From nobody Mon Sep 16 09:08:52 2024 X-Original-To: freebsd-net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X6fH56hB8z5Wrs3 for ; Mon, 16 Sep 2024 09:09:05 +0000 (UTC) (envelope-from dfr@rabson.org) Received: from mail-yw1-x1134.google.com (mail-yw1-x1134.google.com [IPv6:2607:f8b0:4864:20::1134]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "WR4" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X6fH51Nnlz4dDr for ; Mon, 16 Sep 2024 09:09:05 +0000 (UTC) (envelope-from dfr@rabson.org) Authentication-Results: mx1.freebsd.org; none Received: by mail-yw1-x1134.google.com with SMTP id 00721157ae682-6d5893cd721so21733917b3.0 for ; Mon, 16 Sep 2024 02:09:05 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=rabson-org.20230601.gappssmtp.com; s=20230601; t=1726477744; x=1727082544; darn=freebsd.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=sveA9snzm0D96MwGpoG2ayvFpwBD/0X+XQIVa4p4Fso=; b=ooCdFd5T0jq9DaPFXlJO2PANJFPXkhxXvfEgh0iYNySnYWoTqUQgeuAh1ONgSLsLHP RUaWmxkqP3u6+d3KpG6Jg/ZiaNFebdsY7W5KjKNn2Kcndk+LIrRutXgSruK49roO6CzT bAVQ66ipHzVz7Lze2vBePjaGlydq0B7zGbJ+cN8UZYVBZss1L27ZrHdA+gVxN123BDWa NdONzO8ElL3nGABbCtFAfqhJfBQBFvVzUW72ZxsA1me2aO91gEdDQMcI4CJ42g7m9nJ4 9klDHBvZLfg5Q8mawpNNKfQs1/qcBjmkGZK2RNM1CpPVnTVlWe3zoVc+v2M4ZDBjL4q3 yt5w== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1726477744; x=1727082544; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=sveA9snzm0D96MwGpoG2ayvFpwBD/0X+XQIVa4p4Fso=; b=a64Q3K5gGzJDlOBYQ1QcNMZmmh6lX3ovc+MJZQx1wUVCXQg7EQvlLHWxNrBJ0wlakm BpUGA/cwYeaASc+fPu7VAS2cXhZFXucL3AnFzRsEmNcFNsAPm7V3OEy3xPw4r5aQMiWD BuEk+TZ9H18CrgGd1Nz8+PniVyYntxTm0vx5/lnrNinVjhMnA90YcM0sukY7aeZm0YRn /GzY171yAj9INsyXQbJCjHW2KvLj67E5vrZfXvfd+I2TJFYJF5OyUYH2DefSlOgydhLk hPUlaBEibqvT8HPhyoQYdSCcVc4kPyCnz8+FMjvKqLP8clx35ayGahdhivLWycynpn64 CCNw== X-Forwarded-Encrypted: i=1; AJvYcCXwCy7aNz+GJu0JMkfN/tWleLxJDw4TIAtjClIAFA41g7LM5cU8fHATojI8KiSkRn9vL6CeClCiaUn7dw==@freebsd.org X-Gm-Message-State: AOJu0YwFzD3TKuLpwHNh0SILAj1bEALRiNsTWI5uI0bkmPS4M50/T6S0 OHeu0mrFEWDcIZbupkyYBwP3B78FGyUVYnAgXoXifTJKQkLoNeTuMNaNLjVGtsRawRe1ia9OxfY yZr2JKqItfZosaTUqfBdWPNQw/2bbDiRJ4SCoKw== X-Google-Smtp-Source: AGHT+IHwf2Qdttbk3jypJbPmFf4RRRWXUefY/mbqhiRN585d2T9AUU9rQ9h6rwXST3zqX5BzEgDDusSkcKBHmDsLjRI= X-Received: by 2002:a05:690c:2d86:b0:6b5:5042:2c9d with SMTP id 00721157ae682-6dbcc4c08fdmr65753477b3.24.1726477743946; Mon, 16 Sep 2024 02:09:03 -0700 (PDT) List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 References: <20240913100938.3eac55c9fbd976fa72d58bb5@gmail.com> <39B2C95D-1E4F-4133-8923-AD305DFA9435@longcount.org> <20240913155439.1e171a88bd01ce9b97558a90@gmail.com> <20240914112516.cfb31bae68ab90b83ca7ad4b@gmail.com> <20240915185654.b51cfec5aa2520e5b801cc87@gmail.com> In-Reply-To: <20240915185654.b51cfec5aa2520e5b801cc87@gmail.com> From: Doug Rabson Date: Mon, 16 Sep 2024 10:08:52 +0100 Message-ID: Subject: Re: Performance issues with vnet jails + epair + bridge To: Sad Clouds Cc: Zhenlei Huang , Mark Saad , FreeBSD Net Content-Type: multipart/alternative; boundary="000000000000a41d4d062238ec76" X-Spamd-Bar: ---- X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US] X-Rspamd-Queue-Id: 4X6fH51Nnlz4dDr --000000000000a41d4d062238ec76 Content-Type: text/plain; charset="UTF-8" On Sun, 15 Sept 2024 at 18:56, Sad Clouds wrote: > On Sun, 15 Sep 2024 18:01:07 +0100 > Doug Rabson wrote: > > > I just did a throughput test with iperf3 client on a FreeBSD 14.1 host > with > > an intel 10GB nic connecting to an iperf3 server running in a vnet jail > on > > a truenas host (13.something) also with an intel 10GB nic and I get full > > 10GB throughput in this setup. In the past, I had to disable LRO on the > > truenas host for this to work properly. > > > > Doug. > > Hello Doug, can you please confirm that you are NOT using if_epair(4)? I > imagine you dedicate one of the Intel 10Gb ports to a jail. This is not > an option for some of us, so a virtual NIC of some sort is the only > option with vnet jails. Other people also mentioned that vnet by itself > is not an issue and your test confirms this, however I'm observing poor > scalability specifically with the epair virtual NIC. > > I will be trying netgraph when I have some more time. If there are > other alternatives to if_epair then I would be interested to learn > about them. > I am using epair on the server side of that test. On the truenas server, I have an if_bridge instance which has one vlan of the physical intel nic as member along with one side of an epair for each of the several jails running on the host. As I mentioned, disabling LRO on the physical nic was helpful in reaching this throughput. Doug. --000000000000a41d4d062238ec76 Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable


=
On Sun, 15 Sept 2024 at 18:56, Sad Cl= ouds <cryintothebluesky@g= mail.com> wrote:
On Sun, 15 Sep 2024 18:01= :07 +0100
Doug Rabson <dfr@rab= son.org> wrote:

> I just did a throughput test with iperf3 client on a FreeBSD 14.1 host= with
> an intel 10GB nic connecting to an iperf3 server running in a vnet jai= l on
> a truenas host (13.something) also with an intel 10GB nic and I get fu= ll
> 10GB throughput in this setup. In the past, I had to disable LRO on th= e
> truenas host for this to work properly.
>
> Doug.

Hello Doug, can you please confirm that you are NOT using if_epair(4)? I imagine you dedicate one of the Intel 10Gb ports to a jail. This is not
an option for some of us, so a virtual NIC of some sort is the only
option with vnet jails. Other people also mentioned that vnet by itself
is not an issue and your test confirms this, however I'm observing poor=
scalability specifically with the epair virtual NIC.

I will be trying netgraph when I have some more time. If there are
other alternatives to if_epair then I would be interested to learn
about them.

I am using epair=C2=A0on th= e server side of that test. On the truenas server, I have an if_bridge inst= ance which has one vlan of the physical intel nic as member along with one = side of an epair=C2=A0for each of the several jails running on the host. As= I mentioned, disabling LRO on the physical nic was helpful in reaching thi= s throughput.

