From owner-freebsd-net@freebsd.org Sun Aug 11 03:22:43 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 4899FADCF1 for ; Sun, 11 Aug 2019 03:22:43 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mailman.nyi.freebsd.org (mailman.nyi.freebsd.org [IPv6:2610:1c1:1:606c::50:13]) by mx1.freebsd.org (Postfix) with ESMTP id 465knH1GFRz4VpQ for ; Sun, 11 Aug 2019 03:22:43 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: by mailman.nyi.freebsd.org (Postfix) id 2A9B7ADCF0; Sun, 11 Aug 2019 03:22:43 +0000 (UTC) Delivered-To: net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 2A5DBADCEF for ; Sun, 11 Aug 2019 03:22:43 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) server-signature RSA-PSS (4096 bits) client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 465knH0Jtcz4VpP for ; Sun, 11 Aug 2019 03:22:43 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id E1F9F817E for ; Sun, 11 Aug 2019 03:22:42 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id x7B3MgPk006596 for ; Sun, 11 Aug 2019 03:22:42 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id x7B3Mgux006575 for net@FreeBSD.org; Sun, 11 Aug 2019 03:22:42 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 238796] ipfilter: failure to detect the same rules when arguments ordered differently Date: Sun, 11 Aug 2019 03:22:41 +0000 X-Bugzilla-Reason: CC X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: CURRENT X-Bugzilla-Keywords: patch X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: cy@FreeBSD.org X-Bugzilla-Status: In Progress X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: cy@FreeBSD.org X-Bugzilla-Flags: mfc-stable11? mfc-stable12? X-Bugzilla-Changed-Fields: bug_status flagtypes.name Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 11 Aug 2019 03:22:43 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D238796 Cy Schubert changed: What |Removed |Added ---------------------------------------------------------------------------- Status|Open |In Progress Flags| |mfc-stable11?, | |mfc-stable12? --- Comment #39 from Cy Schubert --- I will commit this sooner than two weeks as there is other work that depend= s on this that is also waiting for commit. It has been committed to my git repo = and will be git svn dcommitted sometime this week. MFC will be two weeks. --=20 You are receiving this mail because: You are on the CC list for the bug.= From owner-freebsd-net@freebsd.org Sun Aug 11 20:20:01 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 72742C0CE1 for ; Sun, 11 Aug 2019 20:20:01 +0000 (UTC) (envelope-from julian@elischer.org) Received: from mailman.nyi.freebsd.org (unknown [127.0.1.3]) by mx1.freebsd.org (Postfix) with ESMTP id 4669M46bx4z4K1q for ; Sun, 11 Aug 2019 20:20:00 +0000 (UTC) (envelope-from julian@elischer.org) Received: by mailman.nyi.freebsd.org (Postfix) id E0852C0CE0; Sun, 11 Aug 2019 20:20:00 +0000 (UTC) Delivered-To: net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id E0464C0CDF for ; Sun, 11 Aug 2019 20:20:00 +0000 (UTC) (envelope-from julian@elischer.org) Received: from vps1.elischer.org (vps1.elischer.org [204.109.63.16]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "vps1.elischer.org", Issuer "CA Cert Signing Authority" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 4669M350Cqz4K1m; Sun, 11 Aug 2019 20:19:59 +0000 (UTC) (envelope-from julian@elischer.org) Received: from [192.168.0.27] (c-73-225-95-104.hsd1.wa.comcast.net [73.225.95.104]) (authenticated bits=0) by vps1.elischer.org (8.15.2/8.15.2) with ESMTPSA id x7BKJnv5069617 (version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Sun, 11 Aug 2019 13:19:51 -0700 (PDT) (envelope-from julian@elischer.org) Content-Type: text/plain; charset=utf-8 Mime-Version: 1.0 (1.0) Subject: Re: radiotap header bit definition allocation has changed ... From: Julian Elischer X-Mailer: iPhone Mail (16F203) In-Reply-To: Date: Sun, 11 Aug 2019 13:19:43 -0700 Cc: adrian@freebsd.org, wireless@freepsd.org, net@freebsd.org Content-Transfer-Encoding: quoted-printable Message-Id: <10703BFE-8D68-4A35-AA62-1DEC4261B9CD@elischer.org> References: To: Richard Sharpe X-Rspamd-Queue-Id: 4669M350Cqz4K1m X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of julian@elischer.org designates 204.109.63.16 as permitted sender) smtp.mailfrom=julian@elischer.org X-Spamd-Result: default: False [-3.97 / 15.00]; ARC_NA(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; RCVD_COUNT_TWO(0.00)[2]; NEURAL_HAM_MEDIUM(-1.00)[-1.000,0]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[4]; R_SPF_ALLOW(-0.20)[+ip4:204.109.63.16/32]; MV_CASE(0.50)[]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[elischer.org]; NEURAL_HAM_LONG(-1.00)[-0.999,0]; TO_DN_SOME(0.00)[]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_HAM_SHORT(-0.94)[-0.936,0]; IP_SCORE(-1.24)[ipnet: 204.109.60.0/22(-2.26), asn: 36236(-3.87), country: US(-0.05)]; FREEMAIL_TO(0.00)[gmail.com]; RECEIVED_SPAMHAUS_PBL(0.00)[104.95.225.73.khpj7ygk5idzvmvt5x4ziurxhy.zen.dq.spamhaus.net : 127.0.0.10]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:36236, ipnet:204.109.60.0/22, country:US]; MID_RHS_MATCH_FROM(0.00)[]; RCVD_TLS_ALL(0.00)[]; FROM_EQ_ENVFROM(0.00)[] X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 11 Aug 2019 20:20:01 -0000 Hi Richard. I=E2=80=99m not the person but I will forward on to the next pe= rson in the =E2=80=9CMay know more=E2=80=9D chain and we can see if we can h= ome in on the right person. =20 Julian Sent from my iPhone > On Aug 11, 2019, at 10:57 AM, Richard Sharpe = wrote: >=20 > Hi Julian, >=20 > I dunno if you care about this, so maybe you can point me at who cares. >=20 > I have just posted a change to Wireshark letting people know that > there are no more bit numbers available for new radiotap headers and > that radiotap has switched to using TLVs from now on. >=20 > I did this because I am working with the S1G (has the stupid marketing > name of Halow, 802.11ah) folks and we needed a new radiotap header, > and they stupidly used a bit that is not available. >=20 > Anyway, is S1G adapters get released (maybe next year) I imagine > people will want to support them on FreeBSD and capture software will > be needed ... >=20 > so, someone needs to be aware of this. >=20 > --=20 > Regards, > Richard Sharpe > (=E4=BD=95=E4=BB=A5=E8=A7=A3=E6=86=82=EF=BC=9F=E5=94=AF=E6=9C=89=E6=9D=9C=E5= =BA=B7=E3=80=82--=E6=9B=B9=E6=93=8D)(=E4=BC=A0=E8=AF=B4=E6=9D=9C=E5=BA=B7=E6= =98=AF=E9=85=92=E7=9A=84=E5=8F=91=E6=98=8E=E8=80=85) >=20 From owner-freebsd-net@freebsd.org Sun Aug 11 21:00:49 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 142FCC1EAC for ; Sun, 11 Aug 2019 21:00:49 +0000 (UTC) (envelope-from bugzilla-noreply@FreeBSD.org) Received: from mailman.nyi.freebsd.org (unknown [127.0.1.3]) by mx1.freebsd.org (Postfix) with ESMTP id 466BG86S1Zz4Mj9 for ; Sun, 11 Aug 2019 21:00:48 +0000 (UTC) (envelope-from bugzilla-noreply@FreeBSD.org) Received: by mailman.nyi.freebsd.org (Postfix) id DD14BC1EA4; Sun, 11 Aug 2019 21:00:48 +0000 (UTC) Delivered-To: net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id DC9BCC1EA3 for ; Sun, 11 Aug 2019 21:00:48 +0000 (UTC) (envelope-from bugzilla-noreply@FreeBSD.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) server-signature RSA-PSS (4096 bits) client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 466BG84h4jz4MhX for ; Sun, 11 Aug 2019 21:00:48 +0000 (UTC) (envelope-from bugzilla-noreply@FreeBSD.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 741EC1BFD9 for ; Sun, 11 Aug 2019 21:00:48 +0000 (UTC) (envelope-from bugzilla-noreply@FreeBSD.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id x7BL0m2B038837 for ; Sun, 11 Aug 2019 21:00:48 GMT (envelope-from bugzilla-noreply@FreeBSD.org) Received: (from bugzilla@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id x7BL0mkH038812 for net@FreeBSD.org; Sun, 11 Aug 2019 21:00:48 GMT (envelope-from bugzilla-noreply@FreeBSD.org) Message-Id: <201908112100.x7BL0mkH038812@kenobi.freebsd.org> X-Authentication-Warning: kenobi.freebsd.org: bugzilla set sender to bugzilla-noreply@FreeBSD.org using -f From: bugzilla-noreply@FreeBSD.org To: net@FreeBSD.org Subject: Problem reports for net@FreeBSD.org that need special attention Date: Sun, 11 Aug 2019 21:00:48 +0000 MIME-Version: 1.0 Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.29 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 11 Aug 2019 21:00:49 -0000 To view an individual PR, use: https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=(Bug Id). The following is a listing of current problems submitted by FreeBSD users, which need special attention. These represent problem reports covering all versions including experimental development code and obsolete releases. Status | Bug Id | Description ------------+-----------+--------------------------------------------------- In Progress | 221146 | [ixgbe] Problem with second laggport In Progress | 235700 | oce(4) driver causes fatal trap 12 on boot with e New | 204438 | setsockopt() handling of kern.ipc.maxsockbuf limi New | 205592 | TCP processing in IPSec causes kernel panic New | 213410 | [carp] service netif restart causes hang only whe Open | 193452 | Dell PowerEdge 210 II -- Kernel panic bce (broadc Open | 194485 | Userland cannot add IPv6 prefix routes Open | 200319 | Bridge+CARP crashes/freezes Open | 202510 | [CARP] advertisements sourced from CARP IP cause Open | 222273 | igb(4): Kernel panic (fatal trap 12) due to netwo Open | 225438 | panic in6_unlink_ifa() due to race Open | 227720 | Kernel panic in ppp server Open | 233952 | jme NICs non functional after 11.2 to 12.0 upgrad Open | 236888 | ppp daemon: Allow MTU to be overridden for PPPoE Open | 236983 | bnxt(4) VLAN not operational unless explicit "ifc Open | 237072 | netgraph(4): performance issue [on HardenedBSD]? Open | 237391 | route get returns no result for network addresses Open | 237840 | Removed dummynet dependency on ipfw 18 problems total for which you should take action. From owner-freebsd-net@freebsd.org Sun Aug 11 23:54:55 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 1EBACC907F for ; Sun, 11 Aug 2019 23:54:55 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mailman.nyi.freebsd.org (unknown [127.0.1.3]) by mx1.freebsd.org (Postfix) with ESMTP id 466G726B1Rz4bQt for ; Sun, 11 Aug 2019 23:54:54 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: by mailman.nyi.freebsd.org (Postfix) id B4728C906F; Sun, 11 Aug 2019 23:54:54 +0000 (UTC) Delivered-To: net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id B28B4C906E for ; Sun, 11 Aug 2019 23:54:54 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) server-signature RSA-PSS (4096 bits) client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 466G7238Clz4bQ4 for ; Sun, 11 Aug 2019 23:54:54 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 0DE861E07B for ; Sun, 11 Aug 2019 23:54:54 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id x7BNsrS0029574 for ; Sun, 11 Aug 2019 23:54:53 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from bugzilla@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id x7BNsrUW029573 for net@FreeBSD.org; Sun, 11 Aug 2019 23:54:53 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: bugzilla set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 238796] ipfilter: failure to detect the same rules when arguments ordered differently Date: Sun, 11 Aug 2019 23:54:53 +0000 X-Bugzilla-Reason: CC X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: CURRENT X-Bugzilla-Keywords: patch X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: commit-hook@freebsd.org X-Bugzilla-Status: In Progress X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: cy@FreeBSD.org X-Bugzilla-Flags: mfc-stable11? mfc-stable12? X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 11 Aug 2019 23:54:55 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D238796 --- Comment #40 from commit-hook@freebsd.org --- A commit references this bug: Author: cy Date: Sun Aug 11 23:54:49 UTC 2019 New revision: 350880 URL: https://svnweb.freebsd.org/changeset/base/350880 Log: r272552 applied the patch from ipfilter upstream fil.c r1.129 to fix broken ipfilter rule matches (upstream bug #554). The upstream patch was incomplete, it resolved all but one rule compare issue. The issue fixed here is when "{to, reply-to, dup-to} interface" are used in conjuncion with "on interface". The match was only made if the on keyword was specified in the same order in each case referencing the same rule. This commit fixes this. The reason for this is that interface name strings and comment keyword comments are stored in a a variable length field starting at fr_names in the frentry struct. These strings are placed into this variable length in the order they are encountered by ipf_y.y and indexed through index pointers in fr_ifnames, fr_comment or one of the frdest struct fd_name fields. (Three frdest structs are within frentry.) Order matters and this patch takes this into account. While in here it was discovered that though ipfilter is designed to support multiple interface specifiations per rule (up to four), this undocumented (the man page makes no mention of it) feature does not work. A todo is to fix the multiple interfaces feature at a later date. To understand the design decision as to why only four were intended, it is suspected that the decision was made because Sun workstations and PCs rarely if ever exceeded four NICs at the time, this is not true in 2019. PR: 238796 Reported by: WHR MFC after: 2 weeks Changes: head/sys/contrib/ipfilter/netinet/fil.c head/sys/contrib/ipfilter/netinet/ip_fil.h --=20 You are receiving this mail because: You are on the CC list for the bug.= From owner-freebsd-net@freebsd.org Mon Aug 12 20:20:40 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 91050C0E25 for ; Mon, 12 Aug 2019 20:20:40 +0000 (UTC) (envelope-from nevzorovn@gmail.com) Received: from mail-wm1-x330.google.com (mail-wm1-x330.google.com [IPv6:2a00:1450:4864:20::330]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) server-signature RSA-PSS (4096 bits) client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 466nKM31WVz40H6 for ; Mon, 12 Aug 2019 20:20:39 +0000 (UTC) (envelope-from nevzorovn@gmail.com) Received: by mail-wm1-x330.google.com with SMTP id m125so736976wmm.3 for ; Mon, 12 Aug 2019 13:20:39 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:from:date:message-id:subject:to; bh=4h8s1KL6DlaSpbKltaquQ8wb99UAMtTLvysC7VZw9xQ=; b=HfTd1qdxuAudlWkMOUR7j9ldAZRIrMN95uJ2YfqT6A/lT17N8Rk2yjxllp1S+iQuiI VwXkwL0d2f0pl66+EoUGaoSdZUVCxJb2rf1J9pnMgOKGqso3NkNsgvrm25CMNBoJok6C Pw1wnojVR/uK8fSCrtHEujCJtwyCFcoOJGdyZCP5pgl0adgBPuc3t6sUMIasFT8uvJFQ lDEI1ooT8Hzxp5knnjInVpy1q8DiC26UR32SydvCFTLUOSI9ADmoqng1x3Fpe7wBlJs+ m55P1VOTE+jHGOfc+Fa+XNkurRaREw20cEe3GlLiKUae4aCkcy5/xgNq6RV4xS1mfl2a TpBQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=4h8s1KL6DlaSpbKltaquQ8wb99UAMtTLvysC7VZw9xQ=; b=qRuU1PMFlJ01sWfb/ABjQ8XE5cZJY5inA17FLMuOwFEVDGCndqK3GpDaidIX+RZ0AW NL4o12I1haI/GlJ8m0WWsc09mmozy/l4FsSPOCPKg2vRbJlr4cBuTMty/eHXVRGe1lWG B2Bpc9WP4ZOTLn9HWHB1KD6899/NradK839glzvFsqSBqyg0vZHrpzW6TMwizCSNYB4T bHpVeyBeKsNTOO0AZxm0h0DPyVvb25H868Uh+1jRTfxds+yUmYulK1/RxoqhkShH7UtK IiBXUBsecV/7kLvVFS+sf3S8x7914VxYyYXnnXFtQkkHAuQIoVB+qRHpIBJvLWeiFW72 ycBg== X-Gm-Message-State: APjAAAXhis4/VOwRI4MLjhaf0Sb/TmWPsTQBz1zhhG9E2PC8F0nevtWn eZzeNmUE42kSgwLygNDI9p4oxO64UToJHP9SBl/3gvCApnU= X-Google-Smtp-Source: APXvYqwbZKKxTeEwV6qz38mUVSrTrYOucbHA6sAHXmjopm68hUczsS5V7fXyvkLJqdaCfs5ViXLXwdLQmqUMdFN8jDE= X-Received: by 2002:a05:600c:22c6:: with SMTP id 6mr965569wmg.5.1565641237389; Mon, 12 Aug 2019 13:20:37 -0700 (PDT) MIME-Version: 1.0 From: Nikolay Nevzorov Date: Tue, 13 Aug 2019 01:20:24 +0500 Message-ID: Subject: cannot allocate memory for sockets To: freebsd-net@freebsd.org Content-Type: text/plain; charset="UTF-8" X-Rspamd-Queue-Id: 466nKM31WVz40H6 X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=HfTd1qdx; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of nevzorovn@gmail.com designates 2a00:1450:4864:20::330 as permitted sender) smtp.mailfrom=nevzorovn@gmail.com X-Spamd-Result: default: False [-4.00 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-1.000,0]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; R_SPF_ALLOW(-0.20)[+ip6:2a00:1450:4000::/36]; FREEMAIL_FROM(0.00)[gmail.com]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-net@freebsd.org]; TO_DN_NONE(0.00)[]; IP_SCORE_FREEMAIL(0.00)[]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-1.00)[-1.000,0]; IP_SCORE(0.00)[ip: (-9.38), ipnet: 2a00:1450::/32(-3.04), asn: 15169(-2.39), country: US(-0.05)]; TO_MATCH_ENVRCPT_ALL(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; RCVD_IN_DNSWL_NONE(0.00)[0.3.3.0.0.0.0.0.0.0.0.0.0.0.0.0.0.2.0.0.4.6.8.4.0.5.4.1.0.0.a.2.list.dnswl.org : 127.0.5.0]; NEURAL_HAM_SHORT(-1.00)[-0.998,0]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2a00:1450::/32, country:US]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_ALL(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com.dwl.dnswl.org : 127.0.5.0] X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 12 Aug 2019 20:20:40 -0000 I often see in /var/log/messages from unbount and transmission this messages: Aug 13 00:14:42 homeserver transmission-daemon[1126]: Couldn't connect socket 51 to 178.127.239.130, port 13508 (errno 12 - Cannot allocate memory) (/wrkdirs/usr/ports/net-p2p/transmission-daemon/work/transmission-2.94/libtransmission/net.c:290) Aug 13 00:15:00 homeserver unbound[1070]: [1070:0] notice: sendto failed: Cannot allocate memory Aug 13 00:15:00 homeserver unbound[1070]: [1070:0] notice: remote address is 8.8.8.8 port 53 How to know which buffers small? FreeBSD homeserver 12.0-STABLE FreeBSD 12.0-STABLE r349024 GENERIC amd64 Home fileserver, torrent-downloader and internet and tor-gateway with non-public tor-relay. Internet via PPPoE on MPD up ti 100mbit/s loader.conf: #Squid diskd kern.ipc.msgmnb=8192 kern.ipc.msgssz=64 kern.ipc.msgtql=2048 #Squid end kern.ipc.nmbclusters=32768 /etc/syslog.conf kern.ipc.maxsockbuf=16777216 kern.ipc.somaxconn=1024 -- Nikolay Nevzorov From owner-freebsd-net@freebsd.org Tue Aug 13 11:27:16 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 2D777ABEB6 for ; Tue, 13 Aug 2019 11:27:16 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mailman.nyi.freebsd.org (mailman.nyi.freebsd.org [IPv6:2610:1c1:1:606c::50:13]) by mx1.freebsd.org (Postfix) with ESMTP id 4679RS0RPHz3DxC for ; Tue, 13 Aug 2019 11:27:16 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: by mailman.nyi.freebsd.org (Postfix) id 0F091ABEB5; Tue, 13 Aug 2019 11:27:16 +0000 (UTC) Delivered-To: net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 0ECFFABEB4 for ; Tue, 13 Aug 2019 11:27:16 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) server-signature RSA-PSS (4096 bits) client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4679RR6gYRz3Dx9 for ; Tue, 13 Aug 2019 11:27:15 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id E0697E93D for ; Tue, 13 Aug 2019 11:27:15 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id x7DBRFMx000513 for ; Tue, 13 Aug 2019 11:27:15 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id x7DBRF1O000512 for net@FreeBSD.org; Tue, 13 Aug 2019 11:27:15 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 239799] IP_MINTTL broken Date: Tue, 13 Aug 2019 11:27:15 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 12.0-STABLE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: linimon@FreeBSD.