Page MenuHomeFreeBSD
People ae

ae (Andrey V. Elsukov)
User

Projects

User Details

User Since
Jun 4 2014, 7:25 AM (599 w, 9 h)

Recent Activity
View All

Mon, Nov 24

ae added inline comments to D53877: ipfw: create a bpf tap point for every log rule.
Mon, Nov 24, 9:28 PM
ae committed rGff3c48a64fe2: ipfw: fix lookup dst-ip opcode (authored by lytboris_gmail.com).
ipfw: fix lookup dst-ip opcode
Mon, Nov 24, 8:29 PM

Tue, Nov 18

ae committed rG8012c61bef3b: ipfw: fix lookup dst-ip opcode (authored by lytboris_gmail.com).
ipfw: fix lookup dst-ip opcode
Tue, Nov 18, 10:39 AM
ae closed D53775: [ipfw] Unbreak lookup src/dst-ip.
Tue, Nov 18, 10:38 AM
ae accepted D53769: ipsec: Fix typos in references to IPsec's ESP.
Tue, Nov 18, 2:32 AM

Wed, Nov 12

ae accepted D53694: [ipfw] Add support for masked ip-address lookups.

LGTM.

Wed, Nov 12, 1:42 PM

Oct 27 2025

ae accepted D53359: ipfw: Correct error message.
Oct 27 2025, 9:19 AM

Oct 26 2025

ae committed rGf7937053fd08: arp: fix adding proxy entries for P2P interfaces (authored by ae).
arp: fix adding proxy entries for P2P interfaces
Oct 26 2025, 11:22 AM
ae committed rG9e829d0693a7: arp: fix adding proxy entries for P2P interfaces (authored by ae).
arp: fix adding proxy entries for P2P interfaces
Oct 26 2025, 11:21 AM

Oct 25 2025

ae accepted D53343: ipfw: Retire obsolete compat code.

LGTM.

Oct 25 2025, 7:01 PM

Oct 22 2025

ae added a comment to D44204: ip6_output: Reduce cache misses on pktopts.

It seems to have affected MLDv6: https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=290407

Oct 22 2025, 9:10 AM

Oct 18 2025

ae committed rG317a5dd0288e: ipfw: do not use errno value for error reporting (authored by lytboris_gmail.com).
ipfw: do not use errno value for error reporting
Oct 18 2025, 12:06 PM
ae committed rG7a2a874a0b46: carp6: revise the generation of ND6 NA (authored by ae).
carp6: revise the generation of ND6 NA
Oct 18 2025, 12:04 PM
ae committed rG2efda1b8c0f9: carp6: revise the generation of ND6 NA (authored by ae).
carp6: revise the generation of ND6 NA
Oct 18 2025, 12:02 PM

Oct 17 2025

ae committed rGc26d6bf9da01: arp: fix adding proxy entries for P2P interfaces (authored by ae).
arp: fix adding proxy entries for P2P interfaces
Oct 17 2025, 8:23 AM
ae closed D53113: arp: fix proxyarp for P2P with netlink.
Oct 17 2025, 8:23 AM

Oct 15 2025

ae committed rG613eb8ee9cb2: ipv6: don't complain when deleting an address with prefix length of 128 (authored by ae).
ipv6: don't complain when deleting an address with prefix length of 128
Oct 15 2025, 2:07 PM
ae committed rG25c6697b0b98: ipv6: don't complain when deleting an address with prefix length of 128 (authored by ae).
ipv6: don't complain when deleting an address with prefix length of 128
Oct 15 2025, 2:06 PM
ae published D53113: arp: fix proxyarp for P2P with netlink for review.
Oct 15 2025, 1:31 PM

Oct 14 2025

ae committed rGdfd822b1f084: ipfw: do not use errno value for error reporting (authored by lytboris_gmail.com).
ipfw: do not use errno value for error reporting
Oct 14 2025, 8:15 AM
ae closed D53050: Do not report random errors as table-managing errors in ipfw.
Oct 14 2025, 8:15 AM
ae accepted D53068: ipfw: Check for errors from sooptcopyin() and sooptcopyout().

Yes, I think they were replaced with handlers from ipfw_sopt_handler.

