Page MenuHomeFreeBSD
Feed Advanced Search

Mar 12 2021

mmacy closed D26137: Wireguard merge.
Mar 12 2021, 8:38 PM

Feb 27 2021

mmacy accepted D28708: iflib: add support for admin completion queues.

It’s in a non performance critical path with no side effects if not used, so worst case it’s not useful to other consumers.

Feb 27 2021, 2:56 AM

Jan 30 2021

mmacy accepted D28428: cxgb(4): Remove assumption of physically contiguous mbufs..

LGTM

Jan 30 2021, 7:31 PM · network

Jan 8 2021

mmacy committed rGb363d3d52a49: OpenZFS: Fix issues caused by reversed commits + rebase (authored by mmacy).
OpenZFS: Fix issues caused by reversed commits + rebase
Jan 8 2021, 1:43 AM
mmacy committed rG7877fdebeeb3: OpenZFS merge main-gf11b09 (authored by mmacy).
OpenZFS merge main-gf11b09
Jan 8 2021, 12:57 AM

Jan 7 2021

mmacy committed rG90705d70c482: missed source rename (authored by mmacy).
missed source rename
Jan 7 2021, 11:47 PM
mmacy committed rG80ce10ca2fe0: missed header rename (authored by mmacy).
missed header rename
Jan 7 2021, 11:41 PM
mmacy committed rG42385c279bad: Update OpenZFS to master-f11b09 (authored by mmacy).
Update OpenZFS to master-f11b09
Jan 7 2021, 11:24 PM
mmacy closed D27683: iflib: ensure that tx interrupts are enabled and simplify txq_drain.
Jan 7 2021, 10:09 PM
mmacy committed rG81be655266fa: iflib: ensure that tx interrupts enabled and cleanups (authored by mmacy).
iflib: ensure that tx interrupts enabled and cleanups
Jan 7 2021, 10:09 PM

Jan 6 2021

mmacy added reviewers for D27683: iflib: ensure that tx interrupts are enabled and simplify txq_drain: jhb, markj.
Jan 6 2021, 7:19 PM

Dec 19 2020

mmacy requested review of D27683: iflib: ensure that tx interrupts are enabled and simplify txq_drain.
Dec 19 2020, 7:15 PM

Dec 10 2020

mmacy accepted D27565: zfs: quiet gcc -Wmissing-include-dirs.
Dec 10 2020, 11:03 PM
mmacy accepted D27559: if_wg: appease gcc.
Dec 10 2020, 8:30 PM

Nov 30 2020

mmacy committed rS368196: wireguard: fix zfs_ copy pasta in module init macro.
wireguard: fix zfs_ copy pasta in module init macro
Nov 30 2020, 8:59 PM
mmacy added inline comments to D26137: Wireguard merge.
Nov 30 2020, 8:59 PM
mmacy added a comment to D26137: Wireguard merge.

Thanks for in-kernel Wireguard. That's really great news before 13-STABLE is branched !
Everything works fine for me allowing to tunnel both legacy IP and IPv6 over legacy IP link. I was not able to utilise IPv6 address as tunnel endpoint so far. It failed with such an error: "wg0: wg_peer_add bad length for endpoint 28". Will tunnelling over IPv6 be supported in future?

Nov 30 2020, 8:58 PM
mmacy committed rS368195: Remove (dead) GPL copyright code from wireguard sources.
Remove (dead) GPL copyright code from wireguard sources
Nov 30 2020, 8:54 PM

Nov 29 2020

mmacy committed rS368163: Import kernel WireGuard support.
Import kernel WireGuard support
Nov 29 2020, 7:38 PM
mmacy updated the diff for D26137: Wireguard merge.
  • build fixes for tier 2 & 3 architectures
Nov 29 2020, 6:55 PM

Nov 27 2020

mmacy updated the diff for D26137: Wireguard merge.
  • more dead code GC
  • add header licenses
Nov 27 2020, 8:45 PM
mmacy updated the diff for D26137: Wireguard merge.
  • garbage collect dead code
Nov 27 2020, 8:22 PM

Nov 24 2020

mmacy added a comment to D26137: Wireguard merge.

moved the test setup to a different machine and after 1 hour and 19 minutes of running the test setup i got a panic here:

Stefan, I'm on r367980 with diff 79843 and I manually removed the mfree line in wg_encap since the latest diff 79919 could not be used. I've run your test for over 6 hours now without any panic. I even added iperf3 --udp and bombarded the server over the wg link for one hour. Only difference what I understand is that i'm on a bare metal server and you run in a bhyve/vale instance. Could what you see now instead be an issue with the virtualization layer?

