw.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ipfw>
List-Post: <mailto:freebsd-ipfw@freebsd.org>
List-Help: <mailto:freebsd-ipfw-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 11 Jul 2011 11:07:05 -0000

Note: to view an individual PR, use:
  http://www.freebsd.org/cgi/query-pr.cgi?pr=(number).

The following is a listing of current problems submitted by FreeBSD users.
These represent problem reports covering all versions including
experimental development code and obsolete releases.


S Tracker      Resp.      Description
--------------------------------------------------------------------------------
o kern/158066  ipfw       [ipfw] ipfw + netgraph + multicast = multicast packets
p kern/157957  ipfw       [libalias][patch] alias_ftp does not alias data sessio
p kern/157867  ipfw       [patch][ipfw] natd globalport support for ipfw nat
o kern/157796  ipfw       [ipfw] IPFW in-kernel NAT nat loopback / Default Route
o kern/157689  ipfw       [ipfw] ipfw nat config does not accept nonexistent int
o kern/156770  ipfw       [ipfw] [dummynet] [patch]: performance improvement and
p bin/156653   ipfw       ipfw(8) reports missing file as parameter problem
f kern/155927  ipfw       [ipfw] ipfw stops to check packets for compliance with
o bin/153252   ipfw       [ipfw][patch] ipfw lockdown system in subsequent call 
o kern/153161  ipfw       IPFIREWALL does not allow specify rules with ICMP code
o kern/152113  ipfw       [ipfw] page fault on 8.1-RELEASE caused by certain amo
o kern/148827  ipfw       [ipfw] divert broken with in-kernel ipfw
o kern/148689  ipfw       [ipfw] antispoof wrongly triggers on link local IPv6 a
o kern/148430  ipfw       [ipfw] IPFW schedule delete broken.
o kern/148091  ipfw       [ipfw] ipfw ipv6 handling broken.
f kern/144269  ipfw       [ipfw] problem with ipfw tables
o kern/143973  ipfw       [ipfw] [panic] ipfw forward option causes kernel reboo
o kern/143621  ipfw       [ipfw] [dummynet] [patch] dummynet and vnet use result
f kern/143474  ipfw       [ipfw] ipfw table contains the same address
o kern/137346  ipfw       [ipfw] ipfw nat redirect_proto is broken
o kern/137232  ipfw       [ipfw] parser troubles
o kern/135476  ipfw       [ipfw] IPFW table breaks after adding a large number o
p kern/131817  ipfw       [ipfw] blocks layer2 packets that should not be blocke
f kern/129036  ipfw       [ipfw] 'ipfw fwd' does not change outgoing interface n
p kern/128260  ipfw       [ipfw] [patch] ipfw_divert damages IPv6 packets
o kern/127230  ipfw       [ipfw] [patch] Feature request to add UID and/or GID l
f kern/127209  ipfw       [ipfw] IPFW table become corrupted after many changes
o kern/122963  ipfw       [ipfw] tcpdump does not show packets redirected by 'ip
s kern/121807  ipfw       [request] TCP and UDP port_table in ipfw
o kern/121122  ipfw       [ipfw] [patch] add support to ToS IP PRECEDENCE fields
o kern/116009  ipfw       [ipfw] [patch] Ignore errors when loading ruleset from
o bin/104921   ipfw       [patch] ipfw(8) sometimes treats ipv6 input as ipv4 (a
o kern/104682  ipfw       [ipfw] [patch] Some minor language consistency fixes a
o kern/103454  ipfw       [ipfw] [patch] [request] add a facility to modify DF b
o kern/103328  ipfw       [ipfw] [request] sugestions about ipfw table
o kern/102471  ipfw       [ipfw] [patch] add tos and dscp support
o kern/97951   ipfw       [ipfw] [patch] ipfw does not tie interface details to 
o kern/95084   ipfw       [ipfw] [regression] [patch] IPFW2 ignores "recv/xmit/v
f kern/91847   ipfw       [ipfw] ipfw with vlanX as the device
o kern/86957   ipfw       [ipfw] [patch] ipfw mac logging
o bin/83046    ipfw       [ipfw] ipfw2 error: "setup" is allowed for icmp, but s
o kern/82724   ipfw       [ipfw] [patch] [request] Add setnexthop and defaultrou
o bin/78785    ipfw       [patch] ipfw(8) verbosity locks machine if /etc/rc.fir
o kern/60719   ipfw       [ipfw] Headerless fragments generate cryptic error mes
s kern/55984   ipfw       [ipfw] [patch] time based firewalling support for ipfw
o kern/48172   ipfw       [ipfw] [patch] ipfw does not log size and flags
o kern/46159   ipfw       [ipfw] [patch] [request] ipfw dynamic rules lifetime f
a kern/26534   ipfw       [ipfw] Add an option to ipfw to log gid/uid of who cau

48 problems total.