Oct 14 2025, 7:38 AM

Oct 13 2025

ae accepted D53050: Do not report random errors as table-managing errors in ipfw.
Oct 13 2025, 9:27 AM

Oct 8 2025

ae accepted D52951: rcorder: Fix grammar in warning about loops.
Oct 8 2025, 9:49 AM

Oct 7 2025

ae closed D52952: ipv6: don't complain when deleting an address with prefix length of 128.
Oct 7 2025, 1:12 PM
ae committed rGc4cce0a3e94e: ipv6: don't complain when deleting an address with prefix length of 128 (authored by ae).
ipv6: don't complain when deleting an address with prefix length of 128
Oct 7 2025, 1:11 PM
ae published D52952: ipv6: don't complain when deleting an address with prefix length of 128 for review.
Oct 7 2025, 9:54 AM

Oct 3 2025

ae committed rG716acd9367df: carp6: revise the generation of ND6 NA (authored by ae).
carp6: revise the generation of ND6 NA
Oct 3 2025, 8:03 AM
ae closed D52825: ip6+carp: revise the generation of ND6 NA.
Oct 3 2025, 8:02 AM
ae accepted D52876: Update ipfw regression tests after ipfw updated some opcode size.
Oct 3 2025, 7:47 AM

Oct 1 2025

ae published D52825: ip6+carp: revise the generation of ND6 NA for review.
Oct 1 2025, 12:28 PM

Sep 23 2025

ae committed rGfb4be8661166: IPv6: fix off-by-one in pltime and vltime expiration checks (authored by ae).
IPv6: fix off-by-one in pltime and vltime expiration checks
Sep 23 2025, 8:34 AM
ae committed rG586183128f2f: IPv6: fix off-by-one in pltime and vltime expiration checks (authored by ae).
IPv6: fix off-by-one in pltime and vltime expiration checks
Sep 23 2025, 8:34 AM

Sep 16 2025

ae accepted D52566: ipfw: Teach ipfw that EtherIP is an upper layer protocol.
Sep 16 2025, 7:45 AM
ae committed rG588a5fad3e8b: IPv6: fix off-by-one in pltime and vltime expiration checks (authored by ae).
IPv6: fix off-by-one in pltime and vltime expiration checks
Sep 16 2025, 7:39 AM
ae closed D52323: ip6: fix off-by-one in pltime and vltime expiration checks.
Sep 16 2025, 7:39 AM

Sep 8 2025

ae added a reviewer for D52323: ip6: fix off-by-one in pltime and vltime expiration checks: bz.
Sep 8 2025, 11:17 AM

Sep 2 2025

ae accepted D52323: ip6: fix off-by-one in pltime and vltime expiration checks.

LGTM.

Sep 2 2025, 9:27 AM

Aug 3 2025

ae committed rG877e70e6087f: ipfw: add protected rule for orphaned dynamic states (authored by ae).
ipfw: add protected rule for orphaned dynamic states
Aug 3 2025, 10:08 AM
ae closed D51460: ipfw: add protected rule for orphaned dynamic states.
Aug 3 2025, 10:08 AM
ae committed rG3b67473b9757: ipfw: add additional handling for orphaned states (authored by ae).
ipfw: add additional handling for orphaned states
Aug 3 2025, 10:00 AM
ae closed D51459: ipfw: add additional check for orphaned states.
Aug 3 2025, 9:59 AM
ae committed rG91ed876385d4: ipfw: forbid adding keep-state rules that depend on tablearg (authored by ae).
ipfw: forbid adding keep-state rules that depend on tablearg
Aug 3 2025, 9:53 AM
ae closed D51458: ipfw: forbid add keep-state rules that depend from tablearg.
Aug 3 2025, 9:53 AM
ae closed D51457: ipfw: add numeric initializers to enum ipfw_opcodes..
Aug 3 2025, 9:45 AM
ae committed rG12e61c31dbd5: ipfw: add numeric initializers to enum ipfw_opcodes (authored by ae).
ipfw: add numeric initializers to enum ipfw_opcodes
Aug 3 2025, 9:45 AM

Jul 23 2025

ae added inline comments to D51468: if_ovpn: support floating clients.
Jul 23 2025, 6:02 PM
ae added inline comments to D51468: if_ovpn: support floating clients.
Jul 23 2025, 5:54 PM
ae updated the summary of D51459: ipfw: add additional check for orphaned states.
Jul 23 2025, 8:16 AM

Jul 22 2025

ae accepted D51436: ipfw: extend description of net.inet.ip.fw.one_pass.
Jul 22 2025, 9:51 AM
ae published D51460: ipfw: add protected rule for orphaned dynamic states for review.
Jul 22 2025, 8:21 AM
ae published D51459: ipfw: add additional check for orphaned states for review.
Jul 22 2025, 8:14 AM
ae retitled D51458: ipfw: forbid add keep-state rules that depend from tablearg from ipfw: forbid add keep-state rules that depends from tablearg to ipfw: forbid add keep-state rules that depend from tablearg.
Jul 22 2025, 8:05 AM
ae published D51458: ipfw: forbid add keep-state rules that depend from tablearg for review.
Jul 22 2025, 8:04 AM
ae published D51457: ipfw: add numeric initializers to enum ipfw_opcodes. for review.
Jul 22 2025, 7:43 AM

Jul 14 2025

ae accepted D51297: if_gif(4): Support the NOCLAMP flag to change the MTU handling for IPv6.