Nov 24 2020, 7:38 PM

Nov 23 2020

mmacy added a comment to D26137: Wireguard merge.

I don't have time to test right now, but this is an analogous double free fix in the wg_encap path that I did earlier in the wg_decap path.

Nov 23 2020, 11:34 PM
mmacy updated the diff for D26137: Wireguard merge.
  • don't prematurely free in wg_encap
Nov 23 2020, 11:34 PM
mmacy updated the diff for D26137: Wireguard merge.
  • fix BPF on TX
Nov 23 2020, 10:05 PM
mmacy updated the diff for D26726: Add support for asynchrous file system operations to aio.
  • update uio_bio structure to support scatter gather as well as improve interop with linux
Nov 23 2020, 1:38 AM

Nov 22 2020

mmacy updated the diff for D26137: Wireguard merge.
  • fix BPF issue
  • avoid socket operations when link is down
  • fix use after free
Nov 22 2020, 2:21 AM
mmacy added a comment to D26137: Wireguard merge.

with the same setup (on FreeBSD: while true; do ifconfig wg0 create .....; ping -c 1 PEERIP; sleep 1; ifconfig wg0 destroy; done and on the Linux peer: ping -f FreeBSDwgIP) i can also get a different panic: here the gtaskqueue_drain thread got to wg_deliver_in(...) but peer->p_sc->sc_socket->so_so4 is 0x0

Fatal trap 12: page fault while in kernel mode
cpuid = 1; apic id = 01
fault virtual address   = 0xd8
fault code              = supervisor read data, page not present
instruction pointer     = 0x20:0xffffffff823123ef
stack pointer           = 0x28:0xfffffe004c8daa60
frame pointer           = 0x28:0xfffffe004c8dab00
code segment            = base 0x0, limit 0xfffff, type 0x1b
                        = DPL 0, pres 1, long 1, def32 0, gran 1
processor eflags        = interrupt enabled, resume, IOPL = 0
current process         = 0 (if_io_tqg_1)
trap number             = 12
panic: page fault
cpuid = 1
time = 1603769864
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0x2b/frame 0xfffffe004c8da710
vpanic() at vpanic+0x182/frame 0xfffffe004c8da760
panic() at panic+0x43/frame 0xfffffe004c8da7c0
trap_fatal() at trap_fatal+0x387/frame 0xfffffe004c8da820
trap_pfault() at trap_pfault+0x97/frame 0xfffffe004c8da880
trap() at trap+0x2ab/frame 0xfffffe004c8da990
calltrap() at calltrap+0x8/frame 0xfffffe004c8da990
--- trap 0xc, rip = 0xffffffff823123ef, rsp = 0xfffffe004c8daa60, rbp = 0xfffffe004c8dab00 ---
wg_deliver_in() at wg_deliver_in+0x24f/frame 0xfffffe004c8dab00
gtaskqueue_run_locked() at gtaskqueue_run_locked+0xa7/frame 0xfffffe004c8dab80
gtaskqueue_thread_loop() at gtaskqueue_thread_loop+0x94/frame 0xfffffe004c8dabb0
fork_exit() at fork_exit+0x80/frame 0xfffffe004c8dabf0
fork_trampoline() at fork_trampoline+0xe/frame 0xfffffe004c8dabf0
--- trap 0, rip = 0, rsp = 0, rbp = 0 ---
KDB: enter: panic
Uptime: 32m27s
Dumping 555 out of 8062 MB:..3%..12%..21%..32%..41%..52%..61%..72%..81%..93%

