From nobody Mon Jan 15 13:09:33 2024 X-Original-To: freebsd-net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4TDCD52z9Gz56v2K for ; Mon, 15 Jan 2024 13:09:57 +0000 (UTC) (envelope-from trashcan@ellael.org) Received: from mx1.enfer-du-nord.net (mx1.enfer-du-nord.net [IPv6:2001:41d0:20a:800::464]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4TDCD36Cspz4WZ3 for ; Mon, 15 Jan 2024 13:09:55 +0000 (UTC) (envelope-from trashcan@ellael.org) Authentication-Results: mx1.freebsd.org; dkim=pass header.d=ellael.org header.s=dkim header.b=bpzttKur; dmarc=pass (policy=quarantine) header.from=ellael.org; spf=pass (mx1.freebsd.org: domain of trashcan@ellael.org designates 2001:41d0:20a:800::464 as permitted sender) smtp.mailfrom=trashcan@ellael.org Received: from smtpclient.apple (p200300fb4F0b1b01B9f92D71Fa95cA53.dip0.t-ipconnect.de [IPv6:2003:fb:4f0b:1b01:b9f9:2d71:fa95:ca53]) (using TLSv1.2 with cipher ECDHE-ECDSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mx1.enfer-du-nord.net (Postfix) with ESMTPSA id 4TDCCt2954zFBk for ; Mon, 15 Jan 2024 14:09:46 +0100 (CET) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ellael.org; s=dkim; t=1705324186; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding; bh=NYeu2OSRaW9d718iQIb17psbBRQCeNX4QPRYO3gmR0s=; b=bpzttKurfvFI3lV5jrFuwf0+hqdz/bQg2NlPYCB5lizX+qxb5V8OdcvJ8lPam1vww56OZY 2KuDRVbrhneKYBsv9YQTDEsCGibqa07nso93TTIFEd/aTjLLK2Zm/XJUU36Q6j7Ebw1k3Q Vznk1VN3ieZScCmx458Y+W6bfp9uTc2G44cXzyILx4wO/VQDtqUrFTU+a0kol5ZXcGMCTI 9L3qkqns4peug7a0Y9/SPkjm8otIiNKW4YZacfDvUou5h98D2WTzyMPjzS2IIXo0z4cPZV v8ipvgOqOlmjMzfrCQCmh1qtf97AaVKiOx1+Kodl9Ad/QZgdSePjXiDvp6UWkA== From: Michael Grimm Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@freebsd.org Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3774.300.61.1.2\)) Subject: Howto: ipsec tunnel routing both IPv4 and IPv6? Possible? Message-Id: <33923504-0ECC-46D7-9F6C-91D47CEE4594@ellael.org> Date: Mon, 15 Jan 2024 14:09:33 +0100 To: freebsd-net@freebsd.org X-Mailer: Apple Mail (2.3774.300.61.1.2) X-Spamd-Bar: -- X-Spamd-Result: default: False [-2.40 / 15.00]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; SUBJECT_ENDS_QUESTION(1.00)[]; NEURAL_HAM_LONG(-1.00)[-1.000]; NEURAL_HAM_SHORT(-1.00)[-1.000]; MV_CASE(0.50)[]; DMARC_POLICY_ALLOW(-0.50)[ellael.org,quarantine]; R_SPF_ALLOW(-0.20)[+ip6:2001:41d0:20a:800::464]; R_DKIM_ALLOW(-0.20)[ellael.org:s=dkim]; MIME_GOOD(-0.10)[text/plain]; ONCE_RECEIVED(0.10)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; RCVD_COUNT_ONE(0.00)[1]; RCPT_COUNT_ONE(0.00)[1]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:16276, ipnet:2001:41d0::/32, country:FR]; RCVD_TLS_ALL(0.00)[]; ARC_NA(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; FROM_HAS_DN(0.00)[]; MID_RHS_MATCH_FROM(0.00)[]; TO_DN_NONE(0.00)[]; PREVIOUSLY_DELIVERED(0.00)[freebsd-net@freebsd.org]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MLMMJ_DEST(0.00)[freebsd-net@freebsd.org]; DKIM_TRACE(0.00)[ellael.org:+] X-Rspamd-Queue-Id: 4TDCD36Cspz4WZ3 Hi, I do use an ipsec tunnel for routing local IPv4 traffic for years now = (/etc/rc.conf): cloned_interfaces=3D"ipsec0" static_routes=3D"tunnel0" create_args_ipsec0=3D"reqid 104" ifconfig_ipsec0=3D"inet 10.2.2.250 10.1.1.254 tunnel 1.2.3.4 = 10.20.30.40" route_tunnel0=3D"10.1.1.0/24 10.1.1.254" ifconfig ipsec0 (erelevant info, only): ipsec0: flags=3D1008051 = metric 0 mtu 1400 tunnel inet 1.2.3.4 --> 10.20.30.40 inet 10.2.2.250 --> 10.1.1.254 netmask 0xffffff00 reqid: 104 pf firewall entries are set to allow esp over that tunnel. Now, I do want to route local IPv6 in addition, *if* that is possible, = at all. According the manual for if_ipsec(0) should that be possible, if I do = understand that combination of "IPv4 and IPv6 traffic" and "over either = IPv4 or IPv6" correctly (I am not a native English speaker): https://man.freebsd.org/cgi/man.cgi?query=3Dif_ipsec(4) It can tunnel IPv4 and IPv6 traffic over either IPv4 or IPv6=20 and secure it with ESP. Sadly, that manual page doesn't provide an IPv6 example ... All of my following attempts failed: 1) adding a second ipsec1 interface connecting the very same IPv4 = endpoints: cloned_interfaces=3D"ipsec0 ipsec1" static_routes=3D"tunnel0 tunnel1" create_args_ipsec1=3D"reqid 106" ifconfig_ipsec1=3D"inet fd00:b:b:b::250 fd00:a:a:a::254 tunnel = 1.2.3.4 10.20.30.40" route_tunnel1=3D"fd00:a:a:a::/64 fd00:a:a:a::254" Error: route: bad address: fd00:a:a:a:: ifconfig ipsec1: ipsec1: flags=3D8010 metric 0 mtu 1400 groups: ipsec reqid: 106 Thus, no tunnel and no routing, set. 2) as in 1), besides: route_tunnel1=3D"fd00:a:a:a:: prefixlen 64 fd00:a:a:a::254" No success, same error regarding route. 3) as in 1), besides: ifconfig_ipsec1=3D"inet fd00:b:b:b::250 fd00:a:a:a::254 tunnel = 1.2.3.4 10.20.30.40" No success, same error regarding route. 4) setting the routing via route command: /sbin/route add -inet6 default -gateway fd00:a:a:a::254 Error: add net default: gateway fd00:a:a:a::254 fib 0: Invalid argument I am running out of ideas, and Google doesn't come up with relevant = answers, at least not for me. Any help, hints, documents are highly appreciated. Thanks and regards, Michael From nobody Mon Jan 15 13:32:13 2024 X-Original-To: freebsd-net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4TDCjw1Pbcz56xNP for ; Mon, 15 Jan 2024 13:32:20 +0000 (UTC) (envelope-from bu7cher@yandex.ru) Received: from forward500a.mail.yandex.net (forward500a.mail.yandex.net [IPv6:2a02:6b8:c0e:500:1:45:d181:d500]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4TDCjv06g0z4cRm for ; Mon, 15 Jan 2024 13:32:18 +0000 (UTC) (envelope-from bu7cher@yandex.ru) Authentication-Results: mx1.freebsd.org; dkim=pass header.d=yandex.ru header.s=mail header.b="S/7H3KSf"; dmarc=pass (policy=none) header.from=yandex.ru; spf=pass (mx1.freebsd.org: domain of bu7cher@yandex.ru designates 2a02:6b8:c0e:500:1:45:d181:d500 as permitted sender) smtp.mailfrom=bu7cher@yandex.ru Received: from mail-nwsmtp-smtp-production-main-24.iva.yp-c.yandex.net (mail-nwsmtp-smtp-production-main-24.iva.yp-c.yandex.net [IPv6:2a02:6b8:c0c:2ead:0:640:1417:0]) by forward500a.mail.yandex.net (Yandex) with ESMTP id 9FE1561082 for ; Mon, 15 Jan 2024 16:32:14 +0300 (MSK) Received: by mail-nwsmtp-smtp-production-main-24.iva.yp-c.yandex.net (smtp/Yandex) with ESMTPSA id DWnV5207YGk0-Wq9efgEq; Mon, 15 Jan 2024 16:32:14 +0300 X-Yandex-Fwd: 1 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yandex.ru; s=mail; t=1705325534; bh=bi8Muq/CIUDHJDxLRfbLi8IzpyvFsfND8JFRBUwRqvY=; h=In-Reply-To:To:From:Date:References:Subject:Message-ID; b=S/7H3KSfUYdXCMCElbbiS+q5w5gCJRy5aywKTFbICkuPqXGiB58sk2RWZo6zfXp4X 1RRy5sbiMDO2v1H42s7yFfS1CY2/bGYmqRMEGl0gnb+wt/I9coKOVHbqy1BzX4W/8P GW1DhgV0JdsJDsTUOQ+9ioAk9NVNcZb+91LTyKZk= Message-ID: Date: Mon, 15 Jan 2024 16:32:13 +0300 List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@freebsd.org MIME-Version: 1.0 User-Agent: Mozilla Thunderbird Subject: Re: Howto: ipsec tunnel routing both IPv4 and IPv6? Possible? To: freebsd-net@freebsd.org References: <33923504-0ECC-46D7-9F6C-91D47CEE4594@ellael.org> Content-Language: ru, en-US From: "Andrey V. Elsukov" Autocrypt: addr=bu7cher@yandex.ru; keydata= xsBNBEwBF1kBCADB9sXFhBEUy8qQ4X63Y8eBatYMHGEFWN9ypS5lI3RE6qQW2EYbxNk7qUC5 21YIIS1mMFVBEfvR7J9uc7yaYgFCEb6Sce1RSO4ULN2mRKGHP3/Sl0ijZEjWHV91hY1YTHEF ZW/0GYinDf56sYpDDehaBF5wkWIo1+QK5nmj3vl0DIDCMNd7QEiWpyLVwECgLX2eOAXByT8B bCqVhJGcG6iFP7/B9Ll6uX5gb8thM9LM+ibwErDBVDGiOgvfxqidab7fdkh893IBCXa82H9N CNwnEtcgzh+BSKK5BgvPohFMgRwjti37TSxwLu63QejRGbZWSz3OK3jMOoF63tCgn7FvABEB AAHNJUFuZHJleSBWLiBFbHN1a292IDxidTdjaGVyQHlhbmRleC5ydT7CwHgEEwECACIFAkwB F1kCGwMGCwkIBwMCBhUIAgkKCwQWAgMBAh4BAheAAAoJEAHF6gQQyKF6qmYIAI6ekfm1VA4T vqankI1ISE6ku4jV7UlpIQlEbE7/8n3Zd6teJ+pGOQhN5qk8QE7utdPdbktAzi+x7LIJVzUw 4TywZLXGrkP7VKYkfg6oyCGyzITghefQeJtr2TN4hYCkzPWpylkue8MtmqfZv/6royqwTbN+ +E09FQNvTgRUYJYTeQ1qOsxNRycwvw3dr2rOfuxShbzaHBB1pBIjGrMg8fC5pd65ACH5zuFV A0CoTNGMDrEZSfBkTW604UUHFFXeCoC3dwDZRKOWJ3GmMXns65Ai5YkA63BSHEE1Qle3VBhd cG1w0CB5FBV3pB27UVnf0jEbysrDqW4qN7XMRFSWNAzOwE0ETAEXWQEIAJ2p6l9LBoqdH/0J PEFDY2t2gTvAuzz+8zs3R03dFuHcNbOwjvWCG0aOmVpAzkRa8egn5JB4sZaFUtKPYJEQ1Iu+ LUBwgvtXf4vWpzC67zs2dDuiW4LamH5p6xkTD61aHR7mCB3bg2TUjrDWn2Jt44cvoYxj3dz4 S49U1rc9ZPgD5axCNv45j72tggWlZvpefThP7xT1OlNTUqye2gAwQravXpZkl5JG4eOqJVIU X316iE3qso0iXRUtO7OseBf0PiVmk+wCahdreHOeOxK5jMhYkPKVn7z1sZiB7W2H2TojbmcK HZC22sz7Z/H36Lhg1+/RCnGzdEcjGc8oFHXHCxUAEQEAAcLAXwQYAQIACQUCTAEXWQIbDAAK CRABxeoEEMihegkYCAC3ivGYNe2taNm/4Nx5GPdzuaAJGKWksV+w9mo7dQvU+NmI2az5w8vw 98OmX7G0OV9snxMW+6cyNqBrVFTu33VVNzz9pnqNCHxGvj5dL5ltP160JV2zw2bUwJBYsgYQ WfyJJIM7l3gv5ZS3DGqaGIm9gOK1ANxfrR5PgPzvI9VxDhlr2juEVMZYAqPLEJe+SSxbwLoz BcFCNdDAyXcaAzXsx/E02YWm1hIWNRxanAe7Vlg7OL+gvLpdtrYCMg28PNqKNyrQ87LQ49O9 50IIZDOtNFeR0FGucjcLPdS9PiEqCoH7/waJxWp6ydJ+g4OYRBYNM0EmMgy1N85JJrV1mi5i In-Reply-To: <33923504-0ECC-46D7-9F6C-91D47CEE4594@ellael.org> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Spamd-Bar: --- X-Spamd-Result: default: False [-3.09 / 15.00]; SUBJECT_ENDS_QUESTION(1.