From owner-freebsd-ipfw@FreeBSD.ORG  Tue Jul 12 16:20:11 2011
Return-Path: <owner-freebsd-ipfw@FreeBSD.ORG>
Delivered-To: freebsd-ipfw@hub.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 5F945106566B
	for <freebsd-ipfw@hub.freebsd.org>;
	Tue, 12 Jul 2011 16:20:11 +0000 (UTC)
	(envelope-from gnats@FreeBSD.org)
Received: from freefall.freebsd.org (freefall.freebsd.org
	[IPv6:2001:4f8:fff6::28])
	by mx1.freebsd.org (Postfix) with ESMTP id 4FDF08FC12
	for <freebsd-ipfw@hub.freebsd.org>;
	Tue, 12 Jul 2011 16:20:11 +0000 (UTC)
Received: from freefall.freebsd.org (localhost [127.0.0.1])
	by freefall.freebsd.org (8.14.4/8.14.4) with ESMTP id p6CGKACf035623
	for <freebsd-ipfw@freefall.freebsd.org>; Tue, 12 Jul 2011 16:20:10 GMT
	(envelope-from gnats@freefall.freebsd.org)
Received: (from gnats@localhost)
	by freefall.freebsd.org (8.14.4/8.14.4/Submit) id p6CGKAeb035620;
	Tue, 12 Jul 2011 16:20:10 GMT (envelope-from gnats)
Date: Tue, 12 Jul 2011 16:20:10 GMT
Message-Id: <201107121620.p6CGKAeb035620@freefall.freebsd.org>
To: freebsd-ipfw@FreeBSD.org
From: Vadim Goncharov <vadim_nuclight@mail.ru>
Cc: 
Subject: Re: kern/147720: [ipfw] ipfw dynamic rules and fwd
X-BeenThere: freebsd-ipfw@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: Vadim Goncharov <vadim_nuclight@mail.ru>
List-Id: IPFW Technical Discussions <freebsd-ipfw.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ipfw>
List-Post: <mailto:freebsd-ipfw@freebsd.org>
List-Help: <mailto:freebsd-ipfw-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 12 Jul 2011 16:20:11 -0000

The following reply was made to PR kern/147720; it has been noted by GNATS.

From: Vadim Goncharov <vadim_nuclight@mail.ru>
To: "skeletor@lissyara.su" <skeletor@lissyara.su>
Cc: bug-followup@FreeBSD.org
Subject: Re: kern/147720: [ipfw] ipfw dynamic rules and fwd
Date: Tue, 12 Jul 2011 22:45:47 +0700

 Hi skeletor@lissyara.su! 
 
 On Tue, 21 Jun 2011 07:10:07 GMT; skeletor@lissyara.su <skeletor@lissyara.su> wrote:
 
 >  I tested patch-1.diff and found several problems. When I use 2 channels 
 >  my VPN (I use mpd with connect type pptp) stop working. This problem 
 >  appears not on all servers.
 >  
 >  Here my results of tests:
 >  
 >  1) FreeBSD 8.1 amd64 (VPN server), 2 external real IPs - doesn't work VPN
 >  2) FreeBSD 8.2 i386 , 1 external real IP (second - doesn't real) - 
 >  doesn't work connect on second (not real) IP
 >  3) FreeBSD 8.1 i386 (VPN client), 2 external real IPs - all works fine
 >  4) FreeBSD 8.2 i386 (VPN client), 1 external real IP (second - doesn't 
 >  real) - connect from 2 external IPs works, but doesn't work VPN.
 
 This is not really problem with the patch, as PPTP is using not only TCP
 connection, but also establish a GRE tunnel, independent from that TCP
 connection from the dynamic rules' point of view. There must be something
 tracking packet data payload (e.g. libalias-based NAT engine supports this)
 which will link two connections together.
 
