Page MenuHomeFreeBSD
Differential D31098

libpfctl: migrate to DIOCGETSTATESV2
ClosedPublic
Actions

Authored by kp on Jul 7 2021, 7:52 PM.
Tags
None
Referenced Files
Unknown Object (File)
Sat, Apr 20, 7:36 AM
Unknown Object (File)
Sat, Apr 20, 7:36 AM
Unknown Object (File)
Sat, Apr 20, 7:32 AM
Unknown Object (File)
Sat, Apr 20, 7:31 AM
Unknown Object (File)
Wed, Apr 17, 9:23 PM
Unknown Object (File)
Mar 7 2024, 11:36 PM
Unknown Object (File)
Feb 12 2024, 8:51 AM
Unknown Object (File)
Feb 12 2024, 12:53 AM
View All 37 Files
Subscribers
imp
mjg

Details

Reviewers
mjg
Group Reviewers
network
pfsense
Commits
rGfa3da0e87de7: libpfctl: migrate to DIOCGETSTATESV2
rG25f13f477213: libpfctl: migrate to DIOCGETSTATESV2
rGbe70c7a50d32: libpfctl: migrate to DIOCGETSTATESV2
Summary

Stop using the *NV version to retrieve states, as its performance is
unacceptably bad.

MFC after: 1 week
Sponsored by: Rubicon Communications, LLC ("Netgate")

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

kp created this revision.Jul 7 2021, 7:52 PM
Herald added a subscriber: imp. · View Herald TranscriptJul 7 2021, 7:52 PM
kp requested review of this revision.Jul 7 2021, 7:52 PM
Harbormaster completed remote builds in B40375: Diff 91946.Jul 7 2021, 7:52 PM
kp added a parent revision: D31097: pf: add DIOCGETSTATESV2.Jul 7 2021, 7:52 PM
kp added a child revision: D31099: pf: remove DIOCGETSTATESNV.
mjg accepted this revision.Jul 7 2021, 8:10 PM
mjg added a subscriber: mjg.

Commit message should include perf numbers.

This revision is now accepted and ready to land.Jul 7 2021, 8:10 PM
mjg requested changes to this revision.Jul 7 2021, 8:11 PM
mjg added inline comments.
lib/libpfctl/libpfctl.c
716–718

version check should be performed here -- if lower than PF_STATE_VERSION then error out

This revision now requires changes to proceed.Jul 7 2021, 8:11 PM
mjg added inline comments.Jul 7 2021, 8:12 PM
lib/libpfctl/libpfctl.c
716–718

alternatively you can extend the request struct to include version number you expect, then the kernel can tell if you if it supports it to begin with

mjg added inline comments.Jul 7 2021, 8:13 PM
lib/libpfctl/libpfctl.c
716–718

now that I wrote it that's way better, in particular it can reduce the spare set -- worst case, should the struct run out of spares, a dedicated export func can be created to accomodate older userspace

kp updated this revision to Diff 91978.Jul 8 2021, 4:27 PM

Tell the kernel what version we expect

Harbormaster completed remote builds in B40394: Diff 91978.Jul 8 2021, 4:27 PM
mjg accepted this revision.Jul 8 2021, 6:50 PM
mjg added inline comments.
lib/libpfctl/libpfctl.c
702

this should bzero for consistency with code below

This revision is now accepted and ready to land.Jul 8 2021, 6:50 PM
Closed by commit rGbe70c7a50d32: libpfctl: migrate to DIOCGETSTATESV2 (authored by kp). · Explain WhyJul 9 2021, 9:16 AM
This revision was automatically updated to reflect the committed changes.
kp added a commit: rGbe70c7a50d32: libpfctl: migrate to DIOCGETSTATESV2.
kp added a commit: rG25f13f477213: libpfctl: migrate to DIOCGETSTATESV2.Jul 16 2021, 11:55 AM
kp added a commit: rGfa3da0e87de7: libpfctl: migrate to DIOCGETSTATESV2.

Revision Contents
Changeset List

PathSize
lib/
libpfctl/
196 lines

Diff 91999

View Options

lib/libpfctl/libpfctl.c

Loading...