olivier (Olivier Cochard-Labbé)
User

Projects

User Details

User Since
Feb 5 2016, 2:19 PM (84 w, 6 d)

Recent Activity

Fri, Sep 15

olivier accepted D12378: net-mgmt/openbmp: new port.
Fri, Sep 15, 1:44 PM
olivier requested changes to D12378: net-mgmt/openbmp: new port.

Small comestic proposal (check my 2 comments).

Fri, Sep 15, 11:55 AM

Wed, Sep 13

olivier accepted D12332: www/yarn: Updating to version 1.0.1.

It's okay, portlint is just an helper tool and didn't catch this port complexity.

Wed, Sep 13, 9:33 AM
olivier accepted D12182: Fix build on MIPS and powerpc..
Wed, Sep 13, 9:32 AM

Tue, Sep 12

olivier accepted D12335: benchmarks/stress-ng: updating to 0.8.14.
Tue, Sep 12, 1:42 PM

Fri, Sep 8

olivier accepted D12273: benchmarks/phoronix-test-suite: update to 7.2.1.

Don't know what is a "mad64" arch, but it's okay :)-

Fri, Sep 8, 9:33 AM

Thu, Sep 7

olivier accepted D12262: databases/timescaledb: update to 0.4.1.

It's ok, but because the sources provides the license file (LICENSE), you should add a LICENSE_FILE=

Thu, Sep 7, 5:14 AM

Wed, Sep 6

olivier accepted D12244: audio/dsbmixer: update to version 1.2.
Wed, Sep 6, 5:30 PM
olivier accepted D12234: devel/cccc: update to version 3.1.5.
Wed, Sep 6, 9:45 AM
olivier added inline comments to D12234: devel/cccc: update to version 3.1.5.
Wed, Sep 6, 8:06 AM

Tue, Sep 5

olivier accepted D12234: devel/cccc: update to version 3.1.5.
Tue, Sep 5, 10:10 PM

Mon, Sep 4

olivier accepted D12224: benchmarks/unixbench: updating to version 5.1.3.
Mon, Sep 4, 10:21 PM
olivier added inline comments to D12224: benchmarks/unixbench: updating to version 5.1.3.
Mon, Sep 4, 3:47 PM

Fri, Sep 1

olivier accepted D12204: benchmarks/stress-ng: Updating to version 0.08.13.
Fri, Sep 1, 12:31 PM
olivier accepted D12199: Introduce information about new commiter - pizzamig.

I didn't rebuild the full doc for testing error syntax, but by reading all of your changes it seems okay.

Fri, Sep 1, 11:53 AM

Wed, Aug 30

olivier accepted D12166: benchmarks/nbench: fixing master site and the homepage entry.

Does a "LICENSE= NONE" valid in this case ? (avoid complains from portlint -A)

Wed, Aug 30, 4:45 PM
olivier requested changes to D12166: benchmarks/nbench: fixing master site and the homepage entry.

Mmm… your email is not updated into the MAINTAINER field on this port: Your commit r448911 correctly updated all your email: Does this mean your are working on a non-updated local source tree ?

Wed, Aug 30, 3:59 PM

Tue, Aug 29

olivier accepted D12150: Change MAINTAINER email to my new FreeBSD email.

Good: You correctly used the good capitalization rule for "FreeBSD" :-)

Tue, Aug 29, 12:51 PM

Mon, Aug 28

olivier accepted D12148: astro/xearth: Add myself (pizzamig) to freebsd.committers.markers.
Mon, Aug 28, 8:53 PM
olivier committed rP448874: Please welcome Luca Pizzamiglio (pizzamig@) as a new ports committer!.
Please welcome Luca Pizzamiglio (pizzamig@) as a new ports committer!
Mon, Aug 28, 6:27 PM
olivier added a comment to D12132: Avoid spinning in random_harvest_queue.

How do you measure the 25% performance increase ?

Mon, Aug 28, 4:34 PM
olivier accepted D12145: Adding personal information about pizzamig as port committer.
Mon, Aug 28, 2:35 PM

Aug 14 2017

olivier added a comment to D11727: ixgbe(4): Update HEAD to use iflib.