 This message, still, does not provide any useful information even to conclude
 if there some regression with this patch. Personally I think this is the
 architectural problem with PPTP, and patch was just used in a non-appropriate
 conditions, i.e. such configuration should be avoided, and patch itself is OK.
 
 -- 
 WBR, Vadim Goncharov. ICQ#166852181       mailto:vadim_nuclight@mail.ru
 [Moderator of RU.ANTI-ECOLOGY][FreeBSD][http://antigreen.org][LJ:/nuclight]

From owner-freebsd-ipfw@FreeBSD.ORG  Wed Jul 13 04:30:14 2011
Return-Path: <owner-freebsd-ipfw@FreeBSD.ORG>
Delivered-To: freebsd-ipfw@hub.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id EB107106568C
	for <freebsd-ipfw@hub.freebsd.org>;
	Wed, 13 Jul 2011 04:30:14 +0000 (UTC)
	(envelope-from gnats@FreeBSD.org)
Received: from freefall.freebsd.org (freefall.freebsd.org
	[IPv6:2001:4f8:fff6::28])
	by mx1.freebsd.org (Postfix) with ESMTP id C17888FC15
	for <freebsd-ipfw@hub.freebsd.org>;
	Wed, 13 Jul 2011 04:30:14 +0000 (UTC)
Received: from freefall.freebsd.org (localhost [127.0.0.1])
	by freefall.freebsd.org (8.14.4/8.14.4) with ESMTP id p6D4UE3G004787
	for <freebsd-ipfw@freefall.freebsd.org>; Wed, 13 Jul 2011 04:30:14 GMT
	(envelope-from gnats@freefall.freebsd.org)
Received: (from gnats@localhost)
	by freefall.freebsd.org (8.14.4/8.14.4/Submit) id p6D4UEuY004782;
	Wed, 13 Jul 2011 04:30:14 GMT (envelope-from gnats)
Date: Wed, 13 Jul 2011 04:30:14 GMT
Message-Id: <201107130430.p6D4UEuY004782@freefall.freebsd.org>
To: freebsd-ipfw@FreeBSD.org
From: dfilter@FreeBSD.ORG (dfilter service)
Cc: 
Subject: Re: bin/156653: commit references a PR
X-BeenThere: freebsd-ipfw@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: dfilter service <dfilter@FreeBSD.ORG>
List-Id: IPFW Technical Discussions <freebsd-ipfw.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ipfw>
List-Post: <mailto:freebsd-ipfw@freebsd.org>
List-Help: <mailto:freebsd-ipfw-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 13 Jul 2011 04:30:15 -0000

The following reply was made to PR bin/156653; it has been noted by GNATS.

From: dfilter@FreeBSD.ORG (dfilter service)
To: bug-followup@FreeBSD.org
Cc:  
Subject: Re: bin/156653: commit references a PR
Date: Wed, 13 Jul 2011 04:27:56 +0000 (UTC)

 Author: ae
 Date: Wed Jul 13 04:27:47 2011
 New Revision: 223972
 URL: http://svn.freebsd.org/changeset/base/223972
 
 Log:
   MFC r223661:
     Improve error reporting. Use corresponding error message when file to be
     preprocessed is missing. Also suggest to use absolute pathname if -p
     option is specified.
   
     PR:             bin/156653
 
 Modified:
   stable/8/sbin/ipfw/main.c
 Directory Properties:
   stable/8/sbin/ipfw/   (props changed)
 
 Modified: stable/8/sbin/ipfw/main.c
 ==============================================================================
 --- stable/8/sbin/ipfw/main.c	Wed Jul 13 00:48:36 2011	(r223971)
 +++ stable/8/sbin/ipfw/main.c	Wed Jul 13 04:27:47 2011	(r223972)
 @@ -262,7 +262,7 @@ ipfw_main(int oldac, char **oldav)
  	save_av = av;
  
  	optind = optreset = 1;	/* restart getopt() */
 -	while ((ch = getopt(ac, av, "abcdefhinNqs:STtv")) != -1)
 +	while ((ch = getopt(ac, av, "abcdefhinNp:qs:STtv")) != -1)
  		switch (ch) {
  		case 'a':
  			do_acct = 1;
 @@ -306,6 +306,10 @@ ipfw_main(int oldac, char **oldav)
  			co.do_resolv = 1;
  			break;
  
