Date: Tue, 9 Jul 2002 02:11:44 -0700 (PDT) From: Luigi Rizzo <luigi@FreeBSD.org> To: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: cvs commit: src/sys/net bridge.c if_ethersubr.c src/sys/netinet ip_divert.c ip_dummynet.c ip_dummynet.h ip_fw.c ip_fw.h ip_input.c ip_output.c ip_var.h tcp_input.c Message-ID: <200207090911.g699BiEb026439@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
luigi 2002/07/09 02:11:44 PDT
Modified files: (Branch: RELENG_4)
sys/net bridge.c if_ethersubr.c
sys/netinet ip_divert.c ip_dummynet.c ip_dummynet.h
ip_fw.c ip_fw.h ip_input.c ip_output.c
ip_var.h tcp_input.c
Log:
The purpose of this commit is to bring the net/ and netinet/ sources
more in sync with what is in -current, so that mainteinance and
bugfix of the two trees is not a nightmare.
THERE IS NO FUNCTIONAL OR EXTERNAL API CHANGE IN THIS COMMIT
You should not need to recompile any userland code.
In (some) more detail, this commit does the following:
* remove a number of static variables from the ip stack that were
used to support DIVERT, IPFIREWALL_FORWARD and stateful rules/
dynamic pipes. These are replaced with packet annotations, much
in the same (ugly for someone, but it is extremely fast and easy
to extend) way used for ages to support dummynet annotations.
On passing, fix a bug in the handling of divert for fragmented packets.
* as part of the removal of static variables, change the (internal)
interface of ip_fw_chk() to use a single structure to hold arguments.
Adapt clients of the above (ip_input, ip_output, bridge, ether_output,
ether_demux) to use the new interface.
* remove some unused variables.
* remove some of the __P() macros from some of the files involved
Because of the NO FUNCTIONAL CHANGE you don't get the following features
which are in -current:
* ipfw on layer-2 packets. All the hooks and the code are there,
but the controlling variable
net.link.ether.ipfw: 0
is readonly because i am only 99% confident on how the old ipfw
handles these frames. Just edit if_ethersubr.c to make the
variable RW if you want this feature. I might commit this in
due time if there is interest.
these frames. Just edit if_ethersubr.c to make it RW if you want this
feature. I might commit this in due time if there is interest.
* ipfw2, the new, faster and more flexible firewall code.
The code has hooks to make use of ipfw2, and I will make patches
available to use it (it is basically 3 files, netinet/ip_fw2.[ch],
sbin/ipfw/ipfw2.c, plus one-line changes in conf/options,
conf/files and sbin/ipfw/Makefile, plus libalias patches).
Revision Changes Path
1.16.2.20 +117 -77 src/sys/net/bridge.c
1.70.2.27 +172 -42 src/sys/net/if_ethersubr.c
1.42.2.5 +76 -77 src/sys/netinet/ip_divert.c
1.24.2.14 +105 -75 src/sys/netinet/ip_dummynet.c
1.10.2.5 +80 -75 src/sys/netinet/ip_dummynet.h
1.131.2.34 +81 -65 src/sys/netinet/ip_fw.c
1.47.2.11 +30 -3 src/sys/netinet/ip_fw.h
1.130.2.36 +170 -195 src/sys/netinet/ip_input.c
1.99.2.30 +183 -160 src/sys/netinet/ip_output.c
1.50.2.6 +32 -35 src/sys/netinet/ip_var.h
1.107.2.24 +36 -32 src/sys/netinet/tcp_input.c
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200207090911.g699BiEb026439>