Page MenuHomeFreeBSD
Differential D51496

if_ovpn: Assert that udp_set_kernel_tunneling() succeeds
ClosedPublic
Actions

Authored by markj on Thu, Jul 24, 4:18 PM.
Tags
None
Referenced Files
Unknown Object (File)
Sat, Aug 9, 3:11 AM
Unknown Object (File)
Mon, Aug 4, 3:48 AM
Unknown Object (File)
Tue, Jul 29, 10:48 AM
Unknown Object (File)
Tue, Jul 29, 1:41 AM
Unknown Object (File)
Tue, Jul 29, 1:40 AM
Unknown Object (File)
Mon, Jul 28, 11:23 PM
Unknown Object (File)
Mon, Jul 28, 2:45 PM
Unknown Object (File)
Mon, Jul 28, 11:44 AM
View All 14 Files
Subscribers
ae
glebius
imp
melifaro

Details

Reviewers
kp
Group Reviewers
network
Commits
rG6bd8a7393f28: if_ovpn: Assert that udp_set_kernel_tunneling() succeeds
rGa7dfc570f274: if_ovpn: Assert that udp_set_kernel_tunneling() succeeds
Summary

We do this elsewhere, so copy the pattern here.

(Perhaps udp_set_kernel_tunneling() should either succeed or panic?)

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

markj created this revision.Thu, Jul 24, 4:18 PM
Herald added subscribers: glebius, melifaro, ae, imp. · View Herald TranscriptThu, Jul 24, 4:18 PM
markj requested review of this revision.Thu, Jul 24, 4:18 PM
markj added a parent revision: D51495: if_ovpn: Destroy the datapath lock when destroying a clone.
Harbormaster completed remote builds in B65661: Diff 159013.Thu, Jul 24, 4:18 PM
markj added a child revision: D51497: if_ovpn: Remove a no-op function.Thu, Jul 24, 4:18 PM
kp accepted this revision as: kp.EditedThu, Jul 24, 5:27 PM

(Perhaps udp_set_kernel_tunneling() should either succeed or panic?)

It currently can't actually fail when we're clearing a tunnel function (as we do here). It can only fail if a tunnel function is already set, which his not something that should happen to the OpenVPN socket.
Some other callers do the same, some attempt to handle the error.
Looking at that code though ... basically everyone creates a new socket and then calls udp_set_kernel_tunneling(). I don't expect it to be possible for those calls to fail, so maybe it would indeed be better to just assert in udp_set_kernel_tunneling() itself.

It looks like if_ovpn is the only case where we don't create the socket before we attach the tunneling function.

This revision is now accepted and ready to land.Thu, Jul 24, 5:27 PM
Closed by commit rGa7dfc570f274: if_ovpn: Assert that udp_set_kernel_tunneling() succeeds (authored by markj). · Explain WhyFri, Jul 25, 5:39 PM
This revision was automatically updated to reflect the committed changes.
markj added a commit: rGa7dfc570f274: if_ovpn: Assert that udp_set_kernel_tunneling() succeeds.
markj added a commit: rG6bd8a7393f28: if_ovpn: Assert that udp_set_kernel_tunneling() succeeds.Tue, Aug 5, 2:00 PM

Revision Contents
Changeset List

PathSize
sys/
net/
1 line

Diff 159120

View Options

sys/net/if_ovpn.c

Loading...