Hahaha. I ran into an isomorphic problem with Net-SNMP at work last week.

There's a need to export the BGP routing table via SNMP. Of course
doing this in our framework at work requires some IPC calls which always
require a select() (or WaitForMultipleObjects()) based continuation.
Net-SNMP doesn't support continuations at the table iterator level,
so somehow, we need to implement an iterator which can accomodate our
blocking IPC mechanism.

[No, we don't use threads, and that would actually create more
problems than it solves -- running single-threaded with continuations
lets us run lock free, and we rely on the OS's IPC primitives to
serialize our code. works just fine for us so far...]

So we would end up caching the whole primary key range in the SNMP
sub-agent on a table OID access, a technique which would allow us to
defer the IPC calls providing we walk the entire range of the iterator
and cache the keys -- but even THAT is far too much data for the BGP
table, which is a trie with ~250,000 entries. I hate SNMP GETNEXT.

Back to the FreeBSD kernel, though.

If you look at in_mcast.c, particularly in p4 bms_netdev, this is
what happens for the per-socket multicast source filters -- there is the
linearization of an RB-tree for setsourcefilter().
This is fine for something with a limit of ~256 entries per socket
(why RB for something so small? this is for space vs time -- and also it
has to merge into a larger filter list in the IGMPv3 paths.)
And the lock granularity is per-socket. However it doesn't do for
something as big as a BGP routing table.

C++ lends itself well to expressing these kinds of smart-pointer
idioms, though.
I'm thinking perhaps we need the notion of a sysctl iterator, which
allocates a token for walking a shared data structure, and is able to
guarantee that the token maps to a valid pointer for the same entry,
until its 'advance pointer' operation is called.

Question is, who's going to pull the trigger?

cheers
BMS

P.S. I'm REALLY getting fed up with the lack of openness and
transparency largely incumbent in doing work in p4.

Come one come all -- we shouldn't need accounts for folk to see and
contribute what's going on, and the stagnation is getting silly. FreeBSD
development should not be a committer or chum-of-committer in-crowd.

Sockets, sysctl, kmem, etc, are all really just I/O mechanisms, with varying
levels of abstraction, for pushing data, and all fundamentally suffer from the
problem of a lack of general export abstraction.
I think there's necessarily implementation-specific details to all of these
steps for any given kernel subsystem -- we have data structures,
synchronization models, etc, that are all tuned to their common use
requirements, and monitoring is very much an edge case. I don't think this is
bad: this is an OS kernel, after all, but it does make things a bit more
tricky. Even if we can't share code, sharing approaches across subsystems is
a good idea.

For an example of what you have in mind, take a look at the sysctl monitoring
for UNIX domain sockets. First, we allocate an array of pointers sized to the
number of unpcb's we have. Then we walk the list, bumping the references and
adding pointers to the array. Then we release the global locks, and proceed
lock, externalize, unlock, and copyout each individual entry, using a
generation number fo manage staleness. Finally, we walk the list dropping the
refcounts and free the array. This voids holding global locks for a long
time, as well as the stale data issue. It's unideal in other ways -- long
lists, reference count complexity, etc, but as I mentioned, it is very much an
edge case, and much of that mechanism (especially refcounts) is something we
need anyway for any moderately complex kernel data structure.

Robert N M Watson
Computer Laboratory
University of Cambridge

For sure, we'd be very happy to see a patch like that.

Many thanks
BMS