| created | 2023-05-06T19:17:25Z |
|---|---|
| begin | 2023-05-03T00:00:00Z |
| end | 2023-05-04T00:00:00Z |
| path | src/sys |
| commits | 4 |
| date | 2023-05-03T10:32:47Z | |||
|---|---|---|---|---|
| author | kn | |||
| files | src/sys/net/pf.c | log | diff | annotate |
| message |
Remove net lock from DIOCGETRULESET and DIOCGETRULESETS Both walk the list of rulesets aka. anchors, to yield a total count and specific anchor name, respectively. Same access, different copy out. pf_anchor_global are contained within pf_ioctl.c and pf_ruleset.c and fully protected by the pf lock, as is pf_main_ruleset and its pf.c usage. Rely on and assert for pf lock alone. 'pfctl -sr' on 60k unique rules gets noticably faster, around 2.1s instead of 3.5s. OK sashan |
|||
| date | 2023-05-03T10:32:48Z | |||
|---|---|---|---|---|
| author | kn | |||
| files | src/sys/net/pf_ioctl.c | log | diff | annotate |
| message |
Remove net lock from DIOCGETRULESET and DIOCGETRULESETS Both walk the list of rulesets aka. anchors, to yield a total count and specific anchor name, respectively. Same access, different copy out. pf_anchor_global are contained within pf_ioctl.c and pf_ruleset.c and fully protected by the pf lock, as is pf_main_ruleset and its pf.c usage. Rely on and assert for pf lock alone. 'pfctl -sr' on 60k unique rules gets noticably faster, around 2.1s instead of 3.5s. OK sashan |
|||
| date | 2023-05-03T11:43:31Z | |||
|---|---|---|---|---|
| author | bluhm | |||
| files | src/sys/netinet6/nd6.c | log | diff | annotate |
| message |
Some checks in nd6_resolve() do not require kernel lock. The analog code for ARP has been unlocked a while ago. OK kn@ |
|||
| date | 2023-05-03T15:25:25Z | |||
|---|---|---|---|---|
| author | jsg | |||
| files | src/sys/dev/fdt/dwpcie.c | log | diff | annotate |
| message |
avoid use after free ok miod@ millert@ |
|||