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; NEURAL_HAM_LONG(-1.00)[-1.000]; NEURAL_HAM_SHORT(-1.00)[-1.000]; DMARC_POLICY_ALLOW(-0.50)[yandex.ru,none]; R_SPF_ALLOW(-0.20)[+ip6:2a02:6b8:c00::/40]; R_DKIM_ALLOW(-0.20)[yandex.ru:s=mail]; RCVD_IN_DNSWL_LOW(-0.10)[2a02:6b8:c0e:500:1:45:d181:d500:from]; MIME_GOOD(-0.10)[text/plain]; XM_UA_NO_VERSION(0.01)[]; FREEMAIL_FROM(0.00)[yandex.ru]; ARC_NA(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_TRACE(0.00)[0:+]; RCPT_COUNT_ONE(0.00)[1]; RCVD_TLS_LAST(0.00)[]; FROM_HAS_DN(0.00)[]; ASN(0.00)[asn:13238, ipnet:2a02:6b8::/32, country:RU]; FREEMAIL_ENVFROM(0.00)[yandex.ru]; TO_DN_NONE(0.00)[]; RCVD_COUNT_TWO(0.00)[2]; FROM_EQ_ENVFROM(0.00)[]; DKIM_TRACE(0.00)[yandex.ru:+]; PREVIOUSLY_DELIVERED(0.00)[freebsd-net@freebsd.org]; MID_RHS_MATCH_FROM(0.00)[]; MLMMJ_DEST(0.00)[freebsd-net@freebsd.org]; RCVD_VIA_SMTP_AUTH(0.00)[]; DWL_DNSWL_NONE(0.00)[yandex.ru:dkim] X-Rspamd-Queue-Id: 4TDCjv06g0z4cRm On 15.01.2024 16:09, Michael Grimm wrote: > Hi, > > I do use an ipsec tunnel for routing local IPv4 traffic for years now (/etc/rc.conf): > > cloned_interfaces="ipsec0" > static_routes="tunnel0" > create_args_ipsec0="reqid 104" > ifconfig_ipsec0="inet 10.2.2.250 10.1.1.254 tunnel 1.2.3.4 10.20.30.40" > route_tunnel0="10.1.1.0/24 10.1.1.254" > > ifconfig ipsec0 (erelevant info, only): > ipsec0: flags=1008051 metric 0 mtu 1400 > tunnel inet 1.2.3.4 --> 10.20.30.40 > inet 10.2.2.250 --> 10.1.1.254 netmask 0xffffff00 > reqid: 104 > > > pf firewall entries are set to allow esp over that tunnel. > > Now, I do want to route local IPv6 in addition, *if* that is possible, at all. Hi, try something like this: ifconfig_ipsec0_ipv6="inet6 fd00:b:b:b::250 fd00:a:a:a::254 prefixlen 128" -- WBR, Andrey V. Elsukov From nobody Mon Jan 15 14:35:43 2024 X-Original-To: freebsd-net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4TDF7L4Ph4z574lB for ; Mon, 15 Jan 2024 14:35:58 +0000 (UTC) (envelope-from trashcan@ellael.org) Received: from mx1.enfer-du-nord.net (mx1.enfer-du-nord.net [IPv6:2001:41d0:20a:800::464]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4TDF7K3hTxz4jn0 for ; Mon, 15 Jan 2024 14:35:57 +0000 (UTC) (envelope-from trashcan@ellael.org) Authentication-Results: mx1.freebsd.org; dkim=pass header.d=ellael.org header.s=dkim header.b=m0BNJS3Z; dmarc=pass (policy=quarantine) header.from=ellael.org; spf=pass (mx1.freebsd.org: domain of trashcan@ellael.org designates 2001:41d0:20a:800::464 as permitted sender) smtp.mailfrom=trashcan@ellael.org Received: from smtpclient.apple (p200300fb4F0b1b01B9f92D71Fa95cA53.dip0.t-ipconnect.de [IPv6:2003:fb:4f0b:1b01:b9f9:2d71:fa95:ca53]) (using TLSv1.2 with cipher ECDHE-ECDSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mx1.enfer-du-nord.net (Postfix) with ESMTPSA id 4TDF7F41ZSzFhl for ; Mon, 15 Jan 2024 15:35:53 +0100 (CET) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ellael.org; s=dkim; t=1705329353; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=HRO/pfciMWtaC4x7aByr/JiwaZJoasS6aiduKhdOkkI=; b=m0BNJS3ZeFlIggFL4k/5+0o2b1oCeEMNYmBZeuy8mY/ZINK96aE5YQUXnz9whPbqhgi6UN qeydc8Kw/bX6v92V+MSF7h4XC16NOAJ2DX6O3pjOLQD6KYcnVx0EwuDVPvwd4mnMFGv9Sw C++yxzBOha2hVpyEi5jbXymJxv+mF584C1Qaa2ziLJGCe9+DTJajOawUSzEMQoSI9o+xWB tXi2nyz94sFIOhqjWvtGx41qNSHKB6Fg+az0oGHUFQW+eWKOzg1ZNjv5/XCZDjDyLQcuUr N9QJ6nQurQ8Hnpn+B0SmkKmQuPho+Ai25gAJ0dvm8PCEYMV00U3liuigHaj4LQ== From: Michael Grimm Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@freebsd.org Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3774.300.61.1.2\)) Subject: Re: Howto: ipsec tunnel routing both IPv4 and IPv6? Possible? Date: Mon, 15 Jan 2024 15:35:43 +0100 References: <33923504-0ECC-46D7-9F6C-91D47CEE4594@ellael.org> To: freebsd-net@freebsd.org In-Reply-To: Message-Id: <9339DE28-07F6-4855-927B-824360603CB2@ellael.org> X-Mailer: Apple Mail (2.3774.300.61.1.2) X-Spamd-Bar: -- X-Spamd-Result: default: False [-2.40 / 15.00]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; SUBJECT_ENDS_QUESTION(1.00)[]; NEURAL_HAM_LONG(-1.00)[-1.000]; NEURAL_HAM_SHORT(-1.00)[-1.000]; MV_CASE(0.50)[]; DMARC_POLICY_ALLOW(-0.50)[ellael.org,quarantine]; R_SPF_ALLOW(-0.20)[+ip6:2001:41d0:20a:800::464]; R_DKIM_ALLOW(-0.20)[ellael.org:s=dkim]; MIME_GOOD(-0.10)[text/plain]; ONCE_RECEIVED(0.10)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; RCVD_COUNT_ONE(0.00)[1]; RCPT_COUNT_ONE(0.00)[1]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:16276, ipnet:2001:41d0::/32, country:FR]; RCVD_TLS_ALL(0.00)[]; ARC_NA(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; FROM_HAS_DN(0.00)[]; MID_RHS_MATCH_FROM(0.00)[]; TO_DN_NONE(0.00)[]; PREVIOUSLY_DELIVERED(0.00)[freebsd-net@freebsd.org]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MLMMJ_DEST(0.00)[freebsd-net@freebsd.org]; DKIM_TRACE(0.00)[ellael.org:+] X-Rspamd-Queue-Id: 4TDF7K3hTxz4jn0 Andrey V. Elsukov wrote: > ifconfig_ipsec0_ipv6=3D"inet6 fd00:b:b:b::250 fd00:a:a:a::254 = prefixlen 128" Thanks, now do get the tunnel set (after adding the tunnel to your = hint): ifconfig_ipsec0=3D"inet 10.2.2.250 10.1.1.254 tunnel 1.2.3.4 = 10.20.30.40" ifconfig_ipsec0_ipv6=3D"inet6 fd00:b:b:b::250 fd00:a:a:a::254 = prefixlen 128 tunnel 1.2.3.4 10.20.30.40" route_tunnel0=3D"10.1.1.0/24 10.1.1.254" route_tunnel0=3D"fd00:a:a:a::/64 fd00:a:a:a::254" ipsec0 (stripped to the relevant part): ipsec0: flags=3D1008051 = metric 0 mtu 1400 tunnel inet 1.2.3.4 --> 10.20.30.40 inet 10.2.2.250 --> 10.1.1.254 netmask 0xffffff00 inet6 fd00:b:b:b::250 --> fd00:a:a:a::254 prefixlen 128 =20 netstat -rn (stripped to the relevant part): Internet: Destination Gateway Flags Netif Expire 10.1.1.0/24 10.1.1.254 UGS ipsec0 10.1.1.254 link#4 UH ipsec0 10.2.2.250 link#3 UHS lo0 Internet6: Destination Gateway = Flags Netif Expire fd00:a:a:a::254 link#4 UH = ipsec0 fd00:b:b:b::250 link#3 UHS = lo0 Thus, the IPv6 routing is still missing (error: "route: bad address: = fd00:a:a:a::"). Thank you very much, any further help regarding IPv6 routing through the = tunnel is very much appreciated. Regards, Michael From nobody Mon Jan 15 15:07:45 2024 X-Original-To: freebsd-net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4TDFrT0K3jz577xh for ; Mon, 15 Jan 2024 15:08:09 +0000 (UTC) (envelope-from zarychtam@plan-b.pwste.edu.pl) Received: from plan-b.pwste.edu.pl (plan-b.pwste.edu.pl [IPv6:2001:678:618::40]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "plan-b.pwste.edu.pl", Issuer "GEANT OV RSA CA 4" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4TDFrS49Jzz4njt for ; Mon, 15 Jan 2024 15:08:08 +0000 (UTC) (envelope-from zarychtam@plan-b.pwste.edu.pl) Authentication-Results: mx1.freebsd.org; none Received: from [192.168.7.70] (dom.potoki.eu [62.133.140.50]) (authenticated bits=0) by plan-b.pwste.edu.pl (8.17.2/8.17.2) with ESMTPSA id 40FF7jdD011042 (version=TLSv1.3 cipher=TLS_AES_128_GCM_SHA256 bits=128 verify=NO); Mon, 15 Jan 2024 16:07:45 +0100 (CET) (envelope-from zarychtam@plan-b.pwste.edu.pl) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=plan-b.pwste.edu.pl; s=plan-b-mailer; t=1705331266; bh=kNT5oOgwzUbYaUepPMJMg6SLlEOxmo9apOcO+9lcycc=; h=Date:Subject:To:References:From:In-Reply-To; b=XRrXv/9MBDDioOixlz3CJz8OtEsdT4EIIpg02IBK9f29hcOiKLZw7vYDOdyvL/S3X