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: assigned_to Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 13 Aug 2019 11:27:16 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D239799 Mark Linimon changed: What |Removed |Added ---------------------------------------------------------------------------- Assignee|bugs@FreeBSD.org |net@FreeBSD.org --=20 You are receiving this mail because: You are the assignee for the bug.= From owner-freebsd-net@freebsd.org Tue Aug 13 12:48:35 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 0788AAE78C for ; Tue, 13 Aug 2019 12:48:35 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mailman.nyi.freebsd.org (unknown [127.0.1.3]) by mx1.freebsd.org (Postfix) with ESMTP id 467CFG6VQdz3JtR for ; Tue, 13 Aug 2019 12:48:34 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: by mailman.nyi.freebsd.org (Postfix) id DD36CAE78B; Tue, 13 Aug 2019 12:48:34 +0000 (UTC) Delivered-To: net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id DCFF2AE789 for ; Tue, 13 Aug 2019 12:48:34 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) server-signature RSA-PSS (4096 bits) client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 467CFG5VcTz3JtP for ; Tue, 13 Aug 2019 12:48:34 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id A0510F85F for ; Tue, 13 Aug 2019 12:48:34 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id x7DCmY38048032 for ; Tue, 13 Aug 2019 12:48:34 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from bugzilla@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id x7DCmYfv048031 for net@FreeBSD.org; Tue, 13 Aug 2019 12:48:34 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: bugzilla set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 239799] IP_MINTTL broken Date: Tue, 13 Aug 2019 12:48:34 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 12.0-STABLE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: commit-hook@freebsd.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 13 Aug 2019 12:48:35 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D239799 --- Comment #1 from commit-hook@freebsd.org --- A commit references this bug: Author: ae Date: Tue Aug 13 12:47:54 UTC 2019 New revision: 350974 URL: https://svnweb.freebsd.org/changeset/base/350974 Log: Save ip_ttl value and restore it after checksum calculation. Since ipvoly is used for checksum calculation, part of original IP header is zeroed. This part includes ip_ttl field, that can be used later in IP_MINTTL socket option handling. PR: 239799 MFC after: 1 week Changes: head/sys/netinet/tcp_input.c --=20 You are receiving this mail because: You are the assignee for the bug.= From owner-freebsd-net@freebsd.org Tue Aug 13 18:42:16 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 4C064B885C for ; Tue, 13 Aug 2019 18:42:16 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mailman.nyi.freebsd.org (unknown [127.0.1.3]) by mx1.freebsd.org (Postfix) with ESMTP id 467M5N1Dgmz4DMC for ; Tue, 13 Aug 2019 18:42:16 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: by mailman.nyi.freebsd.org (Postfix) id 2A47FB885B; Tue, 13 Aug 2019 18:42:16 +0000 (UTC) Delivered-To: net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 2A0CDB885A for ; Tue, 13 Aug 2019 18:42:16 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) server-signature RSA-PSS (4096 bits) client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 467M5N01bdz4DMB for ; Tue, 13 Aug 2019 18:42:16 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id D6A8F1BCB9 for ; Tue, 13 Aug 2019 18:42:15 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id x7DIgFBv058235 for ; Tue, 13 Aug 2019 18:42:15 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id x7DIgFPV058234 for net@FreeBSD.org; Tue, 13 Aug 2019 18:42:15 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 239749] Issues path MTU discovery on IPv6 and SSH. Date: Tue, 13 Aug 2019 18:42:15 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: CURRENT X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: zeising@FreeBSD.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 13 Aug 2019 18:42:16 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D239749 --- Comment #1 from Niclas Zeising --- So, I did some more digging, and I think my initial conclusions weren't entirely correct. I set up the following mini network, with a client on one subnet, and a ser= ver on another, and a router in between running PF. All machines are running FreeBSD 12.0. |server| ---- ---- |router| ---- ---- |client| server IP: 2001:db8:ffff:ff00::2 client IP: 2001:db8:ffff:ff10::2 I then try two connections to the server: One with ssh, running ssh on the client to connect to sshd on the server. One using netcat: nc command on server: nc -6 -l 1234 nc command on client: cat /usr/share/examples/IPv6/USAGE | nc -6 ip-of-serv= er Between the ssh and nc invocations, I wipe the TCP host cache using sysctl net.inet.tcp.hostcache.purgenow=3D1 I run the above tests with three different router configurations. First, I use the ruleset modulate.pf.conf, which uses modulate state for st= ate tracking of TCP connections. Second, I use the ruleset keep.pf.conf, which uses keep state for state tracking. Third, I disable PF completely. In the first case, using modulate state, the ssh connection stalls, and it looks like the path mtu discovery fails. The nc connection works though. In the second and third case, things work as normal. I am guessing that 'modulate state' somehow screws up path MTU discovery, so that the ptb packet sent by the router isn't recognized by the client, but = this is just a guess. I've attached the two different PF rule sets used, as well as /etc/rc.conf = from the router, and pcap traffic dumps from all three runs. --=20 You are receiving this mail because: You are the assignee for the bug.= From owner-freebsd-net@freebsd.org Tue Aug 13 18:42:43 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id C94A2B88FE for ; Tue, 13 Aug 2019 18:42:43 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mailman.nyi.freebsd.org (unknown [127.0.1.3]) by mx1.freebsd.org (Postfix) with ESMTP id 467M5v4z7jz4DRt for ; Tue, 13 Aug 2019 18:42:43 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: by mailman.nyi.freebsd.org (Postfix) id AAA00B88FD; Tue, 13 Aug 2019 18:42:43 +0000 (UTC) Delivered-To: net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id AA654B88FC for ; Tue, 13 Aug 2019 18:42:43 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) server-signature RSA-PSS (4096 bits) client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 467M5v3y8Gz4DRs for ; Tue, 13 Aug 2019 18:42:43 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 6AD1C1BCD5 for ; Tue, 13 Aug 2019 18:42:43 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id x7DIghaL061142 for ; Tue, 13 Aug 2019 18:42:43 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id x7DIghuu061141 for net@FreeBSD.org; Tue, 13 Aug 2019 18:42:43 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 239749] Issues path MTU discovery on IPv6 and SSH. Date: Tue, 13 Aug 2019 18:42:43 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: CURRENT X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: zeising@FreeBSD.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: attachments.created Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 13 Aug 2019 18:42:43 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D239749 --- Comment #2 from Niclas Zeising --- Created attachment 206496 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D206496&action= =3Dedit PF rulseset using modulate state --=20 You are receiving this mail because: You are the assignee for the bug.= From owner-freebsd-net@freebsd.org Tue Aug 13 18:43:16 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 6E9E8B89B8 for ; Tue, 13 Aug 2019 18:43:16 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mailman.nyi.freebsd.org (unknown [127.0.1.3]) by mx1.freebsd.org (Postfix) with ESMTP id 467M6X2MQTz4DXM for ; Tue, 13 Aug 2019 18:43:16 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: by mailman.nyi.freebsd.org (Postfix) id 4395AB89B7; Tue, 13 Aug 2019 18:43:16 +0000 (UTC) Delivered-To: net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 435EAB89B6 for ; Tue, 13 Aug 2019 18:43:16 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) server-signature RSA-PSS (4096 bits) client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 467M6W6jcnz4DXL for ; Tue, 13 Aug 2019 18:43:15 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id C9E801BCDB for ; Tue, 13 Aug 2019 18:43:15 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id x7DIhF9H061921 for ; Tue, 13 Aug 2019 18:43:15 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id x7DIhFga061920 for net@FreeBSD.org; Tue, 13 Aug 2019 18:43:15 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 239749] Issues path MTU discovery on IPv6 and SSH. Date: Tue, 13 Aug 2019 18:43:15 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: CURRENT X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: zeising@FreeBSD.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: attachments.created Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 13 Aug 2019 18:43:16 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D239749 --- Comment #3 from Niclas Zeising --- Created attachment 206497 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D206497&action= =3Dedit pcap traffic dump using modulate state PF conf --=20 You are receiving this mail because: You are the assignee for the bug.= From owner-freebsd-net@freebsd.org Tue Aug 13 18:44:44 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 1943DB8ADC for ; Tue, 13 Aug 2019 18:44:44 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mailman.nyi.freebsd.org (mailman.nyi.freebsd.org [IPv6:2610:1c1:1:606c::50:13]) by mx1.freebsd.org (Postfix) with ESMTP id 467M8C6w4sz4DdW for ; Tue, 13 Aug 2019 18:44:43 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: by mailman.nyi.freebsd.org (Postfix) id ED188B8ADB; Tue, 13 Aug 2019 18:44:43 +0000 (UTC) Delivered-To: net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id ECD82B8ADA for ; Tue, 13 Aug 2019 18:44:43 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) server-signature RSA-PSS (4096 bits) client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 467M8C614Rz4DdV for ; Tue, 13 Aug 2019 18:44:43 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id B02B41BCDF for ; Tue, 13 Aug 2019 18:44:43 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id x7DIihsU063894 for ; Tue, 13 Aug 2019 18:44:43 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id x7DIihTv063893 for net@FreeBSD.org; Tue, 13 Aug 2019 18:44:43 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 239749] Issues path MTU discovery on IPv6 and SSH. Date: Tue, 13 Aug 2019 18:44:43 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: CURRENT X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: zeising@FreeBSD.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: attachments.isobsolete attachments.created Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 13 Aug 2019 18:44:44 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D239749 Niclas Zeising changed: What |Removed |Added ---------------------------------------------------------------------------- Attachment #206496|0 |1 is obsolete| | --- Comment #4 from Niclas Zeising --- Created attachment 206498 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D206498&action= =3Dedit PF ruleset using modulate state --=20 You are receiving this mail because: You are the assignee for the bug.= From owner-freebsd-net@freebsd.org Tue Aug 13 18:45:10 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 6FC19B8B65 for ; Tue, 13 Aug 2019 18:45:10 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mailman.nyi.freebsd.org (unknown [127.0.1.3]) by mx1.freebsd.org (Postfix) with ESMTP id 467M8k2Nsvz4DjC for ; Tue, 13 Aug 2019 18:45:10 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: by mailman.nyi.freebsd.org (Postfix) id 51FA7B8B63; Tue, 13 Aug 2019 18:45:10 +0000 (UTC) Delivered-To: net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 501AEB8B62 for ; Tue, 13 Aug 2019 18:45:10 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) server-signature RSA-PSS (4096 bits) client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 467M8k1THLz4Dj9 for ; Tue, 13 Aug 2019 18:45:10 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 146B51BCE1 for ; Tue, 13 Aug 2019 18:45:10 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id x7DIj9tN064829 for ; Tue, 13 Aug 2019 18:45:09 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id x7DIj9dX064828 for net@FreeBSD.org; Tue, 13 Aug 2019 18:45:09 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 239749] Issues path MTU discovery on IPv6 and SSH. Date: Tue, 13 Aug 2019 18:45:10 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: CURRENT X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: zeising@FreeBSD.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: attachments.created Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 13 Aug 2019 18:45:10 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D239749 --- Comment #5 from Niclas Zeising --- Created attachment 206499 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D206499&action= =3Dedit PF ruleset using keep state --=20 You are receiving this mail because: You are the assignee for the bug.= From owner-freebsd-net@freebsd.org Tue Aug 13 18:45:43 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 3FE0AB8C42 for ; Tue, 13 Aug 2019 18:45:43 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mailman.nyi.freebsd.org (unknown [127.0.1.3]) by mx1.freebsd.org (Postfix) with ESMTP id 467M9M0zyXz4Dp8 for ; Tue, 13 Aug 2019 18:45:43 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: by mailman.nyi.freebsd.org (Postfix) id 21CEBB8C3E; Tue, 13 Aug 2019 18:45:43 +0000 (UTC) Delivered-To: net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 21952B8C3C for ; Tue, 13 Aug 2019 18:45:43 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) server-signature RSA-PSS (4096 bits) client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 467M9L73B4z4Dp6 for ; Tue, 13 Aug 2019 18:45:42 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id D46B11BCE5 for ; Tue, 13 Aug 2019 18:45:42 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id x7DIjgjn065543 for ; Tue, 13 Aug 2019 18:45:42 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id x7DIjgfQ065542 for net@FreeBSD.org; Tue, 13 Aug 2019 18:45:42 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 239749] Issues path MTU discovery on IPv6 and SSH. Date: Tue, 13 Aug 2019 18:45:42 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: CURRENT X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: zeising@FreeBSD.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: attachments.created Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 13 Aug 2019 18:45:43 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D239749 --- Comment #6 from Niclas Zeising --- Created attachment 206500 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D206500&action= =3Dedit pcap traffic dump using keep state PF conf --=20 You are receiving this mail because: You are the assignee for the bug.= From owner-freebsd-net@freebsd.org Tue Aug 13 18:46:12 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 8BE4EB8D36 for ; Tue, 13 Aug 2019 18:46:12 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mailman.nyi.freebsd.org (mailman.nyi.freebsd.org [IPv6:2610:1c1:1:606c::50:13]) by mx1.freebsd.org (Postfix) with ESMTP id 467M9w35nrz4DtD for ; Tue, 13 Aug 2019 18:46:12 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: by mailman.nyi.freebsd.org (Postfix) id 6A5DFB8D35; Tue, 13 Aug 2019 18:46:12 +0000 (UTC) Delivered-To: net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 6A1AEB8D33 for ; Tue, 13 Aug 2019 18:46:12 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) server-signature RSA-PSS (4096 bits) client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 467M9w0SCxz4Dt9 for ; Tue, 13 Aug 2019 18:46:12 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id E68E01BCE7 for ; Tue, 13 Aug 2019 18:46:11 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id x7DIkBPS066199 for ; Tue, 13 Aug 2019 18:46:11 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id x7DIkB6C066198 for net@FreeBSD.org; Tue, 13 Aug 2019 18:46:11 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 239749] Issues path MTU discovery on IPv6 and SSH. Date: Tue, 13 Aug 2019 18:46:12 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: CURRENT X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: zeising@FreeBSD.