| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
| |
ok anton@, sashan@
|
| |
|
|
| |
ok kn@
|
| |
|
|
|
|
|
|
|
|
| |
before adding it to the routing table. The rtable code is doing memcmp()
of those rt_dest sockaddrs so it is important that they are stored in a
canonical form. To do this struct domain is extended to include the
sockaddr size for this address family.
OK bluhm@ anton@
Reported-by: syzbot+10fe9cd8d0211c562ead@syzkaller.appspotmail.com
|
| | |
|
| |
|
|
|
|
| |
if_type is now immutable in tun(4) and tap(4)
ok claudio@ mpi@
|
| |
|
|
| |
ok semarie@, visa@
|
| | |
|
| |
|
|
| |
From Eygene Ryabinkin.
|
| |
|
|
|
| |
with bad address flags.
OK bluhm@ sthen@
|
| |
|
|
| |
OK mpi@
|
| |
|
|
| |
OK mpi@
|
| |
|
|
| |
ok claudio
|
| |
|
|
|
|
|
|
|
| |
The code for updating the laststate and timer is looking at laststate before
it's been updated.
From Mitchell Krome <mitchellkrome at gmail dot com>, thanks!
OK claudio
|
| |
|
|
| |
the cid thing was via jmatthew@
|
| |
|
|
| |
the cid was via jmatthew@
|
| |
|
|
| |
OK visa@, OK mpi@
|
| |
|
|
|
|
|
| |
This allows to set such flag after completing the initialization of a
bridge and still have bstp_tick() be scheduled from the begining.
Fix a regression reported by and ok markus@
|
| |
|
|
|
|
|
|
| |
Since `bif' are removed from the interface list before calling smr_barrier()
and the hash queue is cleaned up afterward, it is possible to find an ifidx
with bridge_rtlookup() that won't match to any `bif'.
Fix a panic reported by Hrvoje Popovski, ok visa@
|
| |
|
|
|
|
|
|
|
|
|
|
| |
This removes the KERNEL_LOCK() around the list iteration in bridge_enqueue().
Since the NET_LOCK() isn't protecting any data structure, release it early
in all the code paths coming from the Network Stack to prevent possible
deadlock situations with smr_barrier().
bridge_input() is still KERNEL_LOCK()ed as well as bridge_filterrule().
ok visa@
|
| |
|
|
| |
OK mpi@
|
| | |
|
| |
|
|
|
|
| |
Fix a regression introduced by the bridge(4) refactoring.
Found by and ok bluhm@
|
| |
|
|
|
|
|
|
|
| |
changes. While we do get RTM_IFINFO messages for the (physical) member
interfaces there is no indication that something changed from the
trunk(4) interface.
It is helpful to get this information in userland from the trunk so that
userland daemons do not need to track interface membership by themselves.
OK phessler
|
| |
|
|
|
|
|
|
|
|
| |
the RTF_MPLS can't be toggled without rt_mpls_set() being called. While
RTF_MPLS is part of RTF_FMASK it should be excluded from the flags and mask
when they are applied to the route since toggling it requires a call to
rt_mpls_set().
OK bluhm@
Reported-by: syzbot+86344a9e31c27aa6f15b@syzkaller.appspotmail.com
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
bridge(4), where the SIOCBRDGSIFPROT ioctl can be used to add a port to up
to 31 protected domains. This allows configuration by specifying a list of
IDs to the 'protected' option in ifconfig(8):
# ifconfig switch0 protected pair1 1,2,..
Domain membership is checked for unicast, flooded (broadcast), and
local (host-network-bound, e.g. trunk) traffic.
OK benno@
|
| |
|
|
|
|
| |
when multiple interfaces do MAC filtering.
Memory leak reported by Daniel Levai
With and OK mpi@
|
| |
|
|
|
|
| |
current status and statistics and can be exported without super-user
rights via sysctl to make it easier for tools like systat to access those.
OK deraadt@, sashan@
|
| |
|
|
|
|
| |
protecing will do the right thing
OK claudio@
|
| | |
|
| |
|
|
|
|
| |
caused a hanging "ifconfig bridge0 destroy" and a subsequent uvm
fault.
reported and tested by Hrvoje Popovski; OK visa@
|
| |
|
|
| |
Prevent use-after-free reported by Hrvoje Popovski.
|
| |
|
|
|
|
|
|
|
|
|
|
| |
tun_wakeup is called from the network stack, which generally runs
with NET_LOCK, not KERNEL_LOCK, which is a problem when it calls
into things like csignal or kq code. this started causing corruption
and panics of a list inside the kq code, which got reported to
bugs@.
this version of the fix is ok mpi@ (even though he hasn't seen it)
an earlier but far trickier fix was ok visa@
the bug was reported by Olivier Antoine, and again by jmc@ privately.
|
| | |
|
| |
|
|
|
|
| |
if_input already runs bpf for all packets on a trunkport. having
lacp code do it again means packets are seen twice by bpf filters
twice, which is misleading.
|
| |
|
|
|
|
|
|
| |
This redefines the ifp <-> bridge relationship. No lock can be
currently used across the multiples contexts where the bridge has
tentacles to protect a pointer, use an interface index.
Tested by various, ok dlg@, visa@
|
| |
|
|
| |
From Naoki Fukaumi, ok yasuoka@, sthen@
|
| |
|
|
|
|
| |
we should swap the value off the wire for 802.1P, not the rxhprio
config value. try and avoid toctou issues by copying the sc_rxprio
value to a local.
|
| |
|
|
|
| |
it's not atomic is the main reason. this simplifies leaving the
function too.
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
| |
makes vlan more consistent with the rest of the tree, but no
functional change.
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
| |
this makes it more consistent with the rest of the tree, but has
no functional change.
|
| |
|
|
|
|
|
|
| |
nothing needs to see inside it, so it can move. the next steps are
to rename it to vlan_softc and all the variables to sc to make the
driver move consistent with the rest of the tree.
ok visa@ mpi@
|
mpi
claudio
dlg
sashan
deraadt
kn
akoshibe
florian
phessler
bluhm