About 30% performance drop regression (from 2.8Mpps to 1.8Mpps) during forwarding of smallest packet:

Aug 14 2017, 2:31 PM

Jul 21 2017

olivier committed rP446318: Fix collectd5's range version.
Fix collectd5's range version
Jul 21 2017, 2:39 PM

Jul 20 2017

olivier committed rP446296: MFH: r446072.
MFH: r446072
Jul 20 2017, 9:40 PM
olivier committed rP446295: MFH: r446193.
MFH: r446193
Jul 20 2017, 9:38 PM

Jul 19 2017

olivier committed rP446194: Fix vuxmlbuild by replacing lower case by upper case in cvename.
Fix vuxmlbuild by replacing lower case by upper case in cvename
Jul 19 2017, 10:38 AM
olivier committed rP446193: Update strongswan to 5.5.3.
Update strongswan to 5.5.3
Jul 19 2017, 10:29 AM
olivier committed rP446192: Document vulnerability in collectd5.
Document vulnerability in collectd5
Jul 19 2017, 10:14 AM
olivier committed rP446191: Document vulnerability in strongswan.
Document vulnerability in strongswan
Jul 19 2017, 9:43 AM

Jul 17 2017

olivier committed rP446072: Update to 5.7.2.
Update to 5.7.2
Jul 17 2017, 1:38 PM

Jul 6 2017

olivier added a comment to D11476: iflib - try m_defrag when m_collapse fails.
In D11476#238004, @ae wrote:

From a quick look, the iflib code does not bind irq to CPU cores. The old em/igb drivers did that and I guess, if you add bus_bind_intr() again, this will increase the performance.

Jul 6 2017, 10:44 PM
olivier added a comment to D11476: iflib - try m_defrag when m_collapse fails.

@olivier - Could you tell me what tools do you use? I'd like to check if forwarding performance on other HW is also affected.

Jul 6 2017, 3:34 PM

Jul 5 2017

olivier added a comment to D11476: iflib - try m_defrag when m_collapse fails.

On the first platform: PC Engines APU2C4 (quad core AMD GX-412T Processor 1 GHz), 3 Intel i210AT Gigabit Ethernet ports

  • LRO/TSO disabled
  • harvest.mask=351
  • 2000 flows of smallest UDP packets
  • Traffic load at 1.448Mpps (Gigabit line-rate)
Jul 5 2017, 12:11 PM

Jul 3 2017

olivier committed rP444991: Update to 0.08.07.
Update to 0.08.07
Jul 3 2017, 10:43 PM

Jul 2 2017

olivier added a comment to D11137: PF: implement RFC 4787 REQ 1 and 3 (full cone NAT).

I've tested this patch on a setup where this feature is usefull: Using Mediation (NAT hole punching) feature of Strongswan for connecting 2 sites with IPSec, each site behind a NAT box (https://bsdrp.net/documentation/examples/strongswan_ipsec_mediation_feature).
Previously I had to use nat keyword "static-port" into pf line configuration for "helping" pf to keept original UDP source port, then allowing this feature to work.
With this patch, a standard pf nat (without any option) allow to create NAT hole: I don't think it's a "security downgrade" problem, because NAT was never desing for security.

Jul 2 2017, 7:49 PM

Jun 29 2017

olivier committed rP444689: New port: net/frr.
New port: net/frr
Jun 29 2017, 9:05 PM
olivier accepted D11391: rc.d: Add ipfw_netflow.
Jun 29 2017, 11:30 AM
olivier added a comment to D11391: rc.d: Add ipfw_netflow.

I like it: It's work :-)
Some potential improvement:

  • allowing to configure just the rule number (01000) in place of having to declaring the full rule line
  • Cosmetic: Setting a name to the ksocket, like export-flow or something like that (it just help to describe a little-better the graphiz).
Jun 29 2017, 9:09 AM

Jun 19 2017

olivier committed rP443873: Update to 1.4.0.
Update to 1.4.0
Jun 19 2017, 1:42 PM
olivier committed rP443860: Update to 1.3.0.
Update to 1.3.0
Jun 19 2017, 5:09 AM

Jun 14 2017

olivier committed rP443610: Update rainloop-community version to 1.11.1 (should be included with r443606).
Update rainloop-community version to 1.11.1 (should be included with r443606)
Jun 14 2017, 11:03 PM
olivier committed rP443606: Update to 1.11.1.
Update to 1.11.1
Jun 14 2017, 10:46 PM

Jun 4 2017

olivier committed rP442594: Update to 0.12.0.
Update to 0.12.0
Jun 4 2017, 10:13 PM

May 31 2017

olivier committed rP442147: Updating to version 0.08.02.
Updating to version 0.08.02
May 31 2017, 10:08 AM

May 29 2017

olivier committed rP442031: Fix MD5 TCP signature usage with latest tcpmd5 kernel module.
Fix MD5 TCP signature usage with latest tcpmd5 kernel module
May 29 2017, 7:30 PM

May 10 2017

olivier committed rP440550: Update to 2.5.0.
Update to 2.5.0
May 10 2017, 9:29 AM
olivier committed rP440527: Add option for enabling mediation feature (like STUN for IPSec peers).
Add option for enabling mediation feature (like STUN for IPSec peers)
May 10 2017, 6:12 AM

May 9 2017

olivier added a comment to D9876: apuled(4): add support for LEDs on PC Engines APU boards.