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: attachments.created Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 13 Aug 2019 18:46:12 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D239749 --- Comment #7 from Niclas Zeising --- Created attachment 206501 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D206501&action= =3Dedit pcap traffic dump not using PF --=20 You are receiving this mail because: You are the assignee for the bug.= From owner-freebsd-net@freebsd.org Tue Aug 13 18:47:04 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id EB279B8E2A for ; Tue, 13 Aug 2019 18:47:04 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mailman.nyi.freebsd.org (unknown [127.0.1.3]) by mx1.freebsd.org (Postfix) with ESMTP id 467MBw5yvtz4Dyy for ; Tue, 13 Aug 2019 18:47:04 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: by mailman.nyi.freebsd.org (Postfix) id CCD78B8E29; Tue, 13 Aug 2019 18:47:04 +0000 (UTC) Delivered-To: net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id CC9F1B8E28 for ; Tue, 13 Aug 2019 18:47:04 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) server-signature RSA-PSS (4096 bits) client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 467MBw4zw3z4Dyx for ; Tue, 13 Aug 2019 18:47:04 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 8DBE21BCED for ; Tue, 13 Aug 2019 18:47:04 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id x7DIl4sZ067409 for ; Tue, 13 Aug 2019 18:47:04 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id x7DIl4YM067408 for net@FreeBSD.org; Tue, 13 Aug 2019 18:47:04 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 239749] Issues path MTU discovery on IPv6 and SSH. Date: Tue, 13 Aug 2019 18:47:04 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: CURRENT X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: zeising@FreeBSD.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: attachments.created Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 13 Aug 2019 18:47:05 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D239749 --- Comment #8 from Niclas Zeising --- Created attachment 206502 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D206502&action= =3Dedit router /etc/rc.conf --=20 You are receiving this mail because: You are the assignee for the bug.= From owner-freebsd-net@freebsd.org Wed Aug 14 00:27:16 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id A4B0EC1DD1 for ; Wed, 14 Aug 2019 00:27:16 +0000 (UTC) (envelope-from jmg@gold.funkthat.com) Received: from gold.funkthat.com (gate2.funkthat.com [208.87.223.18]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "gate2.funkthat.com", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 467VlR59Byz4bV0 for ; Wed, 14 Aug 2019 00:27:15 +0000 (UTC) (envelope-from jmg@gold.funkthat.com) Received: from gold.funkthat.com (localhost [127.0.0.1]) by gold.funkthat.com (8.15.2/8.15.2) with ESMTPS id x7E0R5a4076654 (version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO) for ; Tue, 13 Aug 2019 17:27:06 -0700 (PDT) (envelope-from jmg@gold.funkthat.com) Received: (from jmg@localhost) by gold.funkthat.com (8.15.2/8.15.2/Submit) id x7E0R5qE076653 for freebsd-net@freebsd.org; Tue, 13 Aug 2019 17:27:05 -0700 (PDT) (envelope-from jmg) Date: Tue, 13 Aug 2019 17:27:05 -0700 From: John-Mark Gurney To: freebsd-net@freebsd.org Subject: igb netstat input counters 2x? Message-ID: <20190814002705.GD2342@funkthat.com> Mail-Followup-To: freebsd-net@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline X-Operating-System: FreeBSD 11.0-RELEASE-p7 amd64 X-PGP-Fingerprint: D87A 235F FB71 1F3F 55B7 ED9B D5FF 5A51 C0AC 3D65 X-Files: The truth is out there X-URL: https://www.funkthat.com/ X-Resume: https://www.funkthat.com/~jmg/resume.html X-TipJar: bitcoin:13Qmb6AeTgQecazTWph4XasEsP7nGRbAPE X-to-the-FBI-CIA-and-NSA: HI! HOW YA DOIN? can i haz chizburger? User-Agent: Mutt/1.6.1 (2016-04-27) X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.4.3 (gold.funkthat.com [127.0.0.1]); Tue, 13 Aug 2019 17:27:06 -0700 (PDT) X-Rspamd-Queue-Id: 467VlR59Byz4bV0 X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of jmg@gold.funkthat.com designates 208.87.223.18 as permitted sender) smtp.mailfrom=jmg@gold.funkthat.com X-Spamd-Result: default: False [-2.42 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-0.998,0]; RCVD_TLS_ALL(0.00)[]; FROM_HAS_DN(0.00)[]; R_SPF_ALLOW(-0.20)[+a]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-net@freebsd.org]; TO_DN_NONE(0.00)[]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-1.00)[-0.998,0]; MIME_TRACE(0.00)[0:+]; NEURAL_HAM_SHORT(-0.86)[-0.855,0]; DMARC_NA(0.00)[funkthat.com]; IP_SCORE(-0.57)[ip: (-1.46), ipnet: 208.87.216.0/21(-0.73), asn: 32354(-0.58), country: US(-0.05)]; FORGED_SENDER(0.30)[jmg@funkthat.com,jmg@gold.funkthat.com]; R_DKIM_NA(0.00)[]; SUBJECT_ENDS_QUESTION(1.00)[]; ASN(0.00)[asn:32354, ipnet:208.87.216.0/21, country:US]; FROM_NEQ_ENVFROM(0.00)[jmg@funkthat.com,jmg@gold.funkthat.com]; MID_RHS_MATCH_FROM(0.00)[]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 14 Aug 2019 00:27:16 -0000 I'm doing some perf testing on an APU4 board, and I noticed that it looks like the input netstat counters are 2x than what they should be. I was seeing 60MiB/sec via netstat -w 1 -I igb1: 40034 0 0 60760352 2538 0 177909 0 40700 0 0 61776228 2574 0 180300 0 But the program was only reading 27MB/sec. I decided to read the mac stats directly via: bytes=$(sysctl -n dev.igb.1.mac_stats.good_octets_recvd); while sleep 1; do nbytes=$(sysctl -n dev.igb.1.mac_stats.good_octets_recvd) echo $(($nbytes - $bytes)); bytes=$nbytes done and saw much more reasonable numbers: 31099740 30512488 30675974 Which is more in line w/ the 27MB/sec that the program reports. I haven't looked at the code to see what could be causing the double counting. Also, the output numbers appear to be accurate. This is with 13.0-CURRENT from the July 25th snapshot, which is r350322. -- John-Mark Gurney Voice: +1 415 225 5579 "All that I will do, has been done, All that I have, has not." From owner-freebsd-net@freebsd.org Wed Aug 14 09:18:20 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id C6DBBCC56B for ; Wed, 14 Aug 2019 09:18:20 +0000 (UTC) (envelope-from liu01@apzeyeqixie.com) Received: from mailman.nyi.freebsd.org (unknown [127.0.1.3]) by mx1.freebsd.org (Postfix) with ESMTP id 467kXC0hZNz42Ky for ; Wed, 14 Aug 2019 09:18:19 +0000 (UTC) (envelope-from liu01@apzeyeqixie.com) Received: by mailman.nyi.freebsd.org (Postfix) id 15E69CC56A; Wed, 14 Aug 2019 09:18:19 +0000 (UTC) Delivered-To: net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 15A87CC569 for ; Wed, 14 Aug 2019 09:18:19 +0000 (UTC) (envelope-from liu01@apzeyeqixie.com) Received: from smtpbgsg2.qq.com (smtpbgsg2.qq.com [54.254.200.128]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 467kX62gJXz42Kx for ; Wed, 14 Aug 2019 09:18:13 +0000 (UTC) (envelope-from liu01@apzeyeqixie.com) X-QQ-mid: bizesmtp12t1565774283tu6df7qk Received: from PC-201907221803 (unknown [183.199.223.134]) by esmtp6.qq.com (ESMTP) with SMTP id 0 for ; Wed, 14 Aug 2019 17:18:02 +0800 (CST) X-QQ-SSF: 01000000000000B08U12000A0000000 X-QQ-FEAT: 1vvGDqduIHIRb1ib6O4JRe7QZtUBb6C3jmL7V7hZrtbry1k4x+kBdYOxx31Bg SRZtCu2trbILy7Hm3A7wTxPYnOPW1pBV9GuIXFjIYkpsZDHetpWPOnJka3w3k9DwyFOpQ+U opcOZCcjrz7W64c9RHLWvrX9jzZabSyh/GMfI0u/w9erZoYiFO94fbHejoCZ3ABx8LXWSf1 iZZ1uyjARppqxaEDEWaEPiDkDav6O67iQeeaBtyDp5r4vNoxqsmYicQBI8W4R5uhpqrPkTu Xzh/kp+Z4LRYpXHy/NHGu9ttvo2tLt8vge9RnJCsvmuShfMoWffYF0zY0= X-QQ-GoodBg: 0 From: =?utf-8?B?bGl1?= To: net@freebsd.org Reply-To: liu01@apzeyeqixie.com Date: 14 Aug 2019 17:17:39 +0800 Subject: =?utf-8?B?U3RlZWwgcGxhdGUgc3RhbXBpbmcgYW5kIHN0cmV0Y2hpbmcgbmV0d29yayBmcm9tIENoaW5hIA==?= X-QQ-SENDSIZE: 520 Feedback-ID: bizesmtp:apzeyeqixie.com:qybgforeign:qybgforeign1 Message-ID: mis_54C782E353343EFB2D90DF84@unknown.com X-QQ-Bgrelay: 1 X-Rspamd-Queue-Id: 467kX62gJXz42Kx X-Spamd-Bar: +++++ Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of liu01@apzeyeqixie.com designates 54.254.200.128 as permitted sender) smtp.mailfrom=liu01@apzeyeqixie.com X-Spamd-Result: default: False [5.32 / 15.00]; HAS_REPLYTO(0.00)[liu01@apzeyeqixie.com]; SUBJ_EXCESS_BASE64(1.50)[]; FROM_EXCESS_BASE64(1.50)[]; R_SPF_ALLOW(-0.20)[+ip4:54.254.200.0/24]; TO_DN_NONE(0.00)[]; REPLYTO_ADDR_EQ_FROM(0.00)[]; NEURAL_HAM_SHORT(-0.09)[-0.090,0]; MIME_BASE64_TEXT(0.10)[]; RECEIVED_SPAMHAUS_PBL(0.00)[134.223.199.183.khpj7ygk5idzvmvt5x4ziurxhy.zen.dq.spamhaus.net : 127.0.0.11]; RCVD_TLS_LAST(0.00)[]; R_DKIM_NA(0.00)[]; MID_MISSING_BRACKETS(0.50)[]; ASN(0.00)[asn:16509, ipnet:54.254.128.0/17, country:US]; FROM_EQ_ENVFROM(0.00)[]; ARC_NA(0.00)[]; SUBJECT_ENDS_SPACES(0.50)[]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; PREVIOUSLY_DELIVERED(0.00)[net@freebsd.org]; DMARC_NA(0.00)[apzeyeqixie.com]; NEURAL_SPAM_MEDIUM(0.72)[0.715,0]; RCPT_COUNT_ONE(0.00)[1]; MIME_TRACE(0.00)[0:~]; NEURAL_SPAM_LONG(0.88)[0.877,0]; RCVD_IN_DNSWL_NONE(0.00)[128.200.254.54.list.dnswl.org : 127.0.5.0]; MIME_HTML_ONLY(0.20)[]; IP_SCORE(-0.28)[asn: 16509(-1.35), country: US(-0.05)]; RCVD_COUNT_TWO(0.00)[2] X-Spam: Yes MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.29 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 14 Aug 2019 09:18:20 -0000 From owner-freebsd-net@freebsd.org Wed Aug 14 13:13:06 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 6C3F0AB351 for ; Wed, 14 Aug 2019 13:13:06 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mailman.nyi.freebsd.org (unknown [127.0.1.3]) by mx1.freebsd.org (Postfix) with ESMTP id 467ql62JzKz4JBc for ; Wed, 14 Aug 2019 13:13:06 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: by mailman.nyi.freebsd.org (Postfix) id 4D85FAB350; Wed, 14 Aug 2019 13:13:06 +0000 (UTC) Delivered-To: net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 4D499AB34F for ; Wed, 14 Aug 2019 13:13:06 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) server-signature RSA-PSS (4096 bits) client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 467ql61M8Zz4JBb for ; Wed, 14 Aug 2019 13:13:06 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 1069A6C7 for ; Wed, 14 Aug 2019 13:13:06 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id x7EDD5Ux060635 for ; Wed, 14 Aug 2019 13:13:05 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id x7EDD540060634 for net@FreeBSD.org; Wed, 14 Aug 2019 13:13:05 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 184141] ppp: Kernel PPPoE sends bad echo-req magic number on big endian machines Date: Wed, 14 Aug 2019 13:13:05 +0000 X-Bugzilla-Reason: CC X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: sparc64 X-Bugzilla-Version: unspecified X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: emaste@freebsd.org X-Bugzilla-Status: In Progress X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: emaste@freebsd.org X-Bugzilla-Flags: mfc-stable11? mfc-stable12? X-Bugzilla-Changed-Fields: bug_status Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 14 Aug 2019 13:13:06 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D184141 Ed Maste changed: What |Removed |Added ---------------------------------------------------------------------------- Status|Open |In Progress --=20 You are receiving this mail because: You are on the CC list for the bug.= From owner-freebsd-net@freebsd.org Wed Aug 14 13:15:14 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 10ECEAB5F5 for ; Wed, 14 Aug 2019 13:15:14 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mailman.nyi.freebsd.org (mailman.nyi.freebsd.org [IPv6:2610:1c1:1:606c::50:13]) by mx1.freebsd.org (Postfix) with ESMTP id 467qnY6m3zz4JVf for ; Wed, 14 Aug 2019 13:15:13 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: by mailman.nyi.freebsd.org (Postfix) id E5DA1AB5F3; Wed, 14 Aug 2019 13:15:13 +0000 (UTC) Delivered-To: net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id E5A20AB5F1 for ; Wed, 14 Aug 2019 13:15:13 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) server-signature RSA-PSS (4096 bits) client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 467qnY5nRrz4JVc for ; Wed, 14 Aug 2019 13:15:13 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id AA1666D2 for ; Wed, 14 Aug 2019 13:15:13 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id x7EDFDDH064147 for ; Wed, 14 Aug 2019 13:15:13 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from bugzilla@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id x7EDFDX7064145 for net@FreeBSD.org; Wed, 14 Aug 2019 13:15:13 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: bugzilla set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 184141] ppp: Kernel PPPoE sends bad echo-req magic number on big endian machines Date: Wed, 14 Aug 2019 13:15:13 +0000 X-Bugzilla-Reason: CC X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: sparc64 X-Bugzilla-Version: unspecified X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: commit-hook@freebsd.org X-Bugzilla-Status: In Progress X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: emaste@freebsd.org X-Bugzilla-Flags: mfc-stable11? mfc-stable12? X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 14 Aug 2019 13:15:14 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D184141 --- Comment #8 from commit-hook@freebsd.org --- A commit references this bug: Author: emaste Date: Wed Aug 14 13:14:48 UTC 2019 New revision: 351025 URL: https://svnweb.freebsd.org/changeset/base/351025 Log: MFC r350497: ppp: correct echo-req magic number on big endian archs The magic number is a 32-bit quantity; use uint32_t to match hton's return type and avoid sending zeros (upper 32 bits) on big-endian architectures. PR: 184141 Sponsored by: The FreeBSD Foundation Changes: stable/12/sys/net/if_spppsubr.c --=20 You are receiving this mail because: You are on the CC list for the bug.= From owner-freebsd-net@freebsd.org Wed Aug 14 13:16:15 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id BD9F3AB734 for ; Wed, 14 Aug 2019 13:16:15 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mailman.nyi.freebsd.org (unknown [127.0.1.3]) by mx1.freebsd.org (Postfix) with ESMTP id 467qpl4j8Mz4Jjg for ; Wed, 14 Aug 2019 13:16:15 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: by mailman.nyi.freebsd.org (Postfix) id A16A8AB732; Wed, 14 Aug 2019 13:16:15 +0000 (UTC) Delivered-To: net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id A133CAB730 for ; Wed, 14 Aug 2019 13:16:15 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) server-signature RSA-PSS (4096 bits) client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 467qpl3rqgz4Jjf for ; Wed, 14 Aug 2019 13:16:15 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 662CD6DB for ; Wed, 14 Aug 2019 13:16:15 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id x7EDGFU7065655 for ; Wed, 14 Aug 2019 13:16:15 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from bugzilla@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id x7EDGF8v065654 for net@FreeBSD.org; Wed, 14 Aug 2019 13:16:15 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: bugzilla set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 184141] ppp: Kernel PPPoE sends bad echo-req magic number on big endian machines Date: Wed, 14 Aug 2019 13:16:15 +0000 X-Bugzilla-Reason: CC X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: sparc64 X-Bugzilla-Version: unspecified X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: commit-hook@freebsd.org X-Bugzilla-Status: In Progress X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: emaste@freebsd.org X-Bugzilla-Flags: mfc-stable11? mfc-stable12? X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 14 Aug 2019 13:16:15 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D184141 --- Comment #9 from commit-hook@freebsd.org --- A commit references this bug: Author: emaste Date: Wed Aug 14 13:15:39 UTC 2019 New revision: 351026 URL: https://svnweb.freebsd.org/changeset/base/351026 Log: MFC r350497: ppp: correct echo-req magic number on big endian archs The magic number is a 32-bit quantity; use uint32_t to match hton's return type and avoid sending zeros (upper 32 bits) on big-endian architectures. PR: 184141 Sponsored by: The FreeBSD Foundation Changes: _U stable/11/ stable/11/sys/net/if_spppsubr.c --=20 You are receiving this mail because: You are on the CC list for the bug.= From owner-freebsd-net@freebsd.org Wed Aug 14 13:16:48 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 275BDAB810 for ; Wed, 14 Aug 2019 13:16:48 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mailman.nyi.freebsd.org (unknown [127.0.1.3]) by mx1.freebsd.org (Postfix) with ESMTP id 467qqN0B0Kz4Jnm for ; Wed, 14 Aug 2019 13:16:48 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: by mailman.nyi.freebsd.org (Postfix) id 06348AB80F; Wed, 14 Aug 2019 13:16:48 +0000 (UTC) Delivered-To: net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 05FEFAB80E for ; Wed, 14 Aug 2019 13:16:48 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) server-signature RSA-PSS (4096 bits) client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 467qqM6P4Tz4Jnl for ; Wed, 14 Aug 2019 13:16:47 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id BF0806E1 for ; Wed, 14 Aug 2019 13:16:47 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id x7EDGlCT066364 for ; Wed, 14 Aug 2019 13:16:47 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id x7EDGlmg066363 for net@FreeBSD.org; Wed, 14 Aug 2019 13:16:47 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 184141] ppp: Kernel PPPoE sends bad echo-req magic number on big endian machines Date: Wed, 14 Aug 2019 13:16:47 +0000 X-Bugzilla-Reason: CC X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: sparc64 X-Bugzilla-Version: unspecified X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: emaste@freebsd.org X-Bugzilla-Status: Closed X-Bugzilla-Resolution: FIXED X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: emaste@freebsd.org X-Bugzilla-Flags: mfc-stable11? mfc-stable12? X-Bugzilla-Changed-Fields: bug_status resolution Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 14 Aug 2019 13:16:48 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D184141 Ed Maste changed: What |Removed |Added ---------------------------------------------------------------------------- Status|In Progress |Closed Resolution|--- |FIXED --=20 You are receiving this mail because: You are on the CC list for the bug.