XJF+2es3A6uWjN1S472V/I94q5DkR6ArghnbwvSVAk++CA9aw76taYTXSr9hC06f0n mNz0+FRmLs6PSZcGSuljCDghIXU2IqVxFQQmbCoBrn2MtNdMCJ9bgHi3kjKRBwr2eg HuMEvc8s7l0Rwg6pXhSNXkPC8QNG7SdvZ7GCl3yw0tXuMRo9d8SzmMEPla8PEh08Gc 8wRZBb/h63Re4MstISyiQFZhSUmCiPX+E4OENg2u4fVgNogp09xq71bEIKJiVQcbgx ysN6eZ/AEqLOQ== X-Authentication-Warning: plan-b.pwste.edu.pl: Host dom.potoki.eu [62.133.140.50] claimed to be [192.168.7.70] Content-Type: multipart/alternative; boundary="------------EHSwj9lcS8z9qabU0k21E5Ck" Message-ID: <36260194-6050-4ed4-a8e2-9697f41b3adf@plan-b.pwste.edu.pl> Date: Mon, 15 Jan 2024 16:07:45 +0100 List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@freebsd.org MIME-Version: 1.0 User-Agent: Mozilla Thunderbird Subject: Re: Howto: ipsec tunnel routing both IPv4 and IPv6? Possible? Content-Language: en-US To: Michael Grimm , freebsd-net@freebsd.org References: <33923504-0ECC-46D7-9F6C-91D47CEE4594@ellael.org> <9339DE28-07F6-4855-927B-824360603CB2@ellael.org> From: Marek Zarychta Autocrypt: addr=zarychtam@plan-b.pwste.edu.pl; keydata= xsBNBFfi3cMBCADLecMTFXad4uDXqv3eRuB4qJJ8G9tzzFezeRnnwxOsPdytW5ES2z1ibSrR IsiImx6+PTqrAmXpTInxAi7yiZGdSiONRI4CCxKY9d1YFiNYT/2WyNXCekm9x29YeIU7x0JB Llbz0f/9HC+styBIu2H+PY/X98Clzm110CS+n/b9l1AtiGxTiVFj7/uavYAKxH6LNWnbkuc5 v8EVNc7NkEcl5h7Z9X5NEtzDxTOiBIFQ/kOT7LAtkYUPo1lqLeOM2DtWSXTXQgXl0zJI4iP1 OAu4qQYm2nXwq4b2AH9peknelvnt1mpfgDCGSKnhc26q6ibTfMwydp+tvUtQIQYpA6b9ABEB AAHNN01hcmVrIFphcnljaHRhIChQbGFuLWIpIDx6YXJ5Y2h0YW1AcGxhbi1iLnB3c3RlLmVk dS5wbD7CwHcEEwEIACEFAlfi4LkCGwMFCwkIBwIGFQgJCgsCBBYCAwECHgECF4AACgkQHZW8 vIFppoJXdgf8D9X3VRFSNaR9lthSx/+uqas17J3FJKBo1xMQsC2a+44vzNvYJSuPGLLJ+LW2 HPVazjP/BWZJbxOYpliY4zxNRU0YCp0BLIVLibc//yax+mE42FND/+NiIZhqJscl6MLPrSwo sIwXec4XYkldkyqW/xBbBYXoIkBqdKB9j5j42Npy1IV/RizOSdmvTWY27ir8e/yGMR1RLr4F 8P5K3OWTdlGy2H2F/3J8bIPBLG6FpaIyLQw4dHSx8V02PYqDxK1cNo2kAOnU8PnZL/AGuMOH iv3MN1VYL8ehcmpBBsrZGebQJxrjY2/5IaTSgp9xHYT70kshuU6Qb97vk1mOjNZxgc7ATQRX 4t3DAQgA10h6RCXuBLMHxq5B8X/ZIlj9sgLoeyfRdDZEc9rT2KUeUJVHDsbvOFf4/7F1ovWY hJbA6GK/LUZeHHTjnbZcH1uDYQeHly4UOLxeEvhGoz4JhS2C7JzN/uRnwbdOAUbJr8rUj/IY a7gk906rktsc/Ldrxrxh7O6WO0JCh2XO/p4pDfEwwB37g4xHprSab28ECYJ9JMbtA8Sy4M55 g3+GQ28FvSlGnx48OoGXU2BZdc1vZKSQmNOlikB+9/hDX8zdYWVfDaX1TLQ8Ib4+xTUmapza mV/bxIsaZRBw+jFjLQHhTbIMfPEU+4mxFDvTdbKPruKPqVf1ydgMnPZWngowdwARAQABwsBf BBgBCAAJBQJX4t3DAhsMAAoJEB2VvLyBaaaC6qkIAJs9sDPqrqW0bYoRfzY6XjDWQ59p9tJi v8aogxacQNCfAu+WkJ8PNVUtC1dlVcG5NnZ80gXzd1rc8ueIvXlvdanUt/jZd8jbb3gaDbK3 wh1yMCGBl/1fOJTyEGYv1CRojv97KK89KP5+r8x1P1iHcSrunlDNqGxTMydNCwBH23QcOM+m u4spKnJ/s0VRBkw3xoKBZfZza6fTQ4gTpAipjyk7ldOGBV+PvkKATdhK2yLwuWXhKbg/GRlD 1r5P0gxzSqfV4My+KJuc2EDcrqp1y0wOpE1m9iZqCcd0fup5f7HDsYlLWshr7NQl28f6+fQb sylq/j672BHXsdeqf/Ip9V4= In-Reply-To: <9339DE28-07F6-4855-927B-824360603CB2@ellael.org> X-Rspamd-Queue-Id: 4TDFrS49Jzz4njt X-Spamd-Bar: ---- X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:206006, ipnet:2001:678:618::/48, country:PL] This is a multi-part message in MIME format. --------------EHSwj9lcS8z9qabU0k21E5Ck Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8bit W dniu 15.01.2024 o 15:35, Michael Grimm pisze: > route_tunnel0="fd00:a:a:a::/64 fd00:a:a:a::254" Please try: route_tunnel0="-6 -net fd00:a:a:a::/64 fd00:a:a:a::254" -- Marek Zarychta --------------EHSwj9lcS8z9qabU0k21E5Ck Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: 8bit
W dniu 15.01.2024 o 15:35, Michael Grimm pisze:
 route_tunnel0="fd00:a:a:a::/64 fd00:a:a:a::254"
Please try:
route_tunnel0="-6 -net fd00:a:a:a::/64 fd00:a:a:a::254" 

-- 
Marek Zarychta
--------------EHSwj9lcS8z9qabU0k21E5Ck-- From nobody Mon Jan 15 15:15:40 2024 X-Original-To: freebsd-net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4TDG1N3FF3z578hB for ; Mon, 15 Jan 2024 15:15:52 +0000 (UTC) (envelope-from trashcan@ellael.org) Received: from mx1.enfer-du-nord.net (mx1.enfer-du-nord.net [IPv6:2001:41d0:20a:800::464]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4TDG1M4vwhz4qkZ for ; Mon, 15 Jan 2024 15:15:51 +0000 (UTC) (envelope-from trashcan@ellael.org) Authentication-Results: mx1.freebsd.org; dkim=pass header.d=ellael.org header.s=dkim header.b="za8Cf/7a"; dmarc=pass (policy=quarantine) header.from=ellael.org; spf=pass (mx1.freebsd.org: domain of trashcan@ellael.org designates 2001:41d0:20a:800::464 as permitted sender) smtp.mailfrom=trashcan@ellael.org Received: from smtpclient.apple (p200300fb4F0b1b01B9f92D71Fa95cA53.dip0.t-ipconnect.de [IPv6:2003:fb:4f0b:1b01:b9f9:2d71:fa95:ca53]) (using TLSv1.2 with cipher ECDHE-ECDSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mx1.enfer-du-nord.net (Postfix) with ESMTPSA id 4TDG1L4kP3zG4D for ; Mon, 15 Jan 2024 16:15:50 +0100 (CET) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ellael.org; s=dkim; t=1705331750; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=qAU01ai2o0sD1YqBPQ34I9LCk3yHGkr6HjIuGzu2W2o=; b=za8Cf/7a9Yg2kQuolEb79EQpVrrfbAR4Y/uefBmwyaU+30vLNGZ6nME3E7o6JEtt3DXLn4 JIthDmfpih3XHPy8AR+HM68SVEWIwcvLdtg5etwYfw0zXwAeyjMzOKMl7s1Qbv7KLU2t/K WycWtnmdi4uYDmwXsG8JHnDjPaORgDq1fu+uis8CprcpjTa2zIV4drkeY6s1ZqNW7Drs1D gx7vyDCZIzAV7oQgiCDUgTmL6oMNw252aEtSwGUIn6bLAISGfonRL1fgaJaykrk7PySmof oAldVhEunKW0tg031NFIvMgy4DQdPIynafHL95t2TDcMqfL+o4TCpKkxC23OKQ== From: Michael Grimm Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@freebsd.org Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3774.300.61.1.2\)) Subject: Re: Howto: ipsec tunnel routing both IPv4 and IPv6? Possible? Date: Mon, 15 Jan 2024 16:15:40 +0100 References: <33923504-0ECC-46D7-9F6C-91D47CEE4594@ellael.org> <9339DE28-07F6-4855-927B-824360603CB2@ellael.org> <36260194-6050-4ed4-a8e2-9697f41b3adf@plan-b.pwste.edu.pl> To: freebsd-net@freebsd.org In-Reply-To: <36260194-6050-4ed4-a8e2-9697f41b3adf@plan-b.pwste.edu.pl> Message-Id: X-Mailer: Apple Mail (2.3774.300.61.1.2) X-Spamd-Bar: -- X-Spamd-Result: default: False [-2.40 / 15.00]; NEURAL_HAM_LONG(-1.00)[-1.000]; SUBJECT_ENDS_QUESTION(1.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; NEURAL_HAM_SHORT(-1.00)[-1.000]; DMARC_POLICY_ALLOW(-0.50)[ellael.org,quarantine]; MV_CASE(0.50)[]; R_SPF_ALLOW(-0.20)[+ip6:2001:41d0:20a:800::464:c]; R_DKIM_ALLOW(-0.20)[ellael.org:s=dkim]; ONCE_RECEIVED(0.10)[]; MIME_GOOD(-0.10)[text/plain]; MIME_TRACE(0.00)[0:+]; RCPT_COUNT_ONE(0.00)[1]; RCVD_COUNT_ONE(0.00)[1]; RCVD_VIA_SMTP_AUTH(0.00)[]; ARC_NA(0.00)[]; ASN(0.00)[asn:16276, ipnet:2001:41d0::/32, country:FR]; RCVD_TLS_ALL(0.00)[]; MLMMJ_DEST(0.00)[freebsd-net@freebsd.org]; FROM_EQ_ENVFROM(0.00)[]; FROM_HAS_DN(0.00)[]; MID_RHS_MATCH_FROM(0.00)[]; TO_DN_NONE(0.00)[]; PREVIOUSLY_DELIVERED(0.00)[freebsd-net@freebsd.org]; TO_MATCH_ENVRCPT_ALL(0.00)[]; DKIM_TRACE(0.00)[ellael.org:+] X-Rspamd-Queue-Id: 4TDG1M4vwhz4qkZ Marek Zarychta wrote: > W dniu 15.01.2024 o 15:35, Michael Grimm pisze: >> route_tunnel0=3D"fd00:a:a:a::/64 fd00:a:a:a::254" > Please try: > route_tunnel0=3D"-6 -net fd00:a:a:a::/64 fd00:a:a:a::254" Bingo! That did the trick: Internet6: Destination Gateway = Flags Netif Expire fd00:a:a:a::/64 fd00:a:a:a::254 UGS = ipsec0 fd00:a:a:a::254 link#4 UH = ipsec0 fd00:b:b:b::250 link#3 UHS = lo0 Thanks to all who helped, and to me: lessons learned ;-) Regards, Michael= From nobody Mon Jan 15 15:30:18 2024 X-Original-To: freebsd-net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4TDGLG184xz579hc for ; Mon, 15 Jan 2024 15:30:30 +0000 (UTC) (envelope-from trashcan@ellael.org) Received: from mx1.enfer-du-nord.net (mx1.enfer-du-nord.net [IPv6:2001:41d0:20a:800::464]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4TDGLF4q2Lz4sWR for ; Mon, 15 Jan 2024 15:30:29 +0000 (UTC) (envelope-from trashcan@ellael.org) Authentication-Results: mx1.freebsd.org; dkim=pass header.d=ellael.org header.s=dkim header.b=Xe9RX+Xn; dmarc=pass (policy=quarantine) header.from=ellael.org; spf=pass (mx1.freebsd.org: domain of trashcan@ellael.org designates 2001:41d0:20a:800::464 as permitted sender) smtp.mailfrom=trashcan@ellael.org Received: from smtpclient.apple (p200300fb4F0b1b01B9f92D71Fa95cA53.dip0.t-ipconnect.de [IPv6:2003:fb:4f0b:1b01:b9f9:2d71:fa95:ca53]) (using TLSv1.2 with cipher