Merge 0643ae70f5 into 895c16e3e8

Update BridgeUnix.c
On FreeBSD the stock code will attempt to expand the interface MTU any time a packet is to be sent that exceeds the current MTU. This results in a down/up on the interface that is wildly disruptive to existing services on that adapter and, eventually, is likely to run into MTU limits and start logging failures, even with jumbo-frame capable adapters. Thus if compiling on a FreeBSD machine disable this capability. Tested against 12.3-STABLE and 13.1-STABLE on v4.38-9760 from the FreeBSD ports tree but likely applies here as well; see bug report https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=267178
2025-07-07 00:04:57 +03:00 · 2023-10-23 18:10:30 +03:00 · 2022-10-19 12:39:32 -04:00
5 changed files with 12 additions and 13 deletions
--- a/.ci/azure-pipelines/windows-steps.yml
+++ b/.ci/azure-pipelines/windows-steps.yml
@ -29,12 +29,12 @@ steps:
  inputs:
    sourceFolder: '$(Build.BinariesDirectory)'
    contents: '?(*.exe|*.se2|*.pdb)'
-    TargetFolder: '$(Build.StagingDirectory)/binaries/${{parameters.architecture}}'
+    TargetFolder: '$(Build.StagingDirectory)/binaries'
    flattenFolders: true
 - task: PublishBuildArtifacts@1
  inputs:
-    pathtoPublish: '$(Build.StagingDirectory)/binaries/${{parameters.architecture}}'
-    artifactName: 'Binaries_${{parameters.architecture}}'
+    pathtoPublish: '$(Build.StagingDirectory)/binaries'
+    artifactName: 'Binaries'
 - task: PublishBuildArtifacts@1
  inputs:
    pathtoPublish: '$(Build.StagingDirectory)/installers'
--- a/.cirrus.yml
+++ b/.cirrus.yml
@ -2,10 +2,8 @@ FreeBSD_task:
  matrix:
    env:
      SSL: openssl
-      OPENSSL_ROOT_DIR: /usr/local
    env:
-      SSL: openssl32
-      OPENSSL_ROOT_DIR: /usr/local
+      SSL: openssl31
    env:
      # base openssl
      SSL:
--- a/src/Cedar/BridgeUnix.c
+++ b/src/Cedar/BridgeUnix.c
@ -805,7 +805,12 @@ bool EthIsChangeMtuSupported(ETH *e)
 		return false;
 	}

+// FreeBSD seriously dislikes MTU changes; disable if compiled on that platform
+#ifndef	__FreeBSD__
 	return true;
+#else
+	return false;
+#endif
 #else	// defined(UNIX_LINUX) || defined(UNIX_BSD) || defined(UNIX_SOLARIS)
 	return false;
 #endif	// defined(UNIX_LINUX) || defined(UNIX_BSD) || defined(UNIX_SOLARIS)
--- a/src/Cedar/Protocol.c
+++ b/src/Cedar/Protocol.c
@ -6269,6 +6269,8 @@ SOCK *ClientConnectGetSocket(CONNECTION *c, bool additional_connect)
 					localIP = BIND_LOCALIP_NULL;	// Specify not to bind
 				}
 				else {
+					Debug("ClientConnectGetSocket(): Using client option %r and %d for binding\n"
+						, sess->ClientOption->BindLocalIP, sess->ClientOption->BindLocalPort);
 					// Nonzero address is for source IP address to bind. Zero address is for dummy not to bind.
 					if (IsZeroIP(&sess->ClientOption->BindLocalIP) == true) {
 						localIP = BIND_LOCALIP_NULL;
@ -6276,8 +6278,6 @@ SOCK *ClientConnectGetSocket(CONNECTION *c, bool additional_connect)
 					else {
 						localIP = &sess->ClientOption->BindLocalIP;
 					}
-					Debug("ClientConnectGetSocket(): Source IP address %r and source port number %d for binding\n"
-						, &sess->ClientOption->BindLocalIP, sess->ClientOption->BindLocalPort);
 				}
 			}
 			// In the case of second and subsequent TCP/IP connections
@ -6291,7 +6291,7 @@ SOCK *ClientConnectGetSocket(CONNECTION *c, bool additional_connect)
 			}
 			else {
 				localport = sess->ClientOption->BindLocalPort + Count(sess->Connection->CurrentNumConnection) - 1;
-				Debug("ClientConnectGetSocket(): Additional source port number %u\n", localport);
+				Debug("ClientConnectGetSocket(): Additional port number %u\n", localport);
 			}
 			// Bottom of Bind outgoing connection

--- a/src/Mayaqua/Network.c
+++ b/src/Mayaqua/Network.c
@ -5803,10 +5803,6 @@ SSL_PIPE *NewSslPipeEx3(bool server_mode, X *x, K *k, LIST *chain, DH_CTX *dh, b
 #endif

 		ssl = SSL_new(ssl_ctx);
-		if (ssl == NULL)
-		{
-			return NULL;
-		}

 		SSL_set_ex_data(ssl, GetSslClientCertIndex(), clientcert);
 	}