Doug.=C2=A0
--000000000000a41d4d062238ec76-- From nobody Mon Sep 16 14:32:11 2024 X-Original-To: freebsd-net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X6nS60Yt3z5W8tG for ; Mon, 16 Sep 2024 14:32:22 +0000 (UTC) (envelope-from SRS0=ik9+=QO=quip.cz=000.fbsd@elsa.codelab.cz) Received: from elsa.codelab.cz (elsa.codelab.cz [94.124.105.4]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4X6nS55McJz45R5; Mon, 16 Sep 2024 14:32:21 +0000 (UTC) (envelope-from SRS0=ik9+=QO=quip.cz=000.fbsd@elsa.codelab.cz) Authentication-Results: mx1.freebsd.org; none Received: from elsa.codelab.cz (localhost [127.0.0.1]) by elsa.codelab.cz (Postfix) with ESMTP id A5D29D78C6; Mon, 16 Sep 2024 16:32:12 +0200 (CEST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=quip.cz; s=private; t=1726497132; bh=8UVa/Sb+aV2u2q7dmgL1f+9DtYAaToEVQsfXetavraI=; h=Date:Subject:To:Cc:References:From:In-Reply-To; b=GbbP2Z1V6yQKBJO+RBJaTKjvTI+IT0nz1RD6iMjCcMIFM3L13PZlhWeGgmctERDBg +u1VlFMe9p2VC4a7oLD9CjtJKeGl/H3W1Sxzu4EtKY96zUiAgN0lmhWZNZ11zeIb1w 6DIf1q36Alut62J0IZv9JNUY3aaQsvCF1T+R7fE0= Received: from [192.168.145.49] (ip-89-177-27-225.bb.vodafone.cz [89.177.27.225]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by elsa.codelab.cz (Postfix) with ESMTPSA id 80F8ED78C7; Mon, 16 Sep 2024 16:32:11 +0200 (CEST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=quip.cz; s=private; t=1726497131; bh=8UVa/Sb+aV2u2q7dmgL1f+9DtYAaToEVQsfXetavraI=; h=Date:Subject:To:Cc:References:From:In-Reply-To; b=edIrHc0sklmXrDaOm4OUT0zfvFb39iN0whZwRrS3/Nd0Etiz+SnaliVnI/B04hoMc HWprlJZ6cqhSBJrcL7mnE9ArHkoFbccGXTUvU4dwDryc/PB3cLxT7GwPFQ3z58tolS MSwFoJXLX0V98v4kU5FeixYXHMPTUhs4iJNU4F5E= Message-ID: Date: Mon, 16 Sep 2024 16:32:11 +0200 List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 User-Agent: Mozilla Thunderbird Subject: Re: Performance issues with vnet jails + epair + bridge To: Sad Clouds Cc: Zhenlei Huang , Mark Saad , FreeBSD Net References: <20240913100938.3eac55c9fbd976fa72d58bb5@gmail.com> <39B2C95D-1E4F-4133-8923-AD305DFA9435@longcount.org> <20240913155439.1e171a88bd01ce9b97558a90@gmail.com> <20240914112516.cfb31bae68ab90b83ca7ad4b@gmail.com> <20240915185654.b51cfec5aa2520e5b801cc87@gmail.com> Content-Language: en-US From: Miroslav Lachman <000.fbsd@quip.cz> In-Reply-To: <20240915185654.b51cfec5aa2520e5b801cc87@gmail.com> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Spamd-Bar: ---- X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; TAGGED_FROM(0.00)[=QO=quip.cz=000.fbsd]; ASN(0.00)[asn:42000, ipnet:94.124.104.0/21, country:CZ] X-Rspamd-Queue-Id: 4X6nS55McJz45R5 On 15/09/2024 19:56, Sad Clouds wrote: > On Sun, 15 Sep 2024 18:01:07 +0100 > Doug Rabson wrote: > >> I just did a throughput test with iperf3 client on a FreeBSD 14.1 host with >> an intel 10GB nic connecting to an iperf3 server running in a vnet jail on >> a truenas host (13.something) also with an intel 10GB nic and I get full >> 10GB throughput in this setup. In the past, I had to disable LRO on the >> truenas host for this to work properly. >> >> Doug. > > Hello Doug, can you please confirm that you are NOT using if_epair(4)? I > imagine you dedicate one of the Intel 10Gb ports to a jail. This is not > an option for some of us, so a virtual NIC of some sort is the only > option with vnet jails. Other people also mentioned that vnet by itself > is not an issue and your test confirms this, however I'm observing poor > scalability specifically with the epair virtual NIC. > > I will be trying netgraph when I have some more time. If there are > other alternatives to if_epair then I would be interested to learn > about them. Try ngbuddy, it will help you with configuring netgraph. Or you can create second loopback interface, for example lo1 and put your jails on it. I don't know what your scenario is, but I used lo1 in the past with private IPs (10.x.x.x or 172.16.x.x) for jails not facing the outside world, just communicating with the host) You can put something similar to rc.conf: cloned_interfaces="lo1" # interface where all jails will bind ifconfig_lo1="inet 172.16.55.22 netmask 255.255.255.0" Then run: service netif cloneup Kind regards Miroslav Lachman From nobody Mon Sep 16 17:40:21 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X6sd24sgfz5WXpp for ; Mon, 16 Sep 2024 17:40:22 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X6sd22kS3z4XfR for ; Mon, 16 Sep 2024 17:40:22 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726508422; a=rsa-sha256; cv=none; b=TiUMfvyequbwW2PkvKL38PdnzyFhE4wingfj6SL1UGuYgi7JTpm9yS3JLJ1OqfiqGAZBrf 0I4DH0W9TzJ7S9tdfmUPH/gBiRJdkv/wqN3ITWPYzV+CckRgtmbE619IN+bTrwS+Yiw7co dqLsrFPkZHlzGgXBsp31OH1dre46apDwlcGSIH3CHscVVSrgBpWq32y3rtBAsqdThQzLN1 TO+L3lArVVC2V+94NLqAN8JRLqazt0skIqNQuLFyfzcB20+uhZJB/pMX0/v8B93Bz0I2cf hPahHkAkd5T4b3or6BBUKn/yEpJOWLl2ozmbfxLSzS0+uhndjh+fEIw6p1E91Q== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726508422; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=BFrgnDPQNDUdpGrH3XZUKWY7z9m1z0qOrHd3VfPLtlI=; b=VNQHHMO/uCP1kjnoKxe/CFLkzBfrBvu3jOt6egdn0QhlmqLm2yv7W1NgGzgQUHEYLfEgCX 9KyxdTPJcfWYzI9iOF/3abaYG8IZRZm/42YxGuEIZO3lw4D5cZMKj9lG32OboAU2cTJbXV ovgEItZ8qpYmpqXIliEuKNxosuGToSK7HEPMafk8A7Zt5I+CygXmJfboXYM32jmQmQUwi2 0h7myXibDatmr5dCGNMl+c4RwPFaTi+Dwwi2hNSm3QZVAiv3LLBldpPHS9F8+Xsi74bTuq KPGpMQcmBIGG1WBgLBjDp9o8BoIgk6nNHyrChJCECBG8W4XvywWVnX2D/bpFBw== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X6sd229rqz144f for ; Mon, 16 Sep 2024 17:40:22 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48GHeMXG096585 for ; Mon, 16 Sep 2024 17:40:22 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48GHeM2M096584 for net@FreeBSD.org; Mon, 16 Sep 2024 17:40:22 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 219918] LibAlias: implement RFC 4787 REQ 1 and 3 (full cone NAT) Date: Mon, 16 Sep 2024 17:40:21 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: CURRENT X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Many People X-Bugzilla-Who: damjan.jov@gmail.com X-Bugzilla-Status: Open X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: attachments.isobsolete attachments.created Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D219918 Damjan Jovanovic changed: What |Removed |Added ---------------------------------------------------------------------------- Attachment #183455|0 |1 is obsolete| | --- Comment #7 from Damjan Jovanovic --- Created attachment 253607 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D253607&action= =3Dedit Version 3 New version of the patch. It applies to the latest main brain. The source addresses and ports for connections are stored in their own splay tree. GetNewPort() is patched to search this tree, so it can reuse pre-existing connections from the same address:port. Some tests are added, and another t= est that broke is fixed. --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Mon Sep 16 20:05:39 2024 X-Original-To: freebsd-net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X6ws71NRPz5WrHR for ; Mon, 16 Sep 2024 20:06:03 +0000 (UTC) (envelope-from cross+freebsd@relay.distal.com) Received: from relay.wiredblade.com (relay.wiredblade.com [168.235.105.136]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4X6ws545tjz4t1W for ; Mon, 16 Sep 2024 20:06:01 +0000 (UTC) (envelope-from cross+freebsd@relay.distal.com) Authentication-Results: mx1.freebsd.org; dkim=pass header.d=relay.distal.com header.s=mail header.b=JYEYUcQT; dmarc=none; spf=pass (mx1.freebsd.org: domain of cross+freebsd@relay.distal.com designates 168.235.105.136 as permitted sender) smtp.mailfrom=cross+freebsd@relay.distal.com dkim-signature: v=1; a=rsa-sha256; d=relay.distal.com; s=mail; c=relaxed/relaxed; q=dns/txt; h=From:Subject:Date:Message-ID:To:CC:MIME-Version:Content-Type:Content-Transfer-Encoding; bh=xT4P4adtRIegx9v4T8CLsykLDEuhDJ9cvDbWLRnSQo4=; b=JYEYUcQThVCjnDSl8mB2/Siv91UB/Q89VxwFms8mz18bQBGndj4Gqj+v8mTSICUbvNOIYZwCK1ohKNT5qcZOf1xOWhv6dvQcUUP/ELeKT5TD+MadeE3DXu1l4hNBFfAWCAa+kS1GDIqARhfibBhW/qo37t9Twehiw1RhfeypAZ1jWjhRbC8oJ0hgkpl+Bs+cIA1LfhQoP9kwYZyKrBBxp4V1YI3Lm9IdE9bLVAUCunWypjRxFV0Y7J/+IH EhgTRiz49pdDsM8LU1vc3XlVt6tPhlnEjsl5u1nBBtg74tEz+I5yF8yKdWik+6mhFyMspupr/kxXGJGGVIiV77vN8SGQ== Received: from mail.distal.com (pool-108-51-233-124.washdc.fios.verizon.net [108.51.233.124]) by relay.wiredblade.com with ESMTPSA (version=TLSv1.2 cipher=ECDHE-RSA-CHACHA20-POLY1305 bits=256) ; Mon, 16 Sep 2024 20:05:53 +0000 Received: from smtpclient.apple ( [2001:420:c0c4:1006::585]) by tristain.distal.com (OpenSMTPD) with ESMTPSA id 28940cd9 (TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256:NO); Mon, 16 Sep 2024 16:05:51 -0400 (EDT) From: Chris Ross Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3776.700.51\)) Subject: IPv6 neighbor flaps for ISP router are occurring frequently Message-Id: <89F4F5A4-E3D9-4A43-84F6-908E3FA221A6@distal.com> Date: Mon, 16 Sep 2024 16:05:39 -0400 Cc: Chris Ross To: freebsd-net@freebsd.org, Roy Marples X-Mailer: Apple Mail (2.3776.700.51) X-Spamd-Bar: --- X-Spamd-Result: default: False [-3.19 / 15.00]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; NEURAL_HAM_LONG(-1.00)[-1.000]; NEURAL_HAM_SHORT(-0.99)[-0.991]; FORGED_SENDER(0.30)[cross@distal.com,cross@relay.distal.com]; R_SPF_ALLOW(-0.20)[+a:relay.dynu.com]; R_DKIM_ALLOW(-0.20)[relay.distal.com:s=mail]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[distal.com]; ARC_NA(0.00)[]; RCPT_COUNT_THREE(0.00)[3]; DKIM_TRACE(0.00)[relay.distal.com:+]; TAGGED_FROM(0.00)[freebsd]; RCVD_TLS_ALL(0.00)[]; FROM_HAS_DN(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; MIME_TRACE(0.00)[0:+]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCVD_COUNT_TWO(0.00)[2]; FROM_NEQ_ENVFROM(0.00)[cross@distal.com,cross@relay.distal.com]; ASN(0.00)[asn:3842, ipnet:168.235.104.0/22, country:US]; MLMMJ_DEST(0.00)[freebsd-net@freebsd.org]; APPLE_MAILER_COMMON(0.00)[]; MID_RHS_MATCH_FROM(0.00)[]; TAGGED_RCPT(0.00)[freebsd]; TO_DN_SOME(0.00)[] X-Rspamd-Queue-Id: 4X6ws545tjz4t1W Hello. Following the earlier thread "DHCPv6 IA_PD - how-to=E2=80=9D I = have been bringing up a new gateway router for my network. With Roy=E2=80=99s = help, I have IPv6 working as expected, but I am seeing something that I suspect is unusual. Roy doesn=E2=80=99t think it=E2=80=99s specific to dhcpcd, = as it is caused by routing changes that dhcpcd is merely reacting to. While dhcpcd is running, it repeatedly logs the following to daemon.log: Sep 16 15:55:53 logrus dhcpcd[50070]: vlan0: fe80::3e8a:b0ff:fe3e:4dce = is unreachable Sep 16 15:55:54 logrus dhcpcd[50070]: vlan0: fe80::3e8a:b0ff:fe3e:4dce = is reachable again Sep 16 15:55:54 logrus dhcpcd[50070]: vlan0: soliciting an IPv6 router Sep 16 15:56:25 logrus dhcpcd[50070]: vlan0: fe80::3e8a:b0ff:fe3e:4dce = is unreachable Sep 16 15:56:25 logrus dhcpcd[50070]: vlan0: fe80::3e8a:b0ff:fe3e:4dce = is reachable again Sep 16 15:56:25 logrus dhcpcd[50070]: vlan0: soliciting an IPv6 router Sep 16 15:56:57 logrus dhcpcd[50070]: vlan0: fe80::3e8a:b0ff:fe3e:4dce = is unreachable Sep 16 15:56:58 logrus dhcpcd[50070]: vlan0: soliciting an IPv6 router Sep 16 15:56:58 logrus dhcpcd[50070]: vlan0: Router Advertisement from = fe80::3e8a:b0ff:fe3e:4dce Sep 16 15:57:32 logrus dhcpcd[50070]: vlan0: fe80::3e8a:b0ff:fe3e:4dce = is unreachable Sep 16 15:57:32 logrus dhcpcd[50070]: vlan0: soliciting an IPv6 router Sep 16 15:57:32 logrus dhcpcd[50070]: vlan0: Router Advertisement from = fe80::3e8a:b0ff:fe3e:4dce During this same time frame, =E2=80=9Croute monitor=E2=80=9D shows: 15:55:53.573 PID 0 delete neigh fe80::3e8a:b0ff:fe3e:4dce%vlan0 state = PROBE lladdr 3c:8a:b0:3e:4d:ce iface vlan0 15:55:54.002 PID 0 = add/repl neigh fe80::3e8a:b0ff:fe3e:4dce%vlan0 state REACHABLE lladdr = 3c:8a:b0:3e:4d:ce iface vlan0 15:56:25.148 PID 0 delete neigh = fe80::3e8a:b0ff:fe3e:4dce%vlan0 state PROBE lladdr 3c:8a:b0:3e:4d:ce = iface vlan0 15:56:25.212 PID 0 add/repl neigh = fe80::3e8a:b0ff:fe3e:4dce%vlan0 state REACHABLE lladdr 3c:8a:b0:3e:4d:ce = iface vlan0 15:56:57.406 PID 0 delete neigh = fe80::3e8a:b0ff:fe3e:4dce%vlan0 state PROBE lladdr 3c:8a:b0:3e:4d:ce = iface vlan0 15:56:58.967 PID 0 add/repl neigh = fe80::3e8a:b0ff:fe3e:4dce%vlan0 state REACHABLE lladdr 3c:8a:b0:3e:4d:ce = iface vlan0 15:57:32.325 PID 0 delete neigh = fe80::3e8a:b0ff:fe3e:4dce%vlan0 state PROBE lladdr 3c:8a:b0:3e:4d:ce = iface vlan0 15:57:34.143 PID 0 add/repl neigh = fe80::3e8a:b0ff:fe3e:4dce%vlan0 state REACHABLE lladdr 3c:8a:b0:3e:4d:ce = iface vlan0 =20 My concern is that this is sending RS=E2=80=99s to my provider far too = often. Can anyone advise if this is normal, and assuming not, what might be wrong? Trimmed dhcpcd.conf is: duid persistent vendorclassid option classless_static_routes option rapid_commit require dhcp_server_identifier slaac private noipv6rs noipv4 noipv4ll allowinterfaces vlan0 interface vlan0 ipv6only ipv6rs ipv6ra_autoconf ia_pd 0/::/56 intnet1/42 intnet2/56 Thanks. - Chris From nobody Mon Sep 16 21:45:44 2024 X-Original-To: freebsd-net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X6z4X28Rqz5VsHn for ; Mon, 16 Sep 2024 21:46:04 +0000 (UTC) (envelope-from cross+freebsd@relay.distal.com) Received: from relay.wiredblade.com (relay.wiredblade.com [168.235.105.136]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4X6z4V3GNlz4GgG for ; Mon, 16 Sep 2024 21:46:02 +0000 (UTC) (envelope-from cross+freebsd@relay.distal.com) Authentication-Results: mx1.freebsd.org; dkim=pass header.d=relay.distal.com header.s=mail header.b=Id4LsAYp; dmarc=none; spf=pass (mx1.freebsd.org: domain of cross+freebsd@relay.distal.com designates 168.235.105.136 as permitted sender) smtp.mailfrom=cross+freebsd@relay.distal.com dkim-signature: v=1; a=rsa-sha256; d=relay.distal.com; s=mail; c=relaxed/relaxed; q=dns/txt; h=From:Subject:Date:Message-ID:To:MIME-Version:Content-Type:Content-Transfer-Encoding:In-Reply-To:References; bh=S0bGTHpFMnCdss3DVsH5SsSedLL7DMgQwFiucuLskGQ=; b=Id4LsAYpyU355P7lIn7mS+LjOvLjiCJUp4GYguYJfImvj7M1wd608soMrsPAEXD0h9/TgN+zYpcpGH+Ey0tVD5IIfYczawRYPgIuCtp9hbZMQno6rv7VbzRCHDATY08rQI5ikXbBuI/NAgf4/FKuDfvSOdkgp+M29eRTv324FR1rN1eHhavt6WpIExK6cU7reFPF//RZFP8cRHjwUovB+xt1iLnNXqqEErEO9lj+Zd881v7hiQ+al3jXJg +M1AALSQ94r6ulE1or1RqaIWsIQ/q4InwKqOSZu/mdXhY+wYrMeFTjpwECe5jAwPTHepnyWe2ubym/0O+QpbHpOKfXAQ== Received: from mail.distal.com (pool-108-51-233-124.washdc.fios.verizon.net [108.51.233.124]) by relay.wiredblade.com with ESMTPSA (version=TLSv1.2 cipher=ECDHE-RSA-CHACHA20-POLY1305 bits=256) ; Mon, 16 Sep 2024 21:45:57 +0000 Received: from smtpclient.apple ( [2001:420:c0c4:1006::585]) by tristain.distal.com (OpenSMTPD) with ESMTPSA id 4f902660 (TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256:NO); Mon, 16 Sep 2024 17:45:55 -0400 (EDT) From: Chris Ross Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3776.700.51\)) Subject: Re: IPv6 neighbor flaps for ISP router are occurring frequently Date: Mon, 16 Sep 2024 17:45:44 -0400 References: <89F4F5A4-E3D9-4A43-84F6-908E3FA221A6@distal.com> To: freebsd-net@freebsd.org, Roy Marples In-Reply-To: <89F4F5A4-E3D9-4A43-84F6-908E3FA221A6@distal.com> Message-Id: <83BCC913-3375-4847-B720-5F06D76F6646@distal.com> X-Mailer: Apple Mail (2.3776.700.51) X-Spamd-Bar: --- X-Spamd-Result: default: False [-3.18 / 15.00]; NEURAL_HAM_LONG(-1.00)[-1.000]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; NEURAL_HAM_SHORT(-0.98)[-0.979]; FORGED_SENDER(0.30)[cross@distal.com,cross@relay.distal.com]; R_DKIM_ALLOW(-0.20)[relay.distal.com:s=mail]; R_SPF_ALLOW(-0.20)[+a:relay.dynu.com]; MIME_GOOD(-0.10)[text/plain]; RCVD_TLS_ALL(0.00)[]; TAGGED_FROM(0.00)[freebsd]; DMARC_NA(0.00)[distal.com]; RCPT_COUNT_TWO(0.00)[2]; DKIM_TRACE(0.00)[relay.distal.com:+]; ARC_NA(0.00)[]; FROM_HAS_DN(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; MIME_TRACE(0.00)[0:+]; RCVD_COUNT_TWO(0.00)[2]; FROM_NEQ_ENVFROM(0.00)[cross@distal.com,cross@relay.distal.com]; ASN(0.00)[asn:3842, ipnet:168.235.104.0/22, country:US]; TO_MATCH_ENVRCPT_SOME(0.00)[]; MID_RHS_MATCH_FROM(0.00)[]; MLMMJ_DEST(0.00)[freebsd-net@freebsd.org]; APPLE_MAILER_COMMON(0.00)[]; TO_DN_SOME(0.00)[] X-Rspamd-Queue-Id: 4X6z4V3GNlz4GgG Apologies for lack of important context, the below discusses a FreeBSD 14.1 amd64 system. Thank you. > On Sep 16, 2024, at 16:05, Chris Ross = wrote: >=20 > Hello. Following the earlier thread "DHCPv6 IA_PD - how-to=E2=80=9D I = have been > bringing up a new gateway router for my network. With Roy=E2=80=99s = help, I > have IPv6 working as expected, but I am seeing something that I = suspect > is unusual. Roy doesn=E2=80=99t think it=E2=80=99s specific to = dhcpcd, as it is caused > by routing changes that dhcpcd is merely reacting to. >=20 > While dhcpcd is running, it repeatedly logs the following to = daemon.log: >=20 > Sep 16 15:55:53 logrus dhcpcd[50070]: vlan0: fe80::3e8a:b0ff:fe3e:4dce = is unreachable > Sep 16 15:55:54 logrus dhcpcd[50070]: vlan0: fe80::3e8a:b0ff:fe3e:4dce = is reachable again > Sep 16 15:55:54 logrus dhcpcd[50070]: vlan0: soliciting an IPv6 router > Sep 16 15:56:25 logrus dhcpcd[50070]: vlan0: fe80::3e8a:b0ff:fe3e:4dce = is unreachable > Sep 16 15:56:25 logrus dhcpcd[50070]: vlan0: fe80::3e8a:b0ff:fe3e:4dce = is reachable again > Sep 16 15:56:25 logrus dhcpcd[50070]: vlan0: soliciting an IPv6 router > Sep 16 15:56:57 logrus dhcpcd[50070]: vlan0: fe80::3e8a:b0ff:fe3e:4dce = is unreachable > Sep 16 15:56:58 logrus dhcpcd[50070]: vlan0: soliciting an IPv6 router > Sep 16 15:56:58 logrus dhcpcd[50070]: vlan0: Router Advertisement from = fe80::3e8a:b0ff:fe3e:4dce > Sep 16 15:57:32 logrus dhcpcd[50070]: vlan0: fe80::3e8a:b0ff:fe3e:4dce = is unreachable > Sep 16 15:57:32 logrus dhcpcd[50070]: vlan0: soliciting an IPv6 router > Sep 16 15:57:32 logrus dhcpcd[50070]: vlan0: Router Advertisement from = fe80::3e8a:b0ff:fe3e:4dce >=20 > During this same time frame, =E2=80=9Croute monitor=E2=80=9D shows: >=20 > 15:55:53.573 PID 0 delete neigh fe80::3e8a:b0ff:fe3e:4dce%vlan0 = state PROBE lladdr 3c:8a:b0:3e:4d:ce iface vlan0 15:55:54.002 PID 0 = add/repl neigh fe80::3e8a:b0ff:fe3e:4dce%vlan0 state REACHABLE lladdr = 3c:8a:b0:3e:4d:ce iface vlan0 15:56:25.148 PID 0 delete neigh = fe80::3e8a:b0ff:fe3e:4dce%vlan0 state PROBE lladdr 3c:8a:b0:3e:4d:ce = iface vlan0 15:56:25.212 PID 0 add/repl neigh = fe80::3e8a:b0ff:fe3e:4dce%vlan0 state REACHABLE lladdr 3c:8a:b0:3e:4d:ce = iface vlan0 15:56:57.406 PID 0 delete neigh = fe80::3e8a:b0ff:fe3e:4dce%vlan0 state PROBE lladdr 3c:8a:b0:3e:4d:ce = iface vlan0 15:56:58.967 PID 0 add/repl neigh = fe80::3e8a:b0ff:fe3e:4dce%vlan0 state REACHABLE lladdr 3c:8a:b0:3e:4d:ce = iface vlan0 15:57:32.325 PID 0 delete neigh = fe80::3e8a:b0ff:fe3e:4dce%vlan0 state PROBE lladdr 3c:8a:b0:3e:4d:ce = iface vlan0 15:57:34.143 PID 0 add/repl neigh = fe80::3e8a:b0ff:fe3e:4dce%vlan0 state REACHABLE lladdr 3c:8a:b0:3e:4d:ce = iface vlan0 =20 >=20 > My concern is that this is sending RS=E2=80=99s to my provider far too = often. > Can anyone advise if this is normal, and assuming not, what might > be wrong? >=20 > Trimmed dhcpcd.conf is: >=20 > duid > persistent > vendorclassid > option classless_static_routes > option rapid_commit > require dhcp_server_identifier > slaac private > noipv6rs > noipv4 > noipv4ll > allowinterfaces vlan0 > interface vlan0 > ipv6only > ipv6rs > ipv6ra_autoconf > ia_pd 0/::/56 intnet1/42 intnet2/56 >=20 > Thanks. >=20 > - Chris >=20 From nobody Mon Sep 16 21:55:52 2024 X-Original-To: freebsd-net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X6zJ15nzXz5VtmZ for ; Mon, 16 Sep 2024 21:56:01 +0000 (UTC) (envelope-from karl@denninger.net) Received: from colo1.denninger.net (colo1.denninger.net [104.236.120.189]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4X6zJ03W3wz4JJM for ; Mon, 16 Sep 2024 21:56:00 +0000 (UTC) (envelope-from karl@denninger.net) Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=pass (policy=none) header.from=denninger.net; spf=pass (mx1.freebsd.org: domain of karl@denninger.net designates 104.236.120.189 as permitted sender) smtp.mailfrom=karl@denninger.net Received: from denninger.net (syn-071-015-252-132.res.spectrum.com [71.15.252.132]) by colo1.denninger.net (Postfix) with ESMTP id DCC762110DC for ; Mon, 16 Sep 2024 17:56:17 -0400 (EDT) Received: from [192.168.10.28] (D18.Denninger.Net [192.168.10.28]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by denninger.net (Postfix) with ESMTPSA id CE58ED506F for ; Mon, 16 Sep 2024 17:55:52 -0400 (EDT) Message-ID: Date: Mon, 16 Sep 2024 17:55:52 -0400 List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 User-Agent: Mozilla Thunderbird Subject: Re: IPv6 neighbor flaps for ISP router are occurring frequently To: freebsd-net@freebsd.org References: <89F4F5A4-E3D9-4A43-84F6-908E3FA221A6@distal.com> <83BCC913-3375-4847-B720-5F06D76F6646@distal.com> Content-Language: en-US From: Karl Denninger Autocrypt: addr=karl@denninger.net; keydata= xsFNBF1Rd+gBEACmLAH7SAzdQq57ZN56QQEy0jDFfH5BvGOMZgCaP+Y5lJQ5u9WphCoCALMs Rg0o1Q9DRNWgUmy/cgsxioXAEzZFXXzOHPJhwplVOgfjxnoByD5KQhWG8Owm9QmATdtiZPSV 4UYVNUIbZv7btSnnAXysG2OUHajYS5PVeFQxFbhNFq/SS8VaXr1WEVTFa8NFKp2W3/KY1A+U KKDUlYwnOauK3fnY9chF2IRSoxAbBJFrJ4lPGz04HtzNos4Q9CBfTphKcdFjcPntNS9wrqs3 sm+7hLNTH9B2Kj6aekG5UhD03eyP+gevTgBy51RL6ULzI13Kc4aeyOByuBXrA8D2m2Ee67iy 4+ZSxM9Wn1gQce5624OWzCYIGBH2r75Bshp1KHKu36N2rN//kyKYnwl/z6UZB/S9cMUFKZgL gFx7QxpFX/HvSiBcPfcGS0meModpg6qma7/2jRoQAXacslpiT+uOfRGspNbnglkbw435RzX/ kMUclJQNZBBBUpPiGjVCjeBTiAfN8TyjS+pWzwxNCUZWbYO5xVaS0gbIhgVNoBOGn1rdTsdA PP65SRjaoL5KY6bzkkzrXLB2Djx8/p4vr0qIqxIQWbewJq3xKyKGiqI46ae77BF7k0B++Ndx g9K9UeWKl/iJ0eoI0ftR+xH3aIHTU1Or3j/tj4j8Z0tnVSyt1wARAQABzSNLYXJsIERlbm5p bmdlciA8a2FybEBkZW5uaW5nZXIubmV0PsLBfwQTAQgAKQUCZj4NhwIbIwUJDK6K2AcLCQgH AwIBBhUIAgkKCwQWAgMBAh4BAheAAAoJEG8twBXrj1l42DQP/A0AGcBuGhHzGh2aFyW94B29 ECEkmkxigmQt++AG9xr3Qv4gC6UtSGzKo50SWAdek5peBRTbeDALa/tQvBsbi2aJgYWxZVOV N2XLe89ZjvJuTZqXaG/iaV50es56/cWBlG7VR+5/ijw3uSWO6gZ+L5bkKnQ/p8OWUP0GbtV1 rmEL4DOf6Sel7vOHGLIOgppMxH3DqAgHINZPhOBn/ySnFYNRUyUzp+DxKweH3/6UT8kLST4z UykLcb6HCXEkPM8ECyXkQacE6AfSsrj+tpDv97ZU9UzfprMGY8MmtpACc2509YhdDgljoaGq dfC2//HDKjEt31apoiKwQ9x2oqDBRtkRJoSuqC+rxRDGYMFdxRUBTEJ/j/P3EJdqCO128Jb+ 2iw+0ERUqMyPJWpRXb+J/zdo4ge5RP39LreyNhblEF3aKIvNMj+KrGwznB0Muny8uP73O/bw w7Nkj6HuXbq9gZ1jV6WqHzP9seadWpxLhcR8UQZqgFbO7Q4Y1Lj7TWt/cEoGXe5TeBGO8/b/ Q0g+LF0+/waARlk9dwVx5vBol4ZJ4gDEwzZD6IqDYB5Knenv/wWAdK7WrzLqP4zBzU5vwpJ+ Aj8i+lkqGcaCdtMdRZpa3qR68eKgutuVCzCt3Ydt2Oeiz/D0ccI++FzJgqfD+r4B1pjWT/V3 SRerR30au23XzsFNBF1Rd+gBEADNVFS8nQ+kpKOpgtP+f3bCVxHAm7eHMbX6oew5yZiQwfD+ 1RWNWLVOMeTt7G2e5HsHpJOUwFUJhbDb0omB0r38xTSVSAig9kmUfb7tTMJG2bG7WfWykBOM WIZ4OhCf+ISv9dUkjNgx4ionWotFxwDiPRwWumVQ7WYZmRZlhDWMiaHgKvBrjJ7Y6GKPRbQc 5/0Qz9xGhXKlFxDQrrSMkyRThIOxXqdfD9z3rEsV3ZwOojzNsnkIImnQMKyIAR0FBQop34G9 wDQi7fxk8wGIfDszwfR4oAdDdPGq4gcAvE7Fd3xKyNpGyjSED5szoaFjldaZSXQIffquSUvy sFCTTLRIso5Dn9uQgi57gIv+5mnyKBfm2Z2P6pEQPSt073TED9rS0+JpniJL7rKRVpO5niqw sQJS6ht+JF88rXro+SiwxD/KeDpTuuJ10+ohLVi1Y+X82X7BIQEhqtFp9FVJSds4o/eNyaHd SoqfoeWMy3EV+rdJ3DneXcPS1BgxO57Rko5Hx3NUSVK83ovFb+Ofes9SLNdqNu3xAUcfpRdS DyxzpVbCq6Y2CIojiaweiYe5BOBhmR9OPGhqP8YD7GukYmQufAVuOrIVyctBlVPHgMBb+UX+ ItYXuX4weSJWLOsmM45xd/EYvBq2DWFpKlyihoktNzTGqxGsNeG7gCOEUTAnUwARAQABwsFl BBgBCAAPBQJmPg2HAhsMBQkMrorYAAoJEG8twBXrj1l4s28P/icoshBPgHA86zWSiBYWtR4M TXbg86Yo5tMm64gO2ipXHlDnS0fQOjkJvfo+1e8soq0Rf4RxvKGEDLF9sxLD3z0ptF4Lj8aN zddLPlWFUZ9iOGbDGZhdvnB6YfCWEOXnkXJHfdheYOd/cni54Y4MT1sPMUiPGDlB4Fpu1voL wMZdGfplQYuV+zYv2ezd6Aoc/YwmhixX3YSjy6vFa+7x8OXrGUK69XaZ649GGHpeZzYuLTPw jAfCjbYBk9a24GtQlO/sk9SHRlxIU1e/AflNMtOMYDwuEDLuPgTLe4pRt4lnSdnQSVsFoYz1 nO7XBtyJdUa2rrhcLfhmSxlbJF/4cmNB4ebyT+5v+9ChpMVqzpKBCjyxPm4s+WVq4aYQ7D24 caCcUknD82iMFDFvbV0dm/xAQKZ3k+L/apMhHtUS23dzhJemxWdeQ6Cs2l0FYoGtrEzfUguR Hj7U3opGU6F4dnH1nQt4CbaXAOXM2Zh4ik+z5xRv9ro7fZUG8KSaz8dHKc2scpnJsqdS5XEk NwcHQUCCwSOEPzbugPJY1vjkjlTGWu6ihN7mjxxfthNPGU21/Vfv0d+mlBNdTkl2YOlQtKci YBqkhRb5Re9KC+6O7dWFf5qPZQiD3iUOxUOWsaQhj/CxO+EYk7kxEJxV4tMZfesE90LgTINX Z7FdWd0DYG+m In-Reply-To: <83BCC913-3375-4847-B720-5F06D76F6646@distal.com> Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="------------XyY0NCC9xowWg6UuB0301HGd" X-Spamd-Bar: -- X-Spamd-Result: default: False [-2.84 / 15.00]; SIGNED_PGP(-2.00)[]; NEURAL_SPAM_MEDIUM(0.81)[0.814]; NEURAL_HAM_SHORT(-0.57)[-0.573]; DMARC_POLICY_ALLOW(-0.50)[denninger.net,none]; NEURAL_HAM_LONG(-0.29)[-0.289]; R_SPF_ALLOW(-0.20)[+mx]; MIME_GOOD(-0.20)[multipart/signed,multipart/mixed,multipart/alternative,text/plain]; MIME_BASE64_TEXT(0.10)[]; XM_UA_NO_VERSION(0.01)[]; ARC_NA(0.00)[]; HAS_ATTACHMENT(0.00)[]; RCPT_COUNT_ONE(0.00)[1]; RCVD_TLS_LAST(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; FREEFALL_USER(0.00)[karl]; RCVD_VIA_SMTP_AUTH(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:+,3:+,4:~,5:~]; TO_DN_NONE(0.00)[]; RCVD_COUNT_TWO(0.00)[2]; FROM_EQ_ENVFROM(0.00)[]; ASN(0.00)[asn:14061, ipnet:104.236.64.0/18, country:US]; PREVIOUSLY_DELIVERED(0.00)[freebsd-net@freebsd.org]; R_DKIM_NA(0.00)[]; MLMMJ_DEST(0.00)[freebsd-net@freebsd.org]; MID_RHS_MATCH_FROM(0.00)[]; FROM_HAS_DN(0.00)[] X-Rspamd-Queue-Id: 4X6zJ03W3wz4JJM This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --------------XyY0NCC9xowWg6UuB0301HGd Content-Type: multipart/mixed; boundary="------------wWt0UUWD1ycbqpmLVj5oSPlj"; protected-headers="v1" From: Karl Denninger To: freebsd-net@freebsd.org Message-ID: Subject: Re: IPv6 neighbor flaps for ISP router are occurring frequently References: <89F4F5A4-E3D9-4A43-84F6-908E3FA221A6@distal.com> <83BCC913-3375-4847-B720-5F06D76F6646@distal.com> In-Reply-To: <83BCC913-3375-4847-B720-5F06D76F6646@distal.com> --------------wWt0UUWD1ycbqpmLVj5oSPlj Content-Type: multipart/alternative; boundary="------------0K946DG5JcOHYt3pHiUqAe0e" --------------0K946DG5JcOHYt3pHiUqAe0e Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: base64 V2hhdCBpcyB0aGUgcmV2aXNpb24gb24gdGhlIGtlcm5lbCAocmV2IGFuZC9vciBidWlsZCBk YXRlKT8NCg0KSSBUSElOSyB0aGUgb25seSBkaWZmZXJlbmNlIGJldHdlZW4geW91IGFuZCBJ IHRoYXQgaXMgbWF0ZXJpYWwgaXMgdGhhdCANCkknbSBydW5uaW5nIGRoY3A2YyBiZWNhdXNl IGRoY3BjZCwgYXQgbGVhc3QgY2hlY2ssIGhhcyBzb21lIHRyb3VibGUgDQpnZXR0aW5nIGFu IGFsbG9jYXRpb24gb24gY29sZCBib290IChidXQgZG9lcyBpZiByZXN0YXJ0ZWQpLCBvbiB3 aGljaCANCkkndmUgY29tbXVuaWNhdGVkIHdpdGggUm95LCBhbmQgSSBoYXZlbid0IHNlZW4g YW55dGhpbmcgbmV3IHBvcCB1cCBvbiANCnRoZSBkaGNwY2QgcG9ydCB5ZXQgdGh1cyBoYXZl bid0IHRyaWVkIGl0IGFnYWluIGluIHRoZSB+NCB3ZWVrcy4NCg0KSSdtIC9ub3QgL3NlZWlu ZyBpdCBoZXJlIGJ1dCBJIG1pZ2h0IG5vdCBoYXZlIC9hbGwgL3RoZSBwYXRjaGVzIHlvdSdy ZSANCnJlZmVycmluZyB0byBvbiB0aGUgZ2F0ZXdheS7CoCBJZiBJJ20gbm90IGl0cyBlYXNp bHkgZW5vdWdoIHJvbGxlZCANCmZvcndhcmQgaGVyZSBzbyBJIGRvLg0KDQpJIGhhdmUgYSBu b24tcm91dGluZyBtYWNoaW5lIHRoYXQgaXMgdmVyeSBjdXJyZW50IChyZWJ1aWx0IGFmdGVy IHRoZSANCnJlY2VudCB6ZnMgcGF0Y2ggc2V0IGhpdCkgb24gc3RhYmxlLzE0IGFuZCBpdCBp cyBub3Qgc2VlaW5nIHRoYXQgLS0gYnV0IA0KaXQgaXMgbm90IGEgcm91dGVyLCBpdCBpcyBh biBlbmQtbm9kZSBydW5uaW5nIHJ0c29sZCBhbmQgZ2V0cyBpdHMgSVB2NiANCmFkZHJlc3Mg dmlhIFNMQUNDIGZyb20gdGhlIHJvdXRlci4NCg0KT24gOS8xNi8yMDI0IDE3OjQ1LCBDaHJp cyBSb3NzIHdyb3RlOg0KPiBBcG9sb2dpZXMgZm9yIGxhY2sgb2YgaW1wb3J0YW50IGNvbnRl eHQsIHRoZSBiZWxvdyBkaXNjdXNzZXMgYSBGcmVlQlNEDQo+IDE0LjEgYW1kNjQgc3lzdGVt Lg0KPg0KPiBUaGFuayB5b3UuDQo+DQo+PiBPbiBTZXAgMTYsIDIwMjQsIGF0IDE2OjA1LCBD aHJpcyBSb3NzPGNyb3NzK2ZyZWVic2RAZGlzdGFsLmNvbT4gd3JvdGU6DQo+Pg0KPj4gSGVs bG8uICBGb2xsb3dpbmcgdGhlIGVhcmxpZXIgdGhyZWFkICJESENQdjYgSUFfUEQgLSBob3ct dG/igJ0gSSBoYXZlIGJlZW4NCj4+IGJyaW5naW5nIHVwIGEgbmV3IGdhdGV3YXkgcm91dGVy IGZvciBteSBuZXR3b3JrLiAgV2l0aCBSb3nigJlzIGhlbHAsIEkNCj4+IGhhdmUgSVB2NiB3 b3JraW5nIGFzIGV4cGVjdGVkLCBidXQgSSBhbSBzZWVpbmcgc29tZXRoaW5nIHRoYXQgSSBz dXNwZWN0DQo+PiBpcyB1bnVzdWFsLiAgUm95IGRvZXNu4oCZdCB0aGluayBpdOKAmXMgc3Bl Y2lmaWMgdG8gZGhjcGNkLCBhcyBpdCBpcyBjYXVzZWQNCj4+IGJ5IHJvdXRpbmcgY2hhbmdl cyB0aGF0IGRoY3BjZCBpcyBtZXJlbHkgcmVhY3RpbmcgdG8uDQo+Pg0KPj4gV2hpbGUgZGhj cGNkIGlzIHJ1bm5pbmcsIGl0IHJlcGVhdGVkbHkgbG9ncyB0aGUgZm9sbG93aW5nIHRvIGRh ZW1vbi5sb2c6DQo+Pg0KPj4gU2VwIDE2IDE1OjU1OjUzIGxvZ3J1cyBkaGNwY2RbNTAwNzBd OiB2bGFuMDogZmU4MDo6M2U4YTpiMGZmOmZlM2U6NGRjZSBpcyB1bnJlYWNoYWJsZQ0KPj4g U2VwIDE2IDE1OjU1OjU0IGxvZ3J1cyBkaGNwY2RbNTAwNzBdOiB2bGFuMDogZmU4MDo6M2U4 YTpiMGZmOmZlM2U6NGRjZSBpcyByZWFjaGFibGUgYWdhaW4NCj4+IFNlcCAxNiAxNTo1NTo1 NCBsb2dydXMgZGhjcGNkWzUwMDcwXTogdmxhbjA6IHNvbGljaXRpbmcgYW4gSVB2NiByb3V0 ZXINCj4+IFNlcCAxNiAxNTo1NjoyNSBsb2dydXMgZGhjcGNkWzUwMDcwXTogdmxhbjA6IGZl ODA6OjNlOGE6YjBmZjpmZTNlOjRkY2UgaXMgdW5yZWFjaGFibGUNCj4+IFNlcCAxNiAxNTo1 NjoyNSBsb2dydXMgZGhjcGNkWzUwMDcwXTogdmxhbjA6IGZlODA6OjNlOGE6YjBmZjpmZTNl OjRkY2UgaXMgcmVhY2hhYmxlIGFnYWluDQo+PiBTZXAgMTYgMTU6NTY6MjUgbG9ncnVzIGRo Y3BjZFs1MDA3MF06IHZsYW4wOiBzb2xpY2l0aW5nIGFuIElQdjYgcm91dGVyDQo+PiBTZXAg MTYgMTU6NTY6NTcgbG9ncnVzIGRoY3BjZFs1MDA3MF06IHZsYW4wOiBmZTgwOjozZThhOmIw ZmY6ZmUzZTo0ZGNlIGlzIHVucmVhY2hhYmxlDQo+PiBTZXAgMTYgMTU6NTY6NTggbG9ncnVz IGRoY3BjZFs1MDA3MF06IHZsYW4wOiBzb2xpY2l0aW5nIGFuIElQdjYgcm91dGVyDQo+PiBT ZXAgMTYgMTU6NTY6NTggbG9ncnVzIGRoY3BjZFs1MDA3MF06IHZsYW4wOiBSb3V0ZXIgQWR2 ZXJ0aXNlbWVudCBmcm9tIGZlODA6OjNlOGE6YjBmZjpmZTNlOjRkY2UNCj4+IFNlcCAxNiAx NTo1NzozMiBsb2dydXMgZGhjcGNkWzUwMDcwXTogdmxhbjA6IGZlODA6OjNlOGE6YjBmZjpm ZTNlOjRkY2UgaXMgdW5yZWFjaGFibGUNCj4+IFNlcCAxNiAxNTo1NzozMiBsb2dydXMgZGhj cGNkWzUwMDcwXTogdmxhbjA6IHNvbGljaXRpbmcgYW4gSVB2NiByb3V0ZXINCj4+IFNlcCAx NiAxNTo1NzozMiBsb2dydXMgZGhjcGNkWzUwMDcwXTogdmxhbjA6IFJvdXRlciBBZHZlcnRp c2VtZW50IGZyb20gZmU4MDo6M2U4YTpiMGZmOmZlM2U6NGRjZQ0KPj4NCj4+IER1cmluZyB0 aGlzIHNhbWUgdGltZSBmcmFtZSwg4oCccm91dGUgbW9uaXRvcuKAnSBzaG93czoNCj4+DQo+ PiAxNTo1NTo1My41NzMgUElEICAgIDAgZGVsZXRlIG5laWdoIGZlODA6OjNlOGE6YjBmZjpm ZTNlOjRkY2UldmxhbjAgc3RhdGUgUFJPQkUgbGxhZGRyIDNjOjhhOmIwOjNlOjRkOmNlIGlm YWNlIHZsYW4wICAxNTo1NTo1NC4wMDIgUElEICAgIDAgYWRkL3JlcGwgbmVpZ2ggZmU4MDo6 M2U4YTpiMGZmOmZlM2U6NGRjZSV2bGFuMCBzdGF0ZSBSRUFDSEFCTEUgbGxhZGRyIDNjOjhh OmIwOjNlOjRkOmNlIGlmYWNlIHZsYW4wICAxNTo1NjoyNS4xNDggUElEICAgIDAgZGVsZXRl IG5laWdoIGZlODA6OjNlOGE6YjBmZjpmZTNlOjRkY2UldmxhbjAgc3RhdGUgUFJPQkUgbGxh ZGRyIDNjOjhhOmIwOjNlOjRkOmNlIGlmYWNlIHZsYW4wICAxNTo1NjoyNS4yMTIgUElEICAg IDAgYWRkL3JlcGwgbmVpZ2ggZmU4MDo6M2U4YTpiMGZmOmZlM2U6NGRjZSV2bGFuMCBzdGF0 ZSBSRUFDSEFCTEUgbGxhZGRyIDNjOjhhOmIwOjNlOjRkOmNlIGlmYWNlIHZsYW4wICAxNTo1 Njo1Ny40MDYgUElEICAgIDAgZGVsZXRlIG5laWdoIGZlODA6OjNlOGE6YjBmZjpmZTNlOjRk Y2UldmxhbjAgc3RhdGUgUFJPQkUgbGxhZGRyIDNjOjhhOmIwOjNlOjRkOmNlIGlmYWNlIHZs YW4wICAxNTo1Njo1OC45NjcgUElEICAgIDAgYWRkL3JlcGwgbmVpZ2ggZmU4MDo6M2U4YTpi MGZmOmZlM2U6NGRjZSV2bGFuMCBzdGF0ZSBSRUFDSEFCTEUgbGxhZGRyIDNjOjhhOmIwOjNl OjRkOmNlIGlmYWNlIHZsYW4wICAxNTo1NzozMi4zMjUgUElEICAgIDAgZGVsZXRlIG5laWdo IGZlODA6OjNlOGE6YjBmZjpmZTNlOjRkY2UldmxhbjAgc3RhdGUgUFJPQkUgbGxhZGRyIDNj OjhhOmIwOjNlOjRkOmNlIGlmYWNlIHZsYW4wICAxNTo1NzozNC4xNDMgUElEICAgIDAgYWRk L3JlcGwgbmVpZ2ggZmU4MDo6M2U4YTpiMGZmOmZlM2U6NGRjZSV2bGFuMCBzdGF0ZSBSRUFD SEFCTEUgbGxhZGRyIDNjOjhhOmIwOjNlOjRkOmNlIGlmYWNlIHZsYW4wDQo+Pg0KPj4gTXkg Y29uY2VybiBpcyB0aGF0IHRoaXMgaXMgc2VuZGluZyBSU+KAmXMgdG8gbXkgcHJvdmlkZXIg ZmFyIHRvbyBvZnRlbi4NCj4+IENhbiBhbnlvbmUgYWR2aXNlIGlmIHRoaXMgaXMgbm9ybWFs LCBhbmQgYXNzdW1pbmcgbm90LCB3aGF0IG1pZ2h0DQo+PiBiZSB3cm9uZz8NCj4+DQo+PiBU cmltbWVkIGRoY3BjZC5jb25mIGlzOg0KPj4NCj4+IGR1aWQNCj4+IHBlcnNpc3RlbnQNCj4+ IHZlbmRvcmNsYXNzaWQNCj4+IG9wdGlvbiBjbGFzc2xlc3Nfc3RhdGljX3JvdXRlcw0KPj4g b3B0aW9uIHJhcGlkX2NvbW1pdA0KPj4gcmVxdWlyZSBkaGNwX3NlcnZlcl9pZGVudGlmaWVy DQo+PiBzbGFhYyBwcml2YXRlDQo+PiBub2lwdjZycw0KPj4gbm9pcHY0DQo+PiBub2lwdjRs bA0KPj4gYWxsb3dpbnRlcmZhY2VzIHZsYW4wDQo+PiBpbnRlcmZhY2UgdmxhbjANCj4+ICAg aXB2Nm9ubHkNCj4+ICAgaXB2NnJzDQo+PiAgIGlwdjZyYV9hdXRvY29uZg0KPj4gICBpYV9w ZCAwLzo6LzU2IGludG5ldDEvNDIgaW50bmV0Mi81Ng0KPj4NCj4+IFRoYW5rcy4NCj4+DQo+ PiAgICAgICAgICAgICAgICAgICAgICAgICAtIENocmlzDQo+Pg0KPg0KPg0KLS0gDQpLYXJs IERlbm5pbmdlcg0Ka2FybEBkZW5uaW5nZXIubmV0DQovVGhlIE1hcmtldCBUaWNrZXIvDQov W1MvTUlNRSBlbmNyeXB0ZWQgZW1haWwgcHJlZmVycmVkXS8NCg== --------------0K946DG5JcOHYt3pHiUqAe0e Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: quoted-printable