= From owner-freebsd-net@freebsd.org Wed Aug 14 18:58:14 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 005FDB6BD1 for ; Wed, 14 Aug 2019 18:58:14 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mailman.nyi.freebsd.org (mailman.nyi.freebsd.org [IPv6:2610:1c1:1:606c::50:13]) by mx1.freebsd.org (Postfix) with ESMTP id 467zPK6GMCz3J3X for ; Wed, 14 Aug 2019 18:58:13 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: by mailman.nyi.freebsd.org (Postfix) id D52B7B6BD0; Wed, 14 Aug 2019 18:58:13 +0000 (UTC) Delivered-To: net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id D4F41B6BCF for ; Wed, 14 Aug 2019 18:58:13 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) server-signature RSA-PSS (4096 bits) client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 467zPK5JGFz3J3W for ; Wed, 14 Aug 2019 18:58:13 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 97C3947A1 for ; Wed, 14 Aug 2019 18:58:13 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id x7EIwDja030837 for ; Wed, 14 Aug 2019 18:58:13 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id x7EIwD84030836 for net@FreeBSD.org; Wed, 14 Aug 2019 18:58:13 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 239749] Issues path MTU discovery on IPv6 and SSH. Date: Wed, 14 Aug 2019 18:58:13 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: CURRENT X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: zeising@FreeBSD.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 14 Aug 2019 18:58:14 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D239749 --- Comment #9 from Niclas Zeising --- Switched out the router to one running OpenBSD with a similar setup. OpenB= SD is affected as well. --=20 You are receiving this mail because: You are the assignee for the bug.= From owner-freebsd-net@freebsd.org Wed Aug 14 22:56:26 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 5C51ABE533 for ; Wed, 14 Aug 2019 22:56:26 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mailman.nyi.freebsd.org (mailman.nyi.freebsd.org [IPv6:2610:1c1:1:606c::50:13]) by mx1.freebsd.org (Postfix) with ESMTP id 4684hB1mrHz46nv for ; Wed, 14 Aug 2019 22:56:26 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: by mailman.nyi.freebsd.org (Postfix) id 3B092BE532; Wed, 14 Aug 2019 22:56:26 +0000 (UTC) Delivered-To: net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 3ACC1BE530 for ; Wed, 14 Aug 2019 22:56:26 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) server-signature RSA-PSS (4096 bits) client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4684hB0qtfz46nt for ; Wed, 14 Aug 2019 22:56:26 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id F3D6F7303 for ; Wed, 14 Aug 2019 22:56:25 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id x7EMuP9Q045073 for ; Wed, 14 Aug 2019 22:56:25 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id x7EMuP0U045072 for net@FreeBSD.org; Wed, 14 Aug 2019 22:56:25 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 237655] Non-deterministic panic when running pf tests in interface ioctl code (NULL passed to strncmp) Date: Wed, 14 Aug 2019 22:56:25 +0000 X-Bugzilla-Reason: CC AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: CURRENT X-Bugzilla-Keywords: needs-qa X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: lwhsu@FreeBSD.org X-Bugzilla-Status: Closed X-Bugzilla-Resolution: Unable to Reproduce X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: bug_status resolution Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 14 Aug 2019 22:56:26 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D237655 Li-Wen Hsu changed: What |Removed |Added ---------------------------------------------------------------------------- Status|Open |Closed Resolution|--- |Unable to Reproduce --- Comment #2 from Li-Wen Hsu --- I also don't see this panic after last update. Let's close this one and reo= pen when we see this panic again in the CI system. --=20 You are receiving this mail because: You are on the CC list for the bug. You are the assignee for the bug.= From owner-freebsd-net@freebsd.org Thu Aug 15 08:33:52 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 7AC41CB371 for ; Thu, 15 Aug 2019 08:33:52 +0000 (UTC) (envelope-from admin@freebsd.org) Received: from mail0.malrnbergs.com (li1442-91.members.linode.com [45.118.135.91]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 468KVR6yQsz4bCR for ; Thu, 15 Aug 2019 08:33:51 +0000 (UTC) (envelope-from admin@freebsd.org) From: "freebsd.org Administrator" To: freebsd-net@freebsd.org Subject: freebsd-net@freebsd.org is expiring in 3 days. Please confirm your email now. Date: 15 Aug 2019 01:23:29 -0700 Message-ID: <20190815012329.06EEF1AB0BC90D8F@freebsd.org> X-Rspamd-Queue-Id: 468KVR6yQsz4bCR X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; none X-Spamd-Result: default: False [-2.99 / 15.00]; local_wl_from(0.00)[freebsd.org]; NEURAL_HAM_MEDIUM(-1.00)[-1.000,0]; NEURAL_HAM_SHORT(-0.99)[-0.990,0]; ASN(0.00)[asn:63949, ipnet:45.118.132.0/22, country:US]; NEURAL_HAM_LONG(-1.00)[-0.999,0] MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" X-Content-Filtered-By: Mailman/MimeDel 2.1.29 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 15 Aug 2019 08:33:52 -0000 From owner-freebsd-net@freebsd.org Thu Aug 15 12:32:02 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id B2A4ECFD4E for ; Thu, 15 Aug 2019 12:32:02 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mailman.nyi.freebsd.org (unknown [127.0.1.3]) by mx1.freebsd.org (Postfix) with ESMTP id 468QnG4L0Fz3JZ5 for ; Thu, 15 Aug 2019 12:32:02 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: by mailman.nyi.freebsd.org (Postfix) id 92EDFCFD4D; Thu, 15 Aug 2019 12:32:02 +0000 (UTC) Delivered-To: net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 91906CFD4C for ; Thu, 15 Aug 2019 12:32:02 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) server-signature RSA-PSS (4096 bits) client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 468QnG2ZQrz3JZ2 for ; Thu, 15 Aug 2019 12:32:02 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 3BB5A18843 for ; Thu, 15 Aug 2019 12:32:02 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id x7FCW2rG034036 for ; Thu, 15 Aug 2019 12:32:02 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id x7FCW2nO034035 for net@FreeBSD.org; Thu, 15 Aug 2019 12:32:02 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 235031] [em] em0: poor NFS performance, strange behavior Date: Thu, 15 Aug 2019 12:32:02 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 12.0-RELEASE X-Bugzilla-Keywords: IntelNetworking, regression X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: d8zNeCFG@aon.at X-Bugzilla-Status: Open X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 15 Aug 2019 12:32:02 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D235031 --- Comment #35 from Martin Birgmeier --- Update: Today I tried to revert to if_em from releng/12.0 updated to latest. Result: The performance is still abysmal. I'll switch to net/intel-em-kmod again. This is with FreeBSD mizar.xyzzy 12.0-RELEASE-p9 FreeBSD 12.0-RELEASE-p9 #9 r350677M: Wed Aug 7 18:35:55 CEST 2019=20=20=20=20 root@v908.xyzzy:/.../hal/z/OBJ/FreeBSD/amd64/releng/12.0/amd64.amd64/sys/XY= ZZY_SMP amd64. --=20 You are receiving this mail because: You are the assignee for the bug.= From owner-freebsd-net@freebsd.org Thu Aug 15 12:34:22 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 41374CFFF1 for ; Thu, 15 Aug 2019 12:34:22 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mailman.nyi.freebsd.org (unknown [127.0.1.3]) by mx1.freebsd.org (Postfix) with ESMTP id 468Qqy129zz3Jkf for ; Thu, 15 Aug 2019 12:34:22 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: by mailman.nyi.freebsd.org (Postfix) id 219A4CFFF0; Thu, 15 Aug 2019 12:34:22 +0000 (UTC) Delivered-To: net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 215E0CFFEF for ; Thu, 15 Aug 2019 12:34:22 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) server-signature RSA-PSS (4096 bits) client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 468Qqy05Xfz3Jkb for ; Thu, 15 Aug 2019 12:34:22 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id DAE9C189A1 for ; Thu, 15 Aug 2019 12:34:21 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id x7FCYLXB041318 for ; Thu, 15 Aug 2019 12:34:21 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id x7FCYLkk041317 for net@FreeBSD.org; Thu, 15 Aug 2019 12:34:21 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 235031] [em] em0: poor NFS performance, strange behavior Date: Thu, 15 Aug 2019 12:34:21 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 12.0-RELEASE X-Bugzilla-Keywords: IntelNetworking, regression X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: d8zNeCFG@aon.at X-Bugzilla-Status: Open X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 15 Aug 2019 12:34:22 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D235031 --- Comment #36 from Martin Birgmeier --- I just notice that the console and syslog have about 20 messages of em: frame error: ignored em: frame error: ignored em: frame error: ignored em: frame error: ignored em: frame error: ignored Uptime is 2 1/2 hours. --=20 You are receiving this mail because: You are the assignee for the bug.= From owner-freebsd-net@freebsd.org Thu Aug 15 14:41:46 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id C2EF4AB2B8 for ; Thu, 15 Aug 2019 14:41:46 +0000 (UTC) (envelope-from bu7cher@yandex.ru) Received: from forward102j.mail.yandex.net (forward102j.mail.yandex.net [IPv6:2a02:6b8:0:801:2::102]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 468Tfx35BZz3QVJ for ; Thu, 15 Aug 2019 14:41:45 +0000 (UTC) (envelope-from bu7cher@yandex.ru) Received: from mxback7g.mail.yandex.net (mxback7g.mail.yandex.net [IPv6:2a02:6b8:0:1472:2741:0:8b7:168]) by forward102j.mail.yandex.net (Yandex) with ESMTP id 717F6F21049 for ; Thu, 15 Aug 2019 17:41:40 +0300 (MSK) Received: from smtp1p.mail.yandex.net (smtp1p.mail.yandex.net [2a02:6b8:0:1472:2741:0:8b6:6]) by mxback7g.mail.yandex.net (nwsmtp/Yandex) with ESMTP id 4KrgCTGuu3-fegmubIp; Thu, 15 Aug 2019 17:41:40 +0300 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yandex.ru; s=mail; t=1565880100; bh=IoWyJwIOoxJUAyblsX09G3ge6CiGxrnpSQPG48hxAd4=; h=In-Reply-To:From:Date:References:To:Subject:Message-ID; b=QkUPVjpHzF0n5wo4PSH/gtqtEGQDcb9CSWpR4XbgBnBOwge03usN5XHUB/ujrjxkm wswdgKrGHRDVew7ZIQVE1cml/nRTfJPDz1vgxv31VRgg06xJFOK6x40VctZkoBz9rZ 4wA12b27L6LsMCSAGi5PGri82tCyjsxKAK3ZTk+I= Received: by smtp1p.mail.yandex.net (nwsmtp/Yandex) with ESMTPSA id F9hrcBr8R4-fdeSerVm; Thu, 15 Aug 2019 17:41:39 +0300 (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) (Client certificate not present) Subject: Re: igb netstat input counters 2x? To: freebsd-net@freebsd.org References: <20190814002705.GD2342@funkthat.com> From: "Andrey V. Elsukov" Openpgp: id=E6591E1B41DA1516F0C9BC0001C5EA0410C8A17A Autocrypt: addr=bu7cher@yandex.ru; prefer-encrypt=mutual; keydata= mQENBEwBF1kBCADB9sXFhBEUy8qQ4X63Y8eBatYMHGEFWN9ypS5lI3RE6qQW2EYbxNk7qUC5 21YIIS1mMFVBEfvR7J9uc7yaYgFCEb6Sce1RSO4ULN2mRKGHP3/Sl0ijZEjWHV91hY1YTHEF ZW/0GYinDf56sYpDDehaBF5wkWIo1+QK5nmj3vl0DIDCMNd7QEiWpyLVwECgLX2eOAXByT8B bCqVhJGcG6iFP7/B9Ll6uX5gb8thM9LM+ibwErDBVDGiOgvfxqidab7fdkh893IBCXa82H9N CNwnEtcgzh+BSKK5BgvPohFMgRwjti37TSxwLu63QejRGbZWSz3OK3jMOoF63tCgn7FvABEB AAG0JUFuZHJleSBWLiBFbHN1a292IDxidTdjaGVyQHlhbmRleC5ydT6JATgEEwECACIFAkwB F1kCGwMGCwkIBwMCBhUIAgkKCwQWAgMBAh4BAheAAAoJEAHF6gQQyKF6qmYIAI6ekfm1VA4T vqankI1ISE6ku4jV7UlpIQlEbE7/8n3Zd6teJ+pGOQhN5qk8QE7utdPdbktAzi+x7LIJVzUw 4TywZLXGrkP7VKYkfg6oyCGyzITghefQeJtr2TN4hYCkzPWpylkue8MtmqfZv/6royqwTbN+ +E09FQNvTgRUYJYTeQ1qOsxNRycwvw3dr2rOfuxShbzaHBB1pBIjGrMg8fC5pd65ACH5zuFV A0CoTNGMDrEZSfBkTW604UUHFFXeCoC3dwDZRKOWJ3GmMXns65Ai5YkA63BSHEE1Qle3VBhd cG1w0CB5FBV3pB27UVnf0jEbysrDqW4qN7XMRFSWNAy5AQ0ETAEXWQEIAJ2p6l9LBoqdH/0J PEFDY2t2gTvAuzz+8zs3R03dFuHcNbOwjvWCG0aOmVpAzkRa8egn5JB4sZaFUtKPYJEQ1Iu+ LUBwgvtXf4vWpzC67zs2dDuiW4LamH5p6xkTD61aHR7mCB3bg2TUjrDWn2Jt44cvoYxj3dz4 S49U1rc9ZPgD5axCNv45j72tggWlZvpefThP7xT1OlNTUqye2gAwQravXpZkl5JG4eOqJVIU X316iE3qso0iXRUtO7OseBf0PiVmk+wCahdreHOeOxK5jMhYkPKVn7z1sZiB7W2H2TojbmcK HZC22sz7Z/H36Lhg1+/RCnGzdEcjGc8oFHXHCxUAEQEAAYkBHwQYAQIACQUCTAEXWQIbDAAK CRABxeoEEMihegkYCAC3ivGYNe2taNm/4Nx5GPdzuaAJGKWksV+w9mo7dQvU+NmI2az5w8vw 98OmX7G0OV9snxMW+6cyNqBrVFTu33VVNzz9pnqNCHxGvj5dL5ltP160JV2zw2bUwJBYsgYQ WfyJJIM7l3gv5ZS3DGqaGIm9gOK1ANxfrR5PgPzvI9VxDhlr2juEVMZYAqPLEJe+SSxbwLoz BcFCNdDAyXcaAzXsx/E02YWm1hIWNRxanAe7Vlg7OL+gvLpdtrYCMg28PNqKNyrQ87LQ49O9 50IIZDOtNFeR0FGucjcLPdS9PiEqCoH7/waJxWp6ydJ+g4OYRBYNM0EmMgy1N85JJrV1mi5i Message-ID: <52b37710-8eb3-7e08-ee04-4682deb93c76@yandex.ru> Date: Thu, 15 Aug 2019 17:38:22 +0300 User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:60.0) Gecko/20100101 Thunderbird/60.8.0 MIME-Version: 1.0 In-Reply-To: <20190814002705.GD2342@funkthat.com> Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="QC5I8Les35Q23YMu4bkOKleND2YL3RHJI" X-Rspamd-Queue-Id: 468Tfx35BZz3QVJ X-Spamd-Bar: ------ Authentication-Results: mx1.freebsd.org; dkim=pass header.d=yandex.ru header.s=mail header.b=QkUPVjpH; dmarc=pass (policy=none) header.from=yandex.ru; spf=pass (mx1.freebsd.org: domain of bu7cher@yandex.ru designates 2a02:6b8:0:801:2::102 as permitted sender) smtp.mailfrom=bu7cher@yandex.ru X-Spamd-Result: default: False [-6.19 / 15.00]; R_SPF_ALLOW(-0.20)[+ip6:2a02:6b8:0::/52]; FREEMAIL_FROM(0.00)[yandex.ru]; HAS_ATTACHMENT(0.00)[]; TO_DN_NONE(0.00)[]; RCVD_COUNT_THREE(0.00)[3]; DKIM_TRACE(0.00)[yandex.ru:+]; DMARC_POLICY_ALLOW(-0.50)[yandex.ru,none]; NEURAL_HAM_SHORT(-0.99)[-0.992,0]; SIGNED_PGP(-2.00)[]; RCVD_IN_DNSWL_LOW(-0.10)[2.0.1.0.0.0.0.0.0.0.0.0.2.0.0.0.1.0.8.0.0.0.0.0.8.b.6.0.2.0.a.2.list.dnswl.org : 127.0.5.1]; MIME_TRACE(0.00)[0:+,1:+,2:+,3:~]; SUBJECT_ENDS_QUESTION(1.00)[]; FREEMAIL_ENVFROM(0.00)[yandex.ru]; ASN(0.00)[asn:13238, ipnet:2a02:6b8::/32, country:RU]; MID_RHS_MATCH_FROM(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-1.000,0]; R_DKIM_ALLOW(-0.20)[yandex.ru:s=mail]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; NEURAL_HAM_LONG(-1.00)[-1.000,0]; MIME_GOOD(-0.20)[multipart/signed,multipart/mixed,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-net@freebsd.org]; IP_SCORE_FREEMAIL(0.00)[]; RCPT_COUNT_ONE(0.00)[1]; DWL_DNSWL_LOW(-1.00)[yandex.ru.dwl.dnswl.org : 127.0.5.1]; RCVD_TLS_LAST(0.00)[]; IP_SCORE(0.00)[ip: (-9.39), ipnet: 2a02:6b8::/32(-4.64), asn: 13238(-3.73), country: RU(0.01)] X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 15 Aug 2019 14:41:46 -0000 This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --QC5I8Les35Q23YMu4bkOKleND2YL3RHJI Content-Type: multipart/mixed; boundary="SpA76jSROhuoysCdPdJ6UIS4n3RDA61UP"; protected-headers="v1" From: "Andrey V. Elsukov" To: freebsd-net@freebsd.org Message-ID: <52b37710-8eb3-7e08-ee04-4682deb93c76@yandex.ru> Subject: Re: igb netstat input counters 2x? References: <20190814002705.GD2342@funkthat.com> In-Reply-To: <20190814002705.GD2342@funkthat.com> --SpA76jSROhuoysCdPdJ6UIS4n3RDA61UP Content-Type: text/plain; charset=utf-8 Content-Language: en-US Content-Transfer-Encoding: quoted-printable On 14.08.2019 03:27, John-Mark Gurney wrote: > I'm doing some perf testing on an APU4 board, and I noticed that > it looks like the input netstat counters are 2x than what they should > be. >=20 > I was seeing 60MiB/sec via netstat -w 1 -I igb1: > 40034 0 0 60760352 2538 0 177909 0 > 40700 0 0 61776228 2574 0 180300 0 >=20 > But the program was only reading 27MB/sec. I decided to read the mac > stats directly via: > bytes=3D$(sysctl -n dev.igb.1.mac_stats.good_octets_recvd); while sleep= 1; do > nbytes=3D$(sysctl -n dev.igb.1.mac_stats.good_octets_recvd) > echo $(($nbytes - $bytes)); bytes=3D$nbytes > done >=20 > and saw much more reasonable numbers: > 31099740 > 30512488 > 30675974 >=20 > Which is more in line w/ the 27MB/sec that the program reports. >=20 > I haven't looked at the code to see what could be causing the double > counting. Also, the output numbers appear to be accurate. >=20 > This is with 13.0-CURRENT from the July 25th snapshot, which is r350322= =2E Does this doubling happens only with IBYTES counter? What about IPACKETS? Also I'd check L2/L3 addresses to be sure that they by accident are not broadcast/multicast. --=20 WBR, Andrey V. Elsukov --SpA76jSROhuoysCdPdJ6UIS4n3RDA61UP-- --QC5I8Les35Q23YMu4bkOKleND2YL3RHJI Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Comment: Using GnuPG with Thunderbird - https://www.enigmail.net/ iQEzBAEBCAAdFiEE5lkeG0HaFRbwybwAAcXqBBDIoXoFAl1VbmQACgkQAcXqBBDI oXoIKggAnaVq0IpdhJ8Bv+91G2zd0Rm6/RTxyD6zofM+TPhLSgVZ1Wxk/ygcm6fa lPi4GnXvrwhz2996ZUurbUC72gp6yJ0Trb25iGHYfwySCUhgmk6O3yRKmvq79Lu/ m4i8YYp4os59ccTPurEVGUWjYCn3AWz5tpq6hHnc/7FjokFvSEI6yaFPjOoVYJhP /nn3D9QD9S2orRZx6Xeajwukq0LnUhmHnwNq+pvJwrW9aqjyL+OTs8XDdl9mcTEL 0AsT1oTei4lYA3ypMLcj5aKltdvxc6f5OWHgbBxLFlNET2E5fEK6rUGDoWdJcRxi WKw5pA3Os2We/eJoV0Gi0Bf42GIBkA== =aE5G -----END PGP SIGNATURE----- --QC5I8Les35Q23YMu4bkOKleND2YL3RHJI-- From owner-freebsd-net@freebsd.org Thu Aug 15 19:20:36 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 1360EB3F11 for ; Thu, 15 Aug 2019 19:20:36 +0000 (UTC) (envelope-from jmg@gold.funkthat.com) Received: from gold.funkthat.com (gate2.funkthat.com [208.87.223.18]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "gate2.funkthat.com", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 468brg0z0Sz4KLd for ; Thu, 15 Aug 2019 19:20:34 +0000 (UTC) (envelope-from jmg@gold.funkthat.com) Received: from gold.funkthat.com (localhost [127.0.0.1]) by gold.funkthat.com (8.15.2/8.15.2) with ESMTPS id x7FJKQ5G032645 (version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Thu, 15 Aug 2019 12:20:26 -0700 (PDT) (envelope-from jmg@gold.funkthat.com) Received: (from jmg@localhost) by gold.funkthat.com (8.15.2/8.15.2/Submit) id x7FJKP17032644; Thu, 15 Aug 2019 12:20:25 -0700 (PDT) (envelope-from jmg) Date: Thu, 15 Aug 2019 12:20:25 -0700 From: John-Mark Gurney To: "Andrey V. Elsukov" Cc: freebsd-net@freebsd.org Subject: Re: igb netstat input counters 2x? Message-ID: <20190815192025.GF2342@funkthat.com> Mail-Followup-To: "Andrey V. Elsukov" , freebsd-net@freebsd.org References: <20190814002705.GD2342@funkthat.com> <52b37710-8eb3-7e08-ee04-4682deb93c76@yandex.ru> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="w7PDEPdKQumQfZlR" Content-Disposition: inline In-Reply-To: <52b37710-8eb3-7e08-ee04-4682deb93c76@yandex.ru> X-Operating-System: FreeBSD 11.0-RELEASE-p7 amd64 X-PGP-Fingerprint: D87A 235F FB71 1F3F 55B7 ED9B D5FF 5A51 C0AC 3D65 X-Files: The truth is out there X-URL: https://www.funkthat.com/ X-Resume: https://www.funkthat.com/~jmg/resume.html X-TipJar: bitcoin:13Qmb6AeTgQecazTWph4XasEsP7nGRbAPE X-to-the-FBI-CIA-and-NSA: HI! HOW YA DOIN? can i haz chizburger? User-Agent: Mutt/1.6.1 (2016-04-27) X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.4.3 (gold.funkthat.com [127.0.0.1]); Thu, 15 Aug 2019 12:20:26 -0700 (PDT) X-Rspamd-Queue-Id: 468brg0z0Sz4KLd X-Spamd-Bar: ----- Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of jmg@gold.funkthat.com designates 208.87.223.18 as permitted sender) smtp.mailfrom=jmg@gold.funkthat.com X-Spamd-Result: default: False [-5.04 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-1.000,0]; RCVD_TLS_ALL(0.00)[]; FROM_HAS_DN(0.00)[]; TO_DN_SOME(0.00)[]; R_SPF_ALLOW(-0.20)[+a]; IP_SCORE(-0.99)[ip: (-2.57), ipnet: 208.87.216.0/21(-1.29), asn: 32354(-1.03), country: US(-0.05)]; MIME_GOOD(-0.20)[multipart/signed,text/plain]; MIME_TRACE(0.00)[0:+,1:+,2:~]; DMARC_NA(0.00)[funkthat.com]; NEURAL_HAM_LONG(-1.00)[-1.000,0]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_HAM_SHORT(-0.95)[-0.950,0]; RCPT_COUNT_TWO(0.00)[2]; SIGNED_PGP(-2.00)[]; FREEMAIL_TO(0.00)[yandex.ru]; FORGED_SENDER(0.30)[jmg@funkthat.com,jmg@gold.funkthat.com]; R_DKIM_NA(0.00)[]; SUBJECT_ENDS_QUESTION(1.00)[]; ASN(0.00)[asn:32354, ipnet:208.87.216.0/21, country:US]; FROM_NEQ_ENVFROM(0.00)[jmg@funkthat.com,jmg@gold.funkthat.com]; MID_RHS_MATCH_FROM(0.00)[]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 15 Aug 2019 19:20:36 -0000 --w7PDEPdKQumQfZlR Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Andrey V. Elsukov wrote this message on Thu, Aug 15, 2019 at 17:38 +0300: > On 14.08.2019 03:27, John-Mark Gurney wrote: > > I'm doing some perf testing on an APU4 board, and I noticed that > > it looks like the input netstat counters are 2x than what they should > > be. > >=20 > > I was seeing 60MiB/sec via netstat -w 1 -I igb1: > > 40034 0 0 60760352 2538 0 177909 0 > > 40700 0 0 61776228 2574 0 180300 0 > >=20 > > But the program was only reading 27MB/sec. I decided to read the mac > > stats directly via: > > bytes=3D$(sysctl -n dev.igb.1.mac_stats.good_octets_recvd); while sleep= 1; do > > nbytes=3D$(sysctl -n dev.igb.1.mac_stats.good_octets_recvd) > > echo $(($nbytes - $bytes)); bytes=3D$nbytes > > done > >=20 > > and saw much more reasonable numbers: > > 31099740 > > 30512488 > > 30675974 > >=20 > > Which is more in line w/ the 27MB/sec that the program reports. > >=20 > > I haven't looked at the code to see what could be causing the double > > counting. Also, the output numbers appear to be accurate. > >=20 > > This is with 13.0-CURRENT from the July 25th snapshot, which is r350322. >=20 > Does this doubling happens only with IBYTES counter? What about > IPACKETS? Also I'd check L2/L3 addresses to be sure that they by > accident are not broadcast/multicast. as for L2 addresses, it shouldn't be, but: root@gate3:~ # arp -an | grep igb1 ? (69.x.x.1) at a0:xx:xx:xx:xx:xx on igb1 expires in 777 seconds [ethernet] ? (69.x.x.27) at f8:xx:xx:xx:xx:xx on igb1 permanent [ethernet] It's solely the upload to my fiber, so there should only be two hosts on it.. my machine, and the gateway, and things look that way... Also, traffic was generated by https, and counters go to near zero when not collecting stats, and then immediately jump to double when running the fetch... Looks like the pkts are doubled as well, which lends itself to the fact that packets are being double counted... input igb1 output packets errs idrops bytes packets errs bytes colls 39668 0 0 60193686 2507 0 175751 0 39042 0 0 59247132 2469 0 173104 0 and I expanded the above to pull the pkts as well and got: good_octets good mcast bcast total 29935544 19676 0 0 19672 29868462 19629 0 0 19629 So, looks like they are double counted. The later was generated using: bytes=3D$(sysctl -n dev.igb.1.mac_stats.good_octets_recvd); mpkts=3D$(sysctl -n dev.igb.1.mac_stats.mcast_pkts_recvd); bpkts=3D$(sysctl -n dev.igb.1.mac_stats.bcast_pkts_recvd); gpkts=3D$(sysctl -n dev.igb.1.mac_stats.good_pkts_recvd); tpkts=3D$(sysctl -n dev.igb.1.mac_stats.total_pkts_recvd); while sleep 1; do nbytes=3D$(sysctl -n dev.igb.1.mac_stats.good_octets_recvd) nmpkts=3D$(sysctl -n dev.igb.1.mac_stats.mcast_pkts_recvd); nbpkts=3D$(sysctl -n dev.igb.1.mac_stats.bcast_pkts_recvd); ngpkts=3D$(sysctl -n dev.igb.1.mac_stats.good_pkts_recvd); ntpkts=3D$(sysctl -n dev.igb.1.mac_stats.total_pkts_recvd); printf "%d\t%d\t%d\t%d\t%d\n" $(($nbytes - $bytes)) $(($ngpkts - $g= pkts)) $(($nmpkts - $mpkts)) $(($nbpkts - $bpkts)) $(($ntpkts - $tpkts)) bytes=3D$nbytes mpkts=3D$nmpkts bpkts=3D$nbpkts gpkts=3D$ngpkts tpkts=3D$ntpkts done --=20 John-Mark Gurney Voice: +1 415 225 5579 "All that I will do, has been done, All that I have, has not." --w7PDEPdKQumQfZlR Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQJ8BAEBCgBmBQJdVbB3XxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXQ2MEI1RTRGMTNDNzYyMDZDNjEyMDBCNjAy MDVGMEIzM0REMDA2QURBAAoJECBfCzPdAGralnEQAKWpn/I6l5ASMzWFS6Ficdvg AxJRSjb0S9gupEHi0wruYpYhnZ5NEa2V13kB7lVh3vfgOtZGHyfYxjELdfRQRERS epOvLDzsheG/tO+QmLWPrL1BIAthwGVF+lK0JO1VzLn/vMIbawfAscLFkK0g0tsa 4QGAzvFN96On8K7XaObGho1fkkIPBOGI0OwodNWUk/xq7XL6c5GaZWa+AzBsQTAw ISwKjsX24xxuQTYvpfXI0OvN0lrZMuBUj86ymshUToKEQtKQ2NnaAldBLRocbUbS jH+SysJI9Bj7Oo274IePtSi/RUSKHv4c57z444p6KOekJH7PR3waAqUqFJWvtAnI RmIJPl0Ju8f/mkjPtmiBCS++p8v2KJ4W6QEaE0dE5l61MNVg2jEVawvKuK95n1mp kLO/FtpTOlho5iFfqT8BoxlubSetZiQNi9SYidvDwOjELTHXE8BhOj/PkUzI2kGG QIr/Ioj4bqbAtmxvie7QI7EPasgMyr3UCJ8Pqc7yFl0hTpA+qXLq7mhINDm2rYVa LecvEJ0FXzbTMIxz8qNgCAHhQFfscskLzDSlNmjDnKGtQzGW2afvp07k2dvjy1o2 EQ0LhLqEVui1jO602YyUCsIWaQDpj44ibWmqyZ1axwPXW3dX4tLTiI2DpWOSC4Dt He71h7QuUkr/rpe26dIM =stcl -----END PGP SIGNATURE----- --w7PDEPdKQumQfZlR-- From owner-freebsd-net@freebsd.org Fri Aug 16 10:05:44 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 56716C733E for ; Fri, 16 Aug 2019 10:05:44 +0000 (UTC) (envelope-from lan@zato.ru) Received: from mail.zato.ru (mail.zato.ru [178.255.248.12]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mail.zato.ru", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 468zTy1Zx2z43gj for ; Fri, 16 Aug 2019 10:05:41 +0000 (UTC) (envelope-from lan@zato.ru) Received: from ip198-125-245-80.broadband.crelcom.ru ([80.245.125.198] helo=[172.27.1.29]) by mail.zato.ru with esmtpsa (TLSv1.2:AES128-SHA:128) (Exim 4.84 (FreeBSD)) (envelope-from ) id 1hyZ71-000Cfx-MS for freebsd-net@freebsd.org; Fri, 16 Aug 2019 13:05:40 +0300 From: Alexander Lunev To: freebsd-net@freebsd.org Message-ID: <522283ee-dc4b-6439-fb05-7254511a214b@zato.ru> Date: Fri, 16 Aug 2019 13:05:27 +0300 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:60.0) Gecko/20100101 Thunderbird/60.8.0 MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: ru Content-Transfer-Encoding: 7bit X-SA-Exim-Connect-IP: 80.245.125.198 X-SA-Exim-Mail-From: lan@zato.ru X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on mail.zato.local X-Spam-Level: X-Spam-Status: No, score=-2.9 required=5.0 tests=ALL_TRUSTED,BAYES_00 autolearn=ham autolearn_force=no version=3.4.0 Subject: NFSv4 without Kerberos X-SA-Exim-Version: 4.2 X-SA-Exim-Scanned: Yes (on mail.zato.ru) X-Rspamd-Queue-Id: 468zTy1Zx2z43gj X-Spamd-Bar: --- X-Spamd-Result: default: False [-3.60 / 15.00]; ARC_NA(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; R_DKIM_ALLOW(-0.20)[zato.ru:s=mailserverdkimkey]; NEURAL_HAM_MEDIUM(-1.00)[-1.000,0]; FROM_HAS_DN(0.00)[]; R_SPF_ALLOW(-0.20)[+ip4:178.255.248.12]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[text/plain]; TO_DN_NONE(0.00)[]; NEURAL_HAM_LONG(-1.00)[-1.000,0]; RCPT_COUNT_ONE(0.00)[1]; DKIM_TRACE(0.00)[zato.ru:+]; DMARC_POLICY_ALLOW(-0.50)[zato.ru,reject]; NEURAL_HAM_SHORT(-0.60)[-0.604,0]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; IP_SCORE(0.00)[country: RU(0.01)]; ASN(0.00)[asn:56868, ipnet:178.255.248.0/24, country:RU]; MID_RHS_MATCH_FROM(0.00)[]; RCVD_TLS_ALL(0.00)[]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 16 Aug 2019 10:05:44 -0000 Hello everyone! I'm trying to build diskless system with some mounts done by NFSv4, and i can't figure out how to mount share without kerberos, with -sec=sys flavour. Doing all by handbook, on server i have: server's /etc/rc.conf (part of it): ifconfig_em1="inet 10.101.0.1/24" nfs_server_enable="YES" nfsuserd_enable="YES" nfsv4_server_enable="YES" server's /etc/exports /mnt/diskless10 -network 10.101.0 -mask 255.255.255.0 V4: /mnt/v4share -sec=sys -network 10.101.0 -mask 255.255.255.0 client's /etc/rc.conf: hostname="netboot_v4.local" nfsuserd_enable="YES" nfs_client_enable="YES" hostid_enable="NO" Client is diskless, it mounts /mnt/diskless10 as read-only NFS root (rw mount don't change anything), system is booted just fine. When on client i'm trying to mount NFSv4 share from server: root@netboot_v4: ~# mount_nfs -o nfsvers=4 10.101.0.1:/mnt/v4share /var/mnt [tcp] 10.101.0.1:/mnt/v4share: Permission denied In server's /var/log/messages: Aug 14 21:06:58 virt mountd[7392]: mount request denied from 10.101.0.20 for /mnt/v4share There is no other messages. Tried to search web - there's stories about successful mount in kerberized environment (and me myself got this done at another place, mounted share from FreeBSD on Ubuntu by NFSv4 just fine), but i don't want kerberos complexity in this system. How can I debug mount process on client and on server? -- Best regards, Alexander Lunev From owner-freebsd-net@freebsd.org Fri Aug 16 10:42:25 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 4F170C829A for ; Fri, 16 Aug 2019 10:42:25 +0000 (UTC) (envelope-from slw@zxy.spb.ru) Received: from zxy.spb.ru (zxy.spb.ru [195.70.199.98]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4690JJ0q1yz45TQ for ; Fri, 16 Aug 2019 10:42:23 +0000 (UTC) (envelope-from slw@zxy.spb.ru) Received: from slw by zxy.spb.ru with local (Exim 4.86 (FreeBSD)) (envelope-from ) id 1hyZgc-0001bh-6O; Fri, 16 Aug 2019 13:42:22 +0300 Date: Fri, 16 Aug 2019 13:42:22 +0300 From: Slawa Olhovchenkov To: Alexander Lunev Cc: freebsd-net@freebsd.org Subject: Re: NFSv4 without Kerberos Message-ID: <20190816104222.GN47119@zxy.spb.ru> References: <522283ee-dc4b-6439-fb05-7254511a214b@zato.ru> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <522283ee-dc4b-6439-fb05-7254511a214b@zato.ru> User-Agent: Mutt/1.5.24 (2015-08-30) X-SA-Exim-Connect-IP: X-SA-Exim-Mail-From: slw@zxy.spb.ru X-SA-Exim-Scanned: No (on zxy.spb.ru); SAEximRunCond expanded to false X-Rspamd-Queue-Id: 4690JJ0q1yz45TQ X-Spamd-Bar: / Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of slw@zxy.spb.ru has no SPF policy when checking 195.70.199.98) smtp.mailfrom=slw@zxy.spb.ru X-Spamd-Result: default: False [-0.77 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.71)[-0.712,0]; FROM_HAS_DN(0.00)[]; TO_DN_SOME(0.00)[]; NEURAL_HAM_LONG(-0.76)[-0.764,0]; MIME_GOOD(-0.10)[text/plain]; RCVD_TLS_LAST(0.00)[]; DMARC_NA(0.00)[zxy.spb.ru]; AUTH_NA(1.00)[]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_HAM_SHORT(-0.19)[-0.195,0]; RCPT_COUNT_TWO(0.00)[2]; R_SPF_NA(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:5495, ipnet:195.70.192.0/19, country:RU]; MID_RHS_MATCH_FROM(0.00)[]; IP_SCORE(0.00)[country: RU(0.01)]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 16 Aug 2019 10:42:25 -0000 On Fri, Aug 16, 2019 at 01:05:27PM +0300, Alexander Lunev via freebsd-net wrote: > Hello everyone! > > I'm trying to build diskless system with some mounts done by NFSv4, and > i can't figure out how to mount share without kerberos, with -sec=sys > flavour. Doing all by handbook, on server i have: > > > server's /etc/rc.conf (part of it): > ifconfig_em1="inet 10.101.0.1/24" > nfs_server_enable="YES" > nfsuserd_enable="YES" > nfsv4_server_enable="YES" > > server's /etc/exports > > /mnt/diskless10 -network 10.101.0 -mask 255.255.255.0 > V4: /mnt/v4share -sec=sys -network 10.101.0 -mask 255.255.255.0 > > > client's /etc/rc.conf: > > hostname="netboot_v4.local" > nfsuserd_enable="YES" > nfs_client_enable="YES" > hostid_enable="NO" > > > Client is diskless, it mounts /mnt/diskless10 as read-only NFS root (rw > mount don't change anything), system is booted just fine. When on client > i'm trying to mount NFSv4 share from server: > > root@netboot_v4: ~# mount_nfs -o nfsvers=4 10.101.0.1:/mnt/v4share /var/mnt > [tcp] 10.101.0.1:/mnt/v4share: Permission denied try `mount_nfs -o nfsvers=4 10.101.0.1:/ /var/mnt` > In server's /var/log/messages: > > Aug 14 21:06:58 virt mountd[7392]: mount request denied from 10.101.0.20 > for /mnt/v4share > > There is no other messages. Tried to search web - there's stories about > successful mount in kerberized environment (and me myself got this done > at another place, mounted share from FreeBSD on Ubuntu by NFSv4 just > fine), but i don't want kerberos complexity in this system. > > How can I debug mount process on client and on server? > > -- > Best regards, > Alexander Lunev > _______________________________________________ > freebsd-net@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" From owner-freebsd-net@freebsd.org Fri Aug 16 11:44:42 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 765D7C93F9 for ; Fri, 16 Aug 2019 11:44:42 +0000 (UTC) (envelope-from lan@zato.ru) Received: from mail.zato.ru (mail.zato.ru [178.255.248.12]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mail.zato.ru", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4691h84561z48PJ for ; Fri, 16 Aug 2019 11:44:40 +0000 (UTC) (envelope-from lan@zato.ru) Received: from ip198-125-245-80.broadband.crelcom.ru ([80.245.125.198] helo=[172.27.1.29]) by mail.zato.ru with esmtpsa (TLSv1.2:AES128-SHA:128) (Exim 4.84 (FreeBSD)) (envelope-from ) id 1hyaen-000Dos-Hk for freebsd-net@freebsd.org; Fri, 16 Aug 2019 14:44:37 +0300 From: Alexander Lunev To: freebsd-net@freebsd.org References: <522283ee-dc4b-6439-fb05-7254511a214b@zato.ru> <20190816104222.GN47119@zxy.spb.ru> Message-ID: Date: Fri, 16 Aug 2019 14:44:34 +0300 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:60.0) Gecko/20100101 Thunderbird/60.8.0 MIME-Version: 1.0 In-Reply-To: <20190816104222.GN47119@zxy.spb.ru> Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: ru Content-Transfer-Encoding: 7bit X-SA-Exim-Connect-IP: 80.245.125.198 X-SA-Exim-Mail-From: lan@zato.ru X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on mail.zato.local X-Spam-Level: X-Spam-Status: No, score=-2.9 required=5.0 tests=ALL_TRUSTED,BAYES_00 autolearn=ham autolearn_force=no version=3.4.0 Subject: Re: NFSv4 without Kerberos X-SA-Exim-Version: 4.2 X-SA-Exim-Scanned: Yes (on mail.zato.ru) X-Rspamd-Queue-Id: 4691h84561z48PJ X-Spamd-Bar: --- X-Spamd-Result: default: False [-3.61 / 15.00]; ARC_NA(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; R_DKIM_ALLOW(-0.20)[zato.ru:s=mailserverdkimkey]; NEURAL_HAM_MEDIUM(-1.00)[-1.000,0]; FROM_HAS_DN(0.00)[]; R_SPF_ALLOW(-0.20)[+ip4:178.255.248.12:c]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[text/plain]; TO_DN_NONE(0.00)[]; NEURAL_HAM_LONG(-1.00)[-1.000,0]; RCPT_COUNT_ONE(0.00)[1]; DKIM_TRACE(0.00)[zato.ru:+]; DMARC_POLICY_ALLOW(-0.50)[zato.ru,reject]; NEURAL_HAM_SHORT(-0.61)[-0.610,0]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; IP_SCORE(0.00)[country: RU(0.01)]; ASN(0.00)[asn:56868, ipnet:178.255.248.0/24, country:RU]; MID_RHS_MATCH_FROM(0.00)[]; RCVD_TLS_ALL(0.00)[]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 16 Aug 2019 11:44:42 -0000 >> root@netboot_v4: ~# mount_nfs -o nfsvers=4 10.101.0.1:/mnt/v4share /var/mnt >> [tcp] 10.101.0.1:/mnt/v4share: Permission denied > > try `mount_nfs -o nfsvers=4 10.101.0.1:/ /var/mnt` Tried, same result: [tcp] 10.101.0.1:/: Permission denied In server logs: Aug 15 01:02:21 virt mountd[625]: mount request denied from 10.101.0.20 for / -- Best regards Alexander Lunev From owner-freebsd-net@freebsd.org Fri Aug 16 12:02:02 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 68A21CA1FE for ; Fri, 16 Aug 2019 12:02:02 +0000 (UTC) (envelope-from slw@zxy.spb.ru) Received: from zxy.spb.ru (zxy.spb.ru [195.70.199.98]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4692494Sf2z49NZ for ; Fri, 16 Aug 2019 12:02:01 +0000 (UTC) (envelope-from slw@zxy.spb.ru) Received: from slw by zxy.spb.ru with local (Exim 4.86 (FreeBSD)) (envelope-from ) id 1hyave-0001yx-40; Fri, 16 Aug 2019 15:01:58 +0300 Date: Fri, 16 Aug 2019 15:01:58 +0300 From: Slawa Olhovchenkov To: Alexander Lunev Cc: freebsd-net@freebsd.org Subject: Re: NFSv4 without Kerberos Message-ID: <20190816120157.GO47119@zxy.spb.ru> References: <522283ee-dc4b-6439-fb05-7254511a214b@zato.ru> <20190816104222.GN47119@zxy.spb.ru> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.5.24 (2015-08-30) X-SA-Exim-Connect-IP: X-SA-Exim-Mail-From: slw@zxy.spb.ru X-SA-Exim-Scanned: No (on zxy.spb.ru); SAEximRunCond expanded to false X-Rspamd-Queue-Id: 4692494Sf2z49NZ X-Spamd-Bar: / Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of slw@zxy.spb.ru has no SPF policy when checking 195.70.199.98) smtp.mailfrom=slw@zxy.spb.ru X-Spamd-Result: default: False [-0.77 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.73)[-0.728,0]; FROM_HAS_DN(0.00)[]; TO_DN_SOME(0.00)[]; NEURAL_HAM_LONG(-0.70)[-0.705,0]; MIME_GOOD(-0.10)[text/plain]; RCVD_TLS_LAST(0.00)[]; DMARC_NA(0.00)[zxy.spb.ru]; AUTH_NA(1.00)[]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_HAM_SHORT(-0.24)[-0.240,0]; RCPT_COUNT_TWO(0.00)[2]; R_SPF_NA(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:5495, ipnet:195.70.192.0/19, country:RU]; MID_RHS_MATCH_FROM(0.00)[]; IP_SCORE(0.00)[country: RU(0.01)]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 16 Aug 2019 12:02:02 -0000 On Fri, Aug 16, 2019 at 02:44:34PM +0300, Alexander Lunev via freebsd-net wrote: > >> root@netboot_v4: ~# mount_nfs -o nfsvers=4 10.101.0.1:/mnt/v4share /var/mnt > >> [tcp] 10.101.0.1:/mnt/v4share: Permission denied > > > > try `mount_nfs -o nfsvers=4 10.101.0.1:/ /var/mnt` > > Tried, same result: > > [tcp] 10.101.0.1:/: Permission denied > > In server logs: > Aug 15 01:02:21 virt mountd[625]: mount request denied from 10.101.0.20 > for / And add to exports: /mnt/v4share -sec=sys -network 10.101.0 -mask 255.255.255.0 From owner-freebsd-net@freebsd.org Fri Aug 16 12:09:25 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id B5324CA474 for ; Fri, 16 Aug 2019 12:09:25 +0000 (UTC) (envelope-from lan@zato.ru) Received: from mail.zato.ru (mail.zato.ru [178.255.248.12]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mail.zato.ru", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4692Dh5smrz49jJ for ; Fri, 16 Aug 2019 12:09:24 +0000 (UTC) (envelope-from lan@zato.ru) Received: from ip198-125-245-80.broadband.crelcom.ru ([80.245.125.198] helo=[172.27.1.29]) by mail.zato.ru with esmtpsa (TLSv1.2:AES128-SHA:128) (Exim 4.84 (FreeBSD)) (envelope-from ) id 1hyb2n-000E7O-A8 for freebsd-net@freebsd.org; Fri, 16 Aug 2019 15:09:22 +0300 Cc: freebsd-net@freebsd.org References: <522283ee-dc4b-6439-fb05-7254511a214b@zato.ru> <20190816104222.GN47119@zxy.spb.ru> <20190816120157.GO47119@zxy.spb.ru> From: Alexander Lunev Message-ID: <19b8ad6d-ad07-e50e-75d1-ae554c87c384@zato.ru> Date: Fri, 16 Aug 2019 15:09:22 +0300 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:60.0) Gecko/20100101 Thunderbird/60.8.0 MIME-Version: 1.0 In-Reply-To: <20190816120157.GO47119@zxy.spb.ru> Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: ru Content-Transfer-Encoding: 7bit X-SA-Exim-Connect-IP: 80.245.125.198 X-SA-Exim-Mail-From: lan@zato.ru X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on mail.zato.local X-Spam-Level: X-Spam-Status: No, score=-1.9 required=5.0 tests=ALL_TRUSTED,BAYES_00, MISSING_HEADERS autolearn=no autolearn_force=no version=3.4.0 Subject: Re: NFSv4 without Kerberos X-SA-Exim-Version: 4.2 X-SA-Exim-Scanned: Yes (on mail.zato.ru) X-Rspamd-Queue-Id: 4692Dh5smrz49jJ X-Spamd-Bar: + X-Spamd-Result: default: False [1.50 / 15.00]; ARC_NA(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; R_DKIM_ALLOW(-0.20)[zato.ru:s=mailserverdkimkey]; FROM_HAS_DN(0.00)[]; R_SPF_ALLOW(-0.20)[+ip4:178.255.248.12:c]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[text/plain]; TO_DN_NONE(0.00)[]; NEURAL_SPAM_MEDIUM(0.34)[0.335,0]; RCPT_COUNT_ONE(0.00)[1]; DKIM_TRACE(0.00)[zato.ru:+]; DMARC_POLICY_ALLOW(-0.50)[zato.ru,reject]; NEURAL_SPAM_LONG(0.24)[0.241,0]; MISSING_TO(2.00)[]; NEURAL_HAM_SHORT(-0.08)[-0.076,0]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; IP_SCORE(0.00)[country: RU(0.01)]; ASN(0.00)[asn:56868, ipnet:178.255.248.0/24, country:RU]; MID_RHS_MATCH_FROM(0.00)[]; RCVD_TLS_ALL(0.00)[]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 16 Aug 2019 12:09:25 -0000 > And add to exports: > > /mnt/v4share -sec=sys -network 10.101.0 -mask 255.255.255.0 It gives mountd error: bad exports list line '/mnt/v4share -sec' If I remove -sec=sys, then mountd errors in /var/log/messages: can't change attributes for /mnt/v4share: netcred already exists for given addr/mask bad exports list line '/mnt/v4share -network 10.101.0 -mask 255.255.255.0' -- Best regards Alexander Lunev From owner-freebsd-net@freebsd.org Fri Aug 16 12:15:50 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 655CECA759 for ; Fri, 16 Aug 2019 12:15:50 +0000 (UTC) (envelope-from slw@zxy.spb.ru) Received: from zxy.spb.ru (zxy.spb.ru [195.70.199.98]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4692N55hWpz4BHh for ; Fri, 16 Aug 2019 12:15:49 +0000 (UTC) (envelope-from slw@zxy.spb.ru) Received: from slw by zxy.spb.ru with local (Exim 4.86 (FreeBSD)) (envelope-from ) id 1hyb92-00022N-4z; Fri, 16 Aug 2019 15:15:48 +0300 Date: Fri, 16 Aug 2019 15:15:48 +0300 From: Slawa Olhovchenkov To: Alexander Lunev Cc: freebsd-net@freebsd.org Subject: Re: NFSv4 without Kerberos Message-ID: <20190816121547.GP47119@zxy.spb.ru> References: <522283ee-dc4b-6439-fb05-7254511a214b@zato.ru> <20190816104222.GN47119@zxy.spb.ru> <20190816120157.GO47119@zxy.spb.ru> <19b8ad6d-ad07-e50e-75d1-ae554c87c384@zato.ru> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <19b8ad6d-ad07-e50e-75d1-ae554c87c384@zato.ru> User-Agent: Mutt/1.5.24 (2015-08-30) X-SA-Exim-Connect-IP: X-SA-Exim-Mail-From: slw@zxy.spb.ru X-SA-Exim-Scanned: No (on zxy.spb.ru); SAEximRunCond expanded to false X-Rspamd-Queue-Id: 4692N55hWpz4BHh X-Spamd-Bar: / Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of slw@zxy.spb.ru has no SPF policy when checking 195.70.199.98) smtp.mailfrom=slw@zxy.spb.ru X-Spamd-Result: default: False [-0.75 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.71)[-0.711,0]; FROM_HAS_DN(0.00)[]; TO_DN_SOME(0.00)[]; NEURAL_HAM_LONG(-0.69)[-0.693,0]; MIME_GOOD(-0.10)[text/plain]; RCVD_TLS_LAST(0.00)[]; DMARC_NA(0.00)[zxy.spb.ru]; AUTH_NA(1.00)[]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_HAM_SHORT(-0.25)[-0.245,0]; RCPT_COUNT_TWO(0.00)[2]; R_SPF_NA(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:5495, ipnet:195.70.192.0/19, country:RU]; MID_RHS_MATCH_FROM(0.00)[]; IP_SCORE(0.00)[country: RU(0.01)]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 16 Aug 2019 12:15:50 -0000 On Fri, Aug 16, 2019 at 03:09:22PM +0300, Alexander Lunev via freebsd-net wrote: > > And add to exports: > > > > /mnt/v4share -sec=sys -network 10.101.0 -mask 255.255.255.0 > > It gives mountd error: > > bad exports list line '/mnt/v4share -sec' > > If I remove -sec=sys, then mountd errors in /var/log/messages: > > can't change attributes for /mnt/v4share: netcred already exists for > given addr/mask > bad exports list line '/mnt/v4share -network 10.101.0 -mask 255.255.255.0' hm. I am have next exports: /NFS -maproot=root -sec=krb5i V4: /NFS -sec=krb5i and this work ok for nfsv4 mount (mount -t nfsv4 host:/) May be order is important? From owner-freebsd-net@freebsd.org Fri Aug 16 12:27:29 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id DBF88CAC91 for ; Fri, 16 Aug 2019 12:27:29 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mailman.nyi.freebsd.org (mailman.nyi.freebsd.org [IPv6:2610:1c1:1:606c::50:13]) by mx1.freebsd.org (Postfix) with ESMTP id 4692dY5Y4zz4C0M for ; Fri, 16 Aug 2019 12:27:29 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: by mailman.nyi.freebsd.org (Postfix) id BE66DCAC90; Fri, 16 Aug 2019 12:27:29 +0000 (UTC) Delivered-To: net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id BE2C5CAC8F for ; Fri, 16 Aug 2019 12:27:29 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) server-signature RSA-PSS (4096 bits) client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4692dY4k8tz4C0K for ; Fri, 16 Aug 2019 12:27:29 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 8477AEB4 for ; Fri, 16 Aug 2019 12:27:29 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id x7GCRTtg041870 for ; Fri, 16 Aug 2019 12:27:29 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from bugzilla@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id x7GCRTWN041869 for net@FreeBSD.org; Fri, 16 Aug 2019 12:27:29 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: bugzilla set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 239694] Some ipseclog() invocations miss newline Date: Fri, 16 Aug 2019 12:27:28 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: CURRENT X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: commit-hook@freebsd.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 16 Aug 2019 12:27:29 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D239694 --- Comment #2 from commit-hook@freebsd.org --- A commit references this bug: Author: ae Date: Fri Aug 16 12:27:19 UTC 2019 New revision: 351116 URL: https://svnweb.freebsd.org/changeset/base/351116 Log: MFC r350816: Add missing new line in several log messages. PR: 239694 Changes: _U stable/12/ stable/12/sys/netipsec/key.c --=20 You are receiving this mail because: You are the assignee for the bug.= From owner-freebsd-net@freebsd.org Fri Aug 16 12:29:15 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 7DF4ACADE3 for ; Fri, 16 Aug 2019 12:29:15 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mailman.nyi.freebsd.org (mailman.nyi.freebsd.org [IPv6:2610:1c1:1:606c::50:13]) by mx1.freebsd.org (Postfix) with ESMTP id 4692gb2mVlz4CCZ for ; Fri, 16 Aug 2019 12:29:15 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: by mailman.nyi.freebsd.org (Postfix) id 5D22CCADE2; Fri, 16 Aug 2019 12:29:15 +0000 (UTC) Delivered-To: net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 5CEB2CADE1 for ; Fri, 16 Aug 2019 12:29:15 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) server-signature RSA-PSS (4096 bits) client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4692gb1tXgz4CCY for ; Fri, 16 Aug 2019 12:29:15 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 22D45EB9 for ; Fri, 16 Aug 2019 12:29:15 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id x7GCTFtv044054 for ; Fri, 16 Aug 2019 12:29:15 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id x7GCTFPO044053 for net@FreeBSD.org; Fri, 16 Aug 2019 12:29:15 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 239694] Some ipseclog() invocations miss newline Date: Fri, 16 Aug 2019 12:29:14 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: CURRENT X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: ae@FreeBSD.org X-Bugzilla-Status: Closed X-Bugzilla-Resolution: FIXED X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: ae@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: cc resolution assigned_to bug_status Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 16 Aug 2019 12:29:15 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D239694 Andrey V. Elsukov changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |ae@FreeBSD.org Resolution|--- |FIXED Assignee|net@FreeBSD.org |ae@FreeBSD.org Status|New |Closed --- Comment #3 from Andrey V. Elsukov --- Fixed in head/, stable/12 and stable/11. Thanks! --=20 You are receiving this mail because: You are the assignee for the bug.= From owner-freebsd-net@freebsd.org Fri Aug 16 12:37:55 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id A2AECCB140 for ; Fri, 16 Aug 2019 12:37:55 +0000 (UTC) (envelope-from lan@zato.ru) Received: from mail.zato.ru (mail.zato.ru [178.255.248.12]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mail.zato.ru", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4692sZ4d2kz4CgR for ; Fri, 16 Aug 2019 12:37:54 +0000 (UTC) (envelope-from lan@zato.ru) Received: from ip198-125-245-80.broadband.crelcom.ru ([80.245.125.198] helo=[172.27.1.29]) by mail.zato.ru with esmtpsa (TLSv1.2:AES128-SHA:128) (Exim 4.84 (FreeBSD)) (envelope-from ) id 1hybUK-000ERC-Ho for freebsd-net@freebsd.org; Fri, 16 Aug 2019 15:37:51 +0300 To: freebsd-net@freebsd.org References: <522283ee-dc4b-6439-fb05-7254511a214b@zato.ru> <20190816104222.GN47119@zxy.spb.ru> <20190816120157.GO47119@zxy.spb.ru> <19b8ad6d-ad07-e50e-75d1-ae554c87c384@zato.ru> <20190816121547.GP47119@zxy.spb.ru> From: Alexander Lunev Message-ID: Date: Fri, 16 Aug 2019 15:37:49 +0300 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:60.0) Gecko/20100101 Thunderbird/60.8.0 MIME-Version: 1.0 In-Reply-To: <20190816121547.GP47119@zxy.spb.ru> Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: ru Content-Transfer-Encoding: 7bit X-SA-Exim-Connect-IP: 80.245.125.198 X-SA-Exim-Mail-From: lan@zato.ru X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on mail.zato.local X-Spam-Level: X-Spam-Status: No, score=-2.9 required=5.0 tests=ALL_TRUSTED,BAYES_00 autolearn=ham autolearn_force=no version=3.4.0 Subject: Re: NFSv4 without Kerberos X-SA-Exim-Version: 4.2 X-SA-Exim-Scanned: Yes (on mail.zato.ru) X-Rspamd-Queue-Id: 4692sZ4d2kz4CgR X-Spamd-Bar: --- X-Spamd-Result: default: False [-3.59 / 15.00]; ARC_NA(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; R_DKIM_ALLOW(-0.20)[zato.ru:s=mailserverdkimkey]; NEURAL_HAM_MEDIUM(-1.00)[-1.000,0]; FROM_HAS_DN(0.00)[]; R_SPF_ALLOW(-0.20)[+ip4:178.255.248.12:c]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[text/plain]; TO_DN_NONE(0.00)[]; NEURAL_HAM_LONG(-1.00)[-1.000,0]; RCPT_COUNT_ONE(0.00)[1]; DKIM_TRACE(0.00)[zato.ru:+]; DMARC_POLICY_ALLOW(-0.50)[zato.ru,reject]; NEURAL_HAM_SHORT(-0.60)[-0.595,0]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; IP_SCORE(0.00)[country: RU(0.01)]; ASN(0.00)[asn:56868, ipnet:178.255.248.0/24, country:RU]; MID_RHS_MATCH_FROM(0.00)[]; RCVD_TLS_ALL(0.00)[]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 16 Aug 2019 12:37:55 -0000 > /NFS -maproot=root -sec=krb5i > V4: /NFS -sec=krb5i > > and this work ok for nfsv4 mount (mount -t nfsv4 host:/) > > May be order is important? I've already tried in any order, it doesn't change anything. In another place (11.2-R) i've already done NFSv4 mount where ubuntu mounts share from freebsd via nfsv4 with sec=sys without any problem, but here (11.3) i can't make it work - maybe the reason is that client is diskless and root mounted by NFSv3 from the same server? -- Best regards Alexander Lunev From owner-freebsd-net@freebsd.org Fri Aug 16 12:45:47 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 846E9CB457 for ; Fri, 16 Aug 2019 12:45:47 +0000 (UTC) (envelope-from eugen@grosbein.net) Received: from hz.grosbein.net (hz.grosbein.net [IPv6:2a01:4f8:c2c:26d8::2]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "hz.grosbein.net", Issuer "hz.grosbein.net" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 46932f33b5z4D5F for ; Fri, 16 Aug 2019 12:45:45 +0000 (UTC) (envelope-from eugen@grosbein.net) Received: from eg.sd.rdtc.ru (eg.sd.rdtc.ru [IPv6:2a03:3100:c:13:0:0:0:5]) by hz.grosbein.net (8.15.2/8.15.2) with ESMTPS id x7GCjTKZ025356 (version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT) for ; Fri, 16 Aug 2019 12:45:32 GMT (envelope-from eugen@grosbein.net) X-Envelope-From: eugen@grosbein.net X-Envelope-To: Received: from [10.58.0.4] (dadv@[10.58.0.4]) by eg.sd.rdtc.ru (8.15.2/8.15.2) with ESMTPS id x7GCjJ18006402 (version=TLSv1.2 cipher=DHE-RSA-AES128-SHA bits=128 verify=NOT) for ; Fri, 16 Aug 2019 19:45:19 +0700 (+07) (envelope-from eugen@grosbein.net) To: "freebsd-net@freebsd.org" From: Eugene Grosbein Subject: Software IPSEC AES-CTR/SHA-256 broken Message-ID: <9650ba58-ed9b-ec6b-8b9f-ed5cb4853f9b@grosbein.net> Date: Fri, 16 Aug 2019 19:45:19 +0700 User-Agent: Mozilla/5.0 (Windows NT 6.3; WOW64; rv:45.0) Gecko/20100101 Thunderbird/45.8.0 MIME-Version: 1.0 Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 8bit X-Spam-Status: No, score=3.2 required=5.0 tests=BAYES_00, DATE_IN_FUTURE_96_Q, LOCAL_FROM, SPF_HELO_NONE, SPF_PASS autolearn=no autolearn_force=no version=3.4.2 X-Spam-Report: * -2.3 BAYES_00 BODY: Bayes spam probability is 0 to 1% * [score: 0.0000] * 2.9 DATE_IN_FUTURE_96_Q Date: is 4 days to 4 months after Received: * date * 0.0 SPF_HELO_NONE SPF: HELO does not publish an SPF Record * -0.0 SPF_PASS SPF: sender matches SPF record * 2.6 LOCAL_FROM From my domains X-Spam-Level: *** X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on hz.grosbein.net X-Rspamd-Queue-Id: 46932f33b5z4D5F X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=permerror (mx1.freebsd.org: domain of eugen@grosbein.net uses mechanism not recognized by this client) smtp.mailfrom=eugen@grosbein.net X-Spamd-Result: default: False [-3.91 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-1.000,0]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; NEURAL_HAM_LONG(-1.00)[-1.000,0]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-net@freebsd.org]; DMARC_NA(0.00)[grosbein.net]; RCPT_COUNT_ONE(0.00)[1]; RCVD_COUNT_THREE(0.00)[3]; IP_SCORE(-0.85)[ip: (-0.45), ipnet: 2a01:4f8::/29(-1.95), asn: 24940(-1.84), country: DE(-0.01)]; R_SPF_PERMFAIL(0.00)[]; NEURAL_HAM_SHORT(-0.96)[-0.960,0]; TO_DN_EQ_ADDR_ALL(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:24940, ipnet:2a01:4f8::/29, country:DE]; MID_RHS_MATCH_FROM(0.00)[]; RCVD_TLS_ALL(0.00)[] X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 16 Aug 2019 12:45:47 -0000 Hi! I used IPSEC/gif (ipencap) with static Blowfish/SHA1 keys for years for VPN tunnels between FreeBSD routers. After recent Blowfish deprecation notice, I tried switching to AES-CTR/SHA-256 instead only to find that transit RDP TCP streams start to break often (every 20 minutes or so). I switched back to Blowfish/SHA1 and problem disappeared. While using AES-CTR/SHA-256, "netstat -p esp -ss" shows increasing counters for: packets dropped; bad encryption detected packets dropped; bad authentication detected These counters stay zero when only Blowfish is used. Both sides have no AES-NI hardware support and aesni.ko kernel module is not even loaded. FreeBSD 11.2-STABLE/amd64 r343942 at one side is used and 11.2-STABLE/amd64 r343953 at another side. I managed to reproduce the problem using simple ssh connection over tunnel built