| #
0ad3f9da |
| 17-Jan-2022 |
andvar <andvar@NetBSD.org> |
fix typos in comments, mainly s/foward/forward/.
|
| #
47880c13 |
| 01-Feb-2020 |
riastradh <riastradh@NetBSD.org> |
Fix order in rollback case; switch if_ipsec to atomic_load/store_*.
|
| #
93a28c82 |
| 01-Nov-2019 |
knakahara <knakahara@NetBSD.org> |
Make global and per-interface ipsecif(4) pmtu tunable like gif(4).
And make hop limit tunable same as gif(4).
See http://mail-index.netbsd.org/source-changes/2019/10/30/msg110426.html
|
| #
2da350be |
| 19-Sep-2019 |
knakahara <knakahara@NetBSD.org> |
Avoid having a rtcache directly in a percpu storage for tunnel protocols.
percpu(9) has a certain memory storage for each CPU and provides it by the piece
to users. If the storages went short, perc
Avoid having a rtcache directly in a percpu storage for tunnel protocols.
percpu(9) has a certain memory storage for each CPU and provides it by the piece
to users. If the storages went short, percpu(9) enlarges them by allocating new
larger memory areas, replacing old ones with them and destroying the old ones.
A percpu storage referenced by a pointer gotten via percpu_getref can be
destroyed by the mechanism after a running thread sleeps even if percpu_putref
has not been called.
Using rtcache, i.e., packet processing, typically involves sleepable operations
such as rwlock so we must avoid dereferencing a rtcache that is directly stored
in a percpu storage during packet processing. Address this situation by having
just a pointer to a rtcache in a percpu storage instead.
Reviewed by ozaki-r@ and yamaguchi@
show more ...
|
| #
ebac3c72 |
| 19-Oct-2018 |
knakahara <knakahara@NetBSD.org> |
Fix panic when doing ioctl to multiple pseudo interfaces. Pointed out by k-goda@IIJ.
XXX pullup-8
|
| #
b0c61d65 |
| 27-Apr-2018 |
knakahara <knakahara@NetBSD.org> |
Fix LOCKDEBUG kernel panic when many(about 200) tunnel interfaces is created.
The tunnel interfaces are gif(4), l2tp(4), and ipsecif(4). They use mutex
itself in percpu area. When percpu_cpu_enlarge
Fix LOCKDEBUG kernel panic when many(about 200) tunnel interfaces is created.
The tunnel interfaces are gif(4), l2tp(4), and ipsecif(4). They use mutex
itself in percpu area. When percpu_cpu_enlarge() run, the address of the
mutex in percpu area becomes different from the address which lockdebug
saved. That can cause "already initialized" false detection.
show more ...
|
| #
ec77b505 |
| 19-Apr-2018 |
christos <christos@NetBSD.org> |
s/static inline/static __inline/g for consistency.
|
| #
4ab3af3e |
| 10-Jan-2018 |
knakahara <knakahara@NetBSD.org> |
add ipsec(4) interface, which is used for route-based VPN.
man and ATF are added later, please see man for details.
reviewed by christos@n.o, joerg@n.o and ozaki-r@n.o, thanks.
https://mail-index.n
add ipsec(4) interface, which is used for route-based VPN.
man and ATF are added later, please see man for details.
reviewed by christos@n.o, joerg@n.o and ozaki-r@n.o, thanks.
https://mail-index.netbsd.org/tech-net/2017/12/18/msg006557.html
show more ...
|