__curthread () at /usr/src/sys/amd64/include/pcpu_aux.h:55
55              __asm("movq %%gs:%P1,%0" : "=r" (td) : "n" (offsetof(struct pcpu,
(kgdb) #0  __curthread () at /usr/src/sys/amd64/include/pcpu_aux.h:55
#1  doadump (textdump=1) at /usr/src/sys/kern/kern_shutdown.c:394
#2  0xffffffff80be05b0 in kern_reboot (howto=260)
    at /usr/src/sys/kern/kern_shutdown.c:481
#3  0xffffffff80be09fa in vpanic (fmt=<optimized out>, ap=<optimized out>)
    at /usr/src/sys/kern/kern_shutdown.c:912
#4  0xffffffff80be0763 in panic (fmt=<unavailable>)
    at /usr/src/sys/kern/kern_shutdown.c:838
#5  0xffffffff8102b2b7 in trap_fatal (frame=0xfffffe004c8da9a0, eva=216)
    at /usr/src/sys/amd64/amd64/trap.c:915
#6  0xffffffff8102b357 in trap_pfault (frame=0xfffffe004c8da9a0, 
    usermode=<optimized out>, signo=<optimized out>, ucode=<optimized out>)
    at /usr/src/sys/amd64/amd64/trap.c:732
#7  0xffffffff8102a94b in trap (frame=0xfffffe004c8da9a0)
    at /usr/src/sys/amd64/amd64/trap.c:398
#8  <signal handler called>
#9  0xffffffff823123ef in wg_deliver_in (peer=0xfffff80164e98000)
    at /usr/src/sys/dev/if_wg/module/if_wg_session.c:1572
#10 0xffffffff80c2aa27 in gtaskqueue_run_locked (queue=0xfffff8000347bc00)
    at /usr/src/sys/kern/subr_gtaskqueue.c:371
#11 0xffffffff80c2a824 in gtaskqueue_thread_loop (arg=<optimized out>)
    at /usr/src/sys/kern/subr_gtaskqueue.c:547
#12 0xffffffff80b9b9c0 in fork_exit (
    callout=0xffffffff80c2a790 <gtaskqueue_thread_loop>, 
    arg=0xfffffe004ca97020, frame=0xfffffe004c8dac00)
    at /usr/src/sys/kern/kern_fork.c:1052
#13 <signal handler called>
(kgdb) 

------------------------------------------------------------------------
Nov 22 2020, 2:20 AM

Nov 18 2020

mmacy added a comment to D26880: Restore identification of VDEVs using non-native block size..

Thank you.

Nov 18 2020, 6:35 PM
mmacy added a comment to D26880: Restore identification of VDEVs using non-native block size..

In general if you're super eager to merge some change that for which there's no pressing reason to merge it because I haven't had time to MFV. I'd rather that you simply volunteer the time to do the MFV yourself. Thanks.

Nov 18 2020, 1:25 AM

Nov 16 2020

mmacy updated the diff for D26137: Wireguard merge.
  • build fixes :-/
Nov 16 2020, 3:58 AM

Nov 15 2020

mmacy updated the diff for D26137: Wireguard merge.
  • fix ifwg.c compile
  • avoid enqueueing tasks when link is down
  • wait for tasks to complete before detach
Nov 15 2020, 1:13 AM

Oct 24 2020

mmacy added a comment to D26137: Wireguard merge.

Another kernel panic triggered by interface destruction: incoming upd traffic from the wg peer arrives in wg_input() where sc is already gone.