 +		case 'p':
 +			errx(EX_USAGE, "An absolute pathname must be used "
 +			    "with -p option.");
 +
  		case 'q':
  			co.do_quiet = 1;
  			break;
 @@ -603,9 +607,12 @@ main(int ac, char *av[])
  	 * as a file to be preprocessed.
  	 */
  
 -	if (ac > 1 && av[ac - 1][0] == '/' && access(av[ac - 1], R_OK) == 0)
 -		ipfw_readfile(ac, av);
 -	else {
 +	if (ac > 1 && av[ac - 1][0] == '/') {
 +		if (access(av[ac - 1], R_OK) == 0)
 +			ipfw_readfile(ac, av);
 +		else
 +			err(EX_USAGE, "pathname: %s", av[ac - 1]);
 +	} else {
  		if (ipfw_main(ac, av)) {
  			errx(EX_USAGE,
  			    "usage: ipfw [options]\n"
 _______________________________________________
 svn-src-all@freebsd.org mailing list
 http://lists.freebsd.org/mailman/listinfo/svn-src-all
 To unsubscribe, send any mail to "svn-src-all-unsubscribe@freebsd.org"
 

From owner-freebsd-ipfw@FreeBSD.ORG  Wed Jul 13 04:31:29 2011
Return-Path: <owner-freebsd-ipfw@FreeBSD.ORG>
Delivered-To: freebsd-ipfw@hub.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 52159106566B;
	Wed, 13 Jul 2011 04:31:29 +0000 (UTC) (envelope-from ae@FreeBSD.org)
Received: from freefall.freebsd.org (freefall.freebsd.org
	[IPv6:2001:4f8:fff6::28])
	by mx1.freebsd.org (Postfix) with ESMTP id 2A3EF8FC12;
	Wed, 13 Jul 2011 04:31:29 +0000 (UTC)
Received: from freefall.freebsd.org (localhost [127.0.0.1])
	by freefall.freebsd.org (8.14.4/8.14.4) with ESMTP id p6D4VTSJ010526;
	Wed, 13 Jul 2011 04:31:29 GMT (envelope-from ae@freefall.freebsd.org)
Received: (from ae@localhost)
	by freefall.freebsd.org (8.14.4/8.14.4/Submit) id p6D4VSEc010507;
	Wed, 13 Jul 2011 04:31:28 GMT (envelope-from ae)
Date: Wed, 13 Jul 2011 04:31:28 GMT
Message-Id: <201107130431.p6D4VSEc010507@freefall.freebsd.org>
To: jclear@speakeasy.net, ae@FreeBSD.org, freebsd-ipfw@FreeBSD.org
From: ae@FreeBSD.org
Cc: 
Subject: Re: bin/156653: ipfw(8) reports missing file as parameter problem
X-BeenThere: freebsd-ipfw@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: IPFW Technical Discussions <freebsd-ipfw.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ipfw>
List-Post: <mailto:freebsd-ipfw@freebsd.org>
List-Help: <mailto:freebsd-ipfw-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 13 Jul 2011 04:31:29 -0000

Synopsis: ipfw(8) reports missing file as parameter problem

State-Changed-From-To: patched->closed
State-Changed-By: ae
State-Changed-When: Wed Jul 13 04:31:00 UTC 2011
State-Changed-Why: 
Merged to stable/7 and stable/8. Thanks!

