Merge 0e9f932cf0 into 9671efff78

network/sysctl-monitor: do not allocate sysctl_shadow when eBPF is not supported
When eBPF is disabled, the hashmap will be never used. Let's not allocate it.
2024-09-16 08:14:03 +02:00 · 2024-09-16 15:13:38 +09:00 · 2024-09-16 15:12:47 +09:00 · 2024-09-16 14:36:54 +09:00 · 2024-09-16 14:36:54 +09:00 · 2024-09-16 14:36:54 +09:00
9 changed files with 75 additions and 69 deletions
--- a/src/network/bpf/sysctl_monitor/sysctl-monitor.bpf.c
+++ b/src/network/bpf/sysctl_monitor/sysctl-monitor.bpf.c
@ -36,23 +36,22 @@ struct str {
 static long cut_last(u32 i, struct str *str) {
        char *s;
        /* Sanity check for the preverifier */
        if (i >= str->l)
                return 1; /* exit from the loop */
        i = str->l - i - 1;
        s = str->s + i;
        /* Sanity check for the preverifier */
        if (i >= str->l)
                return 1;
        if (*s == 0)
-                return 0;
+                return 0; /* continue */
        if (*s == '\n' || *s == '\r' || *s == ' ' || *s == '\t') {
                *s = 0;
-
+                return 0; /* continue */
                return 0;
        }
-        return 1;
+        return 1; /* exit from the loop */
 }
 /* Cut off trailing whitespace and newlines */
--- a/src/network/networkd-ipv6ll.c
+++ b/src/network/networkd-ipv6ll.c
@ -221,7 +221,7 @@ int link_set_ipv6ll_stable_secret(Link *link) {
        }
        return sysctl_write_ip_property(AF_INET6, link->ifname, "stable_secret",
-                                        IN6_ADDR_TO_STRING(&a), &link->manager->sysctl_shadow);
+                                        IN6_ADDR_TO_STRING(&a), manager_get_sysctl_shadow(link->manager));
 }
 int link_set_ipv6ll_addrgen_mode(Link *link, IPv6LinkLocalAddressGenMode mode) {
@ -232,7 +232,7 @@ int link_set_ipv6ll_addrgen_mode(Link *link, IPv6LinkLocalAddressGenMode mode) {
        if (mode == link->ipv6ll_address_gen_mode)
                return 0;
-        return sysctl_write_ip_property_uint32(AF_INET6, link->ifname, "addr_gen_mode", mode, &link->manager->sysctl_shadow);
+        return sysctl_write_ip_property_uint32(AF_INET6, link->ifname, "addr_gen_mode", mode, manager_get_sysctl_shadow(link->manager));
 }
 static const char* const ipv6_link_local_address_gen_mode_table[_IPV6_LINK_LOCAL_ADDRESS_GEN_MODE_MAX] = {
--- a/src/network/networkd-manager.c
+++ b/src/network/networkd-manager.c
@ -624,8 +624,6 @@ Manager* manager_free(Manager *m) {
        HASHMAP_FOREACH(link, m->links_by_index)
                (void) link_stop_engines(link, true);
        hashmap_free(m->sysctl_shadow);
        m->request_queue = ordered_set_free(m->request_queue);
        m->remove_request_queue = ordered_set_free(m->remove_request_queue);
--- a/src/network/networkd-ndisc.c
+++ b/src/network/networkd-ndisc.c
@ -987,7 +987,7 @@ static int ndisc_router_process_reachable_time(Link *link, sd_ndisc_router *rt)
        }
        /* Set the reachable time for Neighbor Solicitations. */
-        r = sysctl_write_ip_neighbor_property_uint32(AF_INET6, link->ifname, "base_reachable_time_ms", (uint32_t) msec, &link->manager->sysctl_shadow);
+        r = sysctl_write_ip_neighbor_property_uint32(AF_INET6, link->ifname, "base_reachable_time_ms", (uint32_t) msec, manager_get_sysctl_shadow(link->manager));
        if (r < 0)
                log_link_warning_errno(link, r, "Failed to apply neighbor reachable time (%"PRIu64"), ignoring: %m", msec);
@ -1021,7 +1021,7 @@ static int ndisc_router_process_retransmission_time(Link *link, sd_ndisc_router
        }
        /* Set the retransmission time for Neighbor Solicitations. */