ECDHE-ECDSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mx1.enfer-du-nord.net (Postfix) with ESMTPSA id 4TDGLD3dwBzG5P for ; Mon, 15 Jan 2024 16:30:28 +0100 (CET) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ellael.org; s=dkim; t=1705332628; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=AZ7f9aa02xBa26cWATvXcRyDIR3T8ZnTmA7gPZyqrnU=; b=Xe9RX+XnAAsFXKjx/3vqd6Mfj0EF7U7zRipwrxuLOe7vKo3+xvgsc6QaC4/P9nTiyqcqHP YwCXtwSKSWwT9RorEq5Ps1vOfNkVcCQrSHDDDMOYvcDPpqhyh5s1FnR/AsbuQSt8o2hw8h 8MNMozEjmaddhP8xqvn2+S3RMwIT7+3wZ5o8l/lgo5moMbbv2jGfH/wwCDwQR8EstI5tPY sgYm9OrWWbs5eaJBYyfGYHkLgU/+gZrFvAVrkxEjvcnriBMDBbi7TYU5P7I5hdCvu1F2Rj hgxXjOhWP4UxIX8b7c72ox6nzWRQAd1e/bHn87p3MSemCsK0MXC5eSFXjjZQWA== From: Michael Grimm Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@freebsd.org Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3774.300.61.1.2\)) Subject: Re: Howto: ipsec tunnel routing both IPv4 and IPv6? Possible? Date: Mon, 15 Jan 2024 16:30:18 +0100 References: <33923504-0ECC-46D7-9F6C-91D47CEE4594@ellael.org> <9339DE28-07F6-4855-927B-824360603CB2@ellael.org> <36260194-6050-4ed4-a8e2-9697f41b3adf@plan-b.pwste.edu.pl> To: freebsd-net@freebsd.org In-Reply-To: Message-Id: <210D7B3B-8055-4553-B945-17F196F6C9E0@ellael.org> X-Mailer: Apple Mail (2.3774.300.61.1.2) X-Spamd-Bar: -- X-Spamd-Result: default: False [-2.40 / 15.00]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; SUBJECT_ENDS_QUESTION(1.00)[]; NEURAL_HAM_LONG(-1.00)[-1.000]; NEURAL_HAM_SHORT(-1.00)[-1.000]; MV_CASE(0.50)[]; DMARC_POLICY_ALLOW(-0.50)[ellael.org,quarantine]; R_SPF_ALLOW(-0.20)[+ip6:2001:41d0:20a:800::464:c]; R_DKIM_ALLOW(-0.20)[ellael.org:s=dkim]; MIME_GOOD(-0.10)[text/plain]; ONCE_RECEIVED(0.10)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; RCVD_TLS_ALL(0.00)[]; DKIM_TRACE(0.00)[ellael.org:+]; ARC_NA(0.00)[]; RCVD_COUNT_ONE(0.00)[1]; FROM_HAS_DN(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; TO_DN_NONE(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; ASN(0.00)[asn:16276, ipnet:2001:41d0::/32, country:FR]; PREVIOUSLY_DELIVERED(0.00)[freebsd-net@freebsd.org]; MID_RHS_MATCH_FROM(0.00)[]; MLMMJ_DEST(0.00)[freebsd-net@freebsd.org]; RCPT_COUNT_ONE(0.00)[1]; MIME_TRACE(0.00)[0:+] X-Rspamd-Queue-Id: 4TDGLF4q2Lz4sWR Me wrote: > On 15. Jan 2024, at 16:15, Michael Grimm wrote: >=20 > Marek Zarychta wrote: >> W dniu 15.01.2024 o 15:35, Michael Grimm pisze: >=20 >>> route_tunnel0=3D"fd00:a:a:a::/64 fd00:a:a:a::254" >=20 >> Please try: >> route_tunnel0=3D"-6 -net fd00:a:a:a::/64 fd00:a:a:a::254" >=20 > Bingo! That did the trick: >=20 > Internet6: > Destination Gateway = Flags Netif Expire > fd00:a:a:a::/64 fd00:a:a:a::254 = UGS ipsec0 > fd00:a:a:a::254 link#4 UH = ipsec0 > fd00:b:b:b::250 link#3 = UHS lo0 That has been a bit premature, because now, the IPv4 routing has been = lost. Because when having two identical route_tunnel0=3D keywords provided, = the latter wins. FTR: Here is the final solution: /etc/rc.conf: cloned_interfaces=3D"ipsec0" static_routes=3D"tunnel0 tunnel1" create_args_ipsec0=3D"reqid 104" ifconfig_ipsec0=3D"inet 10.2.2.250 10.1.1.254 tunnel 1.2.3.4 = 10.20.30.40" ifconfig_ipsec0_ipv6=3D"inet6 fd00:b:b:b::250 fd00:a:a:a::254 = prefixlen 128 tunnel 1.2.3.4 10.20.30.40" route_tunnel0=3D"10.1.1.0/24 10.1.1.254" route_tunnel1=3D"-6 -net fd00:a:a:a::/64 fd00:a:a:a::254" ifconfig vtnet0: vtnet0: = flags=3D1008843 metric = 0 mtu 1490 tunnel inet 1.2.3.4 --> 10.20.30.40 inet 10.2.2.250 --> 10.1.1.254 netmask 0xffffff00 inet6 fd00:b:b:b::250 --> fd00:a:a:a::254 prefixlen 128 netstat -rn: Internet: Destination Gateway Flags Netif Expire 10.1.1.0/24 10.1.1.254 UGS ipsec0 10.1.1.254 link#4 UH ipsec0 10.2.2.250 link#3 UHS lo0 Internet6: Destination Gateway = Flags Netif Expire fd00:a:a:a::/64 fd00:a:a:a::254 UGS = ipsec0 fd00:a:a:a::254 link#4 UH = ipsec0 fd00:b:b:b::250 link#3 UHS = lo0 > Thanks to all who helped, and to me: lessons learned ;-) Yeah, Michael From nobody Tue Jan 16 18:53:20 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4TDynr2xQTz57pqg for ; Tue, 16 Jan 2024 18:53:20 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4TDynr10lhz51Ff for ; Tue, 16 Jan 2024 18:53:20 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1705431200; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=iIlfaGkN5/c+j5YyRZIllMOYQVlg/lvOAhCnboXHrMU=; b=RRwPsXVGyHlqx357nJyEmhWe4tD9xopcEKK2dIbssjU4LZdSrj1L/BBqhFRn/qaN1ElYgu lolu2oDAhdd/XF7/0lQxvOSqG5AGFSdTVsjtjXQzohFxxj13YVbhX8w08UUOHj6SjjQITH bh17Q5Vu8SYnXFOOH4wT7QZSGgc9ncDRBnIobvMRZDCGCZ0wgCJENUNiqP1PorQ31THTDm ywSjI7mGGILmnzt/jCpZGZ+r5cXIdzAsqqcfXw7rc7+98jHry828wFqnUPfViAHK9Q8bTX UNIiG7ZTikZmoCRfrVMHnlWQU/FTP9bEt5Nt98xSYXcOGROiNG1hhtTMxpDJNA== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1705431200; a=rsa-sha256; cv=none; b=n9D5XDXwk11vCHF4zBszEksnWGRQVIpE5fxnkBelJoM21q2zM7TTjPMOFSucWppjEVEEZy fmqqNOutDvjbp9DZG7oki1P5Vm35fFhfiWLWvSso+GnEA7PNJyHtulEGT+SuPjC4n7patP dBUY6yURgkaqnEvPnB2663u476xsnZexay+8fJ6UrX1fSI1McjoQan/O2eLgLRBR4wXNF4 cZjY+1JZp1pGk3XH6y3csjLuqCbnUw16/JpL61D2Qh3mLEHom8+sHL9LaLprMsDVVmuLxq KXtuOcvLQ0RarvdDa+hDk0aR5XkhJBN2TycM9qwzey2cWFjShURDBpka7emnIg== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4TDynr05PVzs9T for ; Tue, 16 Jan 2024 18:53:20 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 40GIrJM5048562 for ; Tue, 16 Jan 2024 18:53:19 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 40GIrJJk048560 for net@FreeBSD.org; Tue, 16 Jan 2024 18:53:19 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 276363] if_wg: Fix bug in calculate_padding() for the 'p_mtu = 0' case Date: Tue, 16 Jan 2024 18:53:20 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: CURRENT X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: linimon@FreeBSD.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: assigned_to Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@freebsd.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D276363 Mark Linimon changed: What |Removed |Added ---------------------------------------------------------------------------- Assignee|bugs@FreeBSD.org |net@FreeBSD.org --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Wed Jan 17 16:56:10 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4TFX8C1w5xz58Br5 for ; Wed, 17 Jan 2024 16:56:11 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4TFX8B5fZFz4Ntl for ; Wed, 17 Jan 2024 16:56:10 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1705510570; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=hZiNxCmDIB8/IT/73KQM37MTzoUIyCqWBKAZIs3TvR8=; b=kPWEG64tFS/HOfuXgge7ywuoYvetQNvBIE+GxnrQk2tnv3clU8/5pxiCdBfX/JgEy1rFNR pKzZmJvbcOA9pXs4fzPJl3BB4yqUtSQsZwOS3ZKaAGJY4Df1KXSOHfjEi1tRa4uC5a3Y17 wjHBszMKak8ydgIfJh5+iLYP1n9b0P4WoPwCSk+fOKPT2G9ntsZcbkoN8WomkSUNrur8yH 239YeqQ66n7I/1NtiSuDWcBm/1CJVxGOipkpQH+OElZeIcbwqv6X85XcR7XVMq56I5Vgs6 lXX0zhrXyWrP5SNFlD9iyPUfGw94fjTcUs5Un9CzaxNkuQN1+FhoHyGf3D1EFA== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1705510570; a=rsa-sha256; cv=none; b=iV6IK8dGWDalMmj6Jku6DtDC60BCdI3T5f5Kh2hoNfzB4grbmIrEUDi0x9S/K5HhG12dlb XthRUsVyca+41CCEqGPkjRBXb9JXCAJUWly3EBztfmwSVkPyf9Yi+cO8KTYPHhsAYift3I 14hlbN1czOpuW7jTYZxHn4KGWU8YM7DIOkDCmmNApZW9dNvWc6+w4qVZ3stwQKd2PNzEyl 2O1eGtkHz9tRZCGbqxyAyZdqX9m82BF7CAATZn+8tnYpxgd4L1B43CZVZglbs9kdyZJY2R C7laSz5ZX8tL0er+u+JcURZVydDtJUFpiL79gbuHFaXd3U5KxM9kYVDDvCQveA== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4TFX8B4kx3zX9n for ; Wed, 17 Jan 2024 16:56:10 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 40HGuAah019638 for ; Wed, 17 Jan 2024 16:56:10 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 40HGuAFL019636 for net@FreeBSD.org; Wed, 17 Jan 2024 16:56:10 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 276392] if_wg: Fix noise_remote_alloc() to acquire 'l_identity_lock' lock Date: Wed, 17 Jan 2024 16:56:10 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: CURRENT X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: linimon@FreeBSD.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: assigned_to Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@freebsd.