LGTM.

Jul 14 2025, 9:12 AM

Jun 5 2025

ae accepted D50665: route: fix rtentry double free.
Jun 5 2025, 7:36 AM

Jun 3 2025

ae added inline comments to D50665: route: fix rtentry double free.
Jun 3 2025, 3:38 PM

Jun 2 2025

ae accepted D50597: ipfw: prefixlen segfault bugfix in nptv6.
Jun 2 2025, 8:54 AM

May 24 2025

ae closed D50455: carp: fix mbuf_tag usage in carp_macmatch6.
May 24 2025, 8:24 AM
ae committed rG6a97fbe6fcb3: carp: fix mbuf_tag usage in carp_macmatch6 (authored by ae).
carp: fix mbuf_tag usage in carp_macmatch6
May 24 2025, 8:24 AM

May 21 2025

ae published D50455: carp: fix mbuf_tag usage in carp_macmatch6 for review.
May 21 2025, 10:06 AM

May 14 2025

ae updated subscribers of D50108: ip6: implement RFC 8981-advised temporary IID generation.
May 14 2025, 4:45 PM

Apr 18 2025

ae committed rGf5a5dd77ea34: ipfw: fix build (authored by ae).
ipfw: fix build
Apr 18 2025, 1:36 PM
ae committed rG3c76623ad553: ipfw: add 'internal monitor' subcommand to capture rtsock messages. (authored by ae).
ipfw: add 'internal monitor' subcommand to capture rtsock messages.
Apr 18 2025, 12:35 PM
ae committed rG2407636ff1cc: ipfw: document logdst opcode (authored by ae).
ipfw: document logdst opcode
Apr 18 2025, 12:35 PM
ae committed rGe26d1cea25cd: ipfw: add IPv6 logging via rtsock support for fwd tablearg opcode (authored by ae).
ipfw: add IPv6 logging via rtsock support for fwd tablearg opcode
Apr 18 2025, 12:35 PM
ae committed rG4a02faa114c5: ipfw: add IPv6 logging support for fwd tablearg opcode (authored by ae).
ipfw: add IPv6 logging support for fwd tablearg opcode
Apr 18 2025, 12:35 PM

Apr 2 2025

ae committed rGf8cd0c8e20b0: tests: fix test for NULL encription (authored by ae).
tests: fix test for NULL encription
Apr 2 2025, 7:55 AM
ae committed rG5b6d576d22bc: tests: fix test for NULL encription (authored by ae).
tests: fix test for NULL encription
Apr 2 2025, 7:55 AM

Mar 25 2025

ae committed rGb67080455907: tests: fix test for NULL encription (authored by ae).
tests: fix test for NULL encription
Mar 25 2025, 7:27 AM

Mar 23 2025

ae added a reviewer for D49459: Make temp option for ndp work: glebius.
Mar 23 2025, 8:28 AM · network

Mar 19 2025

ae added a comment to D49412: ifnet: Remove a redundant check for flag IFF_DYING from ifunit_ref().

I think adding MPASS is better than removing. There is no locking, and it is still possible, that the code you are modifying will first get ifp pointer and then this ifp will be unlinked and marked as DYING :)

Mar 19 2025, 11:22 AM

Mar 18 2025

ae committed rGb297093ebab6: routing: do not allow PINNED routes to be overriden (authored by ae).
routing: do not allow PINNED routes to be overriden
Mar 18 2025, 9:12 AM
ae committed rG01ade56eba14: routing: do not allow PINNED routes to be overriden (authored by ae).
routing: do not allow PINNED routes to be overriden
Mar 18 2025, 9:11 AM

Mar 13 2025

ae committed rG1219a3f40db3: pfkey2: use correct value for a key length (authored by ae).
pfkey2: use correct value for a key length
Mar 13 2025, 10:24 AM
ae committed rG72e2ebf64212: pfkey2: use correct value for a key length (authored by ae).
pfkey2: use correct value for a key length
Mar 13 2025, 10:23 AM
ae committed rGf1929835f76d: ipfw: fix dump_soptcodes() handler (authored by ae).
ipfw: fix dump_soptcodes() handler
Mar 13 2025, 10:19 AM
ae committed rG83c23b6c6630: ipfw: fix dump_soptcodes() handler (authored by ae).
ipfw: fix dump_soptcodes() handler
Mar 13 2025, 10:18 AM

