Page MenuHomeFreeBSD

pf: fold pf_test_fragment() into pf_test_rule()
ClosedPublic

Authored by kp on Sep 19 2024, 8:24 PM.
Tags
None
Referenced Files
F102539182: D46705.id143494.diff
Wed, Nov 13, 7:02 PM
Unknown Object (File)
Mon, Nov 11, 10:31 PM
Unknown Object (File)
Sat, Nov 9, 11:50 AM
Unknown Object (File)
Sat, Nov 9, 11:49 AM
Unknown Object (File)
Sat, Nov 9, 11:49 AM
Unknown Object (File)
Wed, Nov 6, 6:27 AM
Unknown Object (File)
Fri, Nov 1, 11:34 PM
Unknown Object (File)
Fri, Nov 1, 4:09 AM

Details

Summary

Reduces code and fixes a bunch of bugs with fragment handling not being in sync
with the rest of the ruleset.

Much feedback from mpf, bluhm & markus
Thanks to Tony Sarendal for help with testing

ok bluhm; various previous versions ok henning, claudio, mpf, markus

Note that while this changes the order of src addr/src port/dst addr/dst port
skips this doesn't actually affect the kernel/userspace ABI. The kernel always
recalculates skip steps.

Obtained from: OpenBSD, mcbride <mcbride@openbsd.org>, 04c69899a7
Sponsored by: Rubicon Communications, LLC ("Netgate")

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Skipped
Unit
Tests Skipped
Build Status
Buildable 59535
Build 56422: arc lint + arc unit