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D276392 Mark Linimon changed: What |Removed |Added ---------------------------------------------------------------------------- Assignee|bugs@FreeBSD.org |net@FreeBSD.org --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Wed Jan 17 17:04:53 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4TFXLF5j45z58Ck3 for ; Wed, 17 Jan 2024 17:04:53 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4TFXLF3zdHz4Qqx for ; Wed, 17 Jan 2024 17:04:53 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1705511093; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=vMHiuPu5/SbKYyijqT3KUhb1kiYLyRlV0NwEOEEMCWY=; b=lBdqUnI12QyByyY9XjUf/B4h1ugeRUqkvCxtF5tLX8vyzV8xLWR9fsr+9rtncLWN81fGpj 84ZdEg5bh0ar6UBA7NX++HH3GtYKjBmbvunAOiqkIO3mBVdVsHzgrSJ869yV5FJMs9UZ+j XKiDe/x/Fc5dXnYRl8gMB8FUUcupDHWvN2WoYTUF5GF8PRTRorfj4/9Qy8KKjCA++xi1d+ XTG9eV0biUTXz4Qyrj20dC4Wg+ZX/WGKNvjs/jPeLqBkRA+PRlywGVlS7GHYiFYpZChVDd J31d1oxMNIZZM+k5o1OgFO8FdD51csrOcfzuAD+Aldo0k0TnZyyEIsB41DA2vA== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1705511093; a=rsa-sha256; cv=none; b=g3AAzgXXxBb0C1KL+ShBCrVgKPxCZ2INamSovfUFx8/URkJiT1NKdiqbjThVoKnYQQuTSM 748PP00DjMBjNrrNmntPUcZ/Qz8/vGSav7kCxb7hQ9Zz5ZjQI4IT8qrR2Xbu8LKfJNgHg6 c7Iwd/mX+HPgfFtLeu9jlMYwGx7OCXopkgKPwCL0FKK/j0J5vzLBMRGB5c/Lxg+CmBxWJx 26ch8gt2/JvyN8rOGsJy43YBq1G0SeZ+7pY6R3rnP6xmV4b8A/hb6N2v1pRXi1sjtbtD5x V1Hu6J/NcqhYV7R2WHip2d+fyCT9UrfVqmRZdY82ro4WUvd5+G2srq7sjP0HLA== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4TFXLF2vqtzXd9 for ; Wed, 17 Jan 2024 17:04:53 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 40HH4rfM065756 for ; Wed, 17 Jan 2024 17:04:53 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 40HH4rjK065755 for net@FreeBSD.org; Wed, 17 Jan 2024 17:04:53 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 276392] if_wg: Fix noise_remote_alloc() to acquire 'l_identity_lock' lock Date: Wed, 17 Jan 2024 17:04:53 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: CURRENT X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: kevans@freebsd.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: cc Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@freebsd.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D276392 Kyle Evans changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |kevans@freebsd.org --- Comment #1 from Kyle Evans --- That's fair, though this should likely just rlock it rather than wlock it. --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Wed Jan 17 21:54:57 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4TFfmy3pTdz56q7t for ; Wed, 17 Jan 2024 21:54:58 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4TFfmy2lgMz43py for ; Wed, 17 Jan 2024 21:54:58 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1705528498; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=fVx0e43x7Dd0lx3CNXhILotlSVlTJYE9hb8NDY4oDWk=; b=nfP1+7LxF65aqclMYvkqBco+vL/LRMpJ+T0ex9yXG64DLGkF+im29grgOJDHBY5I3F4jHY 7mtR6s4XFTVyov9DvpSb55uTf7cDfGC8r70U11KDK498UShR2xTHI7RDCB7ZEYY03t2qfY eqANueASG1QO9Rpe32icX/1342g6YoqmKal3KfZvVBGvR0GNzSXG02JCvnm8JpBGEBqySf /VWl2iJ6QG4tvk5pOUF4qEOGQtE7kXNM2LfxnVirqxHTsbQPx7WdIFXos4eKjNMt5XyCIr cJJJP/PHExQyTwhSED4ZHnoILJZ0ERqNGIeyv7yEwNt0tY1HEi0e+23GOaIiog== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1705528498; a=rsa-sha256; cv=none; b=EYFVEabPW4xiIP9kOZKMtutA0eNYpcFVu+y2dCodmC67fXX1fhSNBjLr6w+r4q+idsF9Eu N7gsZXmXpgpryas9WAKh0ZXwDT1skbkk0u1sfMbmZklL1gwTwKS2cqUfnfanRnX+PE5N6C OlQ28i+XNigndGJXLhD1hGgT7fF0q44Nb61SMEhJyYVCY8LDBo6kexL9oMTJGtfYhgEbTI tZ69oncijettPG0hpm1TZzuj/oymKTR0A/OKxxrxSMK2ExZBYbazMlZHGMu2mNcXKoaRN8 vFfweX78+QcJMYRUHDzOX0/82YKnvE1deMB8z5gTtfp6abk92/wgc2kEi/AWAQ== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4TFfmy1ppXzglq for ; Wed, 17 Jan 2024 21:54:58 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 40HLsw26041523 for ; Wed, 17 Jan 2024 21:54:58 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 40HLswgZ041521 for net@FreeBSD.org; Wed, 17 Jan 2024 21:54:58 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 276392] if_wg: Fix noise_remote_alloc() to acquire 'l_identity_lock' lock Date: Wed, 17 Jan 2024 21:54:57 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: CURRENT X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: aly@aaronly.me X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@freebsd.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D276392 --- Comment #2 from Aaron LI --- Yes, it should be a read lock, and that=E2=80=99s why I use RA_LOCKED in th= e added rw_assert(). I made a typo in the previous patch. Thanks. --- wg_noise.c.orig 2024-01-16 22:53:33.518906792 +0800 +++ wg_noise.c 2024-01-16 23:21:16.069687841 +0800 @@ -281,6 +281,8 @@ noise_local_keys(struct noise_local *l, static void noise_precompute_ss(struct noise_local *l, struct noise_remote *r) { + rw_assert(&l->l_identity_lock, RA_LOCKED); + rw_wlock(&r->r_handshake_lock); if (!l->l_has_identity || !curve25519(r->r_ss, l->l_private, r->r_public)) @@ -302,7 +304,10 @@ noise_remote_alloc(struct noise_local *l r->r_handshake_state =3D HANDSHAKE_DEAD; r->r_last_sent =3D TIMER_RESET; r->r_last_init_recv =3D TIMER_RESET; + + rw_rlock(&l->l_identity_lock); noise_precompute_ss(l, r); + rw_runlock(&l->l_identity_lock); refcount_init(&r->r_refcnt, 1); r->r_local =3D noise_local_ref(l); --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Wed Jan 17 22:44:49 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4TFgtV4v41z56wnB for ; Wed, 17 Jan 2024 22:44:50 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4TFgtV0mQFz48Tk for ; Wed, 17 Jan 2024 22:44:49 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1705531490; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=PKkqi6z2OCVRQORCO/IbknaHakTcW+ZLN6m/Q79k/4c=; b=awCuDik16VOUe70mubMCsrbUpNVD3p8PY2DK9hup831auN/eFiJ2+f3J3/M0whHDjy0Ize SYQjpgEliKBUyt0rQrnQH83tqnSI0iukQkQYBdwCkp473wMMpj+GIdCA1qLfmvY3OObkZd 4Ja0mnmgQyRI678pBq+jAm7XlRtqBnUTKEBN8/FbUzkS0z3nN6Sfsln1yXEESo2FJBe1IU 4L/IPAXy3FUM6BLLQJR3o05QSsmG5u7mygFmWXAEpQWjLPQ/DD1ArzYEzrVWZMqfnW7O4w rdSM5/Tny1o/pW5PQtXTHq2JNI070CrIy47UXKK2nnf+rL/R1nY0jnY3Flf/tg== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1705531490; a=rsa-sha256; cv=none; b=ZzJjLmENuIHSKoa0qyCpnpbkQUQ35dHD6+ZSjkM1cWY40DuSwXqHUTPIWbb2top3GqNrXG v9DT5q7anyxjr6rr7Wc0gJ7jKQkGnv2rSV6S1IzqujO+Az/SMgb2f0Ud+MPrOhZ00NP50e hf6i6hVEyNrtAkGWSwsV6uzKc0w+n6DTahtJOHMuS7U+Z3xeEIytPgElb75p56NV4uOl/7 9vdTxpzImNJ3EUz5e9yO6eJZ7HUOQ07RxkU4pFF8avrJ3tmmGpLt+Z8BlZo6GjrHLWnM4+ eRQ064paOsUgg9okp+4A6U7XzahAQmgX3zxeTqWxyIVzE1ITK55vQXWrBE9Anw== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4TFgtT56YqzhmK for ; Wed, 17 Jan 2024 22:44:49 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 40HMinkr002226 for ; Wed, 17 Jan 2024 22:44:49 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 40HMin5s002225 for net@FreeBSD.org; Wed, 17 Jan 2024 22:44:49 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 276363] if_wg: Fix bug in calculate_padding() for the 'p_mtu = 0' case Date: Wed, 17 Jan 2024 22:44:49 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: CURRENT X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: kevans@freebsd.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: cc Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@freebsd.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D276363 Kyle Evans changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |kevans@freebsd.org --- Comment #2 from Kyle Evans --- (In reply to Aaron LI from comment #1) I would perhaps reorganize it slightly at that point: static inline unsigned int=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20 calculate_padding(struct wg_packet *pkt)=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20 {=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20 unsigned int padded_size, last_unit =3D pkt->p_mbuf->m_pkthdr.len;= =20=20=20=20=20=20=20=20 padded_size =3D (last_unit + (WG_PKT_PADDING - 1)) & ~(WG_PKT_PADDI= NG - 1); if (__predict_true(pkt->p_mtu !