What is the revision on the kernel (rev and/or build date)?

I THINK the only difference between you and I that is material is that I'm running dhcp6c because dhcpcd, at least check, has some trouble getting an allocation on cold boot (but does if restarted), on which I've communicated with Roy, and I haven't seen anything new pop up on the dhcpcd port yet thus haven't tried it again in the ~4 weeks.

I'm not seeing it here but I might not have all the patches you're referring to on the gateway.=C2=A0 If I'm not its ea= sily enough rolled forward here so I do.

I have a non-routing machine that is very current (rebuilt after the recent zfs patch set hit) on stable/14 and it is not seeing that -- but it is not a router, it is an end-node running rtsold and gets its IPv6 address via SLACC from the router.

On 9/16/2024 17:45, Chris Ross wrote:<= br>
Apologies for lack of import=
ant context, the below discusses a FreeBSD
14.1 amd64 system.

Thank you.

On Sep 16, 2024, at 16:05,=
 Chris Ross <cross+freebsd@distal.com> wrote:

Hello.  Following the earlier thread "DHCPv6 IA_PD - how-to=E2=80=9D I ha=
ve been
bringing up a new gateway router for my network.  With Roy=E2=80=99s help=
, I
have IPv6 working as expected, but I am seeing something that I suspect
is unusual.  Roy doesn=E2=80=99t think it=E2=80=99s specific to dhcpcd, a=
s it is caused
by routing changes that dhcpcd is merely reacting to.

While dhcpcd is running, it repeatedly logs the following to daemon.log:

Sep 16 15:55:53 logrus dhcpcd[50070]: vlan0: fe80::3e8a:b0ff:fe3e:4dce is=
 unreachable
Sep 16 15:55:54 logrus dhcpcd[50070]: vlan0: fe80::3e8a:b0ff:fe3e:4dce is=
 reachable again
Sep 16 15:55:54 logrus dhcpcd[50070]: vlan0: soliciting an IPv6 router
Sep 16 15:56:25 logrus dhcpcd[50070]: vlan0: fe80::3e8a:b0ff:fe3e:4dce is=
 unreachable
Sep 16 15:56:25 logrus dhcpcd[50070]: vlan0: fe80::3e8a:b0ff:fe3e:4dce is=
 reachable again
Sep 16 15:56:25 logrus dhcpcd[50070]: vlan0: soliciting an IPv6 router
Sep 16 15:56:57 logrus dhcpcd[50070]: vlan0: fe80::3e8a:b0ff:fe3e:4dce is=
 unreachable
Sep 16 15:56:58 logrus dhcpcd[50070]: vlan0: soliciting an IPv6 router
Sep 16 15:56:58 logrus dhcpcd[50070]: vlan0: Router Advertisement from fe=
80::3e8a:b0ff:fe3e:4dce
Sep 16 15:57:32 logrus dhcpcd[50070]: vlan0: fe80::3e8a:b0ff:fe3e:4dce is=
 unreachable
Sep 16 15:57:32 logrus dhcpcd[50070]: vlan0: soliciting an IPv6 router
Sep 16 15:57:32 logrus dhcpcd[50070]: vlan0: Router Advertisement from fe=
80::3e8a:b0ff:fe3e:4dce

During this same time frame, =E2=80=9Croute monitor=E2=80=9D shows:

15:55:53.573 PID    0 delete neigh fe80::3e8a:b0ff:fe3e:4dce%vlan0 state =
PROBE lladdr 3c:8a:b0:3e:4d:ce iface vlan0  15:55:54.002 PID    0 add/rep=
l neigh fe80::3e8a:b0ff:fe3e:4dce%vlan0 state REACHABLE lladdr 3c:8a:b0:3=
e:4d:ce iface vlan0  15:56:25.148 PID    0 delete neigh fe80::3e8a:b0ff:f=
e3e:4dce%vlan0 state PROBE lladdr 3c:8a:b0:3e:4d:ce iface vlan0  15:56:25=
=2E212 PID    0 add/repl neigh fe80::3e8a:b0ff:fe3e:4dce%vlan0 state REAC=
HABLE lladdr 3c:8a:b0:3e:4d:ce iface vlan0  15:56:57.406 PID    0 delete =
neigh fe80::3e8a:b0ff:fe3e:4dce%vlan0 state PROBE lladdr 3c:8a:b0:3e:4d:c=
e iface vlan0  15:56:58.967 PID    0 add/repl neigh fe80::3e8a:b0ff:fe3e:=
4dce%vlan0 state REACHABLE lladdr 3c:8a:b0:3e:4d:ce iface vlan0  15:57:32=
=2E325 PID    0 delete neigh fe80::3e8a:b0ff:fe3e:4dce%vlan0 state PROBE =
lladdr 3c:8a:b0:3e:4d:ce iface vlan0  15:57:34.143 PID    0 add/repl neig=
h fe80::3e8a:b0ff:fe3e:4dce%vlan0 state REACHABLE lladdr 3c:8a:b0:3e:4d:c=
e iface vlan0 =20

My concern is that this is sending RS=E2=80=99s to my provider far too of=
ten.
Can anyone advise if this is normal, and assuming not, what might
be wrong?

Trimmed dhcpcd.conf is:

duid
persistent
vendorclassid
option classless_static_routes
option rapid_commit
require dhcp_server_identifier
slaac private
noipv6rs
noipv4
noipv4ll
allowinterfaces vlan0
interface vlan0
 ipv6only
 ipv6rs
 ipv6ra_autoconf
 ia_pd 0/::/56 intnet1/42 intnet2/56

Thanks.

