Re: pfil_default_to_drop

2025-04-10 Thread Zhenlei Huang
t; default, which is why I proposed (and am using on my system) the > PFIL_DEFAULT_TO_DROP, > because it handles ALL of the 'no filter installed (yet)' cases. if > PFIL_DEFAULT_TO_DROP isn't in the kernel config file, my patches have no > effect at all, > so it's a si

Re: pfil_default_to_drop

2025-04-10 Thread Cy Schubert
bbc7fdcff60e598498df6f9e2bd > > <https://cgit.freebsd.org/src/commit/?id=5f17ebf94db5ebbc7fdcff60e598498df6f9e2bd> > . > > > > > as I said, this is because there's no mechanism within PFIL to drop by > > default, which is why I proposed (and am using on

Re: pfil_default_to_drop

2025-04-09 Thread Robert Austen
From: owner-freebsd-curr...@freebsd.org on behalf of Robert Austen Sent: April 9, 2025 10:44 AM To: Zhenlei Huang Cc: freebsd-current@freebsd.org ; freebsd-...@freebsd.org ; Kristof Provost ; Cy Schubert Subject: Re: pfil_default_to_drop You don't

Re: pfil_default_to_drop

2025-04-09 Thread Cy Schubert
them the NOT of the HOOK= > ED_ one, or FALSE when INET v4 or 6 is excluded > or if PFIL_DEFAULT_TO_DROP isn't defined. > > Then whereever the existing PFIL_HOOKED_IN/OUT_46 macros are used, prior to= > calling the filter hook, I just > inserted a PFIL_UNHOOKED_IN/OUT_46 che

Re: pfil_default_to_drop

2025-04-09 Thread Cy Schubert
Web: https://FreeBSD.org NTP: Web: https://nwtime.org e^(i*pi)+1=0 > > > From: Cy Schubert > Sent: April 9, 2025 8:39 AM > To: Zhenlei Huang > Cc: Robert Austen ; freebsd-current@fr= > eebsd.org ; free

Re: pfil_default_to_drop

2025-04-09 Thread Robert Austen
ust cloned them as ... _UNHOOKED_ ..., and made them the NOT of the HOOKED_ one, or FALSE when INET v4 or 6 is excluded or if PFIL_DEFAULT_TO_DROP isn't defined. Then whereever the existing PFIL_HOOKED_IN/OUT_46 macros are used, prior to calling the filter hook, I just inserted a PFIL_UNHOOKED_

Re: pfil_default_to_drop

2025-04-09 Thread Robert Austen
org ; freebsd-...@freebsd.org ; Kristof Provost ; Cy Schubert Subject: Re: pfil_default_to_drop [You don't often get email from cy.schub...@cschubert.com. Learn why this is important at https://aka.ms/LearnAboutSenderIdentification ] On Wed, 9 Apr 2025 15:48:11 +0800 Zhenlei Huang wrote:

Re: pfil_default_to_drop

2025-04-08 Thread Robert Austen
x27;s no mechanism within PFIL to drop by default, which is why I proposed (and am using on my system) the PFIL_DEFAULT_TO_DROP, because it handles ALL of the 'no filter installed (yet)' cases. if PFIL_DEFAULT_TO_DROP isn't in the kernel config file, my patches have no effect at a

Re: pfil_default_to_drop

2025-04-07 Thread Zhenlei Huang
:freebsd-current@freebsd.org>>; > freebsd-...@freebsd.org <mailto:freebsd-...@freebsd.org> > mailto:freebsd-...@freebsd.org>> > Subject: Fw: pfil_default_to_drop > > > From: Robert Austen > Sent: April 7, 2025 4:21 PM > To: freebsd-current@freebsd.org &l

Fw: pfil_default_to_drop

2025-04-07 Thread Robert Austen
From: Robert Austen Sent: April 7, 2025 4:33 PM To: freebsd-current@freebsd.org ; freebsd-...@freebsd.org Subject: Fw: pfil_default_to_drop From: Robert Austen Sent: April 7, 2025 4:21 PM To: freebsd-current@freebsd.org