Fatal trap 9: general protection fault while in kernel mode
cpuid = 0; apic id = 00
instruction pointer     = 0x20:0xffffffff80cefaad
stack pointer           = 0x28:0xfffffe000eb13610
frame pointer           = 0x28:0xfffffe000eb13610
code segment            = base 0x0, limit 0xfffff, type 0x1b
                        = DPL 0, pres 1, long 1, def32 0, gran 1
processor eflags        = interrupt enabled, resume, IOPL = 0
current process         = 12 (irq43: virtio_pci1)
trap number             = 9
panic: general protection fault
cpuid = 0
time = 1602732063
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0x2b/frame 0xfffffe000eb13320
vpanic() at vpanic+0x182/frame 0xfffffe000eb13370
panic() at panic+0x43/frame 0xfffffe000eb133d0
trap_fatal() at trap_fatal+0x387/frame 0xfffffe000eb13430
trap() at trap+0xa4/frame 0xfffffe000eb13540
calltrap() at calltrap+0x8/frame 0xfffffe000eb13540
--- trap 0x9, rip = 0xffffffff80cefaad, rsp = 0xfffffe000eb13610, rbp = 0xfffffe000eb13610 ---
if_inc_counter() at if_inc_counter+0xd/frame 0xfffffe000eb13610
wg_input() at wg_input+0xa3/frame 0xfffffe000eb13650
udp_append() at udp_append+0x81/frame 0xfffffe000eb136c0
udp_input() at udp_input+0xa2f/frame 0xfffffe000eb13790
ip_input() at ip_input+0x194/frame 0xfffffe000eb13820
netisr_dispatch_src() at netisr_dispatch_src+0xb1/frame 0xfffffe000eb13880
ether_demux() at ether_demux+0x16e/frame 0xfffffe000eb138b0
ether_nh_input() at ether_nh_input+0x408/frame 0xfffffe000eb13910
netisr_dispatch_src() at netisr_dispatch_src+0xb1/frame 0xfffffe000eb13970
ether_input() at ether_input+0xa1/frame 0xfffffe000eb139d0
vtnet_rxq_input() at vtnet_rxq_input+0x200/frame 0xfffffe000eb13a10
vtnet_rxq_eof() at vtnet_rxq_eof+0x63d/frame 0xfffffe000eb13ae0
vtnet_rx_vq_process() at vtnet_rx_vq_process+0x97/frame 0xfffffe000eb13b20
ithread_loop() at ithread_loop+0x279/frame 0xfffffe000eb13bb0
fork_exit() at fork_exit+0x80/frame 0xfffffe000eb13bf0
fork_trampoline() at fork_trampoline+0xe/frame 0xfffffe000eb13bf0
--- trap 0, rip = 0, rsp = 0, rbp = 0 ---
KDB: enter: panic
Oct 24 2020, 3:25 AM
mmacy updated the diff for D26137: Wireguard merge.
  • rebase
  • fix WGC_SET priv_check to work in jails
  • mark link down before starting detach
Oct 24 2020, 3:25 AM
mmacy added a comment to D26880: Restore identification of VDEVs using non-native block size..

This will get merged in with the next MFV.

Oct 24 2020, 1:50 AM

Oct 21 2020

mmacy added a comment to D26880: Restore identification of VDEVs using non-native block size..

We can continue any further discussion on the PR itself. The only thing left resolve is whether or not to heed the environment variable that Brian mentioned.

Oct 21 2020, 12:37 AM
mmacy added a comment to D26880: Restore identification of VDEVs using non-native block size..

@cy This all looks fine, but for anything that isn't an urgent bug I greatly prefer that it makes it way in by MFV. Thanks.

Oct 21 2020, 12:35 AM

Oct 17 2020

mmacy committed rS366780: Update OpenZFS to 2.0.0-rc3-gfc5966.
Update OpenZFS to 2.0.0-rc3-gfc5966
Oct 17 2020, 1:06 AM
mmacy committed rS366775: Checkpoint 2.0.0-rc3-gfc5966.
Checkpoint 2.0.0-rc3-gfc5966
Oct 17 2020, 12:13 AM
mmacy committed rS366774: Update OpenZFS to 2.0.0-rc3-gbd565f.
Update OpenZFS to 2.0.0-rc3-gbd565f
Oct 17 2020, 12:06 AM

Oct 13 2020

mmacy updated the diff for D26726: Add support for asynchrous file system operations to aio.
  • add sparse page array support to uiobiomove
Oct 13 2020, 11:48 PM
mmacy added a comment to D26726: Add support for asynchrous file system operations to aio.

@asomers can you let me what more you'd like to see in the documentation.

Oct 13 2020, 8:10 PM
mmacy updated the diff for D26726: Add support for asynchrous file system operations to aio.
  • comment new functions in vfs_aio.c
  • add man page for uio_bio (includes uiobiomove) and VOP_UBOP.
Oct 13 2020, 8:10 PM

Oct 12 2020

mmacy updated the diff for D26137: Wireguard merge.
  • Fix run_send_keepalive panic
Oct 12 2020, 9:02 PM
mmacy added a comment to D26137: Wireguard merge.

It seems that the new wg interface is not completely jail-ready yet. I'm exposing the wg interface in devfs.rules with
[devfsrules_jail_wg=10]
add include $devfsrules_jail_vnet
add path 'wg*' unhide

Inside the jail i can create the wg interface. However i'm not allowed to add peers.

ifconfig wg0 create .... gives: ifconfig: failed to install peer

wg setconf wg0 ... gives: Unable to modify interface: Operation not permitted

Could it be that the wg peer structures are not exposed to the jail?