http://www.freebsd.org/cgi/query-pr.cgi?pr=156653

From owner-freebsd-ipfw@FreeBSD.ORG  Wed Jul 13 04:40:07 2011
Return-Path: <owner-freebsd-ipfw@FreeBSD.ORG>
Delivered-To: freebsd-ipfw@hub.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id C760E106566C
	for <freebsd-ipfw@hub.freebsd.org>;
	Wed, 13 Jul 2011 04:40:07 +0000 (UTC)
	(envelope-from gnats@FreeBSD.org)
Received: from freefall.freebsd.org (freefall.freebsd.org
	[IPv6:2001:4f8:fff6::28])
	by mx1.freebsd.org (Postfix) with ESMTP id 95DA78FC14
	for <freebsd-ipfw@hub.freebsd.org>;
	Wed, 13 Jul 2011 04:40:07 +0000 (UTC)
Received: from freefall.freebsd.org (localhost [127.0.0.1])
	by freefall.freebsd.org (8.14.4/8.14.4) with ESMTP id p6D4e75W015668
	for <freebsd-ipfw@freefall.freebsd.org>; Wed, 13 Jul 2011 04:40:07 GMT
	(envelope-from gnats@freefall.freebsd.org)
Received: (from gnats@localhost)
	by freefall.freebsd.org (8.14.4/8.14.4/Submit) id p6D4e7Te015667;
	Wed, 13 Jul 2011 04:40:07 GMT (envelope-from gnats)
Date: Wed, 13 Jul 2011 04:40:07 GMT
Message-Id: <201107130440.p6D4e7Te015667@freefall.freebsd.org>
To: freebsd-ipfw@FreeBSD.org
From: dfilter@FreeBSD.ORG (dfilter service)
Cc: 
Subject: Re: bin/156653: commit references a PR
X-BeenThere: freebsd-ipfw@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: dfilter service <dfilter@FreeBSD.ORG>
List-Id: IPFW Technical Discussions <freebsd-ipfw.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ipfw>
List-Post: <mailto:freebsd-ipfw@freebsd.org>
List-Help: <mailto:freebsd-ipfw-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 13 Jul 2011 04:40:07 -0000

The following reply was made to PR bin/156653; it has been noted by GNATS.

From: dfilter@FreeBSD.ORG (dfilter service)
To: bug-followup@FreeBSD.org
Cc:  
Subject: Re: bin/156653: commit references a PR
Date: Wed, 13 Jul 2011 04:31:06 +0000 (UTC)

 Author: ae
 Date: Wed Jul 13 04:30:16 2011
 New Revision: 223973
 URL: http://svn.freebsd.org/changeset/base/223973
 
 Log:
   MFC r223661:
     Improve error reporting. Use corresponding error message when file to be
     preprocessed is missing. Also suggest to use absolute pathname if -p
     option is specified.
   
     PR:             bin/156653
 
 Modified:
   stable/7/sbin/ipfw/main.c
 Directory Properties:
   stable/7/sbin/ipfw/   (props changed)
 
 Modified: stable/7/sbin/ipfw/main.c
 ==============================================================================
 --- stable/7/sbin/ipfw/main.c	Wed Jul 13 04:27:47 2011	(r223972)
 +++ stable/7/sbin/ipfw/main.c	Wed Jul 13 04:30:16 2011	(r223973)
 @@ -204,7 +204,7 @@ ipfw_main(int oldac, char **oldav)
  	save_av = av;
  
  	optind = optreset = 1;	/* restart getopt() */
 -	while ((ch = getopt(ac, av, "abcdefhinNqs:STtv")) != -1)
 +	while ((ch = getopt(ac, av, "abcdefhinNp:qs:STtv")) != -1)
  		switch (ch) {
  		case 'a':
  			do_acct = 1;
 @@ -248,6 +248,10 @@ ipfw_main(int oldac, char **oldav)
  			co.do_resolv = 1;
  			break;
  
 +		case 'p':
 +			errx(EX_USAGE, "An absolute pathname must be used "
 +			    "with -p option.");
 +
  		case 'q':
  			co.do_quiet = 1;
  			break;
 @@ -527,9 +531,12 @@ main(int ac, char *av[])
  	 * as a file to be preprocessed.
  	 */
  
 -	if (ac > 1 && av[ac - 1][0] == '/' && access(av[ac - 1], R_OK) == 0)
 -		ipfw_readfile(ac, av);
 -	else {
 +	if (ac > 1 && av[ac - 1][0] == '/') {
 +		if (access(av[ac - 1], R_OK) == 0)
 +			ipfw_readfile(ac, av);
 +		else
 +			err(EX_USAGE, "pathname: %s", av[ac - 1]);
 +	} else {
  		if (ipfw_main(ac, av)) {
  			errx(EX_USAGE,
  			    "usage: ipfw [options]\n"
 _______________________________________________
 svn-src-all@freebsd.org mailing list
 http://lists.freebsd.org/mailman/listinfo/svn-src-all
 To unsubscribe, send any mail to "svn-src-all-unsubscribe@freebsd.org"