-        r = sysctl_write_ip_neighbor_property_uint32(AF_INET6, link->ifname, "retrans_time_ms", (uint32_t) msec, &link->manager->sysctl_shadow);
+        r = sysctl_write_ip_neighbor_property_uint32(AF_INET6, link->ifname, "retrans_time_ms", (uint32_t) msec, manager_get_sysctl_shadow(link->manager));
        if (r < 0)
                log_link_warning_errno(link, r, "Failed to apply neighbor retransmission time (%"PRIu64"), ignoring: %m", msec);
@ -1057,7 +1057,7 @@ static int ndisc_router_process_hop_limit(Link *link, sd_ndisc_router *rt) {
        if (hop_limit <= 0)
                return 0;
-        r = sysctl_write_ip_property_uint32(AF_INET6, link->ifname, "hop_limit", (uint32_t) hop_limit, &link->manager->sysctl_shadow);
+        r = sysctl_write_ip_property_uint32(AF_INET6, link->ifname, "hop_limit", (uint32_t) hop_limit, manager_get_sysctl_shadow(link->manager));
        if (r < 0)
                log_link_warning_errno(link, r, "Failed to apply hop_limit (%u), ignoring: %m", hop_limit);
--- a/src/network/networkd-sysctl.c
+++ b/src/network/networkd-sysctl.c
@ -34,13 +34,7 @@ static struct sysctl_monitor_bpf* sysctl_monitor_bpf_free(struct sysctl_monitor_
        return NULL;
 }
 static struct ring_buffer* rb_free(struct ring_buffer *rb) {
        sym_ring_buffer__free(rb);
        return NULL;
 }
 DEFINE_TRIVIAL_CLEANUP_FUNC(struct sysctl_monitor_bpf *, sysctl_monitor_bpf_free);
 DEFINE_TRIVIAL_CLEANUP_FUNC(struct ring_buffer *, rb_free);
 static int sysctl_event_handler(void *ctx, void *data, size_t data_sz) {
        struct sysctl_write_event *we = ASSERT_PTR(data);
@ -99,10 +93,10 @@ static int on_ringbuf_io(sd_event_source *s, int fd, uint32_t revents, void *use
 int sysctl_add_monitor(Manager *manager) {
        _cleanup_(sysctl_monitor_bpf_freep) struct sysctl_monitor_bpf *obj = NULL;
        _cleanup_(bpf_link_freep) struct bpf_link *sysctl_link = NULL;
-        _cleanup_(rb_freep) struct ring_buffer *sysctl_buffer = NULL;
+        _cleanup_(bpf_ring_buffer_freep) struct ring_buffer *sysctl_buffer = NULL;
-        _cleanup_close_ int cgroup_fd = -EBADF, rootcg = -EBADF;
+        _cleanup_close_ int cgroup_fd = -EBADF, root_cgroup_fd = -EBADF;
        _cleanup_free_ char *cgroup = NULL;
-        int idx = 0, r;
+        int idx = 0, r, fd;
        assert(manager);
@ -116,9 +110,9 @@ int sysctl_add_monitor(Manager *manager) {
        if (r < 0)
                return log_warning_errno(r, "Failed to get cgroup path, ignoring: %m.");
-        rootcg = cg_path_open(SYSTEMD_CGROUP_CONTROLLER, "/");
+        root_cgroup_fd = cg_path_open(SYSTEMD_CGROUP_CONTROLLER, "/");
-        if (rootcg < 0)
+        if (root_cgroup_fd < 0)
-                return log_warning_errno(rootcg, "Failed to open cgroup, ignoring: %m.");
+                return log_warning_errno(root_cgroup_fd, "Failed to open cgroup, ignoring: %m.");
        obj = sysctl_monitor_bpf__open_and_load();
        if (!obj) {
@ -133,21 +127,27 @@ int sysctl_add_monitor(Manager *manager) {
        if (sym_bpf_map_update_elem(sym_bpf_map__fd(obj->maps.cgroup_map), &idx, &cgroup_fd, BPF_ANY))
                return log_warning_errno(errno, "Failed to update cgroup map: %m");
-        sysctl_link = sym_bpf_program__attach_cgroup(obj->progs.sysctl_monitor, rootcg);
+        sysctl_link = sym_bpf_program__attach_cgroup(obj->progs.sysctl_monitor, root_cgroup_fd);
        r = bpf_get_error_translated(sysctl_link);
        if (r < 0) {
                log_info_errno(r, "Unable to attach sysctl monitor BPF program to cgroup, ignoring: %m.");
                return 0;
        }
-        sysctl_buffer = sym_ring_buffer__new(