                       - Chris



--
Karl Denninger
karl@denninger.net
The Market Ticker
[S/MIME encrypted email preferred]<= /div> --------------0K946DG5JcOHYt3pHiUqAe0e-- --------------wWt0UUWD1ycbqpmLVj5oSPlj-- --------------XyY0NCC9xowWg6UuB0301HGd Content-Type: application/pgp-signature; name="OpenPGP_signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="OpenPGP_signature.asc" -----BEGIN PGP SIGNATURE----- wsF5BAABCAAjFiEEvWWSxnGhSYSUSaCtby3AFeuPWXgFAmboqWgFAwAAAAAACgkQby3AFeuPWXgG EQ//UkCzXzYqZ4BaH3pFqILYUx2fWzq5FK0m1ynNwhA7qai9QvYGM5hVY0nZG9TgkhCxOkAzoFbp Qr0g6jTno3XzlT724gYNss/P/SA+u13dvkIDseKfEaOmjwS1y0CFZDOfN66JcAKi+kS63E80OT6K 0etnBRGYj3iaRGgRu0IeEFs0mOq52rifN0UnG6AqPDwQwFCDHu9O8Y/t3p2XZbhSH+w4yBmO2vru Oso344cU2deC+SVJEaDzVQsdfDDkCarTEH4PbVsXp9zcs2vn+SYwJRcHXIL1frjAmznMfbcGIPAX lJRw3ZHja5kWkNMYjKllqDfw7SGy1yIWGTafBeCVarmetpschEIPGCJpDKfPsXfM88ze6Djy7le4 IJAd2pYyjwzrNcgZxukZoOzt2q68tN7ggKHbIoBcDjaXMzCYju0jE4H6joZ3fJ1hOp76fjc3dokL lFiAIz1DXOL0NQnZHhXnzVDpdA7wg0XohjhyYOOGeKGxVYvpNDHRvr3mw6V2n3HN+7HdzrYNoE6p ttIhrJElJDcN51kWUDN8cs3T70paitHouHNeW/OSLvlos18IJd6dvDrah0ExxqznVKSM5muhsodq p8xH8ozvncZtUIvzhOC8zlNbuiyAzKz4ccd08APDOcyQvM9FCAUTcZCzofAlcGAH0tJrwuT2R6Qb FV0= =ffH7 -----END PGP SIGNATURE----- --------------XyY0NCC9xowWg6UuB0301HGd-- From nobody Mon Sep 16 22:02:21 2024 X-Original-To: freebsd-net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X6zRb488nz5VvLv for ; Mon, 16 Sep 2024 22:02:35 +0000 (UTC) (envelope-from cross+freebsd@relay.distal.com) Received: from relay.wiredblade.com (relay.wiredblade.com [168.235.105.136]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4X6zRb2LkYz4KSl for ; Mon, 16 Sep 2024 22:02:35 +0000 (UTC) (envelope-from cross+freebsd@relay.distal.com) Authentication-Results: mx1.freebsd.org; none dkim-signature: v=1; a=rsa-sha256; d=relay.distal.com; s=mail; c=relaxed/relaxed; q=dns/txt; h=From:Subject:Date:Message-ID:To:CC:MIME-Version:Content-Type:Content-Transfer-Encoding:In-Reply-To:References; bh=XD50iJCX39kCSoWi6EZxuZ9rMwuuiDNuCkJsuOuxMeE=; b=tiOHv49urmVAMs0A6uvFtjXPDFqZUHUFbjnxeuMKKFglHH7n2FgMCHNuWsVRBaRm5UWcgj0Ofrl6ZI0E15HSeeqqTQJ/1Pwo0ILbnLDC7NHTUJBSF06sWT2cAMh4knjjgDcKXEasSHYn126ORVjd/SW5vJE9Yk2Ml5OJ51eJP64jsuvbUSNWXltv0QyqzggpkGy6PBr0HAUsM9vczvCInK77/VYuNjnJ8g8sfKdZSSlf+71TBYltHd+kBX tO2Bx1kFF3Wd6LecXHzxOL7HXv5fMsMjzKKartkiTttldRK4pZwr6WIZmoRMeq73OW9ILPOMekIBFRQqe3b244XKFoXA== Received: from mail.distal.com (pool-108-51-233-124.washdc.fios.verizon.net [108.51.233.124]) by relay.wiredblade.com with ESMTPSA (version=TLSv1.2 cipher=ECDHE-RSA-CHACHA20-POLY1305 bits=256) ; Mon, 16 Sep 2024 22:02:33 +0000 Received: from smtpclient.apple ( [2001:420:c0c4:1006::585]) by tristain.distal.com (OpenSMTPD) with ESMTPSA id 67953467 (TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256:NO); Mon, 16 Sep 2024 18:02:32 -0400 (EDT) Content-Type: text/plain; charset=utf-8 List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3776.700.51\)) Subject: Re: IPv6 neighbor flaps for ISP router are occurring frequently From: Chris Ross In-Reply-To: Date: Mon, 16 Sep 2024 18:02:21 -0400 Cc: freebsd-net@freebsd.org Content-Transfer-Encoding: quoted-printable Message-Id: <6CFC398B-BC5C-4CFC-8733-8D9732B121CA@distal.com> References: <89F4F5A4-E3D9-4A43-84F6-908E3FA221A6@distal.com> <83BCC913-3375-4847-B720-5F06D76F6646@distal.com> To: Karl Denninger X-Mailer: Apple Mail (2.3776.700.51) X-Spamd-Bar: ---- X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; TAGGED_FROM(0.00)[freebsd]; ASN(0.00)[asn:3842, ipnet:168.235.104.0/22, country:US] X-Rspamd-Queue-Id: 4X6zRb2LkYz4KSl > On Sep 16, 2024, at 17:55, Karl Denninger wrote: > What is the revision on the kernel (rev and/or build date)? Build was from releng/14.1 back at the start of August. Looking now, I see that I=E2=80=99m behind by 24 commits, so maybe should try updating. > I THINK the only difference between you and I that is material is that = I'm running dhcp6c because dhcpcd, at least check, has some trouble = getting an allocation on cold boot (but does if restarted), on which = I've communicated with Roy, and I haven't seen anything new pop up on = the dhcpcd port yet thus haven't tried it again in the ~4 weeks. > I'm not seeing it here but I might not have all the patches you're = referring to on the gateway. If I'm not its easily enough rolled = forward here so I do. > I have a non-routing machine that is very current (rebuilt after the = recent zfs patch set hit) on stable/14 and it is not seeing that -- but = it is not a router, it is an end-node running rtsold and gets its IPv6 = address via SLACC from the router. I also tried to reproduce this on a couple of non-router machines and was not able to. =20 - Chris From nobody Mon Sep 16 23:12:50 2024 X-Original-To: freebsd-net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X71101WTGz5WN9w for ; Mon, 16 Sep 2024 23:13:08 +0000 (UTC) (envelope-from bsd-lists@bsdforge.com) Received: from udns.ultimatedns.net (udns.ultimatedns.net [24.113.41.81]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "ultimatedns.net", Issuer "R10" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X710z57jyz4XGx; Mon, 16 Sep 2024 23:13:07 +0000 (UTC) (envelope-from bsd-lists@bsdforge.com) Authentication-Results: mx1.freebsd.org; none Received: from ultimatedns.net (localhost [127.0.0.1]) by udns.ultimatedns.net (8.16.1/8.16.1) with ESMTP id 48GNCoVi026100; Mon, 16 Sep 2024 16:12:57 -0700 (PDT) (envelope-from bsd-lists@bsdforge.com) DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=ultimatedns.net; s=mx99; t=1726528385; x=1726528985; r=y; bh=rFKAiqQZEmTmPWUP0kMhJHZmQM+7rhqy3kSNp65DqnQ=; h=Date:From:To:Cc:Subject:In-Reply-To:References; b=vH2e8I3IzWCsaNwKHaZ0PMqJAVp3Ov9vTALe/4USuH+Ao3erI4acFXvJH4arSLoCf ps3burISN1wBIIob+2ZQ2Vi23Q4+/cSG8al4QYtw0h7MjZTKnQsPMVsdKu533Ntnm4 nW9W5x/ypsFgstv//2W6h/MkRbXPwsbP2rjibtolMclmZo4XWFHdQLvLOMLVnAa2pZ 3EGmpHrmb0hxnGv0OYOW8yUOS9ZonlhHWtrPdS6fG9Q7sAsQpTx6CXJBpv8p7PReP0 uc/2NPaTX00R16FCPN7oUU7aGFWMXcEIixZeBuENQClfxOmqAOO2NH/YjXGLzAho24 YVG3TrhWjwHsg== List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 Date: Mon, 16 Sep 2024 16:12:50 -0700 From: Chris To: Miroslav Lachman <000.fbsd@quip.cz> Cc: Sad Clouds , Zhenlei Huang , Mark Saad , FreeBSD Net Subject: Re: Performance issues with vnet jails + epair + bridge In-Reply-To: References: <20240913100938.3eac55c9fbd976fa72d58bb5@gmail.com> <39B2C95D-1E4F-4133-8923-AD305DFA9435@longcount.org> <20240913155439.1e171a88bd01ce9b97558a90@gmail.com> <20240914112516.cfb31bae68ab90b83ca7ad4b@gmail.com> <20240915185654.b51cfec5aa2520e5b801cc87@gmail.com> User-Agent: UDNSMS/17.0 Message-ID: <4a30743b7df5c5ca45386e69bebdbbe3@bsdforge.com> X-Sender: bsd-lists@bsdforge.com Content-Type: text/plain; charset=US-ASCII; format=flowed Content-Transfer-Encoding: 7bit X-Spamd-Bar: ---- X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:11404, ipnet:24.113.0.0/16, country:US] X-Rspamd-Queue-Id: 4X710z57jyz4XGx On 2024-09-16 07:32, Miroslav Lachman wrote: > On 15/09/2024 19:56, Sad Clouds wrote: >> On Sun, 15 Sep 2024 18:01:07 +0100 >> Doug Rabson wrote: >> >>> I just did a throughput test with iperf3 client on a FreeBSD 14.1 host >>> with >>> an intel 10GB nic connecting to an iperf3 server running in a vnet jail on >>> a truenas host (13.something) also with an intel 10GB nic and I get full >>> 10GB throughput in this setup. In the past, I had to disable LRO on the >>> truenas host for this to work properly. >>> >>> Doug. >> >> Hello Doug, can you please confirm that you are NOT using if_epair(4)? I >> imagine you dedicate one of the Intel 10Gb ports to a jail. This is not >> an option for some of us, so a virtual NIC of some sort is the only >> option with vnet jails. Other people also mentioned that vnet by itself >> is not an issue and your test confirms this, however I'm observing poor >> scalability specifically with the epair virtual NIC. >> >> I will be trying netgraph when I have some more time. If there are >> other alternatives to if_epair then I would be interested to learn >> about them. > > Try ngbuddy, it will help you with configuring netgraph. > > Or you can create second loopback interface, for example lo1 and put your > jails on > it. I don't know what your scenario is, but I used lo1 in the past with > private > IPs (10.x.x.x or 172.16.x.x) for jails not facing the outside world, just > communicating with the host) > > You can put something similar to rc.conf: > > cloned_interfaces="lo1" > # interface where all jails will bind > ifconfig_lo1="inet 172.16.55.22 netmask 255.255.255.0" I was going to suggest something like this as well. I often employ this with jails. You can also facilitate exchanging traffic with the outside via pf(4) (host) rc.conf(5): cloned_interfaces="lo1" pf_enable="YES" pflog_enable="YES" (host) pf.conf: EXT_ADDR="192.168.1.2" set skip on { lo0, lo1 } nat pass on wlan0 from { lo1 } to any -> $EXT_ADDR rdr pass on wlan0 proto tcp from any to { lo1 } -> $EXT_ADDR Exchanging the EXT_ADDR value with your hosts NIC address. I use the loopback interface as 120.0.0.1-N as needed. --Chris > > Then run: service netif cloneup > > Kind regards > Miroslav Lachman -- sent from a device written from and running on FreeBSD From nobody Tue Sep 17 03:25:07 2024 X-Original-To: freebsd-net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X76bw6BhMz5Vw2w for ; Tue, 17 Sep 2024 03:25:16 +0000 (UTC) (envelope-from zlei@FreeBSD.org) Received: from smtp.freebsd.org (smtp.freebsd.org [IPv6:2610:1c1:1:606c::24b:4]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "smtp.freebsd.org", Issuer "R10" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X76bw5S1Xz4Bq9; Tue, 17 Sep 2024 03:25:16 +0000 (UTC) (envelope-from zlei@FreeBSD.org) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726543516; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=SECk8gjz4e8cS+mDwjaTkzsNlky0ESAv5mPt+Jw7s10=; b=RtF7IqRllGXl/3oBhd/nXdQeqmWijn3UTfZZWtSNQI9NMpyEShnmResLbqaMOuP8fGGqUr IYFnkEmiue8JpVGJB6BgmrPRg6zjgCGb8ajJ9ucsfIOump0HUbAW/F2z2RAD+0OOUvRaaR L8/dyal/c0UWqdZMuHB6GdKBCjQrHjH2h51HZnYUgjlUsyLLhovDrq8yM3z8nppnAEcN9y rr5sHEBuPReY0kTGKf05kZOFhAntCrScIw8JVdWRQ5NNB+xmY7g8EExre8/oJ6zoPDNjGm 2exnqfn5oIBTzyO8gUWCbaCFrruSRZxTwYneJwYSI8f3qIJO/rDdGqaPX5HuRg== ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726543516; a=rsa-sha256; cv=none; b=h/MbNCIr3pz2QSxerdNag50YKxpVJV/wxEWmrj9SJfv74knCV65KlJ+zVdmc9upQfNLqBF JWjtn1pLCNZ6anCtnz1ANM+N9KNvQnY0iUXSfeY9hdNr7CxMpaW7JPqApTINVbYcYL2p74 FC8SFHxY+1VB17VQO08NrZUCqs61ra8NoiuV3TdEdB0GqBn5+99cpqkLYKDC+qF5Qp5AS5 qV+C/yEjN4OI0Gcr240Zj5aT98PxKbZ6ALzl69mzPA9ih3SQa1d0fLHFiAEDu6kzE1SGQd CcehoPYxH/8HTxW9NNlN8Q48Isory5IUAtdISAMQca5VAmlHpoFTrFDtFoFQPQ== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726543516; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=SECk8gjz4e8cS+mDwjaTkzsNlky0ESAv5mPt+Jw7s10=; b=v58w1mMLD3xSHLVoknWsETurrh5UHwJ6OU9ykuVlHVeRfu9q9ynw4bm1gh7DR5eWiIgPSf c85GlK8F2OLUHI8f+ySUBAdkZc6luXz1fA9TmHQYi75aXI6tBpb2F5M4QvNYVBuY2i8CY2 WE/xEFT8kohR4xiRA27tSfjEN4cdOGJ2YvA71Bmphl6rJTA+rGhre8HGn/P8beymIHie3M MwsifNvClECqTPeFQ6u9ZdiDHaRhXqrrdCy0Etndya0DswM8go5eMONKSTUI7b4HUS4wBg IYg4n1egqenVDRMIrLZQV9IHluxVV67/ntPPExtcT6pHNvPPQlDJvjupAESKeg== Received: from smtpclient.apple (unknown [IPv6:2001:19f0:6001:9db:98f0:9fe0:3545:10]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) (Authenticated sender: zlei/mail) by smtp.freebsd.org (Postfix) with ESMTPSA id 4X76bv2RnjzX78; Tue, 17 Sep 2024 03:25:15 +0000 (UTC) (envelope-from zlei@FreeBSD.org) Content-Type: text/plain; charset=us-ascii List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3696.120.41.1.10\)) Subject: Re: Performance issues with vnet jails + epair + bridge From: Zhenlei Huang In-Reply-To: <214411726497902@mail.yandex.ru> Date: Tue, 17 Sep 2024 11:25:07 +0800 Cc: Sad Clouds , Mark Saad , FreeBSD Net Content-Transfer-Encoding: quoted-printable Message-Id: <7E65BDDA-7105-4C07-9243-4FAF2B4D5515@FreeBSD.org> References: <20240913100938.3eac55c9fbd976fa72d58bb5@gmail.com> <39B2C95D-1E4F-4133-8923-AD305DFA9435@longcount.org> <20240913155439.1e171a88bd01ce9b97558a90@gmail.com> <214411726497902@mail.yandex.ru> To: Aleksandr Fedorov X-Mailer: Apple Mail (2.3696.120.41.1.10) > On Sep 16, 2024, at 10:47 PM, Aleksandr Fedorov = wrote: >=20 > If we are talking about local traffic between jails and/or host, then = in terms of TCP throughput we have a room to improve, for example: Without RSS option enabled, if_epair will only use one thread to move = packets between the pair of interfaces. I reviewed the code and I think it can be improved event without RSS. > =20 > 1. Stop calculating checksums for packets between VNET jails and host. I've local WIP for this, inspired by the introduction of IFCAP_VLAN_MTU. = Should have better improvement especially on low freq CPUs. > =20 > 2. Use large packets (TSO) up to 64k in size. > =20 > Just for example, a simple patch increases the throughput of = if_pair(4) between two ends from 10 Gbps to 30 Gbps. That is impressing ! > =20 > diff --git a/sys/net/if_epair.c b/sys/net/if_epair.c > index aeed993249f5..79c2dfcfc445 100644 > --- a/sys/net/if_epair.c > +++ b/sys/net/if_epair.c > @@ -164,6 +164,10 @@ epair_tx_start_deferred(void *arg, int pending) > while (m !=3D NULL) { > n =3D STAILQ_NEXT(m, m_stailqpkt); > m->m_nextpkt =3D NULL; > + > + m->m_pkthdr.csum_flags =3D CSUM_IP_CHECKED | = CSUM_IP_VALID | CSUM_DATA_VALID | CSUM_PSEUDO_HDR; > + m->m_pkthdr.csum_data =3D 0xFFFF; > + > if_input(ifp, m); > m =3D n; > } > @@ -538,8 +542,9 @@ epair_setup_ifp(struct epair_softc *sc, char = *name, int unit) > ifp->if_dunit =3D unit; > ifp->if_flags =3D IFF_BROADCAST | IFF_SIMPLEX | IFF_MULTICAST; > ifp->if_flags |=3D IFF_KNOWSEPOCH; > - ifp->if_capabilities =3D IFCAP_VLAN_MTU; > - ifp->if_capenable =3D IFCAP_VLAN_MTU; > + ifp->if_capabilities =3D IFCAP_VLAN_MTU | IFCAP_HWCSUM | = IFCAP_HWCSUM_IPV6 | IFCAP_TSO; > + ifp->if_capenable =3D ifp->if_capabilities; > + ifp->if_hwassist =3D (CSUM_IP | CSUM_TCP | CSUM_UDP | = CSUM_IP_TSO); I've not tried TSO on if_epair yet. TSO has special treatment so I guess = the above is not sufficient. > ifp->if_transmit =3D epair_transmit; > ifp->if_qflush =3D epair_qflush; > ifp->if_start =3D epair_start; > =20 > 14.09.2024, 05:45, "Zhenlei Huang" : > =20 > =20 >=20 > On Sep 13, 2024, at 10:54 PM, Sad Clouds = wrote: > =20 > On Fri, 13 Sep 2024 08:08:02 -0400 > Mark Saad wrote: > =20 > Sad > Can you go back a bit you mentioned there is a RPi in the mix ? = Some of the raspberries have their nic usb attached under the covers . = Which will kill the total speed of things. > =20 > Can you cobble together a diagram of what you have on either end ?=20 > Hello, I'm not sending data across the network, only between the host > and the jails. I'm trying to evaluate how FreeBSD handles TCP data > locally within a single host. >=20 > When you take vnet into account, the **locally** traffic should within > on single vnet jail. If you want traffic across vnet jails, if_epair = or netgraph > hooks should be employed, and it of course will introduce some = overhead. >=20 > =20 > I understand that vnet jails will have more overhead, compared to a > shared TCP/IP stack via localhost. So I'm trying to measure it and = see > where the bottlenecks are. >=20 > The overhead of vnet jail should be neglectable, compared to legacy = jail > or no-jail. Bare in mind when VIMAGE option is enabled, there is a = default > vnet 0. It is not visible via jls and can not be destroyed. So when = you see > bottlenecks, for example this case, it is mostly caused by other = components > such as if_epair, but not the vnet jail itself. >=20 > =20 > The Raspberry Pi 4 host has a single vnet jail, exchanging data with > the host via epair(4) and if_bridge(4) interfaces. I don't really = know > what topology FreeBSD is using to represent all this so can't draw = any > diagrams, but I think all data flows through the kernel internally = and > never leaves the physical network interface. >=20 > For vnet jails, when you try to describe the network topology, you can > treat them as VM / physical boxes. >=20 > I have one box with dozens of vnet jails. Each of them has very single > responsibility, e.g. DHCP, LADP, pf firewall, OOB access. The topology = looks quite > clear and it is easy to maintenance. The only overhead is too much > hops between the vnet jail instances. For my use case the performance > is not critical and it works great for years. >=20 > =20 >=20 > Best regards, > Zhenlei From nobody Tue Sep 17 18:46:05 2024 X-Original-To: freebsd-net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X7W2m2T2Sz5VcR3 for ; Tue, 17 Sep 2024 18:46:24 +0000 (UTC) (envelope-from cross+freebsd@relay.distal.com) Received: from relay.wiredblade.com (relay.wiredblade.com [168.235.105.136]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4X7W2k70nTz3xYl for ; Tue, 17 Sep 2024 18:46:22 +0000 (UTC) (envelope-from cross+freebsd@relay.distal.com) Authentication-Results: mx1.freebsd.org; dkim=pass header.d=relay.distal.com header.s=mail header.b=qRA+bOAb; dmarc=none; spf=pass (mx1.freebsd.org: domain of cross+freebsd@relay.distal.com designates 168.235.105.136 as permitted sender) smtp.mailfrom=cross+freebsd@relay.distal.com dkim-signature: v=1; a=rsa-sha256; d=relay.distal.com; s=mail; c=relaxed/relaxed; q=dns/txt; h=From:Subject:Date:Message-ID:To:CC:MIME-Version:Content-Type:Content-Transfer-Encoding:In-Reply-To:References; bh=Pn/eJZdyNJIEEntDSjQ8mjcEeNyRT6xnY68ZeIw/ZF8=; b=qRA+bOAbGmTyGUoj6bKztSeDE+bea32MMdmjsRjp5lChgdOQ+9prOtfDFOOMrkQRrfb/aFaxciCt5QjuAuYDfYec3T/ozkFFxGEKlIcsMs+HYMPpGT3skhijsaZRUh+5olslWruOpUBMcDIUtocMbSURNCCchoUh5aM3MRmICgsx6tTcimYfaUKDk2QVFj5gNRIVY1nHsTZ/U8EizMPcNHlMzUm0GP42oBmnHVN6lcTNnLwdDCQY6ZK5cN Aass8qZUyh/avFgAIIQcD5zEgd20ISA8VF30X9An5sqhp2tivNnL+kmxXWOoElP63IeMOHPN/7u3wuiatHLPW4/6pDAA== Received: from mail.distal.com (pool-108-51-233-124.washdc.fios.verizon.net [108.51.233.124]) by relay.wiredblade.com with ESMTPSA (version=TLSv1.2 cipher=ECDHE-RSA-CHACHA20-POLY1305 bits=256) ; Tue, 17 Sep 2024 18:46:19 +0000 Received: from smtpclient.apple ( [173.38.117.78]) by tristain.distal.com (OpenSMTPD) with ESMTPSA id 80e48d99 (TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256:NO); Tue, 17 Sep 2024 14:46:17 -0400 (EDT) Content-Type: text/plain; charset=utf-8 List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3776.700.51\)) Subject: Re: IPv6 neighbor flaps for ISP router are occurring frequently From: Chris Ross In-Reply-To: <6CFC398B-BC5C-4CFC-8733-8D9732B121CA@distal.com> Date: Tue, 17 Sep 2024 14:46:05 -0400 Cc: freebsd-net@freebsd.org Content-Transfer-Encoding: quoted-printable Message-Id: References: <89F4F5A4-E3D9-4A43-84F6-908E3FA221A6@distal.com> <83BCC913-3375-4847-B720-5F06D76F6646@distal.com> <6CFC398B-BC5C-4CFC-8733-8D9732B121CA@distal.com> To: Karl Denninger X-Mailer: Apple Mail (2.3776.700.51) X-Spamd-Bar: --- X-Spamd-Result: default: False [-3.18 / 15.00]; NEURAL_HAM_LONG(-1.00)[-1.000]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; NEURAL_HAM_SHORT(-0.98)[-0.979]; FORGED_SENDER(0.30)[cross@distal.com,cross@relay.distal.com]; R_DKIM_ALLOW(-0.20)[relay.distal.com:s=mail]; R_SPF_ALLOW(-0.20)[+a:relay.dynu.com]; MIME_GOOD(-0.10)[text/plain]; RCVD_TLS_ALL(0.00)[]; TAGGED_FROM(0.00)[freebsd]; DMARC_NA(0.00)[distal.com]; RCPT_COUNT_TWO(0.00)[2]; DKIM_TRACE(0.00)[relay.distal.com:+]; ARC_NA(0.00)[]; FROM_HAS_DN(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; MIME_TRACE(0.00)[0:+]; RCVD_COUNT_TWO(0.00)[2]; FROM_NEQ_ENVFROM(0.00)[cross@distal.com,cross@relay.distal.com]; ASN(0.00)[asn:3842, ipnet:168.235.104.0/22, country:US]; TO_MATCH_ENVRCPT_SOME(0.00)[]; MID_RHS_MATCH_FROM(0.00)[]; MLMMJ_DEST(0.00)[freebsd-net@freebsd.org]; APPLE_MAILER_COMMON(0.00)[]; TO_DN_SOME(0.00)[] X-Rspamd-Queue-Id: 4X7W2k70nTz3xYl > On Sep 16, 2024, at 18:02, Chris Ross = wrote: >=20 > Build was from releng/14.1 back at the start of August. Looking > now, I see that I=E2=80=99m behind by 24 commits, so maybe should try > updating. Hmm. Well, I updated my releng/14.1 tree and built a new kernel last = night. I rebooted and after dhcpcd started up it was emitting the same notices for many hours. But, at about 07:30 this morning it stopped. It=E2=80=99= s now been 7 hours since there have been any such notices from dhcpcd. And, I = can=E2=80=99t think of what couple. hanged. dhcpcd has been running for 15+ hours, complained for 8 hours, then stopped for 7. I=E2=80=99ll keep an eye on = it, but suffice to say I=E2=80=99m perplexed. - Chris From nobody Wed Sep 18 00:39:01 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X7fsd4B2Hz5WTtW for ; Wed, 18 Sep 2024 00:39:01 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X7fsd2GbDz4b8C for ; Wed, 18 Sep 2024 00:39:01 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726619941; a=rsa-sha256; cv=none; b=qqZatnkcbvspQ8rWB5tli3iIF2MqxzA2+zD6+Tg3PBZKx+giY4GG+4GdKr44F+IOlvNfxN IOFc3jP1JclmXNPeQkZSFEU9dtgchgZpXBuovVHlasmISYK6e7+vnYv6BKxtS1qwZ2vyR/ 2E4nJVaYECq6+lAtV9frmm9XLAXo9f6UGcwSTqUuGNUc+VmF0P9Vnp7O5nki9RDr5b7ni+ HhWN8R30jWp0vvSmgL6PdQkbgiDQjsohjknKQBr+vRNUp50+wr+bKAsRjLJ0qNyP9et5Bz B79iT/3o9LIg+nWZ4CJpM3RvIfrpjH+m2X6XhiPAEeYgvOPYpwgbOs3hj7ml1g== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726619941; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=1+ZBLGS6djw5XLpf0K4aPp/1cgY5sAyaZx6lmefgzjk=; b=AeYNLCp2r95wLo0BIX4TYL87ljcQtv5rKXVOjm1mI00kRmcNfagr9oe82rgqoNtabbnkS4 LbecV6pemikn9e+pgq81rmn7DNGk7k0sYstoiI09DsCmdL/CYcxZ0+Aw+UEE9DtVHNwRg7 Yzj27hR0QmCeQ3xmhFBfJiRdG/y3TxvxTZP3COE3uKSK8hFnyuVClq2GuNuJow/ugmgTaY Mx+StHqjQdTxnaoNZ2A71GqehRJXCeRGW1LTB/EGWxNNNCoo/DifpW7fTq1I+YsZmPOb6X cNLEjYRl0QQCIhLNlKbEadIP8ZJAU8rSE/skiS+q3KBsUhG6BaeYyhttZgTEJg== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X7fsd1mhKz10x4 for ; Wed, 18 Sep 2024 00:39:01 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48I0d1Jt037407 for ; Wed, 18 Sep 2024 00:39:01 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48I0d1Cs037406 for net@FreeBSD.org; Wed, 18 Sep 2024 00:39:01 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 281560] gve (4) uma deadlock during high tcp throughput Date: Wed, 18 Sep 2024 00:39:01 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-RELEASE X-Bugzilla-Keywords: vendor X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: linimon@FreeBSD.