Oct 12 2020, 8:59 PM
mmacy added a comment to D26218: Integrate zstd into boot loader.

Once you can get ZTS to pass it LGTM.

Oct 12 2020, 6:28 PM

Oct 9 2020

mmacy added a comment to D26726: Add support for asynchrous file system operations to aio.

Could we get some documentation for the uiobiomove, aio_qasync, and VOP_UBOP ?

Oct 9 2020, 10:39 PM
mmacy updated the diff for D26137: Wireguard merge.
  • Don't advertise checksum offload
Oct 9 2020, 10:25 PM
mmacy added a comment to D26137: Wireguard merge.

This might be out of scope of this review:
the WGC_SET ioctl is not priv(9) checked (and there is no PRIV_NET_WG entry in sys/priv.h)

Oct 9 2020, 9:47 PM
mmacy updated the diff for D26137: Wireguard merge.
  • rebase against master
  • don't print the first allowedip repeatedly
  • don't print the private key for unprivileged users
  • priv_check WGC_SET
Oct 9 2020, 9:43 PM
mmacy added reviewers for D26726: Add support for asynchrous file system operations to aio: asomers, jhb.
Oct 9 2020, 9:04 PM
mmacy requested review of D26726: Add support for asynchrous file system operations to aio.
Oct 9 2020, 8:53 PM

Oct 2 2020

mmacy committed rS366353: OpenZFS: don't call fpu_kern_thread on i386.
OpenZFS: don't call fpu_kern_thread on i386
Oct 2 2020, 1:25 AM

Oct 1 2020

mmacy committed rS366350: OpenZFS: MFV 2.0-rc3-gfc5966.
OpenZFS: MFV 2.0-rc3-gfc5966
Oct 1 2020, 11:28 PM
mmacy committed rS366349: checkpoint OpenZFS 2.0-rc3-gfc5966.
checkpoint OpenZFS 2.0-rc3-gfc5966
Oct 1 2020, 11:15 PM
mmacy committed rS366348: Update OpenZFS to 2.0.0-rc3-gfc5966.
Update OpenZFS to 2.0.0-rc3-gfc5966
Oct 1 2020, 11:09 PM

Sep 26 2020

mmacy added a comment to D26137: Wireguard merge.

According to ifconfig(8): Cloned interfaces are members of their interface family group by default.

The use of iflib_clone_register() in module.c prevents that this is done for if_wg.

How so? iflib_clone_register calls if_clone_simple which is what vxlan does as well.

iflib_clone_register does set

ifc_flags_set(ip->ip_ifc, IFC_NOGROUP);
Sep 26 2020, 11:57 PM
mmacy updated the diff for D26137: Wireguard merge.
  • Don't disable groups in iflib
Sep 26 2020, 11:57 PM

Sep 18 2020

mmacy committed rS365894: MFV 2.0-rc2.
MFV 2.0-rc2
Sep 18 2020, 11:22 PM
mmacy committed rS365893: Checkpoint 2.0-rc2-g4ce06f.
Checkpoint 2.0-rc2-g4ce06f
Sep 18 2020, 11:03 PM
mmacy committed rS365892: Update openzfs to 2.0.0-rc2-g4ce06f.
Update openzfs to 2.0.0-rc2-g4ce06f
Sep 18 2020, 10:55 PM

Sep 11 2020

mmacy updated the diff for D26137: Wireguard merge.
  • handle empty peer list
  • limit ioctl command set to WGC_GET, WGC_SET
Sep 11 2020, 6:46 PM
mmacy added a comment to D26137: Wireguard merge.

According to ifconfig(8): Cloned interfaces are members of their interface family group by default.

The use of iflib_clone_register() in module.c prevents that this is done for if_wg.

Sep 11 2020, 6:19 PM
mmacy updated the diff for D26137: Wireguard merge.
  • don't fail status on alias
Sep 11 2020, 6:13 PM
mmacy added a comment to D26137: Wireguard merge.

Bad news, remember https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=247853
comment 6 item2 and comment 8. Local access to wg-host services was early an issue, then with D26137 this issue was solved and do still work.

