From owner-cvs-src-old@FreeBSD.ORG  Tue Jun  9 21:27:30 2009
Return-Path: <owner-cvs-src-old@FreeBSD.ORG>
Delivered-To: cvs-src-old@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 5B5EC1065680
	for <cvs-src-old@freebsd.org>; Tue,  9 Jun 2009 21:27:30 +0000 (UTC)
	(envelope-from oleg@FreeBSD.org)
Received: from repoman.freebsd.org (repoman.freebsd.org
	[IPv6:2001:4f8:fff6::29])
	by mx1.freebsd.org (Postfix) with ESMTP id 46B398FC16
	for <cvs-src-old@freebsd.org>; Tue,  9 Jun 2009 21:27:30 +0000 (UTC)
	(envelope-from oleg@FreeBSD.org)
Received: from repoman.freebsd.org (localhost [127.0.0.1])
	by repoman.freebsd.org (8.14.3/8.14.3) with ESMTP id n59LRU6O092732
	for <cvs-src-old@freebsd.org>; Tue, 9 Jun 2009 21:27:30 GMT
	(envelope-from oleg@repoman.freebsd.org)
Received: (from svn2cvs@localhost)
	by repoman.freebsd.org (8.14.3/8.14.3/Submit) id n59LRUJW092731
	for cvs-src-old@freebsd.org; Tue, 9 Jun 2009 21:27:30 GMT
	(envelope-from oleg@repoman.freebsd.org)
Message-Id: <200906092127.n59LRUJW092731@repoman.freebsd.org>
X-Authentication-Warning: repoman.freebsd.org: svn2cvs set sender to
	oleg@repoman.freebsd.org using -f
From: Oleg Bulyzhin <oleg@FreeBSD.org>
Date: Tue, 9 Jun 2009 21:27:11 +0000 (UTC)
To: cvs-src-old@freebsd.org
X-FreeBSD-CVS-Branch: HEAD
Subject: cvs commit: src/sys/net if_bridge.c if_ethersubr.c
 src/sys/netgraph ng_ipfw.c ng_ipfw.h src/sys/netinet ip_dummynet.h
 ip_fw.h src/sys/netinet/ipfw ip_dummynet.c ip_fw2.c ip_fw_pfil.c
X-BeenThere: cvs-src-old@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: **OBSOLETE** CVS commit messages for the src tree
	<cvs-src-old.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-src-old>,
	<mailto:cvs-src-old-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/cvs-src-old>
List-Post: <mailto:cvs-src-old@freebsd.org>
List-Help: <mailto:cvs-src-old-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-src-old>,
	<mailto:cvs-src-old-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 09 Jun 2009 21:27:30 -0000

oleg        2009-06-09 21:27:11 UTC

  FreeBSD src repository

  Modified files:
    sys/net              if_bridge.c if_ethersubr.c 
    sys/netgraph         ng_ipfw.c ng_ipfw.h 
    sys/netinet          ip_dummynet.h ip_fw.h 
    sys/netinet/ipfw     ip_dummynet.c ip_fw2.c ip_fw_pfil.c 
  Log:
  SVN rev 193859 on 2009-06-09 21:27:11Z by oleg
  
  Close long existed race with net.inet.ip.fw.one_pass = 0:
  If packet leaves ipfw to other kernel subsystem (dummynet, netgraph, etc)
  it carries pointer to matching ipfw rule. If this packet then reinjected back
  to ipfw, ruleset processing starts from that rule. If rule was deleted
  meanwhile, due to existed race condition panic was possible (as well as
  other odd effects like parsing rules in 'reap list').
  
  P.S. this commit changes ABI so userland ipfw related binaries should be
  recompiled.
  
  MFC after:      1 month
  Tested by:      Mikolaj Golub
  
  Revision  Changes    Path
  1.127     +11 -3     src/sys/net/if_bridge.c
  1.264     +16 -13    src/sys/net/if_ethersubr.c
  1.12      +2 -0      src/sys/netgraph/ng_ipfw.c
  1.3       +2 -0      src/sys/netgraph/ng_ipfw.h
  1.46      +6 -4      src/sys/netinet/ip_dummynet.h
  1.130     +13 -9     src/sys/netinet/ip_fw.h
  1.2       +2 -57     src/sys/netinet/ipfw/ip_dummynet.c
  1.3       +29 -19    src/sys/netinet/ipfw/ip_fw2.c
  1.2       +8 -0      src/sys/netinet/ipfw/ip_fw_pfil.c