The updated code should answer to all remarks.
About the sys/modules/Makefile diff: I've synced my FreeBSD src tree to the last revision which updated this file, and when I've updated this review it had included by mistake the change.

May 9 2017, 5:31 AM

May 8 2017

olivier updated the diff for D9876: apuled(4): add support for LEDs on PC Engines APU boards.

Author update his patch and addressed most of the phabricator comments and update it for supporting APU1,2 and 3 boards.

May 8 2017, 7:17 PM
olivier committed rP440444: Updating to version 0.08.00.
Updating to version 0.08.00
May 8 2017, 5:58 PM

Apr 27 2017

olivier committed rP439535: Update to 0.2.16 and fix tap interface usage..
Update to 0.2.16 and fix tap interface usage.
Apr 27 2017, 9:43 AM
olivier committed rP439533: Fix the shebang file list.
Fix the shebang file list
Apr 27 2017, 9:15 AM

Apr 20 2017

olivier committed rP438927: Update to v0.9.5.
Update to v0.9.5
Apr 20 2017, 6:31 AM
olivier committed rP438926: Updating to version 0.07.29.
Updating to version 0.07.29
Apr 20 2017, 6:20 AM

Apr 13 2017

olivier committed rP438430: New port: www/yarn.
New port: www/yarn
Apr 13 2017, 9:44 AM

Apr 10 2017

olivier committed rP438155: Update to v1.5.2.
Update to v1.5.2
Apr 10 2017, 12:07 PM
olivier committed rP438136: Updating to version 0.07.28.
Updating to version 0.07.28
Apr 10 2017, 9:07 AM

Apr 3 2017

olivier added a comment to D10154: Use PFIL's rmlock instead of IPFW's static rules rmlock.

Ok then with one stateless rules:

Apr 3 2017, 7:55 AM
olivier added a comment to D10154: Use PFIL's rmlock instead of IPFW's static rules rmlock.
In D10154#211425, @ae wrote:

I think some performance increasing is possible with static rules.

Apr 3 2017, 6:04 AM

Mar 31 2017

olivier added a comment to D10154: Use PFIL's rmlock instead of IPFW's static rules rmlock.

With a simple ipfw.conf file:

Mar 31 2017, 6:14 PM

Mar 24 2017

olivier committed rP436818: Updating to version 0.07.26.
Updating to version 0.07.26
Mar 24 2017, 3:13 PM

Mar 8 2017

olivier added a comment to D9920: Fix rc.firewall workstation profile to work with DNSSEC.

Good catch about only reassembling IPv4 traffic.

Mar 8 2017, 3:48 PM
olivier committed rP435684: Updating to version 0.07.23.
Updating to version 0.07.23
Mar 8 2017, 1:09 PM
olivier committed rP435667: Updating to version 0.9.4.
Updating to version 0.9.4
Mar 8 2017, 10:27 AM

Mar 7 2017

olivier added a comment to D9920: Fix rc.firewall workstation profile to work with DNSSEC.

More information about this problem created with local_unbound (that add DNSSEC support to DNS query) AND "firewall workstation" mode.

Mar 7 2017, 11:54 PM
olivier added a comment to D9721: Add netisr queue for deferred IPsec processing to reduce kernel stack requirements.

Can you compare the sender counters to the receiver counters? ie, is the sender actually queuing and TX'ing 600kpps, or is it something stupid like pause frames causing it to be dropped on output?

Mar 7 2017, 2:54 PM

Mar 6 2017

olivier added a comment to D9721: Add netisr queue for deferred IPsec processing to reduce kernel stack requirements.

Olliver - interestingly in your test, netisr chews a whole core and it doesn't allow any other NIC processing to go on on that CPU. Hm! That may be why the input pps is lower, we're dropping 1/4 of the flows really early. CAn you post the igb sysctl output? That is from the hardware..

Mar 6 2017, 7:32 PM

Mar 5 2017

olivier added a comment to D9721: Add netisr queue for deferred IPsec processing to reduce kernel stack requirements.

I was sending 2000 UDP flows at gigabit line rate (1.48Mpps):

Mar 5 2017, 8:32 AM

Mar 4 2017

olivier added a comment to D9721: Add netisr queue for deferred IPsec processing to reduce kernel stack requirements.
In D9721#204270, @ae wrote:
  • 5 416795 440933.5 423271 426451.8 9207.3367 Difference at 95.0% confidence -122302 +/- 9631.37 -22.2872% +/- 1.74536% (Student's t, pooled s = 6603.87)

Have you observed the packet loss in the netstat -Q statistics? I guess it is possible on such packet rate with default queue length.