Mar 7 2025

ae committed rG699ed29c4fd8: routing: set net.route.multipath=0 when kernel doesn't have ROUTE_MPATH (authored by ae).
routing: set net.route.multipath=0 when kernel doesn't have ROUTE_MPATH
Mar 7 2025, 9:57 AM
ae committed rG836c8dad4544: routing: set net.route.multipath=0 when kernel doesn't have ROUTE_MPATH (authored by ae).
routing: set net.route.multipath=0 when kernel doesn't have ROUTE_MPATH
Mar 7 2025, 9:56 AM

Mar 6 2025

ae committed rG04207850a9b9: pfkey2: use correct value for a key length (authored by ae).
pfkey2: use correct value for a key length
Mar 6 2025, 12:24 PM

Mar 5 2025

ae committed rGb405250c77e6: ipfw: fix dump_soptcodes() handler (authored by ae).
ipfw: fix dump_soptcodes() handler
Mar 5 2025, 9:33 AM

Mar 4 2025

ae closed D46183: [ipfw] Migrate ipfw to 32-bit size rule numbers.
Mar 4 2025, 7:10 PM
ae accepted D49227: udp: Do not recursively enter net epoch.
Mar 4 2025, 11:56 AM

Mar 3 2025

ae committed rG4a77657cbc01: ipfw: migrate ipfw to 32-bit size rule numbers (authored by ae).
ipfw: migrate ipfw to 32-bit size rule numbers
Mar 3 2025, 7:01 PM
ae committed rG6ba1c5abb957: ipfw: add UPDATING note and modify __FreeBSD_version (authored by ae).
ipfw: add UPDATING note and modify __FreeBSD_version
Mar 3 2025, 7:01 PM
ae updated the diff for D46183: [ipfw] Migrate ipfw to 32-bit size rule numbers.
  • Add example of comapt layer.
Mar 3 2025, 9:53 AM

Mar 2 2025

ae updated the diff for D46183: [ipfw] Migrate ipfw to 32-bit size rule numbers.
  • Rebase
  • Document some features, also reduce the diff.
  • Fix skipto/call arguments parsing.
  • Fix mismerged reass/return opcodes
  • Fix ipfw32 opcode version for NAT44 opcodes.
  • ipfw: rework call action to drop packets on errors
Mar 2 2025, 11:45 AM
ae closed D48650: routing: do not allow PINNED routes to be overridden.
Mar 2 2025, 10:58 AM
ae committed rG361a8395f0b0: routing: do not allow PINNED routes to be overriden (authored by ae).
routing: do not allow PINNED routes to be overriden
Mar 2 2025, 10:58 AM

Feb 28 2025

ae added a comment to D49164: ipsec: add `net.inet.ipsec.random_id` .

It looks a bit confusing when you set net.inet.ipsec.random_id=1 and it does not work because default value of net.inet.random_id is 0.
It should be documented in ipsec(4).
Maybe just make ip_fillid_ex as ip_fillid_ex(struct ip *, bool do_randomid) and set net.inet.ipsec.random_id=0 by default?

Feb 28 2025, 2:35 PM
ae committed rGf2644d64b40f: routing: set net.route.multipath=0 when kernel doesn't have ROUTE_MPATH (authored by ae).
routing: set net.route.multipath=0 when kernel doesn't have ROUTE_MPATH
Feb 28 2025, 2:12 PM

Feb 21 2025

ae committed rG63422982e074: ipfw: make 'ipfw show' output compatible with 'ipfw add' command (authored by ae).
ipfw: make 'ipfw show' output compatible with 'ipfw add' command
Feb 21 2025, 11:20 AM
ae committed rGfd258b6dd15b: ipfw: make 'ipfw show' output compatible with 'ipfw add' command (authored by ae).
ipfw: make 'ipfw show' output compatible with 'ipfw add' command
Feb 21 2025, 11:18 AM

Feb 19 2025

ae added a comment to D49053: carp: Fix checking IPv4 multicast address.
In D49053#1118518, @zlei wrote:

> Do you think a IN_IS_ADDR_MULTICAST akin to IN6_IS_ADDR_MULTICAST is valuable ?

Feb 19 2025, 9:33 AM
ae accepted D49053: carp: Fix checking IPv4 multicast address.
Feb 19 2025, 8:58 AM

Feb 17 2025

ae committed rGff2588f2ac0a: ipfw: add missing initializer for 'limit' table value (authored by ae).
ipfw: add missing initializer for 'limit' table value
Feb 17 2025, 7:42 AM
ae committed rG09def8d654e7: ipfw: add missing initializer for 'limit' table value (authored by ae).
ipfw: add missing initializer for 'limit' table value
Feb 17 2025, 7:35 AM

Feb 11 2025

ae committed rG706a03f61bbb: ipfw: make 'ipfw show' output compatible with 'ipfw add' command (authored by ae).
ipfw: make 'ipfw show' output compatible with 'ipfw add' command
Feb 11 2025, 9:56 AM