+        fd = sym_bpf_map__fd(obj->maps.written_sysctls);
-                        sym_bpf_map__fd(obj->maps.written_sysctls),
+        if (fd < 0)
-                        sysctl_event_handler, &manager->sysctl_shadow, NULL);
+                return log_warning_errno(fd, "Failed to get fd of sysctl maps: %m");
        sysctl_buffer = sym_ring_buffer__new(fd, sysctl_event_handler, &manager->sysctl_shadow, NULL);
        if (!sysctl_buffer)
                return log_warning_errno(errno, "Failed to create ring buffer: %m");
        fd = sym_ring_buffer__epoll_fd(sysctl_buffer);
        if (fd < 0)
                return log_warning_errno(fd, "Failed to get poll fd of ring buffer: %m");
        r = sd_event_add_io(manager->event, &manager->sysctl_event_source,
-                        sym_ring_buffer__epoll_fd(sysctl_buffer), EPOLLIN, on_ringbuf_io, sysctl_buffer);
+                            fd, EPOLLIN, on_ringbuf_io, sysctl_buffer);
        if (r < 0)
                return log_warning_errno(r, "Failed to watch sysctl event ringbuffer: %m");
@ -163,23 +163,11 @@ void sysctl_remove_monitor(Manager *manager) {
        assert(manager);
        manager->sysctl_event_source = sd_event_source_disable_unref(manager->sysctl_event_source);
-
+        manager->sysctl_buffer = bpf_ring_buffer_free(manager->sysctl_buffer);
-        if (manager->sysctl_buffer) {
+        manager->sysctl_link = bpf_link_free(manager->sysctl_link);
-                sym_ring_buffer__free(manager->sysctl_buffer);
+        manager->sysctl_skel = sysctl_monitor_bpf_free(manager->sysctl_skel);
                manager->sysctl_buffer = NULL;
        }
        if (manager->sysctl_link) {
                sym_bpf_link__destroy(manager->sysctl_link);
                manager->sysctl_link = NULL;
        }
        if (manager->sysctl_skel) {
                sysctl_monitor_bpf__destroy(manager->sysctl_skel);
                manager->sysctl_skel = NULL;
        }
        manager->cgroup_fd = safe_close(manager->cgroup_fd);
        manager->sysctl_shadow = hashmap_free(manager->sysctl_shadow);
 }
 int sysctl_clear_link_shadows(Link *link) {
@ -208,6 +196,14 @@ int sysctl_clear_link_shadows(Link *link) {
 }
 #endif
 Hashmap** manager_get_sysctl_shadow(Manager *manager) {
 #if HAVE_VMLINUX_H
        return &ASSERT_PTR(manager)->sysctl_shadow;
 #else
        return NULL;
 #endif
 }
 static void manager_set_ip_forwarding(Manager *manager, int family) {
        int r, t;
@ -222,13 +218,13 @@ static void manager_set_ip_forwarding(Manager *manager, int family) {
                return; /* keep */
        /* First, set the default value. */
-        r = sysctl_write_ip_property_boolean(family, "default", "forwarding", t, &manager->sysctl_shadow);
+        r = sysctl_write_ip_property_boolean(family, "default", "forwarding", t, manager_get_sysctl_shadow(manager));
        if (r < 0)
                log_warning_errno(r, "Failed to %s the default %s forwarding: %m",
                                  enable_disable(t), af_to_ipv4_ipv6(family));
        /* Then, set the value to all interfaces. */
-        r = sysctl_write_ip_property_boolean(family, "all", "forwarding", t, &manager->sysctl_shadow);
+        r = sysctl_write_ip_property_boolean(family, "all", "forwarding", t, manager_get_sysctl_shadow(manager));
        if (r < 0)
                log_warning_errno(r, "Failed to %s %s forwarding for all interfaces: %m",
                                  enable_disable(t), af_to_ipv4_ipv6(family));
@ -273,7 +269,7 @@ static int link_update_ipv6_sysctl(Link *link) {
        if (!link_ipv6_enabled(link))
                return 0;