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: keywords assigned_to Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D281560 Mark Linimon changed: What |Removed |Added ---------------------------------------------------------------------------- Keywords| |vendor Assignee|bugs@FreeBSD.org |net@FreeBSD.org --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Wed Sep 18 08:25:54 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X7sDM0C43z5WcWm for ; Wed, 18 Sep 2024 08:25:55 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X7sDL3LhKz4KHF for ; Wed, 18 Sep 2024 08:25:54 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726647954; a=rsa-sha256; cv=none; b=nYhYNs4cUESNHf6mZPr7UAa6S2Fo5/8O0yxL8jvrYQrvocujl98F9XLf/RHd6KRBn1Xm/e C4F9ufRLwqI7GgNCwvUf6Sbz10bwcUNaej8p84aSdVEG6SSspNNVoISlMl6Yp/h1AK4GCz wC0oVrzsUTYy7OmmAc6GWkNk35WHhVO50GA1S3SkTWThs08mvl1rZb7JWm79dztYke8yey RVhx5POHRgLHPRPXCZmO9kNhc4BQ8iUfzr/FtEeUQkc+C9L6S3V8FQKZRUVNVsNikDgwMP OTlq5AW7AdpUbSo7KeL8RUwUpSMVHzAdnsL5skA+jWoLntXobmZZFYgGZDOQzQ== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726647954; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=zxXbPxsFDc4TGUK2UqFomnhPBV6WpWsWDdLd2FxjwLk=; b=GA7CQvk3M14/q1Ul/sb+SxpyhT4w7WzYfU8YjM7tT8wsHaXpjH+O/m5rptM3gsBnnT0YvO bTLwACvEqoT9AvD5ELmCtqqu/mtX36C/AcFvB0Z6J7Wza49drBS98GpjtLYKHsCfyb2u+7 a2McJQrQJOLGuPjfNWFowSCe8H3sK9pD7YfXhwhGPMx1warS4UHg57/os2lD92iOHsfi25 8NphcwxWVWM1G71RL+pQmfKGdKPlrv7DNFWmd/L8x4LhXZohlbSWDOWHpWAdlv+5+kVqiP 1izkRH1/lY53B+H0g/+DfI8kTmtkRlkLYapdxO8LNuMvBmmuYM7Nhd9jDCGLtQ== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X7sDL2rJ5zFZt for ; Wed, 18 Sep 2024 08:25:54 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48I8PsPG033015 for ; Wed, 18 Sep 2024 08:25:54 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from bugzilla@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48I8PsvA033014 for net@FreeBSD.org; Wed, 18 Sep 2024 08:25:54 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: bugzilla set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 281460] if_ovpn doesn't work with crypto.ko Date: Wed, 18 Sep 2024 08:25:54 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-STABLE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: commit-hook@FreeBSD.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D281460 --- Comment #3 from commit-hook@FreeBSD.org --- A commit in branch stable/14 references this bug: URL: https://cgit.FreeBSD.org/src/commit/?id=3D79c34d704f3121cb7f3748ec6b7a5c7f7= 87633bf commit 79c34d704f3121cb7f3748ec6b7a5c7f787633bf Author: Kristof Provost AuthorDate: 2024-09-12 15:51:04 +0000 Commit: Kristof Provost CommitDate: 2024-09-18 08:22:39 +0000 if_ovpn: declare our dependency on the crypto module PR: 281460 MFC after: 1 week Sponsored by: Rubicon Communications, LLC ("Netgate") (cherry picked from commit 17c9ac457cf16c1251afa7364bc47ed52ec29057) sys/net/if_ovpn.c | 1 + 1 file changed, 1 insertion(+) --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Wed Sep 18 08:31:17 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X7sLY5yKFz5Wcrx for ; Wed, 18 Sep 2024 08:31:17 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X7sLY4NsKz4LLk for ; Wed, 18 Sep 2024 08:31:17 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726648277; a=rsa-sha256; cv=none; b=EFUJ4zrhF/yHHkZSf4gDjyENQg5rdjQqlQrVpfrGWPF/fj4CzO5lSoW6kroYAe7wbfm/yN tQK2swhBNObo001uQfcjVG9FpPEtWbWkn2mB1uRbc9dZ9DBacJ56PnCGEOVShzuRzeNaaY DqHqoxpneIG1zjkbsmwhvECuuL14UpJ2rt8fHUPrjPKXRz/X+D34DN3jcqmd36urdXsCyl 2P0XBpv7el55Q/fDA5WW7w+V5mrODWzHe+rAnGxyqEEvsTzmrgdGThwdBAWVFpQIraHZAO WK5hZl5R5Q6kGvomvYo/iiwgFhAeB3EoKJ1HrKpOXaGk6HnvJOCf+RKYvvmCLw== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726648277; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=gXp84VO6CuTHwCDnD+KFtUqmE/JdvEPabyQdHFhN6Jc=; b=U1YXKBMGRRHvGmt9OGAVgx+7tzYOKpXhaSRRiuXFv/+wVjbWSw//Tq568IjFn1XLsY8dpK nC7omT5iDwPXgfnAk9/FkzErQL7+YU+difzdLLz/PdQRyN+owJIss/m6dQpImmioKWj9Sf +tt1fMKhv/IiwnHVJGhyhATF0z8CSiKM18iZIXESdl7qpiuDe3j4ul3BLAvuIs4y0PWbbm fq/LdLHrA+U/ZVGzPP/s6kX4dsXh9g/4PDJ0XWfqWPc0t2AGFo8gDtXieRxatMvBTQUMp2 D5Tbq4jhxWt7kgwnXm28jetGeilNFrll/NBjretm1J924+9HXg+szrhlyA0eYA== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X7sLY40lczFRF for ; Wed, 18 Sep 2024 08:31:17 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48I8VHUf042421 for ; Wed, 18 Sep 2024 08:31:17 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48I8VHAm042420 for net@FreeBSD.org; Wed, 18 Sep 2024 08:31:17 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 281460] if_ovpn doesn't work with crypto.ko Date: Wed, 18 Sep 2024 08:31:17 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-STABLE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: kp@freebsd.org X-Bugzilla-Status: Closed X-Bugzilla-Resolution: FIXED X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: cc resolution bug_status Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D281460 Kristof Provost changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |kp@freebsd.org Resolution|--- |FIXED Status|New |Closed --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Wed Sep 18 08:33:13 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X7sNn54YFz5WdYk for ; Wed, 18 Sep 2024 08:33:13 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X7sNn38dyz4MJP for ; Wed, 18 Sep 2024 08:33:13 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726648393; a=rsa-sha256; cv=none; b=p6HBX42M0kpcVwbaGjHBzefV+LIKUqR83AyF0NRv84y98M2mTxrctGKNEm9xjJio+E8zh1 qvqhsdN7oRhnfoW98I2S8P6Lyyrccs3IBLwsCysHunXXUfFHBH8ISt0EmYWps1djKIaMwd WhsVv2ppAomSu5mmlBeX/djQrmSWS4OqtneulBZgrrdrKhWTNSp+6joqAB6UJbsW+nwWZJ GzHVbckkRuX5GTc72mkooLWy3Kq007WbBOkSl01qACt6OlsoWMUzWn5lz8/roqdUesVtQY rcd1wy/Wdl/s8sgQi6zlsqtUvWuL7tzMOUWZT6nP3LykOZkWPuxFK9BeEfgO+Q== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726648393; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=2YX4kzAQztAFNehvOCAWZ2X2oEcBTWZsTyOrcq/GIQI=; b=yi/sJgrXu+UEQRxIFgsnC3M248cnAxyN8z6jKtxPXdS1YrMgxh0Qyc5L/1AZdfBvj9lqrX JzgFQ4J1lrfJPYdu1l+LIr9N5jQ3e6E4s6tsYv7//y+IuE+vpKWHx3Zaztbt9ZtYD7fAcW ZVCWxyYPP4dvp/Iv7LU1iWdKssJcUGFSh8cVjBTZFe7SNLusfHcJGiUgnb3jhHwPhsNCWt afLtj982QN3PwalXpyk5Zw7fDgweg/5ScFFj8E9cvgBrF+/lAWyFxSiyEcb3Zzr+Ock/5x 0u5Fhv1ORnHm2Cjbjp0q+GMvkuUDbZrYj60SNQ+UgoJtiutGKJwlCFgAJQ+R2g== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X7sNn2mpJzF3h for ; Wed, 18 Sep 2024 08:33:13 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48I8XDLF048255 for ; Wed, 18 Sep 2024 08:33:13 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48I8XDDd048254 for net@FreeBSD.org; Wed, 18 Sep 2024 08:33:13 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 280648] Traffic leak between fibs Date: Wed, 18 Sep 2024 08:33:13 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-STABLE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: banezmesm@gmail.com X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: attachments.created Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D280648 --- Comment #3 from Egor --- Created attachment 253636 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D253636&action= =3Dedit lab scheme --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Wed Sep 18 08:34:03 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X7sPm0pPGz5Wdp6 for ; Wed, 18 Sep 2024 08:34:04 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X7sPl6ZdGz4N58 for ; Wed, 18 Sep 2024 08:34:03 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726648443; a=rsa-sha256; cv=none; b=iGwm4JcbcNvUP4q3AnU4fR2O2h1ILXsRu+TkqUZCf0UtZ/jIobvABmaxHt9IhUTLPsv/S/ 1t2m/Y4SwuYR5RXtSeVSvr9fBAqcC/Dbg6w6YrfJ4J5XbtklM9Edna2hs/lvo3TIrVWmAt HGecyEsHXiM8r407hnLbG67Z/SI+GuPuk5K/FayyAIrfOIydyymm4+gW7EOaIOZ2AgsIHh sPjmQy8A6tQNI12kdtBliOksh77GmEHl4srLOHTZb8ONMDhW+5zKS5o+3ZrHA6pEJlbl2M AFlMxRe4mneVjeMMpD8UdlYriANEhb9qy8RtF52EvEkGnHFpHTfCky7ee8vg1A== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726648443; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=g9GgEDMYDS8tMvMwX5xmYTiPBPnK5I1SUSFDZKc/9zI=; b=Xtg6nWRQbx7pwoa7yZnF1rc+akdfC9KvquQZ1HupqMC345z2h8hSQow6laOy1+/H0WD9dl OAutFYwP8q01R5WpoBDiX6uZ8i64I5nNZVjT4ltMlKrO2T+7+V0gTMl+57UOROzQkKhp27 hoQ/snVd0m1psw65e7LEGAQkD+tM/vNxPuNrlilrxlg1YnttX7aH595xhak/hlmD9TXot7 1GEhznFHQ3SP6963xDzk/3Pt101mJF2j6nIdvXzj4nZCUyOjDLX5H3htO2hi7Cr9RIWXZ8 8VlilBSMyIJEnB65h1zlld4OzzYYiDe3yrhIpB/zJkCSxS2Hh2BJMPMDcyd84A== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X7sPl6BmczF6s for ; Wed, 18 Sep 2024 08:34:03 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48I8Y3N0048930 for ; Wed, 18 Sep 2024 08:34:03 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48I8Y3gl048929 for net@FreeBSD.org; Wed, 18 Sep 2024 08:34:03 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 280648] Traffic leak between fibs Date: Wed, 18 Sep 2024 08:34:03 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-STABLE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: banezmesm@gmail.com X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: attachments.created Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D280648 --- Comment #4 from Egor --- Created attachment 253637 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D253637&action= =3Dedit vm.conf --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Wed Sep 18 08:34:25 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X7sQ954bwz5Wdv5 for ; Wed, 18 Sep 2024 08:34:25 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X7sQ91VJ7z4Nsy for ; Wed, 18 Sep 2024 08:34:25 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726648465; a=rsa-sha256; cv=none; b=rl/XJWbcTRzU2ZtsBf5t7Li4DGj4A02YsQbsaWRrj37WKm3Yttz51mhMd2yuRbcnoKSnWY FMdeKbYQdXXOPLfBN8eMBV0RrlhInG4NaONZRNhABxq6dzxV40MC0Dc9+JgbGMv1IDkl4/ jq4S7iXK6mlqdqvRGmAQDvHh2rtrQpu60zscLQ0NJJ/qQxPgyL++AY3PixhN8fTGwX9G98 n9xk4hJPdZ7gsZQKSX/N8R6nZuq9MBTcmFPhfo93tNgCKcmapNqe9PMRpS3p+SQv6g1bIP ad/GmCLkWqTsH+6Nv9hyPF8YGd9wrOy+sobJCccB8iaAIubb5YiiiltST+CHQg== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726648465; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=mTIVqY1zbmV+f+2ISLT3ke0ODi4VLqXFCz6B4i6ESZ4=; b=kqJy/BdJgfg/FrlYos9v4WQ022GTBVTtkpvQHFzI6YwTOrhjd3a3IPjGZ406+ycRe33QT+ 1akPgTqP9uK5kDNSmQopGH832wr8mx9fmuBDTnFGodknawc2GcDtGyft2/yAVLJdPIB6+3 WUEfkDhZkiGPkgxl0d1//Gtkpj4/f/ri3DMD2oQQP3pXNmn0vJltplrZSD1e0qTuADrmbd jv49WraDI7HMisJ/v7d5Hv3x+yZJ5LCZrfynrrtdqLDr7KmQL2s/u6+U09xsoDW2NcQ/Qr 5dmrQq62X68yn/5SXPAXOq3USSp9Gw2WGfIQfHcRGwwedFEQ6brUeh8rCeMFlA== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X7sQ9166pzF6v for ; Wed, 18 Sep 2024 08:34:25 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48I8YPX8049203 for ; Wed, 18 Sep 2024 08:34:25 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48I8YPI9049202 for net@FreeBSD.org; Wed, 18 Sep 2024 08:34:25 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 280648] Traffic leak between fibs Date: Wed, 18 Sep 2024 08:34:25 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-STABLE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: banezmesm@gmail.com X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: attachments.created Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D280648 --- Comment #5 from Egor --- Created attachment 253638 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D253638&action= =3Dedit rc.conf --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Wed Sep 18 08:34:47 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X7sQc0ZSmz5WdkJ for ; Wed, 18 Sep 2024 08:34:48 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X7sQb6cPjz4PQY for ; Wed, 18 Sep 2024 08:34:47 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726648487; a=rsa-sha256; cv=none; b=dYSchBRcUS5Pip+MMcPqrRklRSS1EIjhbh4m7Qi7YA2/J8lJ9PZKajKf/Zr+Z2pq9dzSMa lydrDGgnHo7AARKKP9xgE64U4PT/ikPFBOqcgoySK9r1jqNYL85ViN0y+fQQlHVvnvuPyC MxxniR6zsp3FvP7PGK0QHM2IBCirCXNZLzD/x+kIqmy65XZDyJpCjx80jjiQPUUi7T853l uNURYl3WsRvqh+Ob3nXPP0fml3g/fit8j/S2LwlxH3lkMD/F+WU7DlY90X81nwayKxiSMj Fzxv9Z4JU6pLi+H28HmxX1MM2osPzMJYnq9NbnKDkdbVZxIU4UyesrRl9GwK4w== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726648487; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=PzOtoBmMubeQ3QLqkU840f8iKLDXBcmIZ29VppKCYI0=; b=xdJrCe//rD4uhnvVrCXMo8aWo5XMxn2/EooaLKQ1wV5OSQwnC81m3K1kyrUjm/pS6w9QsA ZsZgbExe5v4pXrmR4BskHe0bxTa0QwmXiqDGsr8x4wEUTuZgRmG75SfahndCm/nP452prg A1kYl8CwEbaxeB6iJEFgeYJ+2MLIZ0QNZFIDPp50oTlq3QaPyoClLIU7QFGgti3zIHmZqi 732UpXnxxGJMhK0t4zJu/zUAO74jhVNUfKdMUqrOI8zFKdg8UsETDxpBvVt9y96gg5SPzw NWutQE/bGtjuEj01G/LKiise7KQScz0RRl0DsGTzmLNj2QE0nOEB5qk3WYKV7Q== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X7sQb6B5pzFbS for ; Wed, 18 Sep 2024 08:34:47 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48I8Yljq049488 for ; Wed, 18 Sep 2024 08:34:47 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48I8Ylqk049487 for net@FreeBSD.org; Wed, 18 Sep 2024 08:34:47 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 280648] Traffic leak between fibs Date: Wed, 18 Sep 2024 08:34:47 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-STABLE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: banezmesm@gmail.com X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: attachments.created Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D280648 --- Comment #6 from Egor --- Created attachment 253639 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D253639&action= =3Dedit netif --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Wed Sep 18 08:39:46 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X7sXL5jqKz5WfKv for ; Wed, 18 Sep 2024 08:39:46 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X7sXL49Xyz4Pnk for ; Wed, 18 Sep 2024 08:39:46 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726648786; a=rsa-sha256; cv=none; b=PYnm2HHDAK403igjvdoBSQrMWprIIsds+8vU3sta/VLGJA8xPX+ZmUK8LLWQheF1+4Vh63 wdOSfsVdc7pw5MKJaIbg8Yvm/0VOnXMQ2M4y/agrS8GgSKYEtffj+lK20cGAOnHjsxbg0K 7f8cr68ud14aEnxt2MXC2VzRMUfSsPpnQ64suCV+oT33Q369sY6ZFzRPJQhaKpQJQP34f+ 5IXoge51pBSv/6vNkt+fdpJ3wnEWYfQqHtPXIFuRwtuxZ2VBHmrxTAlfj6i1Pk0uh6RHHZ h003UBzU2besEb+OUVJqGh8sII9wAq9sA/6kws+9EFDTdMQEdAhA7vJ5nPWjhA== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726648786; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=EpSw6bWNnXMnhA8WrEiVqXl0ptMboW34RjWMHL8zapw=; b=SGkyKUDwtdnRlk9ImmQJk1LXCKWHBVazE5TsgXCUQHE6g3eZvHR6gzeN3vFXM3xOmiSNkn 9voNcADcrZ1CXE8IO/F4EqCFCTsoF+K1faSBamEMs7sy+0G7UMESt6Uxgu83b4CE3H4qvs uuHTZ+JFR+IqobeEXM/Z5zGviV+jfJGTBt8Vy4+wUzx52XmpzaAbBWaqXrJ64wCl8+Fh8r /+ca6sMFcdCUCyN1g/MOKNfi9ixeSBFLRW1qy9PJH89hSxaeTLBTXXQOZP8sFyOH2HLaB8 CBxQ8RtsNqht43IznIbITL9U98Pnu901SGtT6sxwHkDUR3YXa4Hv4sy8/OLC0A== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X7sXL1zxgzFbT for ; Wed, 18 Sep 2024 08:39:46 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48I8dkAS053494 for ; Wed, 18 Sep 2024 08:39:46 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48I8dk1I053493 for net@FreeBSD.org; Wed, 18 Sep 2024 08:39:46 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 280648] Traffic leak between fibs Date: Wed, 18 Sep 2024 08:39:46 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-STABLE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: banezmesm@gmail.com X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D280648 --- Comment #7 from Egor --- (In reply to Tatsuki Makino from comment #2) I reproduced this problem in my lab. Config is: 1) Asus 750 hypervisor with proxmox 8.4: pve-fw01:~$ uname -a Linux pve-fw01 6.8.8-4-pve #1 SMP PREEMPT_DYNAMIC PMX 6.8.8-4 (2024-07-26T11:15Z) x86_64 GNU/Linux 2) Freebsd virtual machine with linked mellanox connectx6 pci card: test-fw01:~$ uname -a FreeBSD test-fw01 14.1-RELEASE-p4 FreeBSD 14.1-RELEASE-p4 GENERIC amd64 I catched traffic for all interfaces with enabled pf and with disabled pf. There is no difference. Tcpdump with enabled pf test-fw01:~$ sudo tcpdump -nei mce1.1280 host 172.16.188.194 and port 22 tcpdump: verbose output suppressed, use -v[v]... for full protocol decode listening on mce1.1280, link-type EN10MB (Ethernet), snapshot length 262144 bytes 16:50:53.753073 d0:09:c8:ca:09:27 > b8:3f:d2:1c:e2:09, ethertype IPv4 (0x08= 00), length 74: 172.16.179.42.57836 > 172.16.188.194.22: Flags [S], seq 39227422= 22, win 64240, options [mss 1460,sackOK,TS val 3411125639 ecr 0,nop,wscale 7], length 0 16:50:54.816302 d0:09:c8:ca:09:27 > b8:3f:d2:1c:e2:09, ethertype IPv4 (0x08= 00), length 74: 172.16.179.42.57836 > 172.16.188.194.22: Flags [S], seq 39227422= 22, win 64240, options [mss 1460,sackOK,TS val 3411126703 ecr 0,nop,wscale 7], length 0 16:50:55.840297 d0:09:c8:ca:09:27 > b8:3f:d2:1c:e2:09, ethertype IPv4 (0x08= 00), length 74: 172.16.179.42.57836 > 172.16.188.194.22: Flags [S], seq 39227422= 22, win 64240, options [mss 1460,sackOK,TS val 3411127727 ecr 0,nop,wscale 7], length 0 16:50:56.864293 d0:09:c8:ca:09:27 > b8:3f:d2:1c:e2:09, ethertype IPv4 (0x08= 00), length 74: 172.16.179.42.57836 > 172.16.188.194.22: Flags [S], seq 39227422= 22, win 64240, options [mss 1460,sackOK,TS val 3411128751 ecr 0,nop,wscale 7], length 0 16:50:57.888290 d0:09:c8:ca:09:27 > b8:3f:d2:1c:e2:09, ethertype IPv4 (0x08= 00), length 74: 172.16.179.42.57836 > 172.16.188.194.22: Flags [S], seq 39227422= 22, win 64240, options [mss 1460,sackOK,TS val 3411129775 ecr 0,nop,wscale 7], length 0 test-fw01:~$ sudo tcpdump -nei mce1.3101 host 172.16.188.194 and port 22 tcpdump: verbose output suppressed, use -v[v]... for full protocol decode listening on mce1.3101, link-type EN10MB (Ethernet), snapshot length 262144 bytes 16:50:53.753130 d0:09:c8:ca:09:27 > b8:3f:d2:1c:e2:09, ethertype IPv4 (0x08= 00), length 74: 172.16.188.194.22 > 172.16.179.42.57836: Flags [S.], seq 1825143= 446, ack 3922742223, win 65535, options [mss 1460,nop,wscale 9,sackOK,TS val 4184867862 ecr 3411125639], length 0 16:50:54.760769 d0:09:c8:ca:09:27 > b8:3f:d2:1c:e2:09, ethertype IPv4 (0x08= 00), length 74: 172.16.188.194.22 > 172.16.179.42.57836: Flags [S.], seq 1825143= 446, ack 3922742223, win 65535, options [mss 1460,nop,wscale 9,sackOK,TS val 4184868868 ecr 3411125639], length 0 16:50:54.816333 d0:09:c8:ca:09:27 > b8:3f:d2:1c:e2:09, ethertype IPv4 (0x08= 00), length 74: 172.16.188.194.22 > 172.16.179.42.57836: Flags [S.], seq 1825143= 446, ack 3922742223, win 65535, options [mss 1460,nop,wscale 9,sackOK,TS val 4184868920 ecr 3411126703], length 0 16:50:55.820324 d0:09:c8:ca:09:27 > b8:3f:d2:1c:e2:09, ethertype IPv4 (0x08= 00), length 74: 172.16.188.194.22 > 172.16.179.42.57836: Flags [S.], seq 1825143= 446, ack 3922742223, win 65535, options [mss 1460,nop,wscale 9,sackOK,TS val 4184869929 ecr 3411126703], length 0 16:50:55.840332 d0:09:c8:ca:09:27 > b8:3f:d2:1c:e2:09, ethertype IPv4 (0x08= 00), length 74: 172.16.188.194.22 > 172.16.179.42.57836: Flags [S.], seq 1825143= 446, ack 3922742223, win 65535, options [mss 1460,nop,wscale 9,sackOK,TS val 4184869949 ecr 3411127727], length 0 16:50:56.841091 d0:09:c8:ca:09:27 > b8:3f:d2:1c:e2:09, ethertype IPv4 (0x08= 00), length 74: 172.16.188.194.22 > 172.16.179.42.57836: Flags [S.], seq 1825143= 446, ack 3922742223, win 65535, options [mss 1460,nop,wscale 9,sackOK,TS val 4184870950 ecr 3411127727], length 0 16:50:56.864323 d0:09:c8:ca:09:27 > b8:3f:d2:1c:e2:09, ethertype IPv4 (0x08= 00), length 74: 172.16.188.194.22 > 172.16.179.42.57836: Flags [S.], seq 1825143= 446, ack 3922742223, win 65535, options [mss 1460,nop,wscale 9,sackOK,TS val 4184870969 ecr 3411128751], length 0 test-fw01:~$ sudo tcpdump -ner /var/log/pflog host 172.16.188.194 and port 57836 reading from file /var/log/pflog, link-type PFLOG (OpenBSD pflog file), snapshot length 116 16:50:53.753073 rule 5/0(match): pass in on mce1.1280: 172.16.179.42.57836 > 172.16.188.194.22: Flags [S], seq 3922742222, win 64240, options [mss 1460, [|tcp] 16:50:53.753130 rule 1/0(match): block in on mce1.3101: 172.16.188.194.22 > 172.16.179.42.57836: Flags [S.], seq 1825143446, ack 3922742223, win 65535, options [mss 1460, [|tcp] 16:50:54.760769 rule 1/0(match): block in on mce1.3101: 172.16.188.194.22 > 172.16.179.42.57836: Flags [S.], seq 1825143446, ack 3922742223, win 65535, options [mss 1460, [|tcp] 16:50:54.816333 rule 1/0(match): block in on mce1.3101: 172.16.188.194.22 > 172.16.179.42.57836: Flags [S.], seq 1825143446, ack 3922742223, win 65535, options [mss 1460, [|tcp] 