=3D 0)) {=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20 if (__predict_false(last_unit > pkt->p_mtu))=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20 last_unit %=3D pkt->p_mtu;=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20 if (pkt->p_mtu < padded_size)=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20 padded_size =3D pkt->p_mtu;=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20 }=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20 return (padded_size - last_unit);=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20 } --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Wed Jan 17 23:13:12 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4TFhWD6kprz570V6 for ; Wed, 17 Jan 2024 23:13:12 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4TFhWD4Pfsz4J6r for ; Wed, 17 Jan 2024 23:13:12 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1705533192; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=4huAcYoWcrzVLk3e1AhAMdSu6qSl2nc73rPuw+LL9o4=; b=xCLSWSieq6b9bs+cGZVXTis5ECordJiYA9a6g15EsPUCX8rv2NO9zrjeMPxuBcv1/1/uye xLLxJlMeB5pyUfvkhsMCG3xpSFBQM51SGcp70rH/gfGwka72auqilrNwTvwjCuyzt06Sv5 EXIurHgLPZxApgaaTdR4xlI8Xd5E5+HgYlpGrDKOpb/nRiK63efMEZevbQBO73I64DGU2A LQQMTL519SkxpxsyrYt6aPoijo0Kv/tZyAdh6WY8o3ee5L32Sp2A9irySi4h2pJkb/gY9s byKqkR16lDVM/oQ85KQ0spK0s6whDnwG7Al3aoClryupPdXfWrkZ/lYRlV0+mw== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1705533192; a=rsa-sha256; cv=none; b=JjIy9UnOe2kkaL2d0z4HnspN30AVaz+8haLFYXdXVX5Gbh7oswQMIgScCvCryCvLcFVCvZ RBd34e5qH8m9PI8hwjzCIXSGx4T5rnw9O2YUlqm6uXzmTrYGEsVtDGh+hvI2l9WGikTLRk 1R92o2qZfhMCQHF65z+dOibyBlUVES2yTlc9shzvmwO/yvjNjq/LUOL/Z/5acNBWxJCkR7 XT1mV5Or1VR8or6sxGDxV4GfQzYA1K32cLBi+3TaDcCORyl/H0SvwqusUOuh1OZKSEgdQz dClsjyH5hhfK5BVGD4W9tMaDhsUK9PSmptMno0ciq3AwrTKGLl9g0ZC4/c2rmg== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4TFhWD3WXWzj9q for ; Wed, 17 Jan 2024 23:13:12 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 40HNDCxF048214 for ; Wed, 17 Jan 2024 23:13:12 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 40HNDCJ5048213 for net@FreeBSD.org; Wed, 17 Jan 2024 23:13:12 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 276363] if_wg: Fix bug in calculate_padding() for the 'p_mtu = 0' case Date: Wed, 17 Jan 2024 23:13:12 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: CURRENT X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: kevans@freebsd.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@freebsd.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D276363 --- Comment #3 from Kyle Evans --- (In reply to Kyle Evans from comment #2) WHoops, sorry, of course we need to re-calculate padded_size. --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Wed Jan 17 23:30:57 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4TFhvj6DWHz572sF for ; Wed, 17 Jan 2024 23:30:57 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4TFhvj58k4z4LLQ for ; Wed, 17 Jan 2024 23:30:57 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1705534257; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=9b3f1gPLfII1ukOElCZNCbqc/+wm5yB1+Pq6Ln8c/Sk=; b=qK1b3Uwa4HDBOfCmoOIe68F8Hjy2ZtfpDS/w4pk9lvM4KoASqnWoqmVEfCKIfJmhE3bpGK CORk3oJU6s2ChU4GSlfGILFGhD7iKxa05LUxQOjjx2H9ZStALYE8STSLGUNfT8lqAuhuNk 2PY3n3rpBYl+otrcnLBbNrisla58FDLMA+lWi29ETDdVCidaF7WV1feXt9oHx5vVEeYFV2 do8e4nhXUeXKGyo+MNrVpP+yBZZMOJFg88d+Ty5AHm6155V0m9ltIWKsF2tspjpEABrj4+ VKAwlTeBdXaLzTMo0riEW8ak++n2w62GGllR04YLNajzyPAMNKbdZDblsrfyFg== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1705534257; a=rsa-sha256; cv=none; b=pRjxpSLIjz+bQ64wM0qrZGqMkzdSCC7ZdBYLE6oDskOQPr2CXVJrdK7NcoN5E+PguEi93w YnSi4z6adsTh+J/PcxR6RyDsKUrrYUYQw4wdHyHDfVK3eb7NxOJel186e5IMgwF+4PKtST KGPh/ovHNMFe16IiAD0rt6+BvYLB7zS99EkMiyIbfPPzsDIt5ZPZiaaby7/gmJhYhT9ZYd Hzjp8hkzLGEw0sV6zOlqelF+XaS2qSPZwobP6cx8Vxx8UWGosMC7+UA22CId1arsTcDJnb vLuivQy3q3axsadOtQNmMmW2P45iu5/Nf+9xJsz68Jz4gi8Db4zm9t72uy+iLw== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4TFhvj4FFTzjjD for ; Wed, 17 Jan 2024 23:30:57 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 40HNUvrG025604 for ; Wed, 17 Jan 2024 23:30:57 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from bugzilla@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 40HNUvH5025603 for net@FreeBSD.org; Wed, 17 Jan 2024 23:30:57 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: bugzilla set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 276392] if_wg: Fix noise_remote_alloc() to acquire 'l_identity_lock' lock Date: Wed, 17 Jan 2024 23:30:57 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: CURRENT X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: commit-hook@FreeBSD.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@freebsd.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D276392 --- Comment #3 from commit-hook@FreeBSD.org --- A commit in branch main references this bug: URL: https://cgit.FreeBSD.org/src/commit/?id=3D7a4d1d1df0b2e369adcb32aea9ef8c180= f885751 commit 7a4d1d1df0b2e369adcb32aea9ef8c180f885751 Author: Aaron LI AuthorDate: 2024-01-17 23:29:23 +0000 Commit: Kyle Evans CommitDate: 2024-01-17 23:29:54 +0000 if_wg: fix access to noise_local->l_has_identity and l_private These members are protected by the identity lock, so rlock it in noise_remote_alloc() and then assert that we have it held to some extent in noise_precompute_ss(). PR: 276392 sys/dev/wg/wg_noise.c | 4 ++++ 1 file changed, 4 insertions(+) --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Wed Jan 17 23:30:59 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4TFhvm17ZRz572fB for ; Wed, 17 Jan 2024 23:31:00 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4TFhvl51lQz4LCH for ; Wed, 17 Jan 2024 23:30:59 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1705534259; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=L7jajSjZb3E/pOx8n9kx0nJRVO/tNmJFwj6CBk7GA3o=; b=iVJt7PYFH1we3q7CEtM8/5yBoJN9OxYBTZuleYDi5L5iYsfv7ksgmkhxCtFSDBlJa57Uf6 LhURg0yBG69LmQMvspYrFFvSbll/QK3/jmPYbg0fWAL3MLSDgfTJzGjy+MiXZAX9WpukLV bKKvExNbpq651qcDZsxKfWJV/U6WBrV2otGm4voXLjl+6dYSDMgAuTICY3x7RvNRYmoveL IH2gduZqddA/W2rvEJWlGyN9sZ8JcCd3TU+MibZQL47Q+Bhk8lPPuwZQbmOySaFmUmkmiV nnQVhWjyb7btX4OcA+tvB/hCxQJTkjjCXu+3kJ34kgeZcZCt/IOAncIZFkpFHw== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1705534259; a=rsa-sha256; cv=none; b=pw5hEQZ6lGbA1gc/WbL41vNFeVlG5q3FA1Dx0G+o0oaKHv9tCJ6Pueo/g4QyjLEO6HfbeV ywrJSYmOhdNU0Qah82EXGAO5D34gfE6p2WFr1EoYvetfy/hqNgNCS6tgP7BFGKT+fjnZrU CgWLcnr8fyDfCPSNl4dty2L8cfZkG6ZrkAO31GEGmP2y7jYGkc2Q4q3O8ANNwIeKZBPdiB WFyY8PBkmAL8cBES9ItKxqawdTQPzrSOhno9DqqX/EGL++rfdOOtlO7TxHwJ2tnpPl9QaT s7v2OL35wl9chXkpy5J1//7hCXJhrhOXI+9NqzPMJ262wczKjkD+zYU/cYvemg== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4TFhvl47CRzkLY for ; Wed, 17 Jan 2024 23:30:59 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 40HNUx3Y025704 for ; Wed, 17 Jan 2024 23:30:59 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from bugzilla@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 40HNUxD2025703 for net@FreeBSD.org; Wed, 17 Jan 2024 23:30:59 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: bugzilla set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 276363] if_wg: Fix bug in calculate_padding() for the 'p_mtu = 0' case Date: Wed, 17 Jan 2024 23:30:59 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: CURRENT X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: commit-hook@FreeBSD.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@freebsd.