From owner-freebsd-pf@FreeBSD.ORG Mon Dec 3 11:07:06 2007 Return-Path: Delivered-To: freebsd-pf@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 479D616A4A7 for ; Mon, 3 Dec 2007 11:07:06 +0000 (UTC) (envelope-from owner-bugmaster@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 36D8813C455 for ; Mon, 3 Dec 2007 11:07:06 +0000 (UTC) (envelope-from owner-bugmaster@FreeBSD.org) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.2/8.14.2) with ESMTP id lB3B765p005669 for ; Mon, 3 Dec 2007 11:07:06 GMT (envelope-from owner-bugmaster@FreeBSD.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.2/8.14.1/Submit) id lB3B75DP005665 for freebsd-pf@FreeBSD.org; Mon, 3 Dec 2007 11:07:05 GMT (envelope-from owner-bugmaster@FreeBSD.org) Date: Mon, 3 Dec 2007 11:07:05 GMT Message-Id: <200712031107.lB3B75DP005665@freefall.freebsd.org> X-Authentication-Warning: freefall.freebsd.org: gnats set sender to owner-bugmaster@FreeBSD.org using -f From: FreeBSD bugmaster To: freebsd-pf@FreeBSD.org Cc: Subject: Current problem reports assigned to freebsd-pf@FreeBSD.org X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 03 Dec 2007 11:07:06 -0000 Current FreeBSD problem reports Critical problems S Tracker Resp. Description -------------------------------------------------------------------------------- o kern/111220 pf [pf] repeatable hangs while manipulating pf tables 1 problem total. Serious problems S Tracker Resp. Description -------------------------------------------------------------------------------- o kern/82271 pf [pf] cbq scheduler cause bad latency o kern/92949 pf [pf] PF + ALTQ problems with latency o kern/110698 pf [pf] nat rule of pf without "on" clause causes invalid o bin/116610 pf [patch] teach tcpdump(1) to cope with the new-style pf o kern/117827 pf [pf] kernel panic with pf and ng 5 problems total. Non-critical problems S Tracker Resp. Description -------------------------------------------------------------------------------- o sparc/93530 pf [pf] Incorrect checksums when using pf's route-to on s o kern/93825 pf [pf] pf reply-to doesn't work o kern/106400 pf [pf] fatal trap 12 at restart of PF with ALTQ if ng0 d s conf/110838 pf tagged parameter on nat not working on FreeBSD 5.2 o kern/114095 pf [carp] carp+pf delay with high state limit o kern/114567 pf [pf] LOR pf_ioctl.c + if.c f kern/116645 pf [RFE] pfctl -k does not work in securelevel 3 o kern/118355 pf [pf] [patch] pfctl help message options order false -t 8 problems total. From owner-freebsd-pf@FreeBSD.ORG Tue Dec 4 21:26:21 2007 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id DFABC16A418 for ; Tue, 4 Dec 2007 21:26:21 +0000 (UTC) (envelope-from biancalana@gmail.com) Received: from py-out-1112.google.com (py-out-1112.google.com [64.233.166.177]) by mx1.freebsd.org (Postfix) with ESMTP id 90A8C13C457 for ; Tue, 4 Dec 2007 21:26:21 +0000 (UTC) (envelope-from biancalana@gmail.com) Received: by py-out-1112.google.com with SMTP id u77so8532326pyb for ; Tue, 04 Dec 2007 13:26:18 