Page MenuHomeFreeBSD
Differential D55875

ifnet: Add some sanity checks
ClosedPublic
Actions

Authored by zlei on Mon, Mar 16, 8:23 AM.
Tags
None
Referenced Files
Unknown Object (File)
Wed, Apr 8, 9:55 AM
Unknown Object (File)
Tue, Apr 7, 4:50 PM
Unknown Object (File)
Sun, Apr 5, 1:20 PM
Unknown Object (File)
Mon, Mar 30, 10:10 AM
Unknown Object (File)
Fri, Mar 27, 12:07 AM
Unknown Object (File)
Wed, Mar 25, 12:26 AM
Unknown Object (File)
Tue, Mar 24, 9:30 AM
Unknown Object (File)
Tue, Mar 24, 1:26 AM
View All 12 Files
Subscribers
ae
imp
melifaro
pouria

Details

Reviewers
glebius
kp
pouria
Group Reviewers
network
Commits
rG00d96da231d0: ifnet: Add some sanity checks
Summary

To be more robust since the checking is performed where the interface
is referenced.

While here, remove a redundant check from if_vmove_loan().

MFC after: 2 weeks

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

zlei created this revision.Mon, Mar 16, 8:23 AM
Herald added subscribers: melifaro, ae, imp. · View Herald TranscriptMon, Mar 16, 8:23 AM
zlei requested review of this revision.Mon, Mar 16, 8:23 AM
pouria added a subscriber: pouria.Mon, Mar 16, 10:56 AM

I'm not sure how these assertions will be beneficial if we have to add them to every function of the ifp [un]linking.
IMHO, KASSERT/MPASS are existing to verify programmatic assumptions.
And yes, these changes are definitely verifies programmatic assumptions.
However, I don't think that using them to verify every programmatic assumptions per function is appropriate.

sys/net/if.c
2118–2121

while you're here, could you please fix its style too?

kp accepted this revision as: kp.Mon, Mar 16, 10:59 AM
This revision is now accepted and ready to land.Mon, Mar 16, 10:59 AM
zlei marked an inline comment as done.Mon, Mar 16, 11:15 AM
zlei added inline comments.
sys/net/if.c
2118–2121

while you're here, could you please fix its style too?

The flag IFF_DYING is a bit useless in practices. The writes to if_flags is not lock protected, hence a thread is not guareenteed to see it. Also it is a bit confusing to see a IFF_DYING interface on a "alive" list.

I believe the only valid consumer of IFF_DYING is the driver, to prevent potential race condition on ioctls. Anyway this flag do not belong to if_flags.

There're plans to remove IFF_DYING. See also https://reviews.freebsd.org/D49412.
I do not want to touch the style right now.

glebius accepted this revision as: glebius.Mon, Mar 16, 6:49 PM
zlei mentioned this in D55880: ifnet: Move SIOCSIFVNET from ifhwioctl() to ifioctl().Tue, Mar 17, 8:52 AM
zlei marked an inline comment as done.Thu, Apr 2, 3:55 AM
In D55875#1278350, @pouria wrote:

I'm not sure how these assertions will be beneficial if we have to add them to every function of the ifp [un]linking.
IMHO, KASSERT/MPASS are existing to verify programmatic assumptions.

For example assertions in if_unlink_ifnet(), there're multiple places, if_detach() / if_vmove_loan() / if_vmove_reclaim() / vnet_if_return() want them. You do not want to repeat everywhere.

And yes, these changes are definitely verifies programmatic assumptions.
However, I don't think that using them to verify every programmatic assumptions per function is appropriate.

For assertions in ifunit() / ifunit_ref(), they guarantee the ifp is in good shape when being used, also they serve a document to developers. The net stack evolves, but the document lags.

pouria accepted this revision as: pouria.Thu, Apr 2, 5:23 PM
Closed by commit rG00d96da231d0: ifnet: Add some sanity checks (authored by zlei). · Explain WhyTue, Apr 7, 4:35 AM
This revision was automatically updated to reflect the committed changes.
zlei added a commit: rG00d96da231d0: ifnet: Add some sanity checks.

Revision Contents
Changeset List

PathSize
sys/
net/
29 lines

Diff 175016

View Options

sys/net/if.c

Loading...