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D276363 --- Comment #4 from commit-hook@FreeBSD.org --- A commit in branch main references this bug: URL: https://cgit.FreeBSD.org/src/commit/?id=3Db891f61ef538a4e9b4658b4b756635c80= 36a5788 commit b891f61ef538a4e9b4658b4b756635c8036a5788 Author: Aaron LI AuthorDate: 2024-01-17 23:29:23 +0000 Commit: Kyle Evans CommitDate: 2024-01-17 23:29:52 +0000 if_wg: fix erroneous calculation in calculate_padding() for p_mtu =3D= =3D 0 In practice this is harmless; only keepalive packets may realistically = have p_mtu =3D=3D 0, and they'll also have no payload so the math works out = the same either way. Still, let's prefer technical accuracy and calculate the amount of padding needed rather than the padded length... PR: 276363 sys/dev/wg/if_wg.c | 10 +++++++--- 1 file changed, 7 insertions(+), 3 deletions(-) --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Wed Jan 17 23:32:59 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4TFhy42bz7z572cn for ; Wed, 17 Jan 2024 23:33:00 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4TFhy41XLsz4MYb for ; Wed, 17 Jan 2024 23:33:00 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1705534380; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=rz73S9FN4jS/4+cfrFpd+FWFGlWVqoEizZcBt1zZuzE=; b=thYDxgIQHlWsWsV8EgSGROVVlv3Q9sqr7DaPhcYSiRbDVYHyVkbKZ96uIUnA3uz84fjnPE H+tsEHuGCAicaIpFmeB3jjd3+kJOY5UA6LcaOdvQuvGsTDXW+K7BVfb/npaE9nFFnZKYpN pCtT8Gclucp0AK284K7E1LpuwxmNX9RaqLJ6pa3/yg9L/InTUUquR0G39WnHcTXbvD4gI5 i6gsg9pjgIncum4NkySJrMoPlqPd22MbspB7KI7HM5xIj/KIExRDg0E5gKD4foNMmD5cZK emNXxHbo8hqbU4C5xSOfKvaaDVuMMUXwTZ9ve1Drr5h4ROquCDhMf2D02U0uGw== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1705534380; a=rsa-sha256; cv=none; b=IrPL+9Sz0UnCyZ1IE9SEtR30U1WMXOQ8CqfjPqSD21pehfH+YkthZSmlw5j4Shoe79YsVo psV5O+ZkkHZxZgggyWo4KyUd3iu8PiwW21rquYPQyzbUWn0qcEpjmsChPVjmRuwwNNVTfW toz6P0Soe0rgrFgyfhLjkPxUMPvF0HFYMotVZFnZr+ok1b7lt9DpZW2rR4Ii58S2dQ6ORb qCpxJTyHI/SF/iKADAqfz8mIp6Bruaezx+0z3pz0j6FH4f5AXJ+eBIOyEXC2tRoDz9k3nZ HqrP+Xu0sBD9IGLGavJXpOHOlQMohUPj2le4bnYghDV/10yjgGK6cLt873Mrjg== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4TFhy40b7KzkQJ for ; Wed, 17 Jan 2024 23:33:00 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 40HNX0Hp044783 for ; Wed, 17 Jan 2024 23:33:00 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 40HNX0Ta044677 for net@FreeBSD.org; Wed, 17 Jan 2024 23:33:00 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 276392] if_wg: Fix noise_remote_alloc() to acquire 'l_identity_lock' lock Date: Wed, 17 Jan 2024 23:32:59 +0000 X-Bugzilla-Reason: AssignedTo CC X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: CURRENT X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: kevans@freebsd.org X-Bugzilla-Status: In Progress X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: kevans@freebsd.org X-Bugzilla-Flags: mfc-stable13? mfc-stable14? mfc-stable12- X-Bugzilla-Changed-Fields: assigned_to cc flagtypes.name bug_status Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@freebsd.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D276392 Kyle Evans changed: What |Removed |Added ---------------------------------------------------------------------------- Assignee|net@FreeBSD.org |kevans@freebsd.org CC| |net@FreeBSD.org Flags| |mfc-stable13?, | |mfc-stable14?, | |mfc-stable12- Status|New |In Progress --- Comment #4 from Kyle Evans --- Thanks! --=20 You are receiving this mail because: You are the assignee for the bug. You are on the CC list for the bug.= From nobody Wed Jan 17 23:33:21 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4TFhyV0M41z572st for ; Wed, 17 Jan 2024 23:33:22 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4TFhyT6RGJz4N1S for ; Wed, 17 Jan 2024 23:33:21 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1705534401; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=dcH5luY/6nfK/rthVZoLNBn5O50uGk6oiYB5gNxSjlA=; b=M+tDuwLi/ua7PGQTF7QloGZxk/pVzrzNjOGDp+wADn3WrUIxmSBfVWyxx7fxrH6Qfg2n/4 pq4ZPjAd4RUXZetECDsO4nJDhKJhY7v4MLmoqDq7fqcKO1NlkvO4aamG0P04M046RMJW8z 6dBnpilwZBDViNueFz61n3aOXZVU6DKAgzShbp5q6IqMmUKvq4okWn9c48ild93JA3U1nc +YBdFry8ECNg0gRCvll+W19ZVO4eyrlb6F7/gr5+dBynpyAErQMLccD4R/13e3h1IO4xnk HqS19exz2Qubo2JTcstMkNG9N6ejjBBhONxLg+K6OD887HjtSp7WGdU8CNEVYg== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1705534401; a=rsa-sha256; cv=none; b=n4V8y+f/wlXfXog3obYhMXC12ce1n2pSeKo6Ioqw4exEgGr3VxPSR4dF9KsPh2/q80wDcO o05KKspLHRdVPPehS9NBQhDJSKCZCrbenJdW6jbfdxNZ6dmP/IpY5dUlA9+Gk1D2KVR/l0 6Em7m+MzEAx3XkSLEHXiUoKonol5h0aDXhLHDQkFGmwB1Gk34yonWi/mtX7fzfThD4KRhD 3VYpr+ZEzwP0b/hWCpWSZo7X5GBVF/Cx1VDXiHtewvEg/ZPn6EjEldsxdbJsxTd8E1H3EA EpA6tytBfeZjchWTF+0IFZP03Bcdo5gZRw7btkYyfG4TkVQ8EtFTlMpVdFdfmA== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4TFhyT5VdvzkSk for ; Wed, 17 Jan 2024 23:33:21 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 40HNXLkH046151 for ; Wed, 17 Jan 2024 23:33:21 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 40HNXL8n046150 for net@FreeBSD.org; Wed, 17 Jan 2024 23:33:21 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 276363] if_wg: Fix bug in calculate_padding() for the 'p_mtu = 0' case Date: Wed, 17 Jan 2024 23:33:21 +0000 X-Bugzilla-Reason: AssignedTo CC X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: CURRENT X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: kevans@freebsd.org X-Bugzilla-Status: In Progress X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: kevans@freebsd.org X-Bugzilla-Flags: mfc-stable13? mfc-stable14? mfc-stable12- X-Bugzilla-Changed-Fields: flagtypes.name cc assigned_to bug_status Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@freebsd.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D276363 Kyle Evans changed: What |Removed |Added ---------------------------------------------------------------------------- Flags| |mfc-stable13?, | |mfc-stable14?, | |mfc-stable12- CC| |net@FreeBSD.org Assignee|net@FreeBSD.org |kevans@freebsd.org Status|New |In Progress --=20 You are receiving this mail because: You are the assignee for the bug. You are on the CC list for the bug.= From nobody Wed Jan 17 23:38:15 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4TFj475RmJz573Lx for ; Wed, 17 Jan 2024 23:38:15 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4TFj474PLGz4NZG for ; Wed, 17 Jan 2024 23:38:15 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1705534695; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=5WAz+28EYtTwhlF4WWTlpDXmlpDuaODmQkaWv5+GNnY=; b=GYRdFBBLkhSFDz0eaBnlAjRuIcbBiUI1D2d+RzMG8Xg+gKFL60OoIMG1TDT1d5Q8UNKj+i lF+VR4gvliksY8H3NzrmbytfH5kVvgyKLvkjYuLnf8bbqJpzAyRGJgbeheec8gae/xDNT/ Zl+VQmQtNwUIN/Xje+ZxrnwervecJtEHiE+YWZ03DSOYcz6ca+POabVHBy2PdHmpeKMDnB 4MOUbzOtMQQyd7oZSKbYZnm/bn4IGzF/mftwxUvgTZFqcsjtBas36Odxj06ZRCz60HMuPs DSUNHHE0J/Zi1JbFG/ABqB5ESEGpDm4YqMfoKJbcPuTHmctoLXM6EzqD39IXHw== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1705534695; a=rsa-sha256; cv=none; b=E7gGP1ev6oYzdl0j6imjXw0ReOL6de5Fo3J1WOgkniJcB2cxFsxcbnv1RjE3hO1aMMZ5+E k/dpcNn0mhJoSsy804jgJdj67OtYaDRZf2aHAbuVX3Yphq02Whuft/Xwdi0l5O/TK7u6uC GrkVQf2FhY29mgYWOlEfvP0u33rUGNfTZ14M255w0ZZxx6tWu2XDn+2Y+arwt5xI0WMv+N dEHkLrK8rsTNhaKv+fZFTWGYF5noYp4b/uIqh/qvP3Yimkg4eja31SBMsgG/GaMlCfg3Ku p8hva2Fl0t4e1xI1Nk92hu1zpOiAAnE2n6xo1mgb0fgtNtN3mPuLu8sdnTEJ1Q== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4TFj473M4WzkM8 for ; Wed, 17 Jan 2024 23:38:15 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 40HNcFaR061529 for ; Wed, 17 Jan 2024 23:38:15 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 40HNcFGu061524 for net@FreeBSD.org; Wed, 17 Jan 2024 23:38:15 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 276392] if_wg: Fix noise_remote_alloc() to acquire 'l_identity_lock' lock Date: Wed, 17 Jan 2024 23:38:15 +0000 X-Bugzilla-Reason: CC X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: CURRENT X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: kevans@freebsd.org X-Bugzilla-Status: In Progress X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: kevans@freebsd.org X-Bugzilla-Flags: mfc-stable13? mfc-stable14? mfc-stable12- X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@freebsd.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D276392 --- Comment #5 from Kyle Evans --- In practice the device's sc_lock is xlocked in both callers and this can't really race, but I think it makes sense to be pedantic/defensive about it. --=20 You are receiving this mail because: You are on the CC list for the bug.