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; bh=zZcIW7mJlCuuPAw21ad4MlAMsHenbncyaV7HgvywmLM=; b=Cm2niGb+wPwmBKR2Pksa0lQMhMygMMTl+KKftWkzZios0tqcQt2XPSiIAsmJbEFXwq5N6ylJO3oLmxNXqMaHIQqrM4pDYKXAjFk0M/pTUbonk+GdmdXAfnC2xX87+p07ie1LhedYbWupRHAq+Op7IfZvSa5EubdarLATq4nySTs= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=wVzYS/YpcW+0eztNul/IvyzS0GOLtIYg8e2y6UdHTm8qhAYUL1KeJ22LUxJu/962EUxyiu+4aZC+h4DtehDZmcBbOzhRMfYbKxJCYkVQ59CU6B4ULaRI6fuXA93c9y6KeyqgrK0UG9jskjdfjHdPCSL9E0vyPz4RspMXb+ew1N4= Received: by 10.64.142.10 with SMTP id p10mr18257554qbd.1196801841853; Tue, 04 Dec 2007 12:57:21 -0800 (PST) Received: by 10.64.184.9 with HTTP; Tue, 4 Dec 2007 12:57:21 -0800 (PST) Message-ID: <8e10486b0712041257p6a54c50by4c340bba9c4a39b3@mail.gmail.com> Date: Tue, 4 Dec 2007 18:57:21 -0200 From: "Alexandre Biancalana" To: "Max Laier" In-Reply-To: <200710272311.09059.max@love2party.net> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <200710272311.09059.max@love2party.net> Cc: freebsd-pf@freebsd.org Subject: Re: carpdev ... X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 04 Dec 2007 21:26:22 -0000 On Oct 27, 2007 7:11 PM, Max Laier wrote: > ... the neverending story continues :-\ > > I am making progress ... really, really slowly as I'm not at the top of my > health (inflammation in my front teeth) and 7.0 got in the way, too. > > Anyways, here is something for *BETA* testing. Nobody put this in > production (or you deserve whatever goes wrong). But if you have spare > time and lab machines, please test and report back! Details welcome ;) Have someone tested this patch ? I'm about to put this in a production, not intessive or high traffic, but production environment. Any hints ? Best Regards, From owner-freebsd-pf@FreeBSD.ORG Wed Dec 5 13:32:37 2007 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 10D6216A418 for ; Wed, 5 Dec 2007 13:32:37 +0000 (UTC) (envelope-from max@love2party.net) Received: from moutng.kundenserver.de (moutng.kundenserver.de [212.227.126.183]) by mx1.freebsd.org (Postfix) with ESMTP id 90DDE13C47E for ; Wed, 5 Dec 2007 13:32:36 +0000 (UTC) (envelope-from max@love2party.net) Received: from amd64.laiers.local (dslb-088-066-033-184.pools.arcor-ip.net [88.66.33.184]) by mrelayeu.kundenserver.de (node=mrelayeu3) with ESMTP (Nemesis) id 0MKxQS-1IzuMb3QAE-0001WN; Wed, 05 Dec 2007 14:32:34 +0100 From: Max Laier Organization: FreeBSD To: "Alexandre Biancalana" Date: Wed, 5 Dec 2007 14:32:24 +0100 User-Agent: KMail/1.9.7 References: <200710272311.09059.max@love2party.net> <8e10486b0712041257p6a54c50by4c340bba9c4a39b3@mail.gmail.com> In-Reply-To: <8e10486b0712041257p6a54c50by4c340bba9c4a39b3@mail.gmail.com> X-Face: ,,8R(x[kmU]tKN@>gtH1yQE4aslGdu+2]; R]*pL,U>^H?)gW@49@wdJ`H<=?utf-8?q?=25=7D*=5FBD=0A=09U=5For=3D=5CmOZf764=26nYj=3DJYbR1PW0ud?=>|!~,,CPC.1-D$FG@0h3#'5"k{V]a~.<=?utf-8?q?mZ=7D44=23Se=7Em=0A=09Fe=7E=5C=5DX5B=5D=5Fxj?