Mar 4 2017, 8:59 PM
olivier added a comment to D9721: Add netisr queue for deferred IPsec processing to reduce kernel stack requirements.

With netisr is enabled on this 64bits platform, performance decrease about 22%:

Mar 4 2017, 7:26 PM
olivier added a comment to D9721: Add netisr queue for deferred IPsec processing to reduce kernel stack requirements.

Here is the benefit on standard server:

Mar 4 2017, 4:47 PM

Mar 3 2017

olivier retitled D9876: apuled(4): add support for LEDs on PC Engines APU boards from to apuled(4): add support for LEDs on PC Engines APU boards.
Mar 3 2017, 12:41 PM

Feb 14 2017

olivier added a comment to D5213: convert ixgbe to iflib.

On a router/firewall use case: About -13% performance drop (4 cores Intel Xeon L5630 with Intel 82599EB NIC)

Feb 14 2017, 8:00 PM
olivier added inline comments to D5213: convert ixgbe to iflib.
Feb 14 2017, 4:39 PM
olivier committed rP434072: Update to 7.12.1.
Update to 7.12.1
Feb 14 2017, 10:30 AM

Feb 6 2017

olivier added a comment to D9458: loader: 313329 missed ZFS guard in loader/main.c.

This patch correctly fix the buildworld with WITHOUT_ZFS=

Feb 6 2017, 10:44 AM

Jan 27 2017

olivier committed rP432549: Update to 0.9.3.
Update to 0.9.3
Jan 27 2017, 10:41 AM

Jan 18 2017

olivier committed rP431811: Update to 0.07.15.
Update to 0.07.15
Jan 18 2017, 3:05 PM

Jan 16 2017

olivier committed rP431711: Update to 11.0.1.
Update to 11.0.1
Jan 16 2017, 11:39 PM
olivier committed rP431668: Update to 0.2.2.
Update to 0.2.2
Jan 16 2017, 3:21 PM

Jan 13 2017

olivier committed rP431425: Update to 1.5.6.
Update to 1.5.6
Jan 13 2017, 9:06 PM
olivier committed rP431406: Update to 1.2.3.
Update to 1.2.3
Jan 13 2017, 5:51 PM
olivier committed rP431403: Update to 0.0.2.
Update to 0.0.2
Jan 13 2017, 5:30 PM
olivier committed rP431399: Update to 0.4.0.
Update to 0.4.0
Jan 13 2017, 3:46 PM
olivier committed rP431398: Update to 0.5.1 (and fix build).
Update to 0.5.1 (and fix build)
Jan 13 2017, 3:03 PM
olivier committed rP431343: Fix my previous wrong commit by removing duplicate file content..
Fix my previous wrong commit by removing duplicate file content.
Jan 13 2017, 6:57 AM

Jan 12 2017

olivier added a member for network: olivier.
Jan 12 2017, 11:05 PM
olivier committed rP431323: Add MIPS support and other fixes.
Add MIPS support and other fixes
Jan 12 2017, 9:40 PM
olivier committed rP431272: Update to version 1.5.1.
Update to version 1.5.1
Jan 12 2017, 2:31 PM
olivier committed rP431269: Updating to version 0.9.2 and set new maintainer.
Updating to version 0.9.2 and set new maintainer
Jan 12 2017, 2:09 PM
olivier committed rP431261: Update to 0.07.14.
Update to 0.07.14
Jan 12 2017, 1:20 PM

Jan 3 2017

olivier closed D8824: Fix build with libressl by committing rP430473: Fix build with libressl.
Jan 3 2017, 2:12 PM
olivier committed rP430473: Fix build with libressl.
Fix build with libressl
Jan 3 2017, 2:12 PM
olivier committed rP430471: Update to 0.07.13.
Update to 0.07.13
Jan 3 2017, 2:07 PM
olivier closed D9028: Update to 0.07.13 by committing rP430471: Update to 0.07.13.
Jan 3 2017, 2:07 PM
olivier retitled D9028: Update to 0.07.13 from to Update to 0.07.13.
Jan 3 2017, 2:01 PM

Jan 2 2017

olivier committed rP430367: Update to 0.4.0.
Update to 0.4.0
Jan 2 2017, 3:10 PM
olivier closed D8997: Update to 0.4.0 by committing rP430367: Update to 0.4.0.
Jan 2 2017, 3:10 PM
olivier closed D8992: Update to 0.3.6 by committing rP430365: Update to 0.3.6.
Jan 2 2017, 3:08 PM