-        return sysctl_write_ip_property_boolean(AF_INET6, link->ifname, "disable_ipv6", false, &link->manager->sysctl_shadow);
+        return sysctl_write_ip_property_boolean(AF_INET6, link->ifname, "disable_ipv6", false, manager_get_sysctl_shadow(link->manager));
 }
 static int link_set_proxy_arp(Link *link) {
@ -286,7 +282,7 @@ static int link_set_proxy_arp(Link *link) {
        if (link->network->proxy_arp < 0)
                return 0;
-        return sysctl_write_ip_property_boolean(AF_INET, link->ifname, "proxy_arp", link->network->proxy_arp > 0, &link->manager->sysctl_shadow);
+        return sysctl_write_ip_property_boolean(AF_INET, link->ifname, "proxy_arp", link->network->proxy_arp > 0, manager_get_sysctl_shadow(link->manager));
 }
 static int link_set_proxy_arp_pvlan(Link *link) {
@ -299,7 +295,7 @@ static int link_set_proxy_arp_pvlan(Link *link) {
        if (link->network->proxy_arp_pvlan < 0)
                return 0;
-        return sysctl_write_ip_property_boolean(AF_INET, link->ifname, "proxy_arp_pvlan", link->network->proxy_arp_pvlan > 0, &link->manager->sysctl_shadow);
+        return sysctl_write_ip_property_boolean(AF_INET, link->ifname, "proxy_arp_pvlan", link->network->proxy_arp_pvlan > 0, manager_get_sysctl_shadow(link->manager));
 }
 int link_get_ip_forwarding(Link *link, int family) {
@ -341,7 +337,7 @@ static int link_set_ip_forwarding_impl(Link *link, int family) {
        if (t < 0)
                return 0; /* keep */
-        r = sysctl_write_ip_property_boolean(family, link->ifname, "forwarding", t, &link->manager->sysctl_shadow);
+        r = sysctl_write_ip_property_boolean(family, link->ifname, "forwarding", t, manager_get_sysctl_shadow(link->manager));
        if (r < 0)
                return log_link_warning_errno(link, r, "Failed to %s %s forwarding, ignoring: %m",
                                              enable_disable(t), af_to_ipv4_ipv6(family));
@ -418,7 +414,7 @@ static int link_set_ipv4_rp_filter(Link *link) {
        if (link->network->ipv4_rp_filter < 0)
                return 0;
-        return sysctl_write_ip_property_int(AF_INET, link->ifname, "rp_filter", link->network->ipv4_rp_filter, &link->manager->sysctl_shadow);
+        return sysctl_write_ip_property_int(AF_INET, link->ifname, "rp_filter", link->network->ipv4_rp_filter, manager_get_sysctl_shadow(link->manager));
 }
 static int link_set_ipv6_privacy_extensions(Link *link) {
@ -438,7 +434,7 @@ static int link_set_ipv6_privacy_extensions(Link *link) {
        if (val == IPV6_PRIVACY_EXTENSIONS_KERNEL)
                return 0;
-        return sysctl_write_ip_property_int(AF_INET6, link->ifname, "use_tempaddr", (int) val, &link->manager->sysctl_shadow);
+        return sysctl_write_ip_property_int(AF_INET6, link->ifname, "use_tempaddr", (int) val, manager_get_sysctl_shadow(link->manager));
 }
 static int link_set_ipv6_accept_ra(Link *link) {
@ -448,7 +444,7 @@ static int link_set_ipv6_accept_ra(Link *link) {
        if (!link_is_configured_for_family(link, AF_INET6))
                return 0;
-        return sysctl_write_ip_property(AF_INET6, link->ifname, "accept_ra", "0", &link->manager->sysctl_shadow);
+        return sysctl_write_ip_property(AF_INET6, link->ifname, "accept_ra", "0", manager_get_sysctl_shadow(link->manager));
 }
 static int link_set_ipv6_dad_transmits(Link *link) {
@ -461,7 +457,7 @@ static int link_set_ipv6_dad_transmits(Link *link) {
        if (link->network->ipv6_dad_transmits < 0)
                return 0;
-        return sysctl_write_ip_property_int(AF_INET6, link->ifname, "dad_transmits", link->network->ipv6_dad_transmits, &link->manager->sysctl_shadow);