with commands: ifconfig gif1 create tunnel 1.1.1.1 2.2.2.2 ifconfig gif1 inet 192.168.80.242 192.168.80.241 netmask 255.255.255.252 mtu 1440 And /etc/ipsec.conf: flush; spdflush; add 1.1.1.1 2.2.2.2 esp 1013 -m transport -E aes-ctr "M28_)KDFV,iFVHNIKO-p" -A hmac-sha2-256 "rdijokg&YRDYi(I%R0oMJN%()H532d92"; add 2.2.2.2 1.1.1.1 esp 2013 -m transport -E aes-ctr "G5of)Gbn556reg_+;mVz" -A hmac-sha2-256 "?op;_rf{89CE$DC09*3$RFgi7y9)i-e]"; spdadd 2.2.2.2/32 1.1.1.1/32 icmp -P out none; spdadd 2.2.2.2/32 1.1.1.1/32 esp -P out none; spdadd 2.2.2.2/32 1.1.1.1/32 any -P out ipsec esp/transport//require; spdadd 1.1.1.1/32 2.2.2.2/32 any -P out ipsec esp/transport//use; #EOF No IKE daemon used. Another side has symmetric settings. The problem reproduces while making ssh connection from 192.168.80.242 to 192.168.80.241: $ ssh -vp 10022 192.168.80.241 dd if=random.bin > /dev/null The file random.bin contains some data obtained from /dev/urandom. N.B.: SSH connection does not break as it tolerates delays produced by TCP retransmits much better comparing to RDP. From owner-freebsd-net@freebsd.org Fri Aug 16 12:55:39 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 455F3CB8C7 for ; Fri, 16 Aug 2019 12:55:39 +0000 (UTC) (envelope-from hausen@punkt.de) Received: from kagate.punkt.de (kagate.punkt.de [217.29.33.131]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4693G1752sz4DZh for ; Fri, 16 Aug 2019 12:55:37 +0000 (UTC) (envelope-from hausen@punkt.de) Received: from hugo10.ka.punkt.de (hugo10.ka.punkt.de [217.29.44.10]) by gate2.intern.punkt.de with ESMTP id x7GCgQil036520; Fri, 16 Aug 2019 14:42:26 +0200 (CEST) Received: from [217.29.44.222] ([217.29.44.222]) by hugo10.ka.punkt.de (8.14.2/8.14.2) with ESMTP id x7GCgQ6R044422; Fri, 16 Aug 2019 14:42:26 +0200 (CEST) (envelope-from hausen@punkt.de) Content-Type: text/plain; charset=utf-8 Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.11\)) Subject: Re: NFSv4 without Kerberos From: "Patrick M. Hausen" In-Reply-To: Date: Fri, 16 Aug 2019 14:42:26 +0200 Cc: freebsd-net@freebsd.org Content-Transfer-Encoding: quoted-printable Message-Id: References: <522283ee-dc4b-6439-fb05-7254511a214b@zato.ru> <20190816104222.GN47119@zxy.spb.ru> <20190816120157.GO47119@zxy.spb.ru> <19b8ad6d-ad07-e50e-75d1-ae554c87c384@zato.ru> <20190816121547.GP47119@zxy.spb.ru> To: Alexander Lunev X-Mailer: Apple Mail (2.3445.104.11) X-Rspamd-Queue-Id: 4693G1752sz4DZh X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of hausen@punkt.de designates 217.29.33.131 as permitted sender) smtp.mailfrom=hausen@punkt.de X-Spamd-Result: default: False [-3.11 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-1.000,0]; FROM_HAS_DN(0.00)[]; TO_DN_SOME(0.00)[]; R_SPF_ALLOW(-0.20)[+ip4:217.29.32.0/20]; MV_CASE(0.50)[]; MIME_GOOD(-0.10)[text/plain]; RCVD_TLS_LAST(0.00)[]; DMARC_NA(0.00)[punkt.de]; NEURAL_HAM_LONG(-1.00)[-1.000,0]; RCVD_COUNT_THREE(0.00)[3]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_HAM_SHORT(-0.92)[-0.917,0]; RCPT_COUNT_TWO(0.00)[2]; IP_SCORE(-0.40)[ip: (-0.22), ipnet: 217.29.32.0/20(-0.98), asn: 16188(-0.79), country: DE(-0.01)]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:16188, ipnet:217.29.32.0/20, country:DE]; MID_RHS_MATCH_FROM(0.00)[] X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 16 Aug 2019 12:55:39 -0000 i all, > Am 16.08.2019 um 14:37 schrieb Alexander Lunev via freebsd-net = : >=20 >> /NFS -maproot=3Droot -sec=3Dkrb5i >> V4: /NFS -sec=3Dkrb5i >> and this work ok for nfsv4 mount (mount -t nfsv4 host:/) >> May be order is important? >=20 > I've already tried in any order, it doesn't change anything. >=20 > In another place (11.2-R) i've already done NFSv4 mount where ubuntu = mounts share from freebsd via nfsv4 with sec=3Dsys without any problem, = but here (11.3) i can't make it work - maybe the reason is that client = is diskless and root mounted by NFSv3 from the same server? Are the directories you are trying to export part of the same filesystem as the client-root that is already mounted? i don=E2=80=99t know for v4, but in traditional NFS exports are per FS = and not per directory. You need to export the toplevel FS with the -alldirs flag set to mount multiple directories of the same FS. HTH, Patrick --=20 punkt.de GmbH Internet - Dienstleistungen - Beratung Kaiserallee 13a Tel.: 0721 9109-0 Fax: -100 76133 Karlsruhe info@punkt.de http://punkt.de AG Mannheim 108285 Gf: Juergen Egeling From owner-freebsd-net@freebsd.org Fri Aug 16 12:57:45 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 04393CB989 for ; Fri, 16 Aug 2019 12:57:45 +0000 (UTC) (envelope-from slw@zxy.spb.ru) Received: from zxy.spb.ru (zxy.spb.ru [195.70.199.98]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4693JS2CXVz4Dg3 for ; Fri, 16 Aug 2019 12:57:44 +0000 (UTC) (envelope-from slw@zxy.spb.ru) Received: from slw by zxy.spb.ru with local (Exim 4.86 (FreeBSD)) (envelope-from ) id 1hybna-0002GM-Km; Fri, 16 Aug 2019 15:57:42 +0300 Date: Fri, 16 Aug 2019 15:57:42 +0300 From: Slawa Olhovchenkov To: Alexander Lunev Cc: freebsd-net@freebsd.org Subject: Re: NFSv4 without Kerberos Message-ID: <20190816125742.GQ47119@zxy.spb.ru> References: <522283ee-dc4b-6439-fb05-7254511a214b@zato.ru> <20190816104222.GN47119@zxy.spb.ru> <20190816120157.GO47119@zxy.spb.ru> <19b8ad6d-ad07-e50e-75d1-ae554c87c384@zato.ru> <20190816121547.GP47119@zxy.spb.ru> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.5.24 (2015-08-30) X-SA-Exim-Connect-IP: X-SA-Exim-Mail-From: slw@zxy.spb.ru X-SA-Exim-Scanned: No (on zxy.spb.ru); SAEximRunCond expanded to false X-Rspamd-Queue-Id: 4693JS2CXVz4Dg3 X-Spamd-Bar: / Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of slw@zxy.spb.ru has no SPF policy when checking 195.70.199.98) smtp.mailfrom=slw@zxy.spb.ru X-Spamd-Result: default: False [-0.68 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.68)[-0.684,0]; FROM_HAS_DN(0.00)[]; TO_DN_SOME(0.00)[]; NEURAL_HAM_LONG(-0.67)[-0.666,0]; MIME_GOOD(-0.10)[text/plain]; RCVD_TLS_LAST(0.00)[]; DMARC_NA(0.00)[zxy.spb.ru]; AUTH_NA(1.00)[]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_HAM_SHORT(-0.23)[-0.229,0]; RCPT_COUNT_TWO(0.00)[2]; R_SPF_NA(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:5495, ipnet:195.70.192.0/19, country:RU]; MID_RHS_MATCH_FROM(0.00)[]; IP_SCORE(0.00)[country: RU(0.01)]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 16 Aug 2019 12:57:45 -0000 On Fri, Aug 16, 2019 at 03:37:49PM +0300, Alexander Lunev via freebsd-net wrote: > > /NFS -maproot=root -sec=krb5i > > V4: /NFS -sec=krb5i > > > > and this work ok for nfsv4 mount (mount -t nfsv4 host:/) > > > > May be order is important? > > I've already tried in any order, it doesn't change anything. In any order mountd on server complain to attributes? All FS on UFS? > In another place (11.2-R) i've already done NFSv4 mount where ubuntu > mounts share from freebsd via nfsv4 with sec=sys without any problem, > but here (11.3) i can't make it work - maybe the reason is that client > is diskless and root mounted by NFSv3 from the same server? I am mean this is don't mater. From owner-freebsd-net@freebsd.org Fri Aug 16 13:02:45 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id D945ACBCAC for ; Fri, 16 Aug 2019 13:02:45 +0000 (UTC) (envelope-from eugen@grosbein.net) Received: from hz.grosbein.net (hz.grosbein.net [IPv6:2a01:4f8:c2c:26d8::2]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "hz.grosbein.net", Issuer "hz.grosbein.net" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 4693QF1FzHz4F8B for ; Fri, 16 Aug 2019 13:02:44 +0000 (UTC) (envelope-from eugen@grosbein.net) Received: from eg.sd.rdtc.ru (eg.sd.rdtc.ru [IPv6:2a03:3100:c:13:0:0:0:5]) by hz.grosbein.net (8.15.2/8.15.2) with ESMTPS id x7GD2ehM025492 (version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT) for ; Fri, 16 Aug 2019 13:02:41 GMT (envelope-from eugen@grosbein.net) X-Envelope-From: eugen@grosbein.net X-Envelope-To: Received: from [10.58.0.4] ([10.58.0.4]) by eg.sd.rdtc.ru (8.15.2/8.15.2) with ESMTPS id x7GD2b7G006588 (version=TLSv1.2 cipher=DHE-RSA-AES128-SHA bits=128 verify=NOT) for ; Fri, 16 Aug 2019 20:02:37 +0700 (+07) (envelope-from eugen@grosbein.net) Subject: Re: Software IPSEC AES-CTR/SHA-256 broken To: "freebsd-net@freebsd.org" References: <9650ba58-ed9b-ec6b-8b9f-ed5cb4853f9b@grosbein.net> From: Eugene Grosbein Message-ID: <8bda0919-a5da-243a-fd33-3418a98d16f4@grosbein.net> Date: Fri, 16 Aug 2019 20:02:31 +0700 User-Agent: Mozilla/5.0 (Windows NT 6.3; WOW64; rv:45.0) Gecko/20100101 Thunderbird/45.8.0 MIME-Version: 1.0 In-Reply-To: <9650ba58-ed9b-ec6b-8b9f-ed5cb4853f9b@grosbein.net> Content-Type: text/plain; charset=windows-1252 Content-Transfer-Encoding: 7bit X-Spam-Status: No, score=0.3 required=5.0 tests=BAYES_00,LOCAL_FROM, SPF_HELO_NONE,SPF_PASS autolearn=no autolearn_force=no version=3.4.2 X-Spam-Report: * -2.3 BAYES_00 BODY: Bayes spam probability is 0 to 1% * [score: 0.0000] * 0.0 SPF_HELO_NONE SPF: HELO does not publish an SPF Record * -0.0 SPF_PASS SPF: sender matches SPF record * 2.6 LOCAL_FROM From my domains X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on hz.grosbein.net X-Rspamd-Queue-Id: 4693QF1FzHz4F8B X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=permerror (mx1.freebsd.org: domain of eugen@grosbein.net uses mechanism not recognized by this client) smtp.mailfrom=eugen@grosbein.net X-Spamd-Result: default: False [-4.00 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-1.000,0]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; NEURAL_HAM_LONG(-1.00)[-1.000,0]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-net@freebsd.org]; DMARC_NA(0.00)[grosbein.net]; RCPT_COUNT_ONE(0.00)[1]; RCVD_COUNT_THREE(0.00)[3]; IP_SCORE(-0.93)[ip: (-0.85), ipnet: 2a01:4f8::/29(-1.95), asn: 24940(-1.84), country: DE(-0.01)]; R_SPF_PERMFAIL(0.00)[]; NEURAL_HAM_SHORT(-0.97)[-0.966,0]; TO_DN_EQ_ADDR_ALL(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:24940, ipnet:2a01:4f8::/29, country:DE]; MID_RHS_MATCH_FROM(0.00)[]; RCVD_TLS_ALL(0.00)[] X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 16 Aug 2019 13:02:45 -0000 16.08.2019 19:45, Eugene Grosbein wrote: Sorry for some misprints, fixes follow: > Hi! > > I used IPSEC/gif (ipencap) with static Blowfish/SHA1 keys for years for VPN tunnels between FreeBSD routers. > > After recent Blowfish deprecation notice, I tried switching to AES-CTR/SHA-256 instead > only to find that transit RDP TCP streams start to break often (every 20 minutes or so). > I switched back to Blowfish/SHA1 and problem disappeared. > > While using AES-CTR/SHA-256, "netstat -p esp -ss" shows increasing counters for: > > packets dropped; bad encryption detected > packets dropped; bad authentication detected > > These counters stay zero when only Blowfish is used. > Both sides have no AES-NI hardware support and aesni.ko kernel module is not even loaded. > FreeBSD 11.2-STABLE/amd64 r343942 at one side is used and > 11.2-STABLE/amd64 r343953 at another side. > > I managed to reproduce the problem using simple ssh connection over tunnel built with commands: > > ifconfig gif1 create tunnel 1.1.1.1 2.2.2.2 For this side it should be instead: ifconfig gif1 create tunnel 2.2.2.2 1.1.1.1 > ifconfig gif1 inet 192.168.80.242 192.168.80.241 netmask 255.255.255.252 mtu 1440 > > And /etc/ipsec.conf: > > flush; > spdflush; > add 1.1.1.1 2.2.2.2 esp 1013 -m transport -E aes-ctr "M28_)KDFV,iFVHNIKO-p" -A hmac-sha2-256 "rdijokg&YRDYi(I%R0oMJN%()H532d92"; > add 2.2.2.2 1.1.1.1 esp 2013 -m transport -E aes-ctr "G5of)Gbn556reg_+;mVz" -A hmac-sha2-256 "?op;_rf{89CE$DC09*3$RFgi7y9)i-e]"; > > spdadd 2.2.2.2/32 1.1.1.1/32 icmp -P out none; > spdadd 2.2.2.2/32 1.1.1.1/32 esp -P out none; > spdadd 2.2.2.2/32 1.1.1.1/32 any -P out ipsec > esp/transport//require; > spdadd 1.1.1.1/32 2.2.2.2/32 any -P out ipsec > esp/transport//use; Last two lines should have "in" instead of "out": spdadd 1.1.1.1/32 2.2.2.2/32 any -P in ipsec esp/transport//use; > #EOF From owner-freebsd-net@freebsd.org Fri Aug 16 13:20:17 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 5A470CC075 for ; Fri, 16 Aug 2019 13:20:17 +0000 (UTC) (envelope-from lan@zato.ru) Received: from mail.zato.ru (mail.zato.ru [178.255.248.12]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mail.zato.ru", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4693pS2pWFz4Fln for ; Fri, 16 Aug 2019 13:20:16 +0000 (UTC) (envelope-from lan@zato.ru) Received: from ip198-125-245-80.broadband.crelcom.ru ([80.245.125.198] helo=[172.27.1.29]) by mail.zato.ru with esmtpsa (TLSv1.2:AES128-SHA:128) (Exim 4.84 (FreeBSD)) (envelope-from ) id 1hyc9M-000Euu-5r for freebsd-net@freebsd.org; Fri, 16 Aug 2019 16:20:13 +0300 Cc: freebsd-net@freebsd.org References: <522283ee-dc4b-6439-fb05-7254511a214b@zato.ru> <20190816104222.GN47119@zxy.spb.ru> <20190816120157.GO47119@zxy.spb.ru> <19b8ad6d-ad07-e50e-75d1-ae554c87c384@zato.ru> <20190816121547.GP47119@zxy.spb.ru> From: Alexander Lunev Message-ID: Date: Fri, 16 Aug 2019 16:20:13 +0300 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:60.0) Gecko/20100101 Thunderbird/60.8.0 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: ru Content-Transfer-Encoding: 7bit X-SA-Exim-Connect-IP: 80.245.125.198 X-SA-Exim-Mail-From: lan@zato.ru X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on mail.zato.local X-Spam-Level: X-Spam-Status: No, score=-1.9 required=5.0 tests=ALL_TRUSTED,BAYES_00, MISSING_HEADERS autolearn=no autolearn_force=no version=3.4.0 Subject: Re: NFSv4 without Kerberos X-SA-Exim-Version: 4.2 X-SA-Exim-Scanned: Yes (on mail.zato.ru) X-Rspamd-Queue-Id: 4693pS2pWFz4Fln X-Spamd-Bar: + X-Spamd-Result: default: False [1.72 / 15.00]; ARC_NA(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; R_DKIM_ALLOW(-0.20)[zato.ru:s=mailserverdkimkey]; FROM_HAS_DN(0.00)[]; R_SPF_ALLOW(-0.20)[+ip4:178.255.248.12:c]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[text/plain]; TO_DN_NONE(0.00)[]; NEURAL_SPAM_MEDIUM(0.42)[0.425,0]; RCPT_COUNT_ONE(0.00)[1]; DKIM_TRACE(0.00)[zato.ru:+]; DMARC_POLICY_ALLOW(-0.50)[zato.ru,reject]; NEURAL_SPAM_LONG(0.34)[0.336,0]; MISSING_TO(2.00)[]; NEURAL_HAM_SHORT(-0.04)[-0.038,0]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; IP_SCORE(0.00)[country: RU(0.01)]; ASN(0.00)[asn:56868, ipnet:178.255.248.0/24, country:RU]; MID_RHS_MATCH_FROM(0.00)[]; RCVD_TLS_ALL(0.00)[]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 16 Aug 2019 13:20:17 -0000 >> In another place (11.2-R) i've already done NFSv4 mount where ubuntu mounts share from freebsd via nfsv4 with sec=sys without any problem, but here (11.3) i can't make it work - maybe the reason is that client is diskless and root mounted by NFSv3 from the same server? > > Are the directories you are trying to export part of the same filesystem > as the client-root that is already mounted? No, diskless root is exported as /mnt/diskless10, while NFSv4 share is exported as /mnt/v4share problem is solved, should have use -o nfsv4 and not -o nfsvers=4. -- Best regards Alexander Lunev From owner-freebsd-net@freebsd.org Fri Aug 16 13:21:31 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 43526CC161 for ; Fri, 16 Aug 2019 13:21:31 +0000 (UTC) (envelope-from lan@zato.ru) Received: from mail.zato.ru (mail.zato.ru [178.255.248.12]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mail.zato.ru", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4693qt3yQwz4G23 for ; Fri, 16 Aug 2019 13:21:30 +0000 (UTC) (envelope-from lan@zato.ru) Received: from ip198-125-245-80.broadband.crelcom.ru ([80.245.125.198] helo=[172.27.1.29]) by mail.zato.ru with esmtpsa (TLSv1.2:AES128-SHA:128) (Exim 4.84 (FreeBSD)) (envelope-from ) id 1hycAW-000Evz-EV for freebsd-net@freebsd.org; Fri, 16 Aug 2019 16:21:28 +0300 To: freebsd-net@freebsd.org References: <522283ee-dc4b-6439-fb05-7254511a214b@zato.ru> <20190816104222.GN47119@zxy.spb.ru> <20190816120157.GO47119@zxy.spb.ru> <19b8ad6d-ad07-e50e-75d1-ae554c87c384@zato.ru> <20190816121547.GP47119@zxy.spb.ru> <20190816125742.GQ47119@zxy.spb.ru> From: Alexander Lunev Message-ID: Date: Fri, 16 Aug 2019 16:21:25 +0300 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:60.0) Gecko/20100101 Thunderbird/60.8.0 MIME-Version: 1.0 In-Reply-To: <20190816125742.GQ47119@zxy.spb.ru> Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: en-GB Content-Transfer-Encoding: 7bit X-SA-Exim-Connect-IP: 80.245.125.198 X-SA-Exim-Mail-From: lan@zato.ru X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on mail.zato.local X-Spam-Level: X-Spam-Status: No, score=-2.9 required=5.0 tests=ALL_TRUSTED,BAYES_00 autolearn=ham autolearn_force=no version=3.4.0 Subject: Re: NFSv4 without Kerberos [solved] X-SA-Exim-Version: 4.2 X-SA-Exim-Scanned: Yes (on mail.zato.ru) X-Rspamd-Queue-Id: 4693qt3yQwz4G23 X-Spamd-Bar: --- X-Spamd-Result: default: False [-3.62 / 15.00]; ARC_NA(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; R_DKIM_ALLOW(-0.20)[zato.ru:s=mailserverdkimkey]; NEURAL_HAM_MEDIUM(-1.00)[-1.000,0]; FROM_HAS_DN(0.00)[]; R_SPF_ALLOW(-0.20)[+ip4:178.255.248.12:c]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[text/plain]; TO_DN_NONE(0.00)[]; NEURAL_HAM_LONG(-1.00)[-1.000,0]; RCPT_COUNT_ONE(0.00)[1]; DKIM_TRACE(0.00)[zato.ru:+]; DMARC_POLICY_ALLOW(-0.50)[zato.ru,reject]; NEURAL_HAM_SHORT(-0.62)[-0.622,0]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; IP_SCORE(0.00)[country: RU(0.01)]; ASN(0.00)[asn:56868, ipnet:178.255.248.0/24, country:RU]; MID_RHS_MATCH_FROM(0.00)[]; RCVD_TLS_ALL(0.00)[]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 16 Aug 2019 13:21:31 -0000 >> I've already tried in any order, it doesn't change anything. > > In any order mountd on server complain to attributes? Order in exports file don't matter, if there are no errors then any order will work. > All FS on UFS? Yes. I found it: should be # mount_nfs -o nfsv4 10.101.0.1:/ /mnt and NOT # mount_nfs -o nfsvers=4 10.101.0.1:/ /mnt With mount_nfs -o nfsv4 share is mounted OK. -- Best regards Alexander Lunev From owner-freebsd-net@freebsd.org Fri Aug 16 16:40:30 