[CFT] Virtual BPF interfaces (was: CFR: ipfw0 pseudo-interface clonable)

Gleb Smirnoff glebius at FreeBSD.org
Mon Dec 3 08:11:43 UTC 2012


On Sun, Dec 02, 2012 at 04:48:18AM +0400, Alexander V. Chernikov wrote:
A> On 10.06.2012 18:20, Alexander V. Chernikov wrote:
A> > On 27.04.2012 03:44, Hiroki Sato wrote:
A> >> "Alexander V. Chernikov"<melifaro at FreeBSD.org> wrote
A> >> in<4F96E71B.9020405 at FreeBSD.org>:
A> >>
A> >> me> On 24.04.2012 21:05, Hiroki Sato wrote:
A> >
A> > Proof-of-concept patch attached.
A> 
A> Hopefully, libcap code is easily extendable.
A> New version attached:
A> * BPF code is now able to use 'virtual' interfaces without real ifnet
A> * New bpfattach3() / bpfdetach3() routines were added to attach virtual 
A> ifaces
A> * New BIOCGIFLIST ioctl is added to permit userland to retrieve 
A> available virtual interfaces
A> * freebsd-specific 'platform_finddevs' version is added to libpcap code 
A> (new file)
A> 
A> There are some rough edges (conditional code in pcap-bpf.c, lack of 
A> documentation, maybe some style issues), but generally it seems to work 
A> and does not interfere with contrib/ code much (from my point of view).
A> 
A> ipfw log device was converted to use new bpf(4) api, see attached patch.

Nice proof of concept, Alexander!

What does prevent us from unifing all bpf providers to be "virtual" in
current terms? I think if we finish divorce between ifnet and bpf, the code
would get simplier and you can proceed further with reducing locking
overhead.

-- 
Totus tuus, Glebius.


More information about the freebsd-net mailing list