Now i've found as it seems that issue is the other way around, services on a remote host is not accessible. Below my test setup:

bsd1 em0:172.16.0.150/24 --- bsd2 em0:172.16.0.179/24

bsd2 ue0:172.16.42.1/24 ---bsd22 172.16.42.2

bsd1 wg0:192.168.3.1/24 ----- bsd2 wg0:192.168.3.2/24

ping and traceroute works to all IP addresses
bsd1 ssh to bsd2 192.168.3.2 works
bsd1 ssh to bsd2 172.16.42.1 works
bsd1 ssh to bsd22 172.16.42.2 does not work

I tried these routes over wg0, same result:
route add -inet 172.16.42.0/24 192.168.3.2
route add -inet 172.16.42.0/24 -interface wg0

bsd1 ssh to bsd22 works (of course) if I change the route to
route add -inet 172.16.42.0/24 172.16.0.179
i.e no wireguard, instead via local lan em0

tested on r365550 with Diff 76838

Sep 11 2020, 6:04 PM
mmacy updated the diff for D26137: Wireguard merge.
  • make fpu kern thread check work on arm64
Sep 11 2020, 6:03 PM

Sep 9 2020

mmacy updated the diff for D26137: Wireguard merge.
  • start slimming down ioctl interface with the idea to eventually just use WGC_{GET, SET}
Sep 9 2020, 9:38 PM
mmacy added a comment to D26137: Wireguard merge.

if the wg interface has an ipv6 address, SIOCIFDESTROY can panic the kernel.

looking at the backtraces, i guess what happens is:
mld_fasttimo() tries to emit a ipv6 MLD packet and wg_route_lookup() touches
memory that was just released by the thread that was responsible for device
destruction.

minimal code to reproduce (keys and addresses are irrelevant):

Sep 9 2020, 9:11 PM
mmacy updated the diff for D26137: Wireguard merge.
  • work around mld bug
Sep 9 2020, 9:07 PM
mmacy added a comment to D26137: Wireguard merge.

Hostname in the endpoint directive does not resolve to an IP address:

ifconfig wg0 create \
private-key wN4PXBViEY7uAwn7HVD+Z3Qn3E8yB4wD60jSki5+SF4= \
listen-port 3333 \
peer public-key cu2RbOX8183OLuKo7CbTNhLelGluVeiQ7jFhy50kxA8= \
endpoint bsd2:3333 \
allowed-ips 192.168.3.0/24

ifconfig: Name does not resolve

userland command 'getaddrinfo bsd2' returns:
dgram inet udp 172.16.0.179 0
stream inet tcp 172.16.0.179 0
seqpacket inet sctp 172.16.0.179 0

Sep 9 2020, 7:45 PM
mmacy updated the diff for D26137: Wireguard merge.
  • allow non-numeric endpoints
Sep 9 2020, 7:43 PM
mmacy added a comment to D26137: Wireguard merge.

Also I think wg(8) need an update after the recent fixes. wg setconf stopped working, It does not add peers, ifconfig wg0 peer-list gives:
ifconfig: can't get peer list size

Sep 9 2020, 7:27 PM

Sep 8 2020

mmacy committed rS365466: ZFS: remove some extra defines.
ZFS: remove some extra defines
Sep 8 2020, 5:47 PM

Sep 7 2020

mmacy updated the summary of D26137: Wireguard merge.
Sep 7 2020, 9:28 PM
mmacy added a comment to D26137: Wireguard merge.

that it's generally accepted that ifconfig is the standard tool used for all networking configuration, but duplicating all of wg(8) in to ifconfig is tedious and feels a bit redundant.

Probably not important for a v1, but it might be nice to eventually move wg(8) functionality to libifconfig and use the linked library to avoid reimplementing the wheel too much.

Sep 7 2020, 9:16 PM
mmacy updated the diff for D26137: Wireguard merge.
  • fix allowedips in peer-list output
Sep 7 2020, 7:57 PM
mmacy updated the diff for D26137: Wireguard merge.
  • place output of successful diagnostics under bootverbose
  • fix tcpdump: WARNING: wg0: That device doesn't support promiscuous mode complaints
Sep 7 2020, 7:48 PM
mmacy added a comment to D26137: Wireguard merge.

