Page MenuHomeFreeBSD

pf: Make request_maxcount runtime adjustable
ClosedPublic

Authored by kp on Dec 9 2019, 7:39 PM.
Tags
None
Referenced Files
Unknown Object (File)
Dec 23 2023, 10:37 AM
Unknown Object (File)
Dec 5 2023, 11:14 AM
Unknown Object (File)
Jun 3 2023, 8:08 AM
Unknown Object (File)
May 14 2023, 6:43 PM
Unknown Object (File)
Jan 13 2023, 12:36 AM
Unknown Object (File)
Jan 9 2023, 3:48 AM
Unknown Object (File)
Dec 30 2022, 6:19 PM
Unknown Object (File)
Nov 27 2022, 3:53 PM

Details

Summary

There's no reason for this to be a tunable. It's perfectly safe to
change this at runtime.

Diff Detail

Repository
rS FreeBSD src repository - subversion
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

What happens, if the number is reduced below the number of currently existing tables?

This affects the number of items (not just tables) that can be processed in a single ioctl() operation, not the number of entries we allow in a table.
pfctl by and large only works on a single table at a time, but might try to add/delete/modify/... multiple IP addresses at a time. It's generally possible to do this in multiple requests, so having more items in a table than the request_maxcount isn't a critical problem.

This revision is now accepted and ready to land.Dec 11 2019, 8:26 AM
This revision was automatically updated to reflect the committed changes.