Page MenuHomeFreeBSD
Differential D47679

pf: Fix timestamps and connection rate in source node export to userspace
ClosedPublic
Actions

Authored by vegeta_tuxpowered.net on Nov 19 2024, 9:54 PM.
Tags
None
Referenced Files
Unknown Object (File)
Thu, Jan 9, 9:32 AM
Unknown Object (File)
Mon, Jan 6, 8:48 AM
Unknown Object (File)
Sun, Jan 5, 10:16 AM
Unknown Object (File)
Sun, Jan 5, 8:34 AM
Unknown Object (File)
Thu, Jan 2, 11:23 AM
Unknown Object (File)
Thu, Jan 2, 2:51 AM
Unknown Object (File)
Wed, Dec 25, 12:50 PM
Unknown Object (File)
Dec 7 2024, 10:13 AM
View All 16 Files
Subscribers
farrokhi
glebius
imp
melifaro

Details

Reviewers
kp
Commits
rGe8eb3096d8d1: pf: Fix missing connection rate for DIOCGETSRCNODES
Summary

The function pf_src_node_copy() copies struct pf_ksrc_node to its ioctl
counterpart. It was missing copying of the conn_rate field, even though
the code for adjusting the output for pfctl was in place.

Add copying of conn_rate.

Sponsored by: InnoGames GmbH

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

vegeta_tuxpowered.net created this revision.Nov 19 2024, 9:54 PM
Herald added subscribers: glebius, melifaro, farrokhi, imp. · View Herald TranscriptNov 19 2024, 9:54 PM
vegeta_tuxpowered.net requested review of this revision.Nov 19 2024, 9:54 PM
vegeta_tuxpowered.net edited the summary of this revision. (Show Details)Nov 19 2024, 9:58 PM
vegeta_tuxpowered.net added a comment.Nov 19 2024, 10:09 PM

This is also broken on FreeBSD 14.

kp accepted this revision.Nov 20 2024, 8:59 AM

Good catch. Given that it also needs to be fixed on stable/14 you should add an 'MFC after' tag to the commit message.

MFC after tags are not strictly required before something can be merged back, but it's a good habit. It communicates this to users, and it will also mean you get an automatic reminder e-mail when the time comes to do the merge. It'll also show up on https://mfc.freebsd.org.
The MFC period should be a minimum of 3 days (See rule 6 on https://docs.freebsd.org/en/articles/committers-guide/#rules), but I typically default to one or two weeks.

It might be nice to have a test case for this too, but that's not an absolute requirement for this. We can always add one later.

Please send me the git format-patch for this (with the MFC after and reviewd/approved by tags).

This revision is now accepted and ready to land.Nov 20 2024, 8:59 AM
kp added a comment.Nov 20 2024, 9:02 AM

More a note to self: looking at structure pf_src_node, the only other field we don't set is *kif, but given that it's a pointer that's not really something we can do in the ioctl. I'll make a note of it to revisit this once the netlink migration is complete. We ought to be able to return the interface name then.

kp mentioned this in D47321: pf: Fix timestamps and connection rate in source node export.Nov 20 2024, 9:15 AM
Closed by commit rGe8eb3096d8d1: pf: Fix missing connection rate for DIOCGETSRCNODES (authored by vegeta_tuxpowered.net). · Explain WhyNov 21 2024, 2:28 PM
This revision was automatically updated to reflect the committed changes.
vegeta_tuxpowered.net added a commit: rGe8eb3096d8d1: pf: Fix missing connection rate for DIOCGETSRCNODES.

Revision Contents
Changeset List

PathSize
sys/
netpfil/
pf/
1 line

Diff 146800

View Options

sys/netpfil/pf/pf_ioctl.c

Loading...