=(ykz9QKMw_l0C2AQ]}Ym8)fU MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart3219033.ROu8vbP3JY"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200712051432.29703.max@love2party.net> X-Provags-ID: V01U2FsdGVkX19sGcsCYosYnUAUw5tH3KOp4W7QZmrxGhpxamW wRxPmrz1IYwJZ77FgXBksVfo2RP+YPDwllXzfVflAVl9ZjVTvP YIa0hvqEFgRWBY6bifb7NSJYbzDeun5TMpr9DqEdHs= Cc: freebsd-pf@freebsd.org Subject: Re: carpdev ... X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 05 Dec 2007 13:32:37 -0000 --nextPart3219033.ROu8vbP3JY Content-Type: multipart/mixed; boundary="Boundary-01=_phqVHCzDtaTMRAv" Content-Transfer-Encoding: 7bit Content-Disposition: inline --Boundary-01=_phqVHCzDtaTMRAv Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Tuesday 04 December 2007, Alexandre Biancalana wrote: > On Oct 27, 2007 7:11 PM, Max Laier wrote: > > ... the neverending story continues :-\ > > > > I am making progress ... really, really slowly as I'm not at the top > > of my health (inflammation in my front teeth) and 7.0 got in the way, > > too. > > > > Anyways, here is something for *BETA* testing. Nobody put this in > > production (or you deserve whatever goes wrong). But if you have > > spare time and lab machines, please test and report back! Details > > welcome ;) > > Have someone tested this patch ? I'm about to put this in a > production, not intessive or high traffic, but production environment. > > Any hints ? The attached removes a debugging printf I left in by accident. There is=20 an additional printf in if_ether.c in line 684 that should be shut up in=20 the carp case, but I have the logic screwed up that should set=20 carp_match. You can shut it up for everything by setting sysctl=20 net.link.ether.inet.log_arp_wrong_iface=3D0, but that's only bandaid. Other than that I'm not aware of any problems, panic or the like. Please=20 let me know how things go for you! Oh ... IPv6 is not working with this patchset! The attachment is relative= =20 to the patched source! =2D-=20 /"\ Best regards, | mlaier@freebsd.org \ / Max Laier | ICQ #67774661 X http://pf4freebsd.love2party.net/ | mlaier@EFnet / \ ASCII Ribbon Campaign | Against HTML Mail and News --Boundary-01=_phqVHCzDtaTMRAv Content-Type: text/x-diff; charset="iso-8859-1"; name="carp_nodebug.diff" Content-Transfer-Encoding: quoted-printable Content-Disposition: attachment; filename="carp_nodebug.diff" diff --git a/sys/netinet/ip_carp.c b/sys/netinet/ip_carp.c index 7bb9404..aea3518 100644 =2D-- a/sys/netinet/ip_carp.c +++ b/sys/netinet/ip_carp.c @@ -1213,17 +1213,9 @@ carp_iamatch(void *v, struct in_ifaddr *ia, struct carp_softc *vh; int index, count =3D 0; struct ifaddr *ifa; =2D char iastr[INET_ADDRSTRLEN]; =2D char isstr[INET_ADDRSTRLEN]; =2D =20 CARP_LOCK(cif); =20 =2D inet_ntoa_r(ia->ia_addr.sin_addr, iastr); =2D inet_ntoa_r(*isaddr, isstr); =2D printf("carp_iamatch(%s, %s, %s, ...)\n", cif->vhif_ifp->if_xname, =2D iastr, isstr); =2D if (carp_opts[CARPCTL_ARPBALANCE]) { /* * XXX proof of concept implementation. @@ -1275,11 +1267,8 @@ carp_iamatch(void *v, struct in_ifaddr *ia, ia->ia_ifp =3D=3D SC2IFP(vh) && vh->sc_state =3D=3D MASTER) { *enaddr =3D IF_LLADDR(vh->sc_ifp); =2D printf("found: %s\n", vh->sc_ifp->if_xname); CARP_UNLOCK(cif); return (1); =2D } else { =2D printf("not: %s\n", vh->sc_ifp->if_xname); } } } --Boundary-01=_phqVHCzDtaTMRAv-- --nextPart3219033.ROu8vbP3JY Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4 (FreeBSD) iD8DBQBHVqhtXyyEoT62BG0RAkPwAJ9hIbg47qv1JVOizndbsBeiX4xA0ACfTdH0 JISD5Jv2qKgHP2awezLtdWc= =axB9 -----END PGP SIGNATURE----- --nextPart3219033.ROu8vbP3JY--