#
What are the design decisions made here? Is it to implement wg(8) 'setconf' functionality into ifconfig then drop wg(8) and then adopt wg-quick(8) to use ifconfig? if so thats fine and correct IMHO. This would then also require implementation of wg(8) 'show' which gives traffic stats and latest handshake per peer, a good place for that could then be netstat? How about the key management in wg(8)?

Sep 7 2020, 7:19 PM
mmacy updated the diff for D26137: Wireguard merge.
  • disable debug noise by default
Sep 7 2020, 12:48 AM
mmacy added a comment to D26137: Wireguard merge.

tested on r364973

Resolved issues:

  1. The issue described in comment 8 in https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=247853
Sep 7 2020, 12:37 AM
mmacy updated the diff for D26137: Wireguard merge.
  • incorporate HRS feedback
Sep 7 2020, 12:28 AM

Sep 6 2020

mmacy updated the diff for D26137: Wireguard merge.
  • fix clean build issues due to circular dependencies
Sep 6 2020, 11:55 PM

Sep 4 2020

mmacy committed rS365347: ZFS: MFV 2.0-rc1-gfd20a8.
ZFS: MFV 2.0-rc1-gfd20a8
Sep 4 2020, 10:25 PM
mmacy committed rS365346: make spa_stats.c common.
make spa_stats.c common
Sep 4 2020, 10:12 PM
mmacy committed rS365345: Another missed move.
Another missed move
Sep 4 2020, 9:55 PM
mmacy committed rS365343: Add missed move.
Add missed move
Sep 4 2020, 9:48 PM
mmacy committed rS365341: snapshot openzfs 2.0-rc1 update.
snapshot openzfs 2.0-rc1 update
Sep 4 2020, 9:37 PM
mmacy committed rS365340: Update vendor openzfs to fd20a8.
Update vendor openzfs to fd20a8
Sep 4 2020, 9:32 PM
mmacy added a comment to D26137: Wireguard merge.

https://github.com/mattmacy/networking/tree/projects/wireguard_merge_update is a WIP with updates for the provided feedback along with some observed build issues.

Sep 4 2020, 12:46 AM

Sep 2 2020

mmacy added a comment to D26137: Wireguard merge.

Comparing wireguard userland vs kernel module on a small device: +300% (from 117Mb/s to 483Mb/s)

  • PC Engines APU2C4 (quad core AMD GX-412T Processor 1 GHz)
  • 3 Intel i210AT Gigabit Ethernet ports
  • FreeBSD 13-head r365033
  • Wireguard kernel: D26137
  • Wireguard userland: 1.0.20200827
  • 2000 flows of UDP packets
  • 500Bytes UDP load => packet size: 528B => Ethernet frame size:542B
Sep 2 2020, 10:10 PM

Aug 28 2020

mmacy committed rS364931: ZFS: add to arm64 NOTES to minimize potential for missing symbols.
ZFS: add to arm64 NOTES to minimize potential for missing symbols
Aug 28 2020, 7:02 PM
mmacy committed rS364930: ZFS: MFV 2.0-rc1-ga00c61.
ZFS: MFV 2.0-rc1-ga00c61
Aug 28 2020, 6:54 PM
mmacy committed rS364929: openzfs: tag latest.
openzfs: tag latest
Aug 28 2020, 6:48 PM
mmacy committed rS364928: update vendor openzfs to a00c61 (2.0-rc1).
update vendor openzfs to a00c61 (2.0-rc1)
Aug 28 2020, 6:41 PM
mmacy committed rS364923: ZFS: clarify dependencies for static linking.
ZFS: clarify dependencies for static linking
Aug 28 2020, 5:06 PM

Aug 27 2020

mmacy updated the diff for D26207: Add zfs zstd support to loader.

rebase

Aug 27 2020, 10:06 PM
mmacy committed rS364893: ZFS: remove duplicate "com.datto:encryption" from loader.
ZFS: remove duplicate "com.datto:encryption" from loader
Aug 27 2020, 9:39 PM
mmacy updated the diff for D26207: Add zfs zstd support to loader.
  • whitespace
Aug 27 2020, 7:45 PM
mmacy added inline comments to D26207: Add zfs zstd support to loader.
Aug 27 2020, 7:35 PM