16:50:55.820324 rule 1/0(match): block in on mce1.3101: 172.16.188.194.22 > 172.16.179.42.57836: Flags [S.], seq 1825143446, ack 3922742223, win 65535, options [mss 1460, [|tcp] 16:50:55.840332 rule 1/0(match): block in on mce1.3101: 172.16.188.194.22 > 172.16.179.42.57836: Flags [S.], seq 1825143446, ack 3922742223, win 65535, options [mss 1460, [|tcp] 16:50:56.841091 rule 1/0(match): block in on mce1.3101: 172.16.188.194.22 > 172.16.179.42.57836: Flags [S.], seq 1825143446, ack 3922742223, win 65535, options [mss 1460, [|tcp] 16:50:56.864323 rule 1/0(match): block in on mce1.3101: 172.16.188.194.22 > 172.16.179.42.57836: Flags [S.], seq 1825143446, ack 3922742223, win 65535, options [mss 1460, [|tcp] 16:50:57.863064 rule 1/0(match): block in on mce1.3101: 172.16.188.194.22 > 172.16.179.42.57836: Flags [S.], seq 1825143446, ack 3922742223, win 65535, options [mss 1460, [|tcp] 16:50:57.888331 rule 1/0(match): block in on mce1.3101: 172.16.188.194.22 > 172.16.179.42.57836: Flags [S.], seq 1825143446, ack 3922742223, win 65535, options [mss 1460, [|tcp] Tcpdump with disabled pf test-fw01:~$ sudo tcpdump -nei mce1.1280 host 172.16.188.194 and port 22 tcpdump: verbose output suppressed, use -v[v]... for full protocol decode listening on mce1.1280, link-type EN10MB (Ethernet), snapshot length 262144 bytes 17:01:42.533010 d0:09:c8:ca:09:27 > b8:3f:d2:1c:e2:09, ethertype IPv4 (0x08= 00), length 74: 172.16.179.42.34620 > 172.16.188.194.22: Flags [S], seq 21558455= 7, win 64240, options [mss 1460,sackOK,TS val 3411775040 ecr 0,nop,wscale 7], length 0 17:01:42.533054 b8:3f:d2:1c:e2:09 > d0:09:c8:ca:09:27, ethertype IPv4 (0x08= 00), length 74: 172.16.188.194.22 > 172.16.179.42.34620: Flags [S.], seq 1105243= 323, ack 215584558, win 65535, options [mss 1460,nop,wscale 9,sackOK,TS val 2313997153 ecr 3411775040], length 0 17:01:42.533144 d0:09:c8:ca:09:27 > b8:3f:d2:1c:e2:09, ethertype IPv4 (0x08= 00), length 66: 172.16.179.42.34620 > 172.16.188.194.22: Flags [.], ack 1, win 5= 02, options [nop,nop,TS val 3411775040 ecr 2313997153], length 0 17:01:42.533505 d0:09:c8:ca:09:27 > b8:3f:d2:1c:e2:09, ethertype IPv4 (0x08= 00), length 108: 172.16.179.42.34620 > 172.16.188.194.22: Flags [P.], seq 1:43, = ack 1, win 502, options [nop,nop,TS val 3411775040 ecr 2313997153], length 42: = SSH: SSH-2.0-OpenSSH_9.6p1 Ubuntu-3ubuntu13.5 17:01:42.566078 b8:3f:d2:1c:e2:09 > d0:09:c8:ca:09:27, ethertype IPv4 (0x08= 00), length 66: 172.16.188.194.22 > 172.16.179.42.34620: Flags [.], ack 43, win = 129, options [nop,nop,TS val 2313997190 ecr 3411775040], length 0 17:02:04.656826 b8:3f:d2:1c:e2:09 > d0:09:c8:ca:09:27, ethertype IPv4 (0x08= 00), length 104: 172.16.188.194.22 > 172.16.179.42.34620: Flags [P.], seq 1:39, = ack 43, win 129, options [nop,nop,TS val 2314019278 ecr 3411775040], length 38: SSH: SSH-2.0-OpenSSH_9.7 FreeBSD-20240806 17:02:04.656940 d0:09:c8:ca:09:27 > b8:3f:d2:1c:e2:09, ethertype IPv4 (0x08= 00), length 66: 172.16.179.42.34620 > 172.16.188.194.22: Flags [.], ack 39, win = 502, options [nop,nop,TS val 3411797164 ecr 2314019278], length 0 17:02:04.657554 d0:09:c8:ca:09:27 > b8:3f:d2:1c:e2:09, ethertype IPv4 (0x08= 00), length 1514: 172.16.179.42.34620 > 172.16.188.194.22: Flags [.], seq 43:149= 1, ack 39, win 502, options [nop,nop,TS val 3411797165 ecr 2314019278], length 1448 17:02:04.657554 d0:09:c8:ca:09:27 > b8:3f:d2:1c:e2:09, ethertype IPv4 (0x08= 00), length 154: 172.16.179.42.34620 > 172.16.188.194.22: Flags [P.], seq 1491:1= 579, ack 39, win 502, options [nop,nop,TS val 3411797165 ecr 2314019278], length= 88 17:02:04.657604 b8:3f:d2:1c:e2:09 > d0:09:c8:ca:09:27, ethertype IPv4 (0x08= 00), length 66: 172.16.188.194.22 > 172.16.179.42.34620: Flags [.], ack 1579, win 126, options [nop,nop,TS val 2314019278 ecr 3411797165], length 0 17:02:04.657843 b8:3f:d2:1c:e2:09 > d0:09:c8:ca:09:27, ethertype IPv4 (0x08= 00), length 1186: 172.16.188.194.22 > 172.16.179.42.34620: Flags [P.], seq 39:11= 59, ack 1579, win 126, options [nop,nop,TS val 2314019278 ecr 3411797165], leng= th 1120 17:02:04.698103 d0:09:c8:ca:09:27 > b8:3f:d2:1c:e2:09, ethertype IPv4 (0x08= 00), length 66: 172.16.179.42.34620 > 172.16.188.194.22: Flags [.], ack 1159, win 501, options [nop,nop,TS val 3411797206 ecr 2314019278], length 0 17:02:04.792136 d0:09:c8:ca:09:27 > b8:3f:d2:1c:e2:09, ethertype IPv4 (0x08= 00), length 1274: 172.16.179.42.34620 > 172.16.188.194.22: Flags [P.], seq 1579:2787, ack 1159, win 501, options [nop,nop,TS val 3411797300 ecr 2314019278], length 1208 17:02:04.802961 b8:3f:d2:1c:e2:09 > d0:09:c8:ca:09:27, ethertype IPv4 (0x08= 00), length 1514: 172.16.188.194.22 > 172.16.179.42.34620: Flags [.], seq 1159:2= 607, ack 2787, win 129, options [nop,nop,TS val 2314019418 ecr 3411797300], leng= th 1448 17:02:04.802963 b8:3f:d2:1c:e2:09 > d0:09:c8:ca:09:27, ethertype IPv4 (0x08= 00), length 150: 172.16.188.194.22 > 172.16.179.42.34620: Flags [P.], seq 2607:2= 691, ack 2787, win 129, options [nop,nop,TS val 2314019418 ecr 3411797300], leng= th 84 test-fw01:~$ sudo tcpdump -nei mce1.3101 host 172.16.188.194 and port 22 tcpdump: verbose output suppressed, use -v[v]... for full protocol decode listening on mce1.3101, link-type EN10MB (Ethernet), snapshot length 262144 bytes 17:01:42.533054 d0:09:c8:ca:09:27 > b8:3f:d2:1c:e2:09, ethertype IPv4 (0x08= 00), length 74: 172.16.188.194.22 > 172.16.179.42.34620: Flags [S.], seq 1105243= 323, ack 215584558, win 65535, options [mss 1460,nop,wscale 9,sackOK,TS val 2313997153 ecr 3411775040], length 0 17:01:42.566078 d0:09:c8:ca:09:27 > b8:3f:d2:1c:e2:09, ethertype IPv4 (0x08= 00), length 66: 172.16.188.194.22 > 172.16.179.42.34620: Flags [.], ack 43, win = 129, options [nop,nop,TS val 2313997190 ecr 3411775040], length 0 17:02:04.656826 d0:09:c8:ca:09:27 > b8:3f:d2:1c:e2:09, ethertype IPv4 (0x08= 00), length 104: 172.16.188.194.22 > 172.16.179.42.34620: Flags [P.], seq 1:39, = ack 43, win 129, options [nop,nop,TS val 2314019278 ecr 3411775040], length 38: SSH: SSH-2.0-OpenSSH_9.7 FreeBSD-20240806 17:02:04.657604 d0:09:c8:ca:09:27 > b8:3f:d2:1c:e2:09, ethertype IPv4 (0x08= 00), length 66: 172.16.188.194.22 > 172.16.179.42.34620: Flags [.], ack 1579, win 126, options [nop,nop,TS val 2314019278 ecr 3411797165], length 0 17:02:04.657843 d0:09:c8:ca:09:27 > b8:3f:d2:1c:e2:09, ethertype IPv4 (0x08= 00), length 1186: 172.16.188.194.22 > 172.16.179.42.34620: Flags [P.], seq 39:11= 59, ack 1579, win 126, options [nop,nop,TS val 2314019278 ecr 3411797165], leng= th 1120 17:02:04.802961 d0:09:c8:ca:09:27 > b8:3f:d2:1c:e2:09, ethertype IPv4 (0x08= 00), length 1514: 172.16.188.194.22 > 172.16.179.42.34620: Flags [.], seq 1159:2= 607, ack 2787, win 129, options [nop,nop,TS val 2314019418 ecr 3411797300], leng= th 1448 17:02:04.802963 d0:09:c8:ca:09:27 > b8:3f:d2:1c:e2:09, ethertype IPv4 (0x08= 00), length 150: 172.16.188.194.22 > 172.16.179.42.34620: Flags [P.], seq 2607:2= 691, ack 2787, win 129, options [nop,nop,TS val 2314019418 ecr 3411797300], leng= th 84 17:02:05.514898 d0:09:c8:ca:09:27 > b8:3f:d2:1c:e2:09, ethertype IPv4 (0x08= 00), length 66: 172.16.188.194.22 > 172.16.179.42.34620: Flags [.], ack 2871, win 129, options [nop,nop,TS val 2314019519 ecr 3411797357], length 0 17:02:05.515063 d0:09:c8:ca:09:27 > b8:3f:d2:1c:e2:09, ethertype IPv4 (0x08= 00), length 110: 172.16.188.194.22 > 172.16.179.42.34620: Flags [P.], seq 2691:2= 735, ack 2915, win 129, options [nop,nop,TS val 2314019519 ecr 3411797408], leng= th 44 routing tables info test-fw01:~$ sudo netstat -rn Routing tables Internet: Destination Gateway Flags Netif Expire default 172.16.188.193 UGS vtnet0 10.222.254.254 link#3 UHS lo0 10.222.254.254/31 link#2 U vtnet1 127.0.0.1 link#3 UH lo0 172.16.188.192/26 link#1 U vtnet0 172.16.188.194 link#3 UHS lo0 Internet6: Destination Gateway Flags N= etif Expire ::/96 link#3 URS = lo0 ::1 link#3 UHS = lo0 ::ffff:0.0.0.0/96 link#3 URS = lo0 fe80::%lo0/10 link#3 URS = lo0 fe80::%lo0/64 link#3 U = lo0 fe80::1%lo0 link#3 UHS = lo0 ff02::/16 link#3 URS = lo0 test-fw01:~$ sudo setfib 1 netstat -rn Routing tables (fib: 1) Internet: Destination Gateway Flags Netif Expire 127.0.0.1 link#3 UHS lo0 172.16.0.0/16 link#3 U1B lo0 172.16.176.0/26 192.168.255.0 UG1 mce0.124 172.16.176.0/26 192.168.255.2 UG1 mce1.124 172.16.176.64/26 192.168.255.0 UG1 mce0.124 172.16.176.64/26 192.168.255.2 UG1 mce1.124 172.16.176.128/26 192.168.255.0 UG1 mce0.124 172.16.176.128/26 192.168.255.2 UG1 mce1.124 172.16.176.192/27 192.168.255.0 UG1 mce0.124 172.16.176.192/27 192.168.255.2 UG1 mce1.124 172.16.177.0/26 192.168.255.16 UG1 mce0.125 172.16.177.0/26 192.168.255.18 UG1 mce1.125 172.16.177.64/27 192.168.255.16 UG1 mce0.125 172.16.177.64/27 192.168.255.18 UG1 mce1.125 172.16.177.96/27 192.168.255.16 UG1 mce0.125 172.16.177.96/27 192.168.255.18 UG1 mce1.125 172.16.177.128/27 192.168.255.16 UG1 mce0.125 172.16.177.128/27 192.168.255.18 UG1 mce1.125 172.16.178.0/28 192.168.255.32 UG1 mce0.126 172.16.178.0/28 192.168.255.34 UG1 mce1.126 172.16.178.32/27 192.168.255.32 UG1 mce0.126 172.16.178.32/27 192.168.255.34 UG1 mce1.126 172.16.179.0/28 192.168.255.64 UG1 mce0.128 172.16.179.0/28 192.168.255.66 UG1 mce1.128 172.16.179.16/29 192.168.255.64 UG1 mce0.128 172.16.179.16/29 192.168.255.66 UG1 mce1.128 172.16.179.24/30 192.168.255.64 UG1 mce0.128 172.16.179.24/30 192.168.255.66 UG1 mce1.128 172.16.179.28/30 192.168.255.64 UG1 mce0.128 172.16.179.28/30 192.168.255.66 UG1 mce1.128 172.16.179.32/30 192.168.255.64 UG1 mce0.128 172.16.179.32/30 192.168.255.66 UG1 mce1.128 172.16.179.36/30 192.168.255.64 UG1 mce0.128 172.16.179.36/30 192.168.255.66 UG1 mce1.128 172.16.179.40/30 192.168.255.64 UG1 mce0.128 172.16.179.40/30 192.168.255.66 UG1 mce1.128 172.16.179.48/30 192.168.255.64 UG1 mce0.128 172.16.179.48/30 192.168.255.66 UG1 mce1.128 172.16.179.64/28 192.168.255.64 UG1 mce0.128 172.16.179.64/28 192.168.255.66 UG1 mce1.128 172.16.180.0/27 192.168.255.48 UG1 mce0.127 172.16.180.0/27 192.168.255.50 UG1 mce1.127 172.16.180.32/27 192.168.255.48 UG1 mce0.127 172.16.180.32/27 192.168.255.50 UG1 mce1.127 172.16.181.0/28 192.168.255.80 UG1 mce0.131 172.16.181.0/28 192.168.255.82 UG1 mce1.131 172.17.0.0/16 link#3 U1B lo0 172.17.160.0/27 192.168.255.96 UG1 mce0.149 172.17.160.0/27 192.168.255.98 UG1 mce1.149 172.17.160.32/27 192.168.255.96 UG1 mce0.149 172.17.160.32/27 192.168.255.98 UG1 mce1.149 172.17.160.64/27 192.168.255.96 UG1 mce0.149 172.17.160.64/27 192.168.255.98 UG1 mce1.149 172.17.161.0/24 192.168.255.96 UG1 mce0.149 172.17.161.0/24 192.168.255.98 UG1 mce1.149 192.168.255.0/31 link#6 U mce0.124 192.168.255.1 link#3 UHS lo0 192.168.255.2/31 link#7 U mce1.124 192.168.255.3 link#3 UHS lo0 192.168.255.16/31 link#8 U mce0.125 192.168.255.17 link#3 UHS lo0 192.168.255.18/31 link#9 U mce1.125 192.168.255.19 link#3 UHS lo0 192.168.255.32/31 link#10 U mce0.126 192.168.255.33 link#3 UHS lo0 192.168.255.34/31 link#11 U mce1.126 192.168.255.35 link#3 UHS lo0 192.168.255.48/31 link#12 U mce0.127 192.168.255.49 link#3 UHS lo0 192.168.255.50/31 link#13 U mce1.127 192.168.255.51 link#3 UHS lo0 192.168.255.64/31 link#14 U mce0.128 192.168.255.65 link#3 UHS lo0 192.168.255.66/31 link#15 U mce1.128 192.168.255.67 link#3 UHS lo0 192.168.255.80/31 link#16 U mce0.131 192.168.255.81 link#3 UHS lo0 192.168.255.82/31 link#17 U mce1.131 192.168.255.83 link#3 UHS lo0 192.168.255.96/31 link#18 U mce0.149 192.168.255.97 link#3 UHS lo0 192.168.255.98/31 link#19 U mce1.149 192.168.255.99 link#3 UHS lo0 192.168.255.112/31 link#22 U mce0.310 192.168.255.113 link#3 UHS lo0 192.168.255.114/31 link#23 U mce1.310 192.168.255.115 link#3 UHS lo0 192.168.255.144/31 link#20 U mce0.310 192.168.255.145 link#3 UHS lo0 192.168.255.146/31 link#21 U mce1.310 192.168.255.147 link#3 UHS lo0 Internet6: Destination Gateway Flags N= etif Expire ::/96 link#3 URS = lo0 ::1 link#3 UHS = lo0 ::ffff:0.0.0.0/96 link#3 URS = lo0 fe80::%lo0/10 link#3 URS = lo0 ff02::/16 link#3 URS = lo0 --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Wed Sep 18 08:40:37 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X7sYK1HG5z5WfmP for ; Wed, 18 Sep 2024 08:40:37 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X7sYJ6f7xz4QWQ for ; Wed, 18 Sep 2024 08:40:36 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726648836; a=rsa-sha256; cv=none; b=G8NSZi8zDKrmTfxiJ3/HpEOi+RlavF92Lmd2swUcO+wG9xATF6YgCRBrkIRa8aUdfhbSJv rQuzecTjArmc9xb8MkuUgwTEuPlj4ln50xXzBIVV558N16HXmbnDu4Oqt2flkiLkucNG4d Wkr/hi+bI6pSsizzEWR4UOTXZM9cCq+4h2aNfX7v+kq1WcyXieUzptjK2zPRLPCZxR/wj6 aMF+n+L0jpIV9UFcPYcZD5sZ+iUA2zI/yGfST3NnhJlyqn0Q/NRTRYZxG9F2A4SBcAacid rzOm9a2sPp070/NARv9aTLexpoF4Nys23VREz9JEW+IWN/EIYuxSnj5USG2zVA== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726648836; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=bBdgHggaPFoItctHKH22NdGYUSp+KQ2qqqVWT9y7R7I=; b=gJSoUQYX4km3PoK8aQ9gji+wV4p7VT8I/LgapcyltWz3g94Cei7AstvKbEEGK9lzKt3aGs ty3dqBjfw5YSIkXkYBdL0h2Ev60pg/O4x2HmgrhKamEjZPyEzVh4zasAYCGou7wBPLIK0j uzSJyLQzaKLATc/r5mz4Hi/IdOuW60I4YkL87k2SzMbc1e5gpWnH5CsvFvG1RTFXgQRhrA gVJNo0mZWZNcMN2i9aTPj7pooZ1q7CTXEeKHWDx3qzeNNisBRnHosiIHtfWEivSdX46Q75 mE8bqPLj7Scz2t2LWFkVTrEqFD9jW7OC5wM+hidHg/OiglfXdNgH+XcT4AF2Vw== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X7sYJ68kszFRr for ; Wed, 18 Sep 2024 08:40:36 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48I8ear9054348 for ; Wed, 18 Sep 2024 08:40:36 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48I8eaV0054347 for net@FreeBSD.org; Wed, 18 Sep 2024 08:40:36 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 280648] Traffic leak between fibs Date: Wed, 18 Sep 2024 08:40:37 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-STABLE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: banezmesm@gmail.com X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: attachments.created Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D280648 --- Comment #8 from Egor --- Created attachment 253640 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D253640&action= =3Dedit lab scheme with ip --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Wed Sep 18 08:52:27 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X7spz5Pr9z5WhQ1 for ; Wed, 18 Sep 2024 08:52:27 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X7spz3zcSz4SFc for ; Wed, 18 Sep 2024 08:52:27 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726649547; a=rsa-sha256; cv=none; b=jR7uSQCfhUN/RUjGJ7rtyYrnLE2yB+NguptHI864nVjo/5GhMgeDoT3spbtJgeNg7gsz+m q3On1WU8+scpKpqXWBUiaX4xtWpkdip4BeVEstp+DPvjon/ErkufDM5/NMUgzma9TWraD+ FdkF/kAM1x6hXfQgvechF3QWjXGiuryh54fbSmB5NgAqmb0+hJcGB0Ir15OgvmDCiuWOfZ sAW9UiopyUWYymmL9A0CMZ2y/YycUMeMqpR5SR0MpVx3UnfJFvRuvE1iYnQk+4RC+Jg+qr 4lHcS3auE6DP0cOuFSvARwztH6PyzPrM3dtqI6vqnK+tua4uhSePhJDAYCHIgA== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726649547; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=vFndZjwOkeoSU9RTxbIHOIQ5cApedYulPdUuUofdt1M=; b=VeDCxzTtM1QMhBoR+W5mhW7DLGDz/wRGotNJdwK+6AZXEBsvF2zsFPh3baMi4Iqekn1kts GTxc69aUFbUriiceJFNX4a1SWm5kmIJLGj/rcKbVQN2daF8c1y//SkNGpOy5AXZEV3mkrq MJprSORMBrc58tD/QUxNLFl3NUsN/U1VkBIYCKk5iGDabBrpgoJ6CjBLKnhFt8EimkXq92 q1esHGPA5hdu23ga7lDd6fWsWZ7MoejWkhw5EdMdYVgf9unNy/UQLvOpPO/W4gjZ6w37LM dp/TNTuB2BWctd+V6l3tvoZr00pB5ZQmR0ApAtJIYoOs01MlH/lkfonphrUFWA== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X7spz3HljzFh2 for ; Wed, 18 Sep 2024 08:52:27 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48I8qRm9082058 for ; Wed, 18 Sep 2024 08:52:27 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48I8qRBO082057 for net@FreeBSD.org; Wed, 18 Sep 2024 08:52:27 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 280648] Traffic leak between fibs Date: Wed, 18 Sep 2024 08:52:27 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-STABLE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: banezmesm@gmail.com X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: attachments.created Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D280648 --- Comment #9 from Egor --- Created attachment 253641 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D253641&action= =3Dedit pf.conf --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Wed Sep 18 12:56:59 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X7zF81nLmz5WKb7 for ; Wed, 18 Sep 2024 12:57:00 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X7zF80nfhz3xDl for ; Wed, 18 Sep 2024 12:57:00 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726664220; a=rsa-sha256; cv=none; b=GI/DDomYePHfx5ZOy/oYcAU431ShoExRh9D1OFVLtWg1OREvUFHHr7gaAdfKJ3c1ocGN68 0vGmZqHkEeuwNvKbnL2NxBgRU1kk/GY7PfmrJLB1cWf1IZcmwFf4PuNv3gteYkcKiekB0F rQdLml3Nh5+wa2ULr5DIB20/I+so+5j+bGtQlr3oj8cLp5BiKIEOdh1fCbna4XvSq4Hqof HFibUToP9iuEmLGEV6ZvpPHYCS9tWGYX1MmmmmF+GuHtahq+6sfNVh++3Nq8qfbDk+rFXX WbSslSHKolG5JMCMmf+jRSUBOMezIDrmbsvcyav8QPnYYu4yASutRaHLmP2a4g== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726664220; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=v/QMzFftcKqLEVYe40Rlp807TagS3Hb23lNIQWnw2nQ=; b=hNUTctTWRJBl76VQFeQLvzxNgJWNYbkagmCiOiBK64D079NdQNML9OOZvsLLOT6YNQFer4 VFT1B/1Z2ewDHeAjoOQnbflPkQpMcMhXNu3c7PoB5gLTPz4aBde0uYfX8hwjqU9L/lKqOw 1BR/6tGb36Uc74SB58tRvCCiCcAEy7MUFA4XlrnZUZbrUlZSOWf23K7Zhcp/CuQkTTMG4a lmLbt4dhDMLX/70+84Fm9Ntxk7pzoYO7wYt2uVxsFDtTCAtzjllpdBvYHBD/+rkI8S3pkc lf7JqkLYSloQWwRxSfHvV9hSsNsk+t5SQHpBxticmrNbRvlsGPWK2QGIvyb3oA== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X7zF80F2NzMnn for ; Wed, 18 Sep 2024 12:57:00 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48ICuxeY098624 for ; Wed, 18 Sep 2024 12:56:59 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48ICux2F098623 for net@FreeBSD.org; Wed, 18 Sep 2024 12:56:59 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 278028] VXLAN interface is not working Date: Wed, 18 Sep 2024 12:56:59 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.0-STABLE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Many People X-Bugzilla-Who: d@voronin.it X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: cc Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D278028 Dmitriy V. changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |d@voronin.it --- Comment #8 from Dmitriy V. --- vxlan doesn't work for me. gw1: root@gw1:/etc # uname -a FreeBSD host 14.1-RELEASE-p4 FreeBSD 14.1-RELEASE-p4 releng/14.1-86d01789b GENERIC amd64 root@gw1:/etc # ifconfig=20 vmx0: flags=3D1008843 metr= ic 0 mtu 1500 =20=20=20=20=20=20=20 options=3D48400b8 ether 00:50:56:ab:65:f8 inet 10.11.3.10 netmask 0xffffff00 broadcast 10.11.3.255 media: Ethernet autoselect status: active nd6 options=3D29 vmx1: flags=3D1008843 metr= ic 0 mtu 1500 =20=20=20=20=20=20=20 options=3D48400b8 ether 00:50:56:ab:e3:d8 media: Ethernet autoselect status: active nd6 options=3D29 lo0: flags=3D1008049 metric 0 mtu 1= 6384 options=3D680003 inet 127.0.0.1 netmask 0xff000000 inet6 ::1 prefixlen 128 inet6 fe80::1%lo0 prefixlen 64 scopeid 0x3 groups: lo nd6 options=3D21 vxlan0: flags=3D1008843 me= tric 0 mtu 1450 options=3D80020 ether 58:9c:fc:00:51:74 inet 192.168.254.1 netmask 0xffffff00 broadcast 192.168.254.255 groups: vxlan vxlan vni 1 local 10.11.3.10:4789 remote 10.11.3.11:4789 media: Ethernet autoselect (autoselect ) status: active nd6 options=3D29 gw2: root@gw2:/etc # uname -a FreeBSD host 14.1-RELEASE-p4 FreeBSD 14.1-RELEASE-p4 releng/14.1-86d01789b GENERIC amd64 root@gw2:/etc # ifconfig=20 vmx0: flags=3D1008843 metr= ic 0 mtu 1500 =20=20=20=20=20=20=20 options=3D48400b8 ether 00:50:56:ab:ec:42 inet 10.11.3.11 netmask 0xffffff00 broadcast 10.11.3.255 media: Ethernet autoselect status: active nd6 options=3D29 vmx1: flags=3D1008843 metr= ic 0 mtu 1500 =20=20=20=20=20=20=20 options=3D48400b8 ether 00:50:56:ab:1a:65 media: Ethernet autoselect status: active nd6 options=3D29 lo0: flags=3D1008049 metric 0 mtu 1= 6384 options=3D680003 inet 127.0.0.1 netmask 0xff000000 inet6 ::1 prefixlen 128 inet6 fe80::1%lo0 prefixlen 64 scopeid 0x3 groups: lo nd6 options=3D21 vxlan0: flags=3D1008843 me= tric 0 mtu 1450 options=3D80020 ether 58:9c:fc:00:51:74 inet 192.168.254.2 netmask 0xffffff00 broadcast 192.168.254.255 groups: vxlan vxlan vni 1 local 10.11.3.11:4789 remote 10.11.3.10:4789 media: Ethernet autoselect (autoselect ) status: active nd6 options=3D29 root@gw1:/etc # tcpdump -vv -ni vmx0 host 10.11.3.11 tcpdump: listening on vmx0, link-type EN10MB (Ethernet), snapshot length 26= 2144 bytes 15:53:02.968609 IP (tos 0x0, ttl 64, id 15597, offset 0, flags [none], proto UDP (17), length 78) 10.11.3.11.5785 > 10.11.3.10.4789: [no cksum] VXLAN, flags [I] (0x08), = vni 1 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has 192.168.254.1 tell 192.168.254.2, length 28 15:53:04.041181 IP (tos 0x0, ttl 64, id 15599, offset 0, flags [none], proto UDP (17), length 78) 10.11.3.11.5785 > 10.11.3.10.4789: [no cksum] VXLAN, flags [I] (0x08), = vni 1 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has 192.168.254.1 tell 192.168.254.2, length 28 15:53:05.113726 IP (tos 0x0, ttl 64, id 15601, offset 0, flags [none], proto UDP (17), length 78) 10.11.3.11.5785 > 10.11.3.10.4789: [no cksum] VXLAN, flags [I] (0x08), = vni 1 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has 192.168.254.1 tell 192.168.254.2, length 28 15:53:06.166138 IP (tos 0x0, ttl 64, id 15603, offset 0, flags [none], proto UDP (17), length 78) 10.11.3.11.5785 > 10.11.3.10.4789: [no cksum] VXLAN, flags [I] (0x08), = vni 1 ARP, Ethernet (len 6), IPv4 (len 4), Request who-has 192.168.254.1 tell 192.168.254.2, length 28 root@gw2:/etc # arp -a ? (10.11.3.1) at 00:50:56:95:1a:df on vmx0 expires in 1140 seconds [etherne= t] ? (10.11.3.10) at 00:50:56:ab:65:f8 on vmx0 expires in 1140 seconds [ethern= et] ? (10.11.3.11) at 00:50:56:ab:ec:42 on vmx0 permanent [ethernet] ? (192.168.254.2) at 58:9c:fc:00:51:74 on vxlan0 permanent [ethernet] ? (192.168.254.1) at (incomplete) on vxlan0 expired [ethernet] root@gw1:/etc # arp -an ? (10.11.3.1) at 00:50:56:95:1a:df on vmx0 expires in 1103 seconds [etherne= t] ? (10.11.3.10) at 00:50:56:ab:65:f8 on vmx0 permanent [ethernet] ? (10.11.3.11) at 00:50:56:ab:ec:42 on vmx0 expires in 1103 seconds [ethern= et] ? (192.168.254.2) at (incomplete) on vxlan0 expired [ethernet] ? (192.168.254.1) at 58:9c:fc:00:51:74 on vxlan0 permanent [ethernet] Does anyone have any ideas why it might not work? --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Wed Sep 18 13:01:16 2024 X-Original-To: freebsd-net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X7zLD0TSPz5WLMM for ; Wed, 18 Sep 2024 13:01:24 +0000 (UTC) (envelope-from wds24@mails.tsinghua.edu.cn) Received: from azure-sdnproxy.icoremail.net (azure-sdnproxy.icoremail.net [52.237.72.81]) by mx1.freebsd.org (Postfix) with ESMTP id 4X7zLB1Ct0z3yp3 for ; Wed, 18 Sep 2024 13:01:21 +0000 (UTC) (envelope-from wds24@mails.tsinghua.edu.cn) Authentication-Results: mx1.freebsd.org; dkim=pass header.d=mails.tsinghua.edu.cn header.s=dkim header.b=oFgjfnYZ; dmarc=pass (policy=none) header.from=mails.tsinghua.edu.cn; spf=pass (mx1.freebsd.org: domain of wds24@mails.tsinghua.edu.cn designates 52.237.72.81 as permitted sender) smtp.mailfrom=wds24@mails.tsinghua.edu.cn DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mails.tsinghua.edu.cn; s=dkim; h=Received:Message-ID:Date: MIME-Version:User-Agent:To:From:Subject:Content-Type: Content-Transfer-Encoding; bh=jLjCMXtSZaH5PeMkdz/u7UbcVbQuM+wXgF 6V2b7M8pQ=; b=oFgjfnYZ4JHbRzW9VPKzrcs1WCAjwT5pqBpImuofAcyf+bUMHj kbGgRvyOFhzx5RQQm+ZLu22DVFxGZ+ZjW6nEwyKvvt+CsOGonfIM1/dfIe3lo8nk H5n5ZzGvr7Y7EhtSAAfGunAUd17UDOLMXbXrragXD/R+B7ejFjLhac+lI= Received: from [59.66.20.229] (unknown [59.66.20.229]) by web1 (Coremail) with SMTP id yAQGZQAnHr0dz+pmpcyUAA--.7152S2; Wed, 18 Sep 2024 21:01:17 +0800 (CST) Message-ID: <9a1e0b13-e06f-46aa-8174-4b80eea4473a@mails.tsinghua.edu.cn> Date: Wed, 18 Sep 2024 21:01:16 +0800 List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 User-Agent: Mozilla Thunderbird To: freebsd-net@freebsd.org From: dashuai wu Subject: Does the UDP socket in FreeBSD actually use a send buffer to store packets like Linux? Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit X-CM-TRANSID:yAQGZQAnHr0dz+pmpcyUAA--.7152S2 X-Coremail-Antispam: 1UD129KBjvdXoW7JFyrKFy3AF4kKw1rAw4DXFb_yoWxCwc_WF Z5KryUtw1UXr47Za4rKFnrWF47Xay8AFyxur1kJayIg348ArW5XFn7ur92vw40gayUtrn8 AFyrXws3Gry0vjkaLaAFLSUrUUUUjb8apTn2vfkv8UJUUUU8Yxn0WfASr-VFAUDa7-sFnT 9fnUUIcSsGvfJTRUUUbxxYjsxI4VWxJwAYFVCjjxCrM7AC8VAFwI0_Jr0_Gr1l1xkIjI8I 6I8E6xAIw20EY4v20xvaj40_Wr0E3s1l1IIY67AEw4v_Jr0_Jr4l8cAvFVAK0II2c7xJM2 8CjxkF64kEwVA0rcxSw2x7M28EF7xvwVC0I7IYx2IY67AKxVWDJVCq3wA2z4x0Y4vE2Ix0 cI8IcVCY1x0267AKxVW8Jr0_Cr1UM28EF7xvwVC2z280aVAFwI0_GcCE3s1l84ACjcxK6I 8E87Iv6xkF7I0E14v26rxl6s0DM2vYz4IE04k24VAvwVAKI4IrM2AIxVAIcxkEcVAq07x2 0xvEncxIr21l5I8CrVACY4xI64kE6c02F40Ex7xfMcIj6xIIjxv20xvE14v26r1j6r18Mc Ij6I8E87Iv67AKxVWUJVW8JwAm72CE4IkC6x0Yz7v_Jr0_Gr1lF7xvr2IY64vIr41lc2xS Y4AK67AK6ry8MxAIw28IcxkI7VAKI48JMxC20s026xCaFVCjc4AY6r1j6r4UMI8I3I0E5I 8CrVAFwI0_Jr0_Jr4lx2IqxVCjr7xvwVAFwI0_JrI_JrWlx4CE17CEb7AF67AKxVWUJVWU XwCIc40Y0x0EwIxGrwCI42IY6xIIjxv20xvE14v26r1j6r1xMIIF0xvE2Ix0cI8IcVCY1x 0267AKxVWUJVW8JwCI42IY6xAIw20EY4v20xvaj40_Jr0_JF4lIxAIcVC2z280aVAFwI0_ Jr0_Gr1lIxAIcVC2z280aVCY1x0267AKxVWUJVW8JbIYCTnIWIevJa73UjIFyTuYvjxUxa 0PDUUUU X-CM-SenderInfo: hzgvjko6pdxz3vow2x5qjk3toohg3hdfq/1tbiAQEEDWbqluUtEwAAsI X-Spamd-Bar: --- X-Spamd-Result: default: False [-3.99 / 15.00]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; NEURAL_HAM_LONG(-1.00)[-1.000]; SUBJECT_ENDS_QUESTION(1.00)[]; DWL_DNSWL_LOW(-1.00)[tsinghua.edu.cn:dkim]; NEURAL_HAM_SHORT(-1.00)[-0.998]; DMARC_POLICY_ALLOW(-0.50)[mails.tsinghua.edu.cn,none]; R_SPF_ALLOW(-0.20)[+a:azure-sdnproxy.icoremail.net]; R_DKIM_ALLOW(-0.20)[mails.tsinghua.edu.cn:s=dkim]; MIME_GOOD(-0.10)[text/plain]; RCVD_IN_DNSWL_LOW(-0.10)[52.237.72.81:from]; RCVD_NO_TLS_LAST(0.10)[]; XM_UA_NO_VERSION(0.01)[]; FROM_EQ_ENVFROM(0.00)[]; MLMMJ_DEST(0.00)[freebsd-net@freebsd.org]; MIME_TRACE(0.00)[0:+]; TO_DN_NONE(0.00)[]; ARC_NA(0.00)[]; MID_RHS_MATCH_FROM(0.00)[]; RCVD_COUNT_ONE(0.00)[1]; RCPT_COUNT_ONE(0.00)[1]; RWL_MAILSPIKE_POSSIBLE(0.00)[52.237.72.81:from]; ASN(0.00)[asn:8075, ipnet:52.224.0.0/11, country:US]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; DKIM_TRACE(0.00)[mails.tsinghua.edu.cn:+] X-Rspamd-Queue-Id: 4X7zLB1Ct0z3yp3 I noticed that FreeBSD does not have kernel parameters for adjusting the send buffer size like Linux does. The parameter kern.ipc.maxsockbuf does not seem to affect UDP sending behavior in this thread(https://forums.freebsd.org/threads/increase-buffer-with-maxsockbuf-for-udp-streaming.75981/). While reading the source code, I found that the UDP socket seems to only use the buffer size to determine if a single message is too large, and it does not track the amount of buffer space already used. So, does the UDP socket in FreeBSD actually have a send buffer like Linux? If yes, where can I find the source code about it? Thanks all for your time. - Dashuai Wu From nobody Wed Sep 18 16:55:47 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X84Xg5v4sz5Wng9 for ; Wed, 18 Sep 2024 16:55:47 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X84Xg3QHwz4Vpt for ; Wed, 18 Sep 2024 16:55:47 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726678547; a=rsa-sha256; cv=none; b=ldB4s2qcHnwW76b2Q2Adh2RIoIKm56EZfZ8LIiC3qSp28Pg1redXXK0ngQOU41HREePix4 Jnzlso5lkZYEEiD66qMZ1bGAucZJpawTK1Bao1FbhqU3zaHy1u9YSn5uKqF5aPtfAvKYxR jafzWQU+zRqdQuCb4IevxAoNnVrn6S52dWszBd9c5dXyly+JG84/Obc3psIeA9EegJ+c6N g2kdsyEm7dYTL25Slftaj9vCVThKUZRPnLDZPF/CQj8xNHM8T5e7GJSycK+zTSg3l+vdU+ FKgDGv6Xl6SyQCtoXsLl+Xc25MZQ+HI4MtZXkznn6wrqY03HX93NG5BTyMz5CA== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726678547; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=oaQNyvKJtnNt7aWoBMvplO0wtRBExQtA9DQXETQG4kE=; b=ut+1JMjspha03JAX95FS6eIY9HLNk2lDVzqNfXtW/xCH4i5+QmAOAFFsr5HFFVI5/Og1hg uqf7MmfzRsVXEAr0IihiuJtf2XQgv4q35HtsNT/DyInWEjin2YKUHHP+qB5OTkxUVJxGgD d0xRXGwC/nNOoR/hNZ2h3fz4vB5gQKuHIqJmzEzxDHXTAHnC/oCwpVUslEJXoHBJt7esnJ GhCziKgoJgbxX2pE0RrHoPY9/QVYFDQmjx99N8W56q0WIdvkbBMTExE17VwYiN0EReVyJh l1vBZlB4h76RZ2H3HN67ZRRK5dvQkunGBxGY9LZrlUoSHbZsG7HsM2uHkAzWGQ== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X84Xg32TVzVnB for ; Wed, 18 Sep 2024 16:55:47 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48IGtl3d089625 for ; Wed, 18 Sep 2024 16:55:47 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48IGtlVE089624 for net@FreeBSD.org; Wed, 18 Sep 2024 16:55:47 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 281560] gve (4) uma deadlock during high tcp throughput Date: Wed, 18 Sep 2024 16:55:47 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-RELEASE X-Bugzilla-Keywords: vendor X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: kib@FreeBSD.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: cc Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D281560 Konstantin Belousov changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |kib@FreeBSD.org --- Comment #1 from Konstantin Belousov --- If you have the deadlock, there must be a resource acquisition loop, which you should be able to unwind by looking at threads waiting for a resource, then finding the owner of the resource, then seeing what it is doing etc. That said, do you run with INVARIANTS and WITNESS enabled? If not, you mus= t. For instance, only INVARIANTS-enabled kernel would detect an attempt to take a blockable lock inside smr section. Similarly, WITNESS might directly point to the resource loop for locks. --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Wed Sep 18 17:19:31 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X85436Vpjz5X61p for ; Wed, 18 Sep 2024 17:19:31 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X85435JnPz4Zbc for ; Wed, 18 Sep 2024 17:19:31 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726679971; a=rsa-sha256; cv=none; b=uixPShREPS2Q14cTy1vF5tgAWdVnpwrFeUCANwvvpYn851JA+33z579ZiP+pCkz3rrex9L VlF4bHYaxM3ZwurA7K7QimGdffsU5C+iOaKwrAk3sEoWygBSG66pkmyNjI9n2nMgQZAuVo mS1F7L2z9NKQJnOSLSn4owFXAFEz4rPzcmWxPQKgfbJttMOXHGkpH/qvBQRLZpWqIVMapI vFaivW0CQzVtKEM7Zqa4pGYzTt4uJ5dXH54VgRasJ/qKUuKBIJWUAV2DYKUGMKDIbFgvSA PGFrAF/u5rQL60ALkQ7UKIAukPz+KJ+dRx7Ue53VCzsK2gzCfPfvWVCTZC1rbw== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726679971; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=09iQ2kx4cBSSftcu6kZcLfngBi09+PcF0IYYHbNVFOo=; b=w6UDHRZQUILEF5sVDm492HjGTQ8yobMLS7wfOeCpLuxF4xzwBD3jM1NmiEBJc0pXiAsOVr /SbDJYjaXwesYlLFHfTweDY1PW0Nui+kt1l3iAMBvNE7AX+FuzWBcP8ZPFixLSHnlUYH4b WOp1kbuyKoHxhUBJtDioNPB5TziF2BFjGbFnyIToe79UUgqpxOvOa4IoV0C4H//8vuoEWK MiUgP4uZr7cv5e5A1fUqjO5Hrrwz+dCxeM7E8VTLmQkb7JcafBq7+x9c1I6UNtLEEnMIjm 9LlBWuUYJlj+0zvX3cty4l9t1uwBHJENZ+PKv0ICxbYGyxFLIUSkOa4gYl7xOg== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X85434fpQzWj0 for ; Wed, 18 Sep 2024 17:19:31 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48IHJVGE023609 for ; Wed, 18 Sep 2024 17:19:31 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48IHJVuC023608 for net@FreeBSD.org; Wed, 18 Sep 2024 17:19:31 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 281560] gve (4) uma deadlock during high tcp throughput Date: Wed, 18 Sep 2024 17:19:31 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-RELEASE X-Bugzilla-Keywords: vendor X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: shailend@google.com X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D281560 --- Comment #2 from shailend@google.com --- Actually I did run it with INVARIANTS and WITNESS and other options listed = on https://docs.freebsd.org/en/books/developers-handbook/kerneldebug/#kernelde= bug-deadlocks and the deadlock reproduces without any findings from INVARIANTS or WITNESS= .=20=20 `procstat -k ${tid?}` is the only only tool I know to look at the deadlocked threads and that hints at some locking issue in the uma zone cache (as per = the per-thread procstat -k in comment #0).=20=20 Are there some other ways I can look at the locked threads and more definitively figure out what resource they are blocked on and who owns it? --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Wed Sep 18 18:50:16 2024 X-Original-To: freebsd-net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X874x5Jw7z5XGqp for ; Wed, 18 Sep 2024 18:50:25 +0000 (UTC) (envelope-from benoitc@enki-multimedia.eu) Received: from mail-40136.proton.ch (mail-40136.proton.ch [185.70.40.136]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "protonmail.com", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X874w6hLpz4jh0 for ; Wed, 18 Sep 2024 18:50:24 +0000 (UTC) (envelope-from benoitc@enki-multimedia.eu) Authentication-Results: mx1.freebsd.org; dkim=pass header.d=enki-multimedia.eu header.s=protonmail3 header.b=XlqGFAng; dmarc=pass (policy=none) header.from=enki-multimedia.eu; spf=pass (mx1.freebsd.org: domain of benoitc@enki-multimedia.eu designates 185.70.40.136 as permitted sender) smtp.mailfrom=benoitc@enki-multimedia.eu DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=enki-multimedia.eu; s=protonmail3; t=1726685422; x=1726944622; bh=quadcf+F3w95Vv4EffkoWEgj0LG46W18oiyVW2rhqjk=; h=Date:To:From:Subject:Message-ID:Feedback-ID:From:To:Cc:Date: Subject:Reply-To:Feedback-ID:Message-ID:BIMI-Selector; b=XlqGFAng3hrnxM6ZQKo58sXQ2J7oj93qXMErteXqP5mYnzPJhVpue9eZqvnR5yItl TTsWtlV14LHMWAROi4Yv6b7Iu0UGphoDNUeQA7MINcgXBUul/uauji8+Z9tjNtXqsi o3qxZOh3zKBuMQfRwRI0hSOab9x82VtfyA0zfJCidS08/ZxQ4Kn8uyJPlbfpYYY/ZY tPCG50nS/NMwBruSHD/+xVc20dklFGktRTK191PTfH5y2+Bxd4m6o2FXEVyMWCMMOd 1yYNvfDhEErNua/TWoxHAof1CS62BFf2gr92c4gp78vveHJ9012VO5xSwgu2kW92Sr CEI3i35DtHc4Q== Date: Wed, 18 Sep 2024 18:50:16 +0000 To: freebsd-net@freebsd.org From: "benoitc@enki-multimedia.eu" Subject: unsubscribe Message-ID: <73380D23-9B1C-47AE-83D6-AEDDF97A54F4@enki-multimedia.eu> Feedback-ID: 9066678:user:proton X-Pm-Message-ID: a14832cf7ebdf016f0a7a21c4226533b55b0ea7e List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-Spamd-Result: default: False [-1.00 / 15.00]; FROM_DN_EQ_ADDR(1.00)[]; NEURAL_HAM_SHORT(-0.80)[-0.798]; DMARC_POLICY_ALLOW(-0.50)[enki-multimedia.eu,none]; R_SPF_ALLOW(-0.20)[+ip4:185.70.40.0/24:c]; R_DKIM_ALLOW(-0.20)[enki-multimedia.eu:s=protonmail3]; RWL_MAILSPIKE_VERYGOOD(-0.20)[185.70.40.136:from]; MIME_GOOD(-0.10)[text/plain]; ARC_NA(0.00)[]; RCPT_COUNT_ONE(0.00)[1]; ASN(0.00)[asn:62371, ipnet:185.70.40.0/24, country:CH]; MISSING_XM_UA(0.00)[]; MIME_TRACE(0.00)[0:+]; TO_MATCH_ENVRCPT_ALL(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; RCVD_COUNT_ZERO(0.00)[0]; MLMMJ_DEST(0.00)[freebsd-net@freebsd.org]; SINGLE_SHORT_PART(0.00)[]; MID_RHS_MATCH_FROM(0.00)[]; TO_DN_NONE(0.00)[]; DKIM_TRACE(0.00)[enki-multimedia.eu:+] X-Rspamd-Queue-Id: 4X874w6hLpz4jh0 X-Spamd-Bar: / Empty Message From nobody Wed Sep 18 19:07:36 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X87Sm35hPz5XJC8 for ; Wed, 18 Sep 2024 19:07:36 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X87Sl6v4Mz4lnL for ; Wed, 18 Sep 2024 19:07:35 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726686456; a=rsa-sha256; cv=none; b=Ab5W/qcJui3enXKR5YVvWseBFna7vUypzcby/g7ORpjI3Zuc8DLqFPbIEr5duCB8EV/KxZ 77xZ1TjEj+O6uB3W7xPooHRfEbatcW5yvRJLsJ7EDbdgqgORSVsgPSqGyxsr6fERob1dkD 65VfT3MPlFrrXECCPkYoJzyFGZv7n/SIMsjlmB8Ht9DITmD+49hLny9fhuUEUxbcogfKKM XWLjk23YYd5oUy5aa6BlrGTdfcfNAffwnCPcv1gRdNPXk5FgJlv6jiiGtWHdEKMc5TF6U3 ksfYLRllEEeKJSKyivctPMLkH0JSzUz3O2usStYD0aD8p9oAPu73BrTrW8UxzA== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726686456; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=JHFLvn0eEhxa3pbjSTwhMTTeffr27tPoptfsoTNlGcg=; b=Ytjc7SPyySOBvOt5jIpXb66C+0PhqBh3a0mPbLWxSkf/Vye8p6W9j1EI7BeEiSWtJjxISs 1KQR49CYPFgRDGS/g83DTBhbXhxnMzPhM4bBiC2kJLAZrGhutoFmOauafb6JlCm6SGri6Q vxg8ejTYZVKLYI69RUZ0HJSqgrA+vKnx8tCGYLvn6yVrQVAJNbYIWScemYqXb0tyrkiTAi sO69o9vhdukmkuDKaxM1c+Ag8eIWZ307AqoPDnNLF7OFYAoT+jvK3Bk9d6x1Sy/7ZFmXTp Pw9dm0DUQQ3ZCNilWupRbUhzoLj8jxLfos1qE5FvhX/0wtq01hgoTRyammhvTQ== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X87Sl6NxPzZWH for ; Wed, 18 Sep 2024 19:07:35 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48IJ7ZQS096172 for ; Wed, 18 Sep 2024 19:07:35 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48IJ7ZHn096171 for net@FreeBSD.org; Wed, 18 Sep 2024 19:07:35 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 281560] gve (4) uma deadlock during high tcp throughput Date: Wed, 18 Sep 2024 19:07:36 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-RELEASE X-Bugzilla-Keywords: vendor X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: kib@FreeBSD.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D281560 --- Comment #3 from Konstantin Belousov --- If you have WITNESS configured, then you can get an overview of the locks ownership on the system, using the 'show alllocks' ddb command. This should allow you to see lock owners, including the shared locks (like read-locked rwlocks). Another hint is that ddb 'ps' command output wchan ia the address of lock (or something very close to it) where the thread blocked. This should be enough to see the loops. Basically, take any blocked thread, see which lock it needs ('ps'), then find a thread that owns the lock. Now look at the backtrace of the lock owner and see why it does not make progre= ss, e.g. typically waiting for yet another lock, and so on. --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Wed Sep 18 21:34:16 2024 X-Original-To: freebsd-net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X8BkJ6Xxfz5Vg6f for ; Wed, 18 Sep 2024 21:34:32 +0000 (UTC) (envelope-from bchesneau@icloud.com) Received: from qs51p00im-qukt01080302.me.com (qs51p00im-qukt01080302.me.com [17.57.155.21]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4X8BkH5Qcvz523D for ; Wed, 18 Sep 2024 21:34:31 +0000 (UTC) (envelope-from bchesneau@icloud.com) Authentication-Results: mx1.freebsd.org; dkim=pass header.d=icloud.com header.s=1a1hai header.b=sOZbLlwD; dmarc=pass (policy=quarantine) header.from=icloud.com; spf=pass (mx1.freebsd.org: domain of bchesneau@icloud.com designates 17.57.155.21 as permitted sender) smtp.mailfrom=bchesneau@icloud.com DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=icloud.com; s=1a1hai; t=1726695270; bh=Gr+1RvyNYWIP5rCRtANMlmLea5tQ8n7m/naUbjytka4=; h=From:Content-Type:Mime-Version:Subject:Message-Id:Date:To; b=sOZbLlwD9LfuNOX5PHapFIn6i8NTO7vd/MneaAiCquxA+JnVITxgWw04wLU7qBuRW JMUu/V/wL4wtmwvSbsGZruGHysdy/eQ4zn8R0cxiOiVTQG6I762CC9Tl1VOQ/xAZIO eqhJSO3VEfQoREZJNl+r141uhKBLFzKqegwSapajCZ1oIHd1O+gCtCh9BZP9TDVAXy Re2kZyZuKMLjD2yZ4KP2wR6Z7oYUAMEh77Y5dTtkE6zNcvADxeo/scajahpH/WrbuH P0U+DLlRb3Hk8QeofSlcdzTmRxbIZWUHXi3LP6SNmXzH/jPIao/vb2ecFbu25Tul2X xbzFwfIv8VPYg== Received: from smtpclient.apple (qs51p00im-dlb-asmtp-mailmevip.me.com [17.57.155.28]) by qs51p00im-qukt01080302.me.com (Postfix) with ESMTPSA id BFC951140196 for ; Wed, 18 Sep 2024 21:34:29 +0000 (UTC) From: Benoit Chesneau Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3776.700.51\)) Subject: issue with ICMP with PF and nat and latest 14.1 Message-Id: <764EE8F1-BE88-4714-AD3F-9D93028FFEC4@icloud.com> Date: Wed, 18 Sep 2024 23:34:16 +0200 To: "freebsd-net@freebsd.org" X-Mailer: Apple Mail (2.3776.700.51) X-Proofpoint-GUID: eGhA6YDSShFuVo2iDG_NtdzDQ09ctS-J X-Proofpoint-ORIG-GUID: eGhA6YDSShFuVo2iDG_NtdzDQ09ctS-J X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.272,Aquarius:18.0.1051,Hydra:6.0.680,FMLib:17.12.60.29 definitions=2024-09-18_14,2024-09-18_01,2024-09-02_01 X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 suspectscore=0 spamscore=0 adultscore=0 phishscore=0 malwarescore=0 mlxscore=0 mlxlogscore=999 clxscore=1011 bulkscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.19.0-2308100000 definitions=main-2409180142 X-Spamd-Result: default: False [-5.28 / 15.00]; WHITELIST_SPF_DKIM(-3.00)[icloud.com:d:+,icloud.com:s:+]; NEURAL_HAM_SHORT(-0.85)[-0.854]; NEURAL_HAM_MEDIUM(-0.83)[-0.825]; SUBJECT_ENDS_SPACES(0.50)[]; DMARC_POLICY_ALLOW(-0.50)[icloud.com,quarantine]; RWL_MAILSPIKE_VERYGOOD(-0.20)[17.57.155.21:from]; R_SPF_ALLOW(-0.20)[+ip4:17.57.155.0/24]; R_DKIM_ALLOW(-0.20)[icloud.com:s=1a1hai]; MIME_GOOD(-0.10)[text/plain]; ONCE_RECEIVED(0.10)[]; TO_DN_EQ_ADDR_ALL(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; RCPT_COUNT_ONE(0.00)[1]; MIME_TRACE(0.00)[0:+]; ARC_NA(0.00)[]; FREEMAIL_ENVFROM(0.00)[icloud.com]; FREEMAIL_FROM(0.00)[icloud.com]; RCVD_TLS_ALL(0.00)[]; FROM_HAS_DN(0.00)[]; RCVD_IN_DNSWL_NONE(0.00)[17.57.155.21:from]; MLMMJ_DEST(0.00)[freebsd-net@freebsd.org]; PREVIOUSLY_DELIVERED(0.00)[freebsd-net@freebsd.org]; FROM_EQ_ENVFROM(0.00)[]; DKIM_TRACE(0.00)[icloud.com:+]; MID_RHS_MATCH_FROM(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; APPLE_MAILER_COMMON(0.00)[]; RCVD_COUNT_ONE(0.00)[1]; ASN(0.00)[asn:714, ipnet:17.57.155.0/24, country:US]; DWL_DNSWL_NONE(0.00)[icloud.com:dkim] X-Rspamd-Queue-Id: 4X8BkH5Qcvz523D X-Spamd-Bar: ----- Hi, It seems that since the latest update of PF in FreeBSD 14.1 mtr doesn't = provide a correct trace using the default. It works with the ``--udp` = and `-T` options so it doesn't seem to be an issue with the next hop. = Also mtr works perfectly on the firewall machine. Issue only happen on = the nated machines on the lan behind it. No issue with ipv6. I tried to change the config or pass everything but I still reproduce = the issue. Any idea to troubleshoot/fix it is welcome :) Eg of trace: ``` MacBook-Pro-de-Benoit-8.local (10.0.1.62) -> 1.1.1.1 (1.1.1.1) = = 2024-09-18T11:32:29+0200Keys: Help Display mode Restart statistics = Order of fields quit = Packets Pings Host = Loss% Snt Last Avg Best Wrst = StDev 1. 