CVSROOT: /cvs
Module name: src
Changes by: bl...@cvs.openbsd.org 2017/11/28 09:05:47
Modified files:
sys/net : pf.c pf_ioctl.c pfvar.h
sys/netinet : raw_ip.c
sys/netinet6 : raw_ip6.c
sbin/pfctl : parse.y pfctl_parser.c
Log message:
The divert structure was using the port number to indicate that
divert-to or divert-reply was active. If the address was also set,
it meant divert-to. Divert packet used a separate structure. This
is confusing and makes it hard to add new features. It is better
to have a divert type that explicitly says what is configured.
Adapt the pf rule struct in kernel and pfctl, no functional change.
Note that kernel and pfctl have to be updated together.
OK sashan@