+        return sysctl_write_ip_property_int(AF_INET6, link->ifname, "dad_transmits", link->network->ipv6_dad_transmits, manager_get_sysctl_shadow(link->manager));
 }
 static int link_set_ipv6_hop_limit(Link *link) {
@ -474,7 +470,7 @@ static int link_set_ipv6_hop_limit(Link *link) {
        if (link->network->ipv6_hop_limit <= 0)
                return 0;
-        return sysctl_write_ip_property_int(AF_INET6, link->ifname, "hop_limit", link->network->ipv6_hop_limit, &link->manager->sysctl_shadow);
+        return sysctl_write_ip_property_int(AF_INET6, link->ifname, "hop_limit", link->network->ipv6_hop_limit, manager_get_sysctl_shadow(link->manager));
 }
 static int link_set_ipv6_retransmission_time(Link *link) {
@ -493,7 +489,7 @@ static int link_set_ipv6_retransmission_time(Link *link) {
         if (retrans_time_ms <= 0 || retrans_time_ms > UINT32_MAX)
                return 0;
-        return sysctl_write_ip_neighbor_property_uint32(AF_INET6, link->ifname, "retrans_time_ms", retrans_time_ms, &link->manager->sysctl_shadow);
+        return sysctl_write_ip_neighbor_property_uint32(AF_INET6, link->ifname, "retrans_time_ms", retrans_time_ms, manager_get_sysctl_shadow(link->manager));
 }
 static int link_set_ipv6_proxy_ndp(Link *link) {
@ -510,7 +506,7 @@ static int link_set_ipv6_proxy_ndp(Link *link) {
        else
                v = !set_isempty(link->network->ipv6_proxy_ndp_addresses);
-        return sysctl_write_ip_property_boolean(AF_INET6, link->ifname, "proxy_ndp", v, &link->manager->sysctl_shadow);
+        return sysctl_write_ip_property_boolean(AF_INET6, link->ifname, "proxy_ndp", v, manager_get_sysctl_shadow(link->manager));
 }
 int link_set_ipv6_mtu(Link *link, int log_level) {
@ -538,7 +534,7 @@ int link_set_ipv6_mtu(Link *link, int log_level) {
                mtu = link->mtu;
        }
-        return sysctl_write_ip_property_uint32(AF_INET6, link->ifname, "mtu", mtu, &link->manager->sysctl_shadow);
+        return sysctl_write_ip_property_uint32(AF_INET6, link->ifname, "mtu", mtu, manager_get_sysctl_shadow(link->manager));
 }
 static int link_set_ipv4_accept_local(Link *link) {
@ -551,7 +547,7 @@ static int link_set_ipv4_accept_local(Link *link) {
        if (link->network->ipv4_accept_local < 0)
                return 0;
-        return sysctl_write_ip_property_boolean(AF_INET, link->ifname, "accept_local", link->network->ipv4_accept_local > 0, &link->manager->sysctl_shadow);
+        return sysctl_write_ip_property_boolean(AF_INET, link->ifname, "accept_local", link->network->ipv4_accept_local > 0, manager_get_sysctl_shadow(link->manager));
 }
 static int link_set_ipv4_route_localnet(Link *link) {
@ -564,7 +560,7 @@ static int link_set_ipv4_route_localnet(Link *link) {
        if (link->network->ipv4_route_localnet < 0)
                return 0;
-        return sysctl_write_ip_property_boolean(AF_INET, link->ifname, "route_localnet", link->network->ipv4_route_localnet > 0, &link->manager->sysctl_shadow);
+        return sysctl_write_ip_property_boolean(AF_INET, link->ifname, "route_localnet", link->network->ipv4_route_localnet > 0, manager_get_sysctl_shadow(link->manager));
 }
 static int link_set_ipv4_promote_secondaries(Link *link) {
@ -579,7 +575,7 @@ static int link_set_ipv4_promote_secondaries(Link *link) {
         * otherwise. The way systemd-networkd works is that the new IP of a lease is added as a
         * secondary IP and when the primary one expires it relies on the kernel to promote the
         * secondary IP. See also https://github.com/systemd/systemd/issues/7163 */