10.0.1.1 = 0.0% 11 4.7 6.4 3.6 22.6 = 5.7 2. (waiting for reply) 3. (waiting for reply) 4. (waiting for reply) 5. (waiting for reply) 6. one.one.one.one = 0.0% 10 6.8 6.6 5.6 11.7 = 1.8 ``` The configuration of PF is the following ``` table persist file "/etc/pf/lan.tbl" IP_OUT =3D "" ext_if =3D "vlan200" vlan_ifs =3D "{ vlan10, vlan20, vlan30, vlan31, vlan110, vlan120 }" # Macros set block-policy drop set skip on lo # Options scrub in all fragment reassemble # Normalize and reassemble fragmented = packets #scrub in all # nat nat from to ! -> $IP_OUT # Explicitly block unroutable addresses antispoof quick for ($ext_if) #pass proto icmp all # Drop invalid packets block in quick on $ext_if inet proto tcp all flags FUP/FUP # Dropping = invalid TCP packets block in quick on $ext_if inet proto tcp all flags S/SAFRUP # Dropping = weird flags # Allow all outgoing traffic from the internal network (LAN) pass out on $ext_if from any to any keep state # Allow incoming established and related connections (untracked) pass in on $ext_if proto tcp from any to any flags S/SA modulate state pass in on $ext_if proto { udp, icmp, icmp6 } from any to any keep state # Allow ICMP traffic for mtr (Echo Request, Echo Reply, Time Exceeded) pass in inet proto icmp icmp-type { echoreq, echorep, timex } keep state pass out inet proto icmp icmp-type { echoreq, echorep, timex } keep = state ``` I also tried a simpler version: ``` # Allow all outgoing traffic pass out on $ext_if all # Allow all incoming ICMP pass in inet proto icmp from any to any ``` While no errors, mtr on the lan still doesn't work. I have also tried to = log it : ``` pass in log proto icmp all ``` but no log appears. I am clue less right now. It seems the error is = related to `ICMP time exceeded in-transit` but I thought the issue would = be solved by the configuration below. What I'm missing? Beno=C3=AEt= From nobody Wed Sep 18 21:48:01 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X8C2b3JvNz5VhyP for ; Wed, 18 Sep 2024 21:48:39 +0000 (UTC) (envelope-from herbert@gojira.at) Received: from mail.bsd4all.net (mail.bsd4all.net [IPv6:2a01:4f8:13b:240c::25]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature ECDSA (P-384) client-digest SHA384) (Client CN "mail.bsd4all.net", Issuer "E5" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X8C2Z37zhz542n for ; Wed, 18 Sep 2024 21:48:38 +0000 (UTC) (envelope-from herbert@gojira.at) Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gojira.at header.s=mail202005 header.b=YdzBnoVb; dmarc=none; spf=pass (mx1.freebsd.org: domain of herbert@gojira.at designates 2a01:4f8:13b:240c::25 as permitted sender) smtp.mailfrom=herbert@gojira.at Date: Wed, 18 Sep 2024 23:48:01 +0200 DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=gojira.at; s=mail202005; t=1726696109; bh=D0YUg+hfhlpLKmist567FrAWqPI2kQfFmdeJikNZutM=; h=Date:Message-ID:From:To:Subject:MIME-Version:Content-Type; b=YdzBnoVbfhtriZfCcrh8LIflg5dRk+75SMjsdU8GzJC+4c4Fq01kTZkEqAuoeo3E5 7NO/js7xmBMpTaUUgTQ+Mk53e4O/msQdIf0VWQeYtLr9Ce+7cqix/3t+/uHcbJIv7f tGITqiiIJH/ZQXzzLLLpf/4/0tHVn41LGdSAClPzwOFvyTuRb5+Lw8KAfZnEIF2BmL 67q4d5KQCSGcb5u04qCLXZlfUphYZ6VdolEb2QIiq1t5dOoLppicp/qMU0G7iD481l pIb4ofeUrhawizWziaBVJYE5DOWXYcJgLLLmJY1VtbIeZAeLUDq0arHVcIYlvXC4kL jaKXpORhxTKyA== Message-ID: <87v7ysiqge.wl-herbert@gojira.at> From: "Herbert J. Skuhra" To: net@FreeBSD.org Subject: Re: issue with ICMP with PF and nat and latest 14.1 In-Reply-To: <764EE8F1-BE88-4714-AD3F-9D93028FFEC4@icloud.com> References: <764EE8F1-BE88-4714-AD3F-9D93028FFEC4@icloud.com> User-Agent: Wanderlust/2.15.9 (Almost Unreal) Emacs/31.0 Mule/6.0 List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 (generated by SEMI-EPG 1.14.7 - "Harue") Content-Type: text/plain; charset=US-ASCII X-Spamd-Result: default: False [-0.96 / 15.00]; MID_CONTAINS_FROM(1.00)[]; NEURAL_HAM_MEDIUM(-0.98)[-0.984]; NEURAL_HAM_SHORT(-0.98)[-0.976]; SUBJECT_ENDS_SPACES(0.50)[]; R_SPF_ALLOW(-0.20)[+ip6:2a01:4f8:13b:240c::25]; R_DKIM_ALLOW(-0.20)[gojira.at:s=mail202005]; MIME_GOOD(-0.10)[text/plain]; RCPT_COUNT_ONE(0.00)[1]; ASN(0.00)[asn:24940, ipnet:2a01:4f8::/32, country:DE]; MIME_TRACE(0.00)[0:+]; FROM_HAS_DN(0.00)[]; DMARC_NA(0.00)[gojira.at]; ARC_NA(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; RCVD_COUNT_ZERO(0.00)[0]; TO_DN_NONE(0.00)[]; MLMMJ_DEST(0.00)[net@FreeBSD.org]; TO_MATCH_ENVRCPT_ALL(0.00)[]; DKIM_TRACE(0.00)[gojira.at:+] X-Rspamd-Queue-Id: 4X8C2Z37zhz542n X-Spamd-Bar: / On Wed, 18 Sep 2024 23:34:16 +0200, Benoit Chesneau wrote: > > Hi, > > It seems that since the latest update of PF in FreeBSD 14.1 mtr > doesn't provide a correct trace using the default. It works with the > ``--udp` and `-T` options so it doesn't seem to be an issue with the > next hop. Also mtr works perfectly on the firewall machine. Issue > only happen on the nated machines on the lan behind it. No issue > with ipv6. > > I tried to change the config or pass everything but I still > reproduce the issue. Any idea to troubleshoot/fix it is welcome :) Latest 14.1? Do you run stable/14 or releng/14.1? Maybe: -- Herbert From nobody Wed Sep 18 22:01:39 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X8CKj6gPfz5VkVD for ; Wed, 18 Sep 2024 22:01:45 +0000 (UTC) (envelope-from benoitc@enki-multimedia.eu) Received: from mail-4323.proton.ch (mail-4323.proton.ch [185.70.43.23]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "protonmail.com", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X8CKj44Mqz55Fp for ; Wed, 18 Sep 2024 22:01:45 +0000 (UTC) (envelope-from benoitc@enki-multimedia.eu) Authentication-Results: mx1.freebsd.org; none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=enki-multimedia.eu; s=protonmail3; t=1726696902; x=1726956102; bh=v+/9sg6A6shs9GTYPuymBQwdAeKGpGf/3FERqzRwtvI=; h=Date:To:From:Cc:Subject:Message-ID:In-Reply-To:References: Feedback-ID:From:To:Cc:Date:Subject:Reply-To:Feedback-ID: Message-ID:BIMI-Selector; b=mWM9cTLc1pBwBSkvWUpKc7xdv5nI7bD6wI9u7EPNJMMH85dFROP1avGST1j1Pe/y1 gtGDV1ZEw6tI0SAtfLTrsg1hFiXQ8kEzP7CPZXJuBXVESfzb2MANTtGyZGJn7a8zwN Z2tpt4bZMsAOVoumQn4n54Mvw6ufa6Pufodc4baNH4x5wKAR028LpxEbP8S7r43RLz gTs5H/h35KR9yTszNabX4XiZGnKAcFObWrDsxHoKMWmRnTidL4v1uUAPCc1mc4PL1y /hX0o//K+Rahf7syoTB/YmnJxkA3FbS6pr7BISyRY8YQAM+vl4EYRF+b0Tygnw7fuX PE+RRu8rLKe7A== Date: Wed, 18 Sep 2024 22:01:39 +0000 To: "Herbert J. Skuhra" From: "benoitc@enki-multimedia.eu" Cc: net@FreeBSD.org Subject: Re: issue with ICMP with PF and nat and latest 14.1 Message-ID: <6574252B-EB26-4176-A6D4-8E85C0F784F5@enki-multimedia.eu> In-Reply-To: <87v7ysiqge.wl-herbert@gojira.at> References: <764EE8F1-BE88-4714-AD3F-9D93028FFEC4@icloud.com> <87v7ysiqge.wl-herbert@gojira.at> Feedback-ID: 9066678:user:proton X-Pm-Message-ID: 4c858004d81f95b3c56d7d6256e860e0fc4606ff List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:62371, ipnet:185.70.43.0/24, country:CH] X-Rspamd-Queue-Id: 4X8CKj44Mqz55Fp X-Spamd-Bar: ---- X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated I am running releng/14.1 . But this tickets looks very similar to the behav= iour I'm seeing. Thanks for the link! > Le 18 sept. 2024 =C3=A0 23:48, Herbert J. Skuhra a = =C3=A9crit : >=20 > On Wed, 18 Sep 2024 23:34:16 +0200, Benoit Chesneau wrote: >>=20 >> Hi, >>=20 >> It seems that since the latest update of PF in FreeBSD 14.1 mtr >> doesn't provide a correct trace using the default. It works with the >> ``--udp` and `-T` options so it doesn't seem to be an issue with the >> next hop. Also mtr works perfectly on the firewall machine. Issue >> only happen on the nated machines on the lan behind it. No issue >> with ipv6. >>=20 >> I tried to change the config or pass everything but I still >> reproduce the issue. Any idea to troubleshoot/fix it is welcome :) >=20 > Latest 14.1? Do you run stable/14 or releng/14.1? Maybe: > >=20 > -- > Herbert >=20 From nobody Thu Sep 19 06:49:22 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X8R2W5b2Lz5XJjZ for ; Thu, 19 Sep 2024 06:49:23 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X8R2W4WXXz3xnq for ; Thu, 19 Sep 2024 06:49:23 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726728563; a=rsa-sha256; cv=none; b=eINn/+4UyemOJRKF5mDE90sRtxR6HxRmwdvfV4wlWWUu2GSFwdpUuhiQ4VEHTWprFwKAtU t0om19/1Tw2iT0Wux3s0HBI9w7d1JHYKD+WwjG6D3e/NNCH3QmgpmuKHpQGbqTi4PRfXH7 3CnSuvq+hig5Cw6+TM40fWCCkzW62p3pEQSXJpeAJzJeVRA0ji+rD8nUW7aU74N/hV1xnV dTtXmQ4is7ahtpv6sXHMQqLl9NULiT4OgJ6vCndb6rTct6KMbM46nBV2Yc15GvIbBEXo+S eXY+bLCTvpyOprUghMhC//Cw/GAKcQiCJFo8ZJXxX3zQAbxTK9Bspy46X2OpJQ== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726728563; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=WZYVtrK2E+5q9Yuf3Pq2vSU9trUVVCZAd/rZc4wcLgk=; b=IYztbg/ko9XgC3eJhGM3BqAjLtphD5zhV5LP40pegQDtFSPDAewrDOi958ybZlRrDUXEGh 9yNEk2N7OcuYm6fO/9mNkHDaK14rAtBjaCZCyjVbJQcG/HUwfMmxgCQiOlWbeBWTJGH1lY K9uSl2HUdb/PWQt3msZSrjhmXamODwNeNP41/eCC27mrBmOlpNzdAmamGQwHwAh/WhswQS QjuevsnrhaYTwcKSH7YZT+BXazQTS/Qmzi2MvKrtRmK3ISdFyyEMFcanyJlwiarYJ5jnPX JD/C91bJ7+lD/UFSqnRnaIRdA0SO6bGMqTyVaxzuFoLxMnDQahWbTHg75w8xoA== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X8R2W40YDzvVZ for ; Thu, 19 Sep 2024 06:49:23 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48J6nNVc026022 for ; Thu, 19 Sep 2024 06:49:23 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48J6nNRd026021 for net@FreeBSD.org; Thu, 19 Sep 2024 06:49:23 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 280648] Traffic leak between fibs Date: Thu, 19 Sep 2024 06:49:22 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-STABLE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: banezmesm@gmail.com X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: attachments.created Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D280648 --- Comment #10 from Egor --- Created attachment 253655 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D253655&action= =3Dedit frr config --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Thu Sep 19 06:49:40 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X8R2r68X5z5XJjk for ; Thu, 19 Sep 2024 06:49:40 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X8R2r53s7z400Q for ; Thu, 19 Sep 2024 06:49:40 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726728580; a=rsa-sha256; cv=none; b=FMY8oD9avumACTwb/BBiQjpE0mRgZYBZV37LtZ5j3vA8KukiP8tRvC9tHdAvFP30X9cTfg sj9L1KcxQtwt7tFdWj/29VSyHgFJovH3LrzsB1Rq74O4PI9L72J+faw4xd7ttBAq/9lKuf JmGV/k+8aCoL0uxTIDz78JVh7y+mSoKIlbi1ha4sO/7bUJG1/LQmHCTaAp/hAu6dsvWZSt HnaDUQpo6xlh/ui8TG/YVzP8xDU7UJhEPQGjwuoa+o1dl+iO6JtHXnBfjVgynxcs05g0xK 0mkiz3Ok8qO5VoxdLAqL1+aGi7IK6rNZmcE+O8RE002Z8s75mCJ8o78lT3dQpg== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726728580; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=wihUnD80f0z/gvrURKSoXHYn5UR2uaHbQGVgGxVpmvA=; b=h6HCmVfYaILrnszIYNXjwrKtQKiyA1itDqmTIy2dcX5xTbztRbGWGhxcJCLe6d2CYiNqLr Utcgi23z+7MQRbWzf4slyyIqm7mB3kLkVKZxzZjqyLAaDAmp6Se4DNAwd+ALWst03tcKZX 6xHe93NpeYAA2R+rshvGlCBDL21I/5NHm3OOHkUGMVc8xdynveL0jHwnQwZ16wZATfEcX0 iV/4pvGJVOkY6vkCnirCi4qkb9l306bu+kfuutBT2BHkeNioazP2J1dZv3wO0SlGfcG/ii oBm7h789c4m5lLf9Wit2+AKfXlt4a+SjEry8DMmFYePjVNNGK/+DHBkLx4UpmA== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X8R2r4W0Qzw3h for ; Thu, 19 Sep 2024 06:49:40 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48J6nerE026159 for ; Thu, 19 Sep 2024 06:49:40 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48J6neFY026158 for net@FreeBSD.org; Thu, 19 Sep 2024 06:49:40 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 280648] Traffic leak between fibs Date: Thu, 19 Sep 2024 06:49:40 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-STABLE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: banezmesm@gmail.com X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: attachments.created Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D280648 --- Comment #11 from Egor --- Created attachment 253656 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D253656&action= =3Dedit rc.conf.d frr --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Thu Sep 19 06:56:20 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X8RBX3w9Pz5XKR9 for ; Thu, 19 Sep 2024 06:56:20 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X8RBX0f2tz41DT for ; Thu, 19 Sep 2024 06:56:20 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726728980; a=rsa-sha256; cv=none; b=u8Fte8BBuF6c25gR+2/b0YZnTPltPP1xpnkyDLGUqQtZOoJl9jFokdJ2P6gnxqwqE+rKQf mcY/6wmqC0jjvtuFmLZ0j7kFZ+LnzK6ZLiz5g+CArd6YPZna3J7oUMvRdLZmo71dknvB+F k0xjKnMsx2YGl9PlEfMFDXU1XKFbZp1Svpi3/Egkt0rqSY1j5/l/zkWMA+I1eLyLkFOrrW MtxJt8GnrkquQRUQdGJaBDxHTSHXoKqMxFZ0wj3YCrUcyWTd4mlIFd8QivMQKmdhzmFb+q 1T9oEERFFYTqzhQbOKCXw+be4AkeukH9r2ttkL+6n6xURPet7kimS58qGxlJwA== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726728980; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=VzDT8ej1RxWeXBFl6qax7gL/1cqgxyIUaovDIlsc9eM=; b=eSCMunFPMqZ/yG0ZDbTIyZg3INZjK/bE2ZdRa4Gctt3e+pHRLoyiNKtFeTnAFaGLByCyh/ Den1Ny5QS4MGa1wgN1HzCD7crGaUnh0QzYOEYMEuFe372Pv7HijhW92/yUpM0Viev1pnEh ojPr9HJcLW9vLcG5Nzop25S7aOSdR8ZQsO9kJim3VYsX7WWq7GqU0/b9BXWmUnQGbMvFkI QekVNnSPpqsE+3KI2Tvwa8MiVGswKDe1wnvIjuGrj6MSPsRaXlsZ68CFMYVOuHqN6WKGC0 9TiWqWcR8j3TTekENyhUyx8l6uW0IubTsvTjUizorG+hRQR0TWJpc+1XQndBsA== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X8RBW6yYMzwFb for ; Thu, 19 Sep 2024 06:56:19 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48J6uJld040083 for ; Thu, 19 Sep 2024 06:56:19 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48J6uJbM040082 for net@FreeBSD.org; Thu, 19 Sep 2024 06:56:19 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 280648] Traffic leak between fibs Date: Thu, 19 Sep 2024 06:56:20 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-STABLE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: banezmesm@gmail.com X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D280648 --- Comment #12 from Egor --- It seemed i found the cause of the error. It frr i have routes from fib 0 although frr has to work in fib 1. Can it connected with this bug https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D279662 ?=20 I tried to change route table in zebra config but i failed.=20 https://docs.frrouting.org/en/latest/zebra.html#cmdoption-zebra-routing-tab= le test-fw01# sh ip route connected Codes: K - kernel route, C - connected, S - static, R - RIP, O - OSPF, I - IS-IS, B - BGP, E - EIGRP, T - Table, v - VNC, V - VNC-Direct, A - Babel, f - OpenFabric, > - selected route, * - FIB route, q - queued, r - rejected, b - bac= kup t - trapped, o - offload failure fib 0 C>* 10.64.244.0/24 [0/1] is directly connected, vtnet0, 00:04:12 C>* 10.222.254.254/31 [0/1] is directly connected, vtnet1, 00:04:12 fib 1 C>* 192.168.255.0/31 [0/1] is directly connected, mce0.1240, 00:04:12 C>* 192.168.255.2/31 [0/1] is directly connected, mce1.1240, 00:04:12 C>* 192.168.255.16/31 [0/1] is directly connected, mce0.1250, 00:04:12 C>* 192.168.255.18/31 [0/1] is directly connected, mce1.1250, 00:04:12 C>* 192.168.255.32/31 [0/1] is directly connected, mce0.1260, 00:04:12 C>* 192.168.255.34/31 [0/1] is directly connected, mce1.1260, 00:04:12 C>* 192.168.255.48/31 [0/1] is directly connected, mce0.1270, 00:04:12 C>* 192.168.255.50/31 [0/1] is directly connected, mce1.1270, 00:04:12 C>* 192.168.255.64/31 [0/1] is directly connected, mce0.1280, 00:04:12 C>* 192.168.255.66/31 [0/1] is directly connected, mce1.1280, 00:04:12 C>* 192.168.255.80/31 [0/1] is directly connected, mce0.1310, 00:04:12 C>* 192.168.255.82/31 [0/1] is directly connected, mce1.1310, 00:04:12 C>* 192.168.255.96/31 [0/1] is directly connected, mce0.1490, 00:04:12 C>* 192.168.255.98/31 [0/1] is directly connected, mce1.1490, 00:04:12 C>* 192.168.255.112/31 [0/1] is directly connected, mce0.3101, 00:04:12 C>* 192.168.255.114/31 [0/1] is directly connected, mce1.3101, 00:04:12 C>* 192.168.255.144/31 [0/1] is directly connected, mce0.3100, 00:04:12 C>* 192.168.255.146/31 [0/1] is directly connected, mce1.3100, 00:04:12 --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Thu Sep 19 06:57:54 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X8RDM21lXz5XKr7 for ; Thu, 19 Sep 2024 06:57:55 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X8RDL72R6z41vM for ; Thu, 19 Sep 2024 06:57:54 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726729075; a=rsa-sha256; cv=none; b=Nv5o95MyGO2lG82kZ9efVf3hbsiTrVjmjzQwZ4NQp3lblzESIuch0ZFTwqOQ/AQ6a9Z1cu VwDF+ml9wYH69agkSqNVVEd6J5tgoJLwm2sYuknQZXWpOJ99BilXnddECwv9fDs2o0X5Yg CwEua4etjkTLM38xb/1Mu4UhccAPs6sYqhfgtOFFEeXevzvdM5lk/RYfO3ajNbhE8kgJDN 2r5Wlz+Rsi9JBxsPxaOzfJQvnD4fgFGYa0Qkpy3zXrJP1iRqiPCPL1EVdLaXGpcJdaTO3Y NY00G5UdClB3fHWDaS6pEQlVD+heCT0Cgl1BJe2FwWrbMBe+gFWUuWn34VjNcA== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726729075; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=fQlVZD0kCqQ3jKL0I9uGftvsP0/8g3rBKKq9i27W94k=; b=UuxjMFDjQlxU+9PtsKv0n50ycEf7Jqc8I+btV70o7RWkk9Rqv/x6pCVaGAUUvBizBNnJFA 4xfRcSAcwtmP9Kzj54Io07uWg8j53sml1nKg5Aa/H/dTD/YUHuPbgT5TPUXfG2g1gENomd 83nYORyKu0S/tL5ec8MerVEW2+RwXA151RUWTt5Od3Az8SZXui505X+eaw2AEUv97dXJOa loOSF9bTem2AJuAzZbkNgH0t286fttuw76ZED0GnQBPaWBb26HNwq1jgSqFQK8GVXR4wNK h7bfN7hTT7meyRQGB6S0cwAlJCCAFwiLkXLVcUUh2o/SWdpF97VT4XcogTsj0A== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X8RDL4t86zvkn for ; Thu, 19 Sep 2024 06:57:54 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48J6vsLI040999 for ; Thu, 19 Sep 2024 06:57:54 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48J6vsop040998 for net@FreeBSD.org; Thu, 19 Sep 2024 06:57:54 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 280648] Traffic leak between fibs Date: Thu, 19 Sep 2024 06:57:54 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-STABLE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: banezmesm@gmail.com X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D280648 --- Comment #13 from Egor --- I also tried to use bird and it didn't manage to get routes from fib 1. --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Thu Sep 19 08:41:32 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X8TWw6tJcz5XYZs for ; Thu, 19 Sep 2024 08:41:32 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X8TWw56Ybz4Fb7 for ; Thu, 19 Sep 2024 08:41:32 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726735292; a=rsa-sha256; cv=none; b=u7xx7GDl1qZeWZmCOVscGlrZHrvpyoeSlAwhqyTB49kmf54hguyoY+qc7j+hNtnNjLWwaw 9W3Sm969ltNp8jfPQtV/9od44wrmmZGF638up+Trj2dX0BcJGxX+7K51yPpPUhBTayNjF/ Wz1DLJaVxEsSIcIKm5yiiydH1FF2NzDC1FrkK7O9H9R1G0GWySGhr31Kj7RstMae+ABbD7 xb1NFvr7wvsKawrp2t3cqgE5+kX5O3mSWouN0GyT4WsFn2asWqcMtLj7Uy48PfEViQVzm7 u9hfqKuaa0nbIOXnvL57/UTi1IqyTMvzdFixWokZ8zLPSZR33VYruK3LbNXnpA== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726735292; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=/YbovckQaeFnYExh5YAH7nQLL8IjzCYCnj217hSN8RM=; b=ascmW4y/PqWglavI55XnGg7rz55k58GB3Wmk0PuSbvZZMzNLN+I9Fw0NyIxhrlLjYmbJ5q snxwiX8NViWqz95TYYzBYOUzgod/XOyCs+G30I99oIvv4xWDLU4zOcojb2sWw3yaRXVsJo mxAjMNMAEIwvEIm6PDDzfXcHxlWbIstU6kpalZENZYlfuAHHtWNyeAQkA28pObMODJlLWU g9OIr13faF7tlnXqoqy4h/ChzpQuflJ+58vp6xJEgjtDO2QzRQznonzZS8lmqaQqa4uWr/ CZtnBoUQewQsnoAr+yCt1P1iZ5sg7AcHNrilCgs/DOz7p7O0SxEzkaII889rYg== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X8TWw4kR6zyyB for ; Thu, 19 Sep 2024 08:41:32 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48J8fWBZ014696 for ; Thu, 19 Sep 2024 08:41:32 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48J8fWT2014695 for net@FreeBSD.org; Thu, 19 Sep 2024 08:41:32 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 280648] Traffic leak between fibs Date: Thu, 19 Sep 2024 08:41:32 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-STABLE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: tatsuki_makino@hotmail.com X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D280648 --- Comment #14 from Tatsuki Makino --- Hmmm.... :) I don't know how far the fib that can be set on the network interface will = be used, but if it cannot be set at least there, it will be difficult to route packet forwarding (which sysctl net.inet.ip.forwarding is set to 1). A process launched in an environment where the fib is 0 inherits that the f= ib is 0. If the process switches FIBs in the middle, setfib or setsockopt should be running somewhere, but in that case, there is a config for that somewhere. I don't think there is a function to recognize the FIB of the network inter= face where the packet arrived and select the FIB of the packet to be sent. [cita= tion needed] ...Therefore, it seems that the service for packets passing through the rou= te of fib 1 should be set to use fib 1. single-mindedly :) And since lo0 is also a route that can be passed through various ways, it is sometimes better to create lo1 or lo2 and separate them. I don't know if it really is. I think that's what it means, but I don't think it's on target :) --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Thu Sep 19 09:12:26 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X8VCb1WDpz5Vg20 for ; Thu, 19 Sep 2024 09:12:27 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X8VCb0Snxz4Kjr for ; Thu, 19 Sep 2024 09:12:27 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726737147; a=rsa-sha256; cv=none; b=S885TSZdilItC5s63WcAAiE/bfjzRWO3lxEdMiqhl9F5GMi4D1OErBAJxpMSSRyRZsuHmY HzpWG0AuEy5qVggXAi9wK94/rWxPoLLLIbEmkxK+ioHHkEzvhUjPVbByi4bbN/2xz8eCru swwB74BDRrGI+/nqskQTCS57h3C0qtndGUjlfhcQLt151vk75+VsYMOHO/Gf1yfnpdrTU1 /dr07hv93TK7jYFvP9GEXTX3TYa0j4ZBZj18/+Wge3syFwGjAiF7P5uQ2xwuNrMBeLkbvL DSpFwr80COaqR9MnGbNo+8ObvDxgdCGs/KqTGUCEpIfyYlx00VXJqQrbmNZJbg== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726737147; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=iVqChYLzcYpuUwWHIYTpmaEVVqZ8muv73PnPi06aq3Y=; b=uCtnl7TWqxzgM6jLU/QtOuLQHRj+mmDjR6uJkU6mMZkpkyAthpYVZbEbI5C6dRFj0yqV6B MQhXfC7lLCYdrV1jMZBHc+xwaqKLD3qOdK+zkX5zgAgdttFtwoEKY1aQvjjeIQQUNp6nV/ i7nzw+NGP2fon05XDO4ldqmicE4WYYlY7NiItiNT20ZVRp8w88pANC9mcp1YwqCAbBL1ZJ HXsw6NTHxuYlAvL4ZcFRveNgGfXBaR+x1/bNoE2HmHIcP+3c5qDWaEIxR8pnwdf5SXLV2I PQIqte+XJWPuJHxth8SBfSJo9EigrjfuXRU9nehoSclwcLxWeEhaahpjAvyXjw== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X8VCb04bnz10Tt for ; Thu, 19 Sep 2024 09:12:27 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48J9CQZm068967 for ; Thu, 19 Sep 2024 09:12:26 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48J9CQmB068966 for net@FreeBSD.org; Thu, 19 Sep 2024 09:12:26 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 280648] Traffic leak between fibs Date: Thu, 19 Sep 2024 09:