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 780E0A80EA for ; Fri, 16 Aug 2019 16:40:30 +0000 (UTC) (envelope-from lan@zato.ru) Received: from mail.zato.ru (mail.zato.ru [178.255.248.12]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mail.zato.ru", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4698FT2Mzdz4Rg6 for ; Fri, 16 Aug 2019 16:40:28 +0000 (UTC) (envelope-from lan@zato.ru) Received: from ip198-125-245-80.broadband.crelcom.ru ([80.245.125.198] helo=[172.27.1.29]) by mail.zato.ru with esmtpsa (TLSv1.2:AES128-SHA:128) (Exim 4.84 (FreeBSD)) (envelope-from ) id 1hyfH3-000GxY-0n for freebsd-net@freebsd.org; Fri, 16 Aug 2019 19:40:26 +0300 To: freebsd-net@freebsd.org References: <522283ee-dc4b-6439-fb05-7254511a214b@zato.ru> <20190816104222.GN47119@zxy.spb.ru> <20190816120157.GO47119@zxy.spb.ru> <19b8ad6d-ad07-e50e-75d1-ae554c87c384@zato.ru> <20190816121547.GP47119@zxy.spb.ru> From: Alexander Lunev Message-ID: <704c15b4-aaf0-bb0e-20d7-777ae6043843@zato.ru> Date: Fri, 16 Aug 2019 19:40:22 +0300 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:60.0) Gecko/20100101 Thunderbird/60.8.0 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: ru Content-Transfer-Encoding: 7bit X-SA-Exim-Connect-IP: 80.245.125.198 X-SA-Exim-Mail-From: lan@zato.ru X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on mail.zato.local X-Spam-Level: X-Spam-Status: No, score=-2.9 required=5.0 tests=ALL_TRUSTED,BAYES_00 autolearn=ham autolearn_force=no version=3.4.0 Subject: Re: NFSv4 without Kerberos X-SA-Exim-Version: 4.2 X-SA-Exim-Scanned: Yes (on mail.zato.ru) X-Rspamd-Queue-Id: 4698FT2Mzdz4Rg6 X-Spamd-Bar: --- X-Spamd-Result: default: False [-3.59 / 15.00]; ARC_NA(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; R_DKIM_ALLOW(-0.20)[zato.ru:s=mailserverdkimkey]; NEURAL_HAM_MEDIUM(-1.00)[-1.000,0]; FROM_HAS_DN(0.00)[]; R_SPF_ALLOW(-0.20)[+ip4:178.255.248.12:c]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[text/plain]; TO_DN_NONE(0.00)[]; NEURAL_HAM_LONG(-1.00)[-1.000,0]; RCPT_COUNT_ONE(0.00)[1]; DKIM_TRACE(0.00)[zato.ru:+]; DMARC_POLICY_ALLOW(-0.50)[zato.ru,reject]; NEURAL_HAM_SHORT(-0.59)[-0.587,0]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; IP_SCORE(0.00)[country: RU(0.01)]; ASN(0.00)[asn:56868, ipnet:178.255.248.0/24, country:RU]; MID_RHS_MATCH_FROM(0.00)[]; RCVD_TLS_ALL(0.00)[]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 16 Aug 2019 16:40:30 -0000 > 1 - setting the sysctls > vfs.nfsd.enable_stringtouid=1 > vfs.nfs.enable_uidtostring=1 > Allows the uid/gid to be put in the Owner/Owner_group string as a number > (ie "1001"). This avoids any need to run the nfsuserd if all mounts are sec=sys. > This is now the default for most Linux distros. > > Even if you want to run the nfsuserd, it won't be working until the system is > booted. (If you don't do the above, all the files needed to get booted must be > world read/exec.) Thanks for this! In fact I was moving towards root-on-NFSv4, and your message is really helpful. It is a pity that there is so little documentation and even less debugging means for NFSv4 - you can't put daemon in debug mode, for example, or get some extra debugging messages from mount_nfs, like with ssh/sshd for example. > 2 - A Kerberized root mount won't work, because the gssd must be running for > Kerberos access to work and that can't happen until booted. And thanks for this! I think you saved me a lot of time figuring how and why! -- Best regards Alexander Lunev From owner-freebsd-net@freebsd.org Sat Aug 17 06:03:29 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id A21EDBC3E6 for ; Sat, 17 Aug 2019 06:03:29 +0000 (UTC) (envelope-from jmg@gold.funkthat.com) Received: from gold.funkthat.com (gate2.funkthat.com [208.87.223.18]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "gate2.funkthat.com", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 469V3w5Vhwz41t7; Sat, 17 Aug 2019 06:03:23 +0000 (UTC) (envelope-from jmg@gold.funkthat.com) Received: from gold.funkthat.com (localhost [127.0.0.1]) by gold.funkthat.com (8.15.2/8.15.2) with ESMTPS id x7H63M0g081222 (version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Fri, 16 Aug 2019 23:03:22 -0700 (PDT) (envelope-from jmg@gold.funkthat.com) Received: (from jmg@localhost) by gold.funkthat.com (8.15.2/8.15.2/Submit) id x7H63Miu081221; Fri, 16 Aug 2019 23:03:22 -0700 (PDT) (envelope-from jmg) Date: Fri, 16 Aug 2019 23:03:22 -0700 From: John-Mark Gurney To: freebsd-net@FreeBSD.org, freebsd-docs@FreeBSD.org Subject: addrs capability of rtadvd? Message-ID: <20190817060321.GH2342@funkthat.com> Mail-Followup-To: freebsd-net@FreeBSD.org, freebsd-docs@FreeBSD.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline X-Operating-System: FreeBSD 11.0-RELEASE-p7 amd64 X-PGP-Fingerprint: D87A 235F FB71 1F3F 55B7 ED9B D5FF 5A51 C0AC 3D65 X-Files: The truth is out there X-URL: https://www.funkthat.com/ X-Resume: https://www.funkthat.com/~jmg/resume.html X-TipJar: bitcoin:13Qmb6AeTgQecazTWph4XasEsP7nGRbAPE X-to-the-FBI-CIA-and-NSA: HI! HOW YA DOIN? can i haz chizburger? User-Agent: Mutt/1.6.1 (2016-04-27) X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.4.3 (gold.funkthat.com [127.0.0.1]); Fri, 16 Aug 2019 23:03:22 -0700 (PDT) X-Rspamd-Queue-Id: 469V3w5Vhwz41t7 X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of jmg@gold.funkthat.com designates 208.87.223.18 as permitted sender) smtp.mailfrom=jmg@gold.funkthat.com X-Spamd-Result: default: False [-2.77 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-0.998,0]; MID_RHS_MATCH_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; R_SPF_ALLOW(-0.20)[+a]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[text/plain]; TO_DN_NONE(0.00)[]; DMARC_NA(0.00)[funkthat.com]; RCVD_TLS_ALL(0.00)[]; NEURAL_HAM_LONG(-1.00)[-0.999,0]; IP_SCORE(-0.95)[ip: (-2.47), ipnet: 208.87.216.0/21(-1.23), asn: 32354(-0.99), country: US(-0.05)]; NEURAL_HAM_SHORT(-0.83)[-0.825,0]; RCPT_COUNT_TWO(0.00)[2]; FORGED_SENDER(0.30)[jmg@funkthat.com,jmg@gold.funkthat.com]; MIME_TRACE(0.00)[0:+]; R_DKIM_NA(0.00)[]; ASN(0.00)[asn:32354, ipnet:208.87.216.0/21, country:US]; SUBJECT_ENDS_QUESTION(1.00)[]; FROM_NEQ_ENVFROM(0.00)[jmg@funkthat.com,jmg@gold.funkthat.com]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 17 Aug 2019 06:03:29 -0000 I am setting up ipv6, and going through the guide at: https://www.freebsd.org/doc/handbook/network-ipv6.html#idp71931000 And noticed the addrs#1 property in the example. I checked the rtadvd.conf man page, and I do not see an entry for addrs. Should this be removed? I also did a quick check of the rtadvd source code, and I don't see a makeentry for addrs either. If no one objects, I'll remove it. -- John-Mark Gurney Voice: +1 415 225 5579 "All that I will do, has been done, All that I have, has not." From owner-freebsd-net@freebsd.org Sat Aug 17 11:45:21 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 38CABC49C7 for ; Sat, 17 Aug 2019 11:45:21 +0000 (UTC) (envelope-from liu04@apzeyeqixie.com) Received: from mailman.nyi.freebsd.org (mailman.nyi.freebsd.org [IPv6:2610:1c1:1:606c::50:13]) by mx1.freebsd.org (Postfix) with ESMTP id 469dfR2S71z4Hgb for ; Sat, 17 Aug 2019 11:45:19 +0000 (UTC) (envelope-from liu04@apzeyeqixie.com) Received: by mailman.nyi.freebsd.org (Postfix) id 52223C49C5; Sat, 17 Aug 2019 11:45:19 +0000 (UTC) Delivered-To: net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 50C98C49C4 for ; Sat, 17 Aug 2019 11:45:19 +0000 (UTC) (envelope-from liu04@apzeyeqixie.com) Received: from smtpbgsg2.qq.com (smtpbgsg2.qq.com [54.254.200.128]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 469dfM3pr2z4HgY for ; Sat, 17 Aug 2019 11:45:14 +0000 (UTC) (envelope-from liu04@apzeyeqixie.com) X-QQ-mid: bizesmtp17t1566042305tnzbwe39 Received: from PC-201907221803 (unknown [183.199.223.54]) by esmtp6.qq.com (ESMTP) with SMTP id 0 for ; Sat, 17 Aug 2019 19:45:04 +0800 (CST) X-QQ-SSF: 01000000002000B08\20B00A0000000 X-QQ-FEAT: Ub7C+IiPDfHzGK/CY24io24Mccvr1shUphdwMMQylJlRqZqOWa8gF7waDIrtW Kh/prK17j4qXkigbPquEYdekZS8zeJOIVugLaDRtDlaLHPkamftSBDy6fgAZ+TzP5DILvQX zDV32r7hl3xYUmM5fxnmaUWePhrMqy+4f1/bmZrDCc2yo2DOPBKKl7ocmovGR1/XfKaqCao 5ctDOMJJg+GEMmIOYDz5JIGsjQV6GB1jf4RY/1cWW3AWku4yHX2w3s/BDS9hd3Zg2VWChfQ Ty3nBYzmb614jzNftiisGSxZlH3aAxg8daaCDObIr+3hoQiNyJ9PkePaCUvw9oykNRaQ== X-QQ-GoodBg: 0 From: =?utf-8?B?bGl1?= To: net@freebsd.org Reply-To: liu04@apzeyeqixie.com Date: 17 Aug 2019 19:44:37 +0800 Subject: =?utf-8?B?RnJvbSBDaGluYSBhIHZhcmlldHkgb2YgcGF0dGVybiBwdW5jaCBwbGF0ZSA=?= X-QQ-SENDSIZE: 520 Feedback-ID: bizesmtp:apzeyeqixie.com:qybgforeign:qybgforeign4 Message-ID: mis_22F3F3CD2DC3AAA1528DD5CF@unknown.com X-QQ-Bgrelay: 1 X-Rspamd-Queue-Id: 469dfM3pr2z4HgY X-Spamd-Bar: +++++ Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of liu04@apzeyeqixie.com designates 54.254.200.128 as permitted sender) smtp.mailfrom=liu04@apzeyeqixie.com X-Spamd-Result: default: False [5.60 / 15.00]; HAS_REPLYTO(0.00)[liu04@apzeyeqixie.com]; FROM_EXCESS_BASE64(1.50)[]; SUBJ_EXCESS_BASE64(1.50)[]; R_SPF_ALLOW(-0.20)[+ip4:54.254.200.0/24]; TO_DN_NONE(0.00)[]; REPLYTO_ADDR_EQ_FROM(0.00)[]; NEURAL_HAM_SHORT(-0.08)[-0.084,0]; MIME_BASE64_TEXT(0.10)[]; RECEIVED_SPAMHAUS_PBL(0.00)[54.223.199.183.khpj7ygk5idzvmvt5x4ziurxhy.zen.dq.spamhaus.net : 127.0.0.11]; RCVD_TLS_LAST(0.00)[]; R_DKIM_NA(0.00)[]; MID_MISSING_BRACKETS(0.50)[]; ASN(0.00)[asn:16509, ipnet:54.254.128.0/17, country:US]; FROM_EQ_ENVFROM(0.00)[]; ARC_NA(0.00)[]; SUBJECT_ENDS_SPACES(0.50)[]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; PREVIOUSLY_DELIVERED(0.00)[net@freebsd.org]; DMARC_NA(0.00)[apzeyeqixie.com]; NEURAL_SPAM_MEDIUM(0.91)[0.914,0]; RCPT_COUNT_ONE(0.00)[1]; MIME_TRACE(0.00)[0:~]; NEURAL_SPAM_LONG(0.95)[0.949,0]; RCVD_IN_DNSWL_NONE(0.00)[128.200.254.54.list.dnswl.org : 127.0.5.0]; MIME_HTML_ONLY(0.20)[]; IP_SCORE(-0.28)[asn: 16509(-1.35), country: US(-0.05)]; RCVD_COUNT_TWO(0.00)[2] X-Spam: Yes MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.29 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 17 Aug 2019 11:45:21 -0000 From owner-freebsd-net@freebsd.org Sat Aug 17 21:25:58 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id C98A9B23A4 for ; Sat, 17 Aug 2019 21:25:58 +0000 (UTC) (envelope-from andywhite@gmail.com) Received: from mail-io1-xd2f.google.com (mail-io1-xd2f.google.com [IPv6:2607:f8b0:4864:20::d2f]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) server-signature RSA-PSS (4096 bits) client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 469tXP5WQCz3JHW for ; Sat, 17 Aug 2019 21:25:57 +0000 (UTC) (envelope-from andywhite@gmail.com) Received: by mail-io1-xd2f.google.com with SMTP id z3so13251417iog.0 for ; Sat, 17 Aug 2019 14:25:57 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:from:date:message-id:subject:to; bh=FMIs/QguocaAXtGwyZwVZP08KFR2aQaRZqPxiL89K+0=; b=kALwyDp/DQ2AkTfFd/5f6zwXKCERMX5AhHBMM+ZcrTlIbDDpJnMptM8kqkDYjpJQuM N7TCP0tRjkWucJZRnn2tJwRZXMfIGNAN8YOEHcQYhuhTJJfry6Zrstgi0CDCeFUKN4pm hk1UMRIQVRAipKXGXfi7KE8ObLdwcmZUvQkYBuQbN6K4RDu9gAUvPWXt6llaOcKghL6C l9cHmsq3XAjGARZQ7NiWvDnvuv7TraoT/YGeDxKjbeHZUQ5bHb7XF8HjBnyufzFN7BLN yijg5dcBhm6ODLYQCQt/FFq+knDXANqSXGaHsi3DB+N/fZDeEcJCbmazFx4BpQc0wg8X /c2A== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=FMIs/QguocaAXtGwyZwVZP08KFR2aQaRZqPxiL89K+0=; b=g47fyBjQ1+owOIzOP2tq2N4wFvYQnoYrwo5rwzqBHbRUmJ1/FwrmnDfgF07+um9+V5 9h3Mi8F2FLpLtkw2tqWqo4lQrTFfBlcxtlzznVAA+H/a/cbVLclBabHZ7VvmVOthS4kL eLUBhN+SQk190omRxFhjagXzVYBf+SbdUQpAzkM9gQKSOgAXv+/vmRKLOvLpKGJCiV61 bc/L6LTFoVIw0LIhFe0KdRUXsxFbV5GnkZj0TM+TBkQ5/fFz2h6grECbvqrdzd3WHeJC w92qsZG11N3Is4BLxhu7uzuPeY4+/j4GQw87IVD8Br5oa2iaccmEFpkCtcRr3Nn/vHwG /3ZA== X-Gm-Message-State: APjAAAXT0oD5nF0a0uqhP7yIIUGcFxYAA46KRfpiqOH8dOQQX60HM1+Q 3Qiggp87QMRsn63FKTzwYoN2TUrkSRZFpIUpjTRc+AZt X-Google-Smtp-Source: APXvYqx7+2BOtKPsU6CVAZ21Haw/QrC40DwwIN//eDtKWZG4RnIODnwFZ/fjjOQKdTDRcELrLH1C7UWKDARULTBjUUU= X-Received: by 2002:a05:6638:627:: with SMTP id h7mr18530716jar.33.1566077156141; Sat, 17 Aug 2019 14:25:56 -0700 (PDT) MIME-Version: 1.0 From: Andrew White Date: Sat, 17 Aug 2019 22:25:44 +0100 Message-ID: Subject: pf (rules and nat) + (ipfw + dummynet) To: freebsd-net@freebsd.org X-Rspamd-Queue-Id: 469tXP5WQCz3JHW X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=kALwyDp/; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of andywhite@gmail.com designates 2607:f8b0:4864:20::d2f as permitted sender) smtp.mailfrom=andywhite@gmail.com X-Spamd-Result: default: False [-4.00 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-1.000,0]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; FREEMAIL_FROM(0.00)[gmail.com]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-net@freebsd.org]; TO_DN_NONE(0.00)[]; IP_SCORE_FREEMAIL(0.00)[]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-1.00)[-1.000,0]; IP_SCORE(0.00)[ip: (-5.66), ipnet: 2607:f8b0::/32(-2.95), asn: 15169(-2.38), country: US(-0.05)]; TO_MATCH_ENVRCPT_ALL(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; RCVD_IN_DNSWL_NONE(0.00)[f.2.d.0.0.0.0.0.0.0.0.0.0.0.0.0.0.2.0.0.4.6.8.4.0.b.8.f.7.0.6.2.list.dnswl.org : 127.0.5.0]; NEURAL_HAM_SHORT(-1.00)[-0.998,0]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_ALL(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com.dwl.dnswl.org : 127.0.5.0] Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.29 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 17 Aug 2019 21:25:58 -0000 Hi Using 11.3 , I've been trying to configure pf with dummynet. Having ipfw reply traffic sent into a dummynet pipe causes pf to reject the traffic. Searching around and looking at ip_input.c it looks like dummynet reinjects the packet back into input and this is what causes the problem , I'm guessing the checksum changes. Is this a known behaviour and are there functioning patches ? I see projects like opnsense and pfsense have patches for ip_input.c to skip some of the code if it's a reinjected packet from dummynet I also see some work underway to separate dummynet from ipfw, is there any docs for the goals or timelines, will this allow dummynet anchors and use of dnctl to use pf with dummynet like in macos ? Kind regards Andy From owner-freebsd-net@freebsd.org Sat Aug 17 22:01:35 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 4403BB339B for ; Sat, 17 Aug 2019 22:01:35 +0000 (UTC) (envelope-from SRS0=eCLY=WN=vega.codepro.be=kp@codepro.be) Received: from mercury.codepro.be (mercury.codepro.be [IPv6:2001:4b98:dc0:41:216:3eff:fe31:eda8]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) server-signature RSA-PSS (4096 bits) client-signature RSA-PSS (2048 bits)) (Client CN "monitoring.codepro.be", Issuer "Let's Encrypt Authority X3" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 469vKV04Gxz3LKF for ; Sat, 17 Aug 2019 22:01:33 +0000 (UTC) (envelope-from SRS0=eCLY=WN=vega.codepro.be=kp@codepro.be) Received: from venus.codepro.be (venus.codepro.be [5.9.86.228]) by mercury.codepro.be (Postfix) with ESMTPS id 579F090735; Sat, 17 Aug 2019 21:51:39 +0000 (UTC) Received: from vega.codepro.be (unknown [172.16.1.3]) by venus.codepro.be (Postfix) with ESMTP id C98E821914; Sat, 17 Aug 2019 23:51:51 +0200 (CEST) Received: by vega.codepro.be (Postfix, from userid 1001) id BD92919659; Sat, 17 Aug 2019 23:51:51 +0200 (CEST) Date: Sat, 17 Aug 2019 23:51:51 +0200 From: Kristof Provost To: Andrew White Cc: freebsd-net@freebsd.org Subject: Re: pf (rules and nat) + (ipfw + dummynet) Message-ID: <20190817215151.GA8888@vega.codepro.be> References: MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline In-Reply-To: X-Checked-By-NSA: Probably User-Agent: Mutt/1.12.1 (2019-06-15) X-Rspamd-Queue-Id: 469vKV04Gxz3LKF X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of SRS0=eCLY=WN=vega.codepro.be=kp@codepro.be designates 2001:4b98:dc0:41:216:3eff:fe31:eda8 as permitted sender) smtp.mailfrom=SRS0=eCLY=WN=vega.codepro.be=kp@codepro.be X-Spamd-Result: default: False [-2.98 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-0.998,0]; FROM_HAS_DN(0.00)[]; TO_DN_SOME(0.00)[]; R_SPF_ALLOW(-0.20)[+ip6:2001:4b98:dc0:41:216:3eff:fe31:eda8]; NEURAL_HAM_LONG(-1.00)[-0.999,0]; MIME_GOOD(-0.10)[text/plain]; RCVD_TLS_LAST(0.00)[]; DMARC_NA(0.00)[freebsd.org]; RCVD_COUNT_THREE(0.00)[3]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_HAM_SHORT(-0.79)[-0.788,0]; RCPT_COUNT_TWO(0.00)[2]; IP_SCORE(-0.19)[asn: 29169(-0.96), country: FR(-0.01)]; FORGED_SENDER(0.30)[kp@freebsd.org,SRS0=eCLY=WN=vega.codepro.be=kp@codepro.be]; FREEMAIL_TO(0.00)[gmail.com]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:29169, ipnet:2001:4b98::/32, country:FR]; FROM_NEQ_ENVFROM(0.00)[kp@freebsd.org, SRS0=eCLY=WN=vega.codepro.be=kp@codepro.be] X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 17 Aug 2019 22:01:35 -0000 On 2019-08-17 22:25:44 (+0100), Andrew White wrote: > Using 11.3 , I've been trying to configure pf with dummynet. Having ipfw > reply traffic sent into a dummynet pipe causes pf to reject the traffic. > > Searching around and looking at ip_input.c it looks like dummynet reinjects > the packet back into input and this is what causes the problem , I'm > guessing the checksum changes. > I would expect both firewalls to leave the packets with correct checksums, but I have to add the disclaimer that I do not consider mixing firewalls to be a supported use case. I can think of several things (IPv6 fragment handling, route-to at least) where combining pf with another firewall is very likely to break. > Is this a known behaviour and are there functioning patches ? I see > projects like opnsense and pfsense have patches for ip_input.c to skip some > of the code if it's a reinjected packet from dummynet > > I also see some work underway to separate dummynet from ipfw, is there any > docs for the goals or timelines, will this allow dummynet anchors and use > of dnctl to use pf with dummynet like in macos ? > This work was started by a prospective gsoc student, but they were not selected, and I have not seen any big patches come out of it. It's not on my own todo list. Regards, Kristof