From 4d847e65cbb75835ff6ce06419c27c8fca3f5557 Mon Sep 17 00:00:00 2001
From: dlg <dlg@openbsd.org>
Date: Fri, 11 Nov 2022 12:06:17 +0000
Subject: [PATCH] steal a change by sashan@ to say which bits of pf_state need
 which locks.

not all members are annotated yet, but that's because there's no clear
protection for them yet.

ok sashan@
---
 sys/net/pfvar_priv.h | 73 +++++++++++++++++++++++++-------------------
 1 file changed, 41 insertions(+), 32 deletions(-)

diff --git a/sys/net/pfvar_priv.h b/sys/net/pfvar_priv.h
index 9152e73a772..6ac0356f7c8 100644
--- a/sys/net/pfvar_priv.h
+++ b/sys/net/pfvar_priv.h
@@ -1,4 +1,4 @@
-/*	$OpenBSD: pfvar_priv.h,v 1.14 2022/11/11 11:02:35 dlg Exp $	*/
+/*	$OpenBSD: pfvar_priv.h,v 1.15 2022/11/11 12:06:17 dlg Exp $	*/
 
 /*
  * Copyright (c) 2001 Daniel Hartmeier
@@ -40,51 +40,60 @@
 #include <sys/rwlock.h>
 #include <sys/mutex.h>
 
+/*
+ * Protection/ownership of pf_state members:
+ *	I	immutable after creation
+ *	P	PF_STATE_LOCK
+ *	S	pfsync mutex
+ *	L	pf_state_list
+ *	g	pf_purge gc
+ */
+
 struct pf_state {
-	u_int64_t		 id;
-	u_int32_t		 creatorid;
-	u_int8_t		 direction;
+	u_int64_t		 id;		/* I */
+	u_int32_t		 creatorid;	/* I */
+	u_int8_t		 direction;	/* I */
 	u_int8_t		 pad[3];
 
-	TAILQ_ENTRY(pf_state)	 sync_list;
-	TAILQ_ENTRY(pf_state)	 sync_snap;
-	TAILQ_ENTRY(pf_state)	 entry_list;
-	SLIST_ENTRY(pf_state)	 gc_list;
-	RB_ENTRY(pf_state)	 entry_id;
+	TAILQ_ENTRY(pf_state)	 sync_list;	/* S */
+	TAILQ_ENTRY(pf_state)	 sync_snap;	/* S */
+	TAILQ_ENTRY(pf_state)	 entry_list;	/* L */
+	SLIST_ENTRY(pf_state)	 gc_list;	/* g */
+	RB_ENTRY(pf_state)	 entry_id;	/* P */
 	struct pf_state_peer	 src;
 	struct pf_state_peer	 dst;
-	struct pf_rule_slist	 match_rules;
-	union pf_rule_ptr	 rule;
-	union pf_rule_ptr	 anchor;
-	union pf_rule_ptr	 natrule;
-	struct pf_addr		 rt_addr;
-	struct pf_sn_head	 src_nodes;
+	struct pf_rule_slist	 match_rules;	/* I */
+	union pf_rule_ptr	 rule;	/* I */
+	union pf_rule_ptr	 anchor;	/* I */
+	union pf_rule_ptr	 natrule;	/* I */
+	struct pf_addr		 rt_addr;	/* I */
+	struct pf_sn_head	 src_nodes;	/* I */
 	struct pf_state_key	*key[2];	/* addresses stack and wire  */
-	struct pfi_kif		*kif;
+	struct pfi_kif		*kif;		/* I */
 	u_int64_t		 packets[2];
 	u_int64_t		 bytes[2];
-	int32_t			 creation;
+	int32_t			 creation;	/* I */
 	int32_t			 expire;
 	int32_t			 pfsync_time;
-	int			 rtableid[2];	/* rtables stack and wire */
-	u_int16_t		 qid;
-	u_int16_t		 pqid;
-	u_int16_t		 tag;
+	int			 rtableid[2];	/* I rtables stack and wire */
+	u_int16_t		 qid;		/* I */
+	u_int16_t		 pqid;		/* I */
+	u_int16_t		 tag;		/* I */
 	u_int16_t		 state_flags;
-	u_int8_t		 log;
+	u_int8_t		 log;		/* I */
 	u_int8_t		 timeout;
-	u_int8_t		 sync_state; /* PFSYNC_S_x */
+	u_int8_t		 sync_state;	/* PFSYNC_S_x */
 	u_int8_t		 sync_updates;
-	u_int8_t		 min_ttl;
-	u_int8_t		 set_tos;
-	u_int8_t		 set_prio[2];
-	u_int16_t		 max_mss;
-	u_int16_t		 if_index_in;
-	u_int16_t		 if_index_out;
+	u_int8_t		 min_ttl;	/* I */
+	u_int8_t		 set_tos;	/* I */
+	u_int8_t		 set_prio[2];	/* I */
+	u_int16_t		 max_mss;	/* I */
+	u_int16_t		 if_index_in;	/* I */
+	u_int16_t		 if_index_out;	/* I */
 	pf_refcnt_t		 refcnt;
-	u_int16_t		 delay;
-	u_int8_t		 rt;
-	u_int8_t		 snapped;
+	u_int16_t		 delay;		/* I */
+	u_int8_t		 rt;		/* I */
+	u_int8_t		 snapped;	/* S */
 };
 
 /*
-- 
2.20.1