-        return sysctl_write_ip_property_boolean(AF_INET, link->ifname, "promote_secondaries", true, &link->manager->sysctl_shadow);
+        return sysctl_write_ip_property_boolean(AF_INET, link->ifname, "promote_secondaries", true, manager_get_sysctl_shadow(link->manager));
 }
 int link_set_sysctl(Link *link) {
--- a/src/network/networkd-sysctl.h
+++ b/src/network/networkd-sysctl.h
@ -4,6 +4,7 @@
 #include <stdbool.h>
 #include "conf-parser.h"
 #include "hashmap.h"
 typedef struct Link Link;
 typedef struct Manager Manager;
@ -37,6 +38,8 @@ static inline void sysctl_remove_monitor(Manager *manager) { }
 static inline int sysctl_clear_link_shadows(Link *link) { return 0; }
 #endif
 Hashmap** manager_get_sysctl_shadow(Manager *manager);
 void manager_set_sysctl(Manager *manager);
 int link_get_ip_forwarding(Link *link, int family);
--- a/src/nsresourced/nsresourced-manager.c
+++ b/src/nsresourced/nsresourced-manager.c
@ -6,6 +6,7 @@
 #include "sd-daemon.h"
 #include "bpf-dlopen.h"
 #include "bpf-link.h"
 #include "build-path.h"
 #include "common-signal.h"
 #include "env-util.h"
@ -141,8 +142,7 @@ Manager* manager_free(Manager *m) {
 #if HAVE_VMLINUX_H
        sd_event_source_disable_unref(m->userns_restrict_bpf_ring_buffer_event_source);
-        if (m->userns_restrict_bpf_ring_buffer)
+        bpf_ring_buffer_free(m->userns_restrict_bpf_ring_buffer);
                sym_ring_buffer__free(m->userns_restrict_bpf_ring_buffer);
        userns_restrict_bpf_free(m->userns_restrict_bpf);
 #endif
--- a/src/shared/bpf-link.c
+++ b/src/shared/bpf-link.c
@ -41,3 +41,10 @@ struct bpf_link *bpf_link_free(struct bpf_link *link) {
        return NULL;
 }
 struct ring_buffer* bpf_ring_buffer_free(struct ring_buffer *rb) {
        if (rb) /* See the comment in bpf_link_free(). */
                sym_ring_buffer__free(rb);
        return NULL;
 }
--- a/src/shared/bpf-link.h
+++ b/src/shared/bpf-link.h
@ -14,3 +14,6 @@ int bpf_serialize_link(FILE *f, FDSet *fds, const char *key, struct bpf_link *li
 struct bpf_link* bpf_link_free(struct bpf_link *p);
 DEFINE_TRIVIAL_CLEANUP_FUNC(struct bpf_link *, bpf_link_free);
 struct ring_buffer* bpf_ring_buffer_free(struct ring_buffer *rb);
 DEFINE_TRIVIAL_CLEANUP_FUNC(struct ring_buffer *, bpf_ring_buffer_free);
Author	SHA1	Message	Date
Yu Watanabe	654a35a069	Merge `0e9f932cf0` into `9671efff78`	2024-09-16 08:14:03 +02:00
Yu Watanabe	0e9f932cf0	network/sysctl-monitor: do not allocate sysctl_shadow when eBPF is not supported When eBPF is disabled, the hashmap will be never used. Let's not allocate it.	2024-09-16 15:13:38 +09:00
Yu Watanabe	a2fbe9f3f9	network/sysctl-monitor: fix use-after-free Previously, manager_free() did not assign NULL to Manager.sysctl_shadow, hence sysctl_clear_link_shadows() called by link_free() will causes use-after-free. To fix the issue, this makes Manager.sysctl_shadow will be set to NULL after it is freed, Fixes a bug introduced by `6d9ef22acd`.	2024-09-16 15:12:47 +09:00
Yu Watanabe	7c778cecdb	network/sysctl: several cleanups for sysctl_add_monitor() - rename rootcg -> root_cgroup_fd, to emphasize it is a fd, - drop nested function call, and check error code.	2024-09-16 14:36:54 +09:00
Yu Watanabe	46718d344f	bpf-link: introduce bpf_ring_buffer_free() and friends Then, replace rb_free() in networkd. Follow-up for `6d9ef22acd`.	2024-09-16 14:36:54 +09:00
Yu Watanabe	9295c7ae09	network/sysctl: use wrapped free functions No functional change, just refactoring. Follow-up for `6d9ef22acd`.	2024-09-16 14:36:54 +09:00
Yu Watanabe	41afafbf2a	network/sysctl-monitor: fix sanity check in cut_last() This also adds basic comment about the return code. Follow-up for `6d9ef22acd`.	2024-09-16 14:36:54 +09:00