From owner-cvs-all  Mon May 25 18:50:27 1998
Return-Path: <owner-cvs-all@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id SAA22661
          for cvs-all-outgoing; Mon, 25 May 1998 18:50:27 -0700 (PDT)
          (envelope-from owner-cvs-all@FreeBSD.ORG)
Received: from awfulhak.org (awfulhak.force9.co.uk [195.166.136.63])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id SAA22363;
          Mon, 25 May 1998 18:49:24 -0700 (PDT)
          (envelope-from brian@Awfulhak.org)
Received: from gate.lan.awfulhak.org (localhost [127.0.0.1])
	by awfulhak.org (8.8.8/8.8.8) with ESMTP id CAA03268;
	Tue, 26 May 1998 02:46:53 +0100 (BST)
	(envelope-from brian@gate.lan.awfulhak.org)
Message-Id: <199805260146.CAA03268@awfulhak.org>
X-Mailer: exmh version 2.0.1 12/23/97
To: Julian Elischer <julian@FreeBSD.ORG>
cc: cvs-committers@FreeBSD.ORG, cvs-all@FreeBSD.ORG, cvs-sys@FreeBSD.ORG
Subject: Re: cvs commit: src/sys/conf options src/sys/netinet ip_divert.c ip_fw.c ip_input.c ip_output.c ip_var.h 
In-reply-to: Your message of "Mon, 25 May 1998 03:37:49 PDT."
             <199805251037.DAA04693@freefall.freebsd.org> 
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Date: Tue, 26 May 1998 02:46:52 +0100
From: Brian Somers <brian@Awfulhak.org>
Sender: owner-cvs-all@FreeBSD.ORG
Precedence: bulk

How about mentioning the option in LINT ?

> julian      1998/05/25 03:37:49 PDT
> 
>   Modified files:
>     sys/conf             options 
>     sys/netinet          ip_divert.c ip_fw.c ip_input.c 
>                          ip_output.c ip_var.h 
>   Log:
>   Add optional code to change the way that divert and ipfw work together.
>   Prior to this change, Accidental recursion protection was done by
>   the diverted daemon feeding back the divert port number it got
>   the packet on, as the port number on a sendto(). IPFW knew not to
>   redivert a packet to this port (again). Processing of the ruleset
>   started at the beginning again, skipping that divert port.
>   
>   The new semantic (which is how we should have done it the first time)
>   is that the port number in the sendto() is the rule number AFTER which
>   processing should restart, and on a recvfrom(), the port number is the
>   rule number which caused the diversion. This is much more flexible,
>   and also more intuitive. If the user uses the same sockaddr received
>   when resending, processing resumes at the rule number following that
>   that caused the diversion. The user can however select to resume rule
>   processing at any rule. (0 is restart at the beginning)
>   
>   To enable the new code use
>   
>   option	IPFW_DIVERT_RESTART
>   
>   This should become the default as soon as people have looked at it a bit
>   
>   Revision  Changes    Path
>   1.75      +3 -1      src/sys/conf/options
>   1.26      +43 -2     src/sys/netinet/ip_divert.c
>   1.84      +36 -1     src/sys/netinet/ip_fw.c
>   1.85      +25 -2     src/sys/netinet/ip_input.c
>   1.67      +9 -1      src/sys/netinet/ip_output.c
>   1.38      +10 -1     src/sys/netinet/ip_var.h

Cheers.

-- 
Brian <brian@Awfulhak.org>, <brian@FreeBSD.org>, <brian@OpenBSD.org>
      <http://www.Awfulhak.org>
Don't _EVER_ lose your sense of humour....



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message