= From nobody Sat Jan 20 22:15:02 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4THW4k5Czxz57d4p for ; Sat, 20 Jan 2024 22:15:02 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4THW4k3qPVz51l8 for ; Sat, 20 Jan 2024 22:15:02 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1705788902; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=zpGRVAIPeCqHt326qWNjB6Zeop8Mf0ZvnQVUPhoYLNI=; b=mkvcy3HGgWv878RKoJtGpAYIq8coX1uzwvx8G+RJ07jy4smO2jredwEuBhpiBiqb7BUxXj JlphWOG9pHKA985XUt3cqumrSKcd8WPFzbvHI+o6LUwcM4uKyslnIIRkjIGGBsQwxEpAuO EKG6I8oz/S7fz+RzWLrauWCN/eXAjzGQyHsLMSxF2pkwzJfSxPs2OpaRzvgYmwl1wVyyDo ie2bz+uCZ4nPpWadunexlsX/5dJ1iK9NDXad3xiaGJ6QB3zoJ/1fH4CT4wb0YmKudsO8aH 8/ZEQAQPcdVTSNBMLhKCZQze0Mfo8p7sYzswPWm1dHF7FCF4oN3e95QQrCxkTg== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1705788902; a=rsa-sha256; cv=none; b=WLr3MU7l9pMhMEv7oZpiNNj2ZCtwk8AJopv69T5lEg42NUhu2OyUTuWF9IQNU+C4x+RrNG wpMXmLL3y02PBxlSfqj6E50z6GhLYE7A7Ktdgi3/y2QRpL70Zi15jT4SifWmtc19kkSYhz awfQW6yByBRStePOSWZUSvFxsdUUf99QC5TwsEvK1B20lW00x0aUAFhZYqJJFAQgFjmWek 0yXQphCM6AKCWkBnlFdYogiks5o0QN0+4L0+rbMWiWhxCdu3zHUQvBTWB7lj/NN0Otqkp1 PKzZf5qBpwFFLbWMVU9qQIY7SjN7DoMMYzgKzE1Z3im4aYZJXJ+W6nlf/NLv8Q== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4THW4k2tXKzs0c for ; Sat, 20 Jan 2024 22:15:02 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 40KMF26Q057272 for ; Sat, 20 Jan 2024 22:15:02 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 40KMF2e9057271 for net@FreeBSD.org; Sat, 20 Jan 2024 22:15:02 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 255054] vtnet0: jng files to run: ngctl msg vtnet0: setpromisc 1: ngctl: send msg: Operation not supported Date: Sat, 20 Jan 2024 22:15:02 +0000 X-Bugzilla-Reason: CC X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 13.0-STABLE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: linimon@FreeBSD.org X-Bugzilla-Status: Closed X-Bugzilla-Resolution: FIXED X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: afedorov@FreeBSD.org X-Bugzilla-Flags: mfc-stable13? X-Bugzilla-Changed-Fields: bug_status resolution Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@freebsd.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D255054 Mark Linimon changed: What |Removed |Added ---------------------------------------------------------------------------- Status|In Progress |Closed Resolution|--- |FIXED --=20 You are receiving this mail because: You are on the CC list for the bug.= From nobody Sun Jan 21 21:00:05 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4TJ5Mp2N4Vz57kM4 for ; Sun, 21 Jan 2024 21:00:06 +0000 (UTC) (envelope-from bugzilla-noreply@FreeBSD.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4TJ5Mn5zxJz3x9X for ; Sun, 21 Jan 2024 21:00:05 +0000 (UTC) (envelope-from bugzilla-noreply@FreeBSD.org) ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1705870805; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding; bh=zOwS6UFhHqQ/7xRRI7AnWebWA2HDD74pOuBredlleko=; b=nDNEvdQITIlSSYgkdAS14ivDbE7G6esZ9zem4bAkrivX2j4a3f+dQvfSuK0IAMyIQmCNcx YkSlueTUcrgdiXsx9NfPFQT9Ei6o56Ulk1mKqxox3nQyIkAr/KH3sdZ/iyoLXEVFhc8BS3 oxgybQaVHddICFaQ8A6Lu3FvTe9hQ7F6I1VCLGXF5F4z+yovTa7U2tAHEiHjuwhBpGGOly q4gyYG2QtTIyjD1JpDsBuM+Em6fqFAg71DEtTkAF3FJXTUbCTnA65UH4+WUN0G9m+AeBMr 4ceIji7mZAaXHLqr7BDsxpLRG0UdfSaDCAv2wxG+pak0pxV1SdJT3kB4tcT7WA== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1705870805; a=rsa-sha256; cv=none; b=GWe31Rzb9yME2zz8BCpl2YpWuj8CX9I/Drtn5MU8ndc9rPhWiuBbeUXBYH0+Mi1vOuxV2s H0gUJtXuh06GPVNIuRqkeyHnjP4cwZ3muxR10ID5lkoaJ3/E4RYAjoYX86fRkqkBud4acf 4v26aYBZq3GWVJRvTSgxk/YliGeeKSwZ0k3mW/LwO2zGf8cIGnT6SBUzbVkOne/IMPVr+6 LBtLcPd28YhFLVDFgohCnUfyYKhm64Lan7kmLLQ3PgHpvWNzmfZNFKoHO7JVWP+W7x748P 0k0Rv7gzDV5NTTxm6/w3nbBkUzTehvrhrC5ZnizdVrVqFFOOsloYNNBcM/4TyQ== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4TJ5Mn547KzYkx for ; Sun, 21 Jan 2024 21:00:05 +0000 (UTC) (envelope-from bugzilla-noreply@FreeBSD.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 40LL05gC010996 for ; Sun, 21 Jan 2024 21:00:05 GMT (envelope-from bugzilla-noreply@FreeBSD.org) Received: (from bugzilla@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 40LL05vi010991 for net@FreeBSD.org; Sun, 21 Jan 2024 21:00:05 GMT (envelope-from bugzilla-noreply@FreeBSD.org) Message-Id: <202401212100.40LL05vi010991@kenobi.freebsd.org> X-Authentication-Warning: kenobi.freebsd.org: bugzilla set sender to bugzilla-noreply@FreeBSD.org using -f From: bugzilla-noreply@FreeBSD.org To: net@FreeBSD.org Subject: Problem reports for net@FreeBSD.org that need special attention Date: Sun, 21 Jan 2024 21:00:05 +0000 List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@freebsd.org MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="17058708057.EEa06.8510" Content-Transfer-Encoding: 7bit --17058708057.EEa06.8510 Date: Sun, 21 Jan 2024 21:00:05 +0000 MIME-Version: 1.0 Content-Type: text/plain; charset="UTF-8" To view an individual PR, use: https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=(Bug Id). The following is a listing of current problems submitted by FreeBSD users, which need special attention. These represent problem reports covering all versions including experimental development code and obsolete releases. Status | Bug Id | Description ------------+-----------+--------------------------------------------------- In Progress | 275774 | IPv4 Mapper address problem New | 254445 | cloned_interfaces="bridge0" does not respect net. Open | 166724 | if_re(4): watchdog timeout Open | 200836 | iovctl(8): Return descriptions in the returned sc Open | 223824 | Panic in ng_base.c (netgraph) Open | 230807 | if_alc(4): Driver not working for Killer Networki Open | 232472 | ixgbe(4): SR-IOV passthru not working on Hyper-V Open | 234073 | ixl(4): Host X710-DA2 drops connect starting bhyv Open | 241106 | tun/ppp: panic: vm_fault: fault on nofault entry Open | 256217 | [tcp] High system load because of interrupts with Open | 257038 | em(4): Panic on HTTP traffic to or from jail thro Open | 257286 | gateway with `ping -6 -e` is ignored Open | 258623 | cxgbe(4): Slow routing performance: 2 numa domain Open | 258850 | lagg(4): interface vanishes when both member inte Open | 261866 | ixgbe(4): Resets media type -> autoselect after s Open | 262024 | em(4): iflib handles bad packets incorrectly Open | 262093 | ixl(4): RX packet errors on Intel X710 after 12.2 Open | 263568 | ix(4): SR-IOV connection lost after loading VM wi In Progress | 118111 | rc: network.subr Add MAC address based interface 19 problems total for which you should take action. --17058708057.EEa06.8510 Date: Sun, 21 Jan 2024 21:00:05 +0000 MIME-Version: 1.0 Content-Type: text/html; charset="UTF-8" 
The following is a listing of current problems submitted by FreeBSD users,
which need special attention. These represent problem reports covering
all versions including experimental development code and obsolete releases.

Status      |    Bug Id | Description
------------+-----------+---------------------------------------------------
In Progress |    275774 | IPv4 Mapper address problem
New         |    254445 | cloned_interfaces="bridge0" does not respect net.
Open        |    166724 | if_re(4): watchdog timeout
Open        |    200836 | iovctl(8): Return descriptions in the returned sc
Open        |    223824 | Panic in ng_base.c (netgraph)
Open        |    230807 | if_alc(4): Driver not working for Killer Networki
Open        |    232472 | ixgbe(4): SR-IOV passthru not working on Hyper-V 
Open        |    234073 | ixl(4): Host X710-DA2 drops connect starting bhyv
Open        |    241106 | tun/ppp: panic: vm_fault: fault on nofault entry 
Open        |    256217 | [tcp] High system load because of interrupts with
Open        |    257038 | em(4): Panic on HTTP traffic to or from jail thro
Open        |    257286 | gateway with `ping -6 -e` is ignored
Open        |    258623 | cxgbe(4): Slow routing performance: 2 numa domain
Open        |    258850 | lagg(4): interface vanishes when both member inte
Open        |    261866 | ixgbe(4): Resets media type -> autoselect after s
Open        |    262024 | em(4): iflib handles bad packets incorrectly
Open        |    262093 | ixl(4): RX packet errors on Intel X710 after 12.2
Open        |    263568 | ix(4): SR-IOV connection lost after loading VM wi
In Progress |    118111 | rc: network.subr Add MAC address based interface 

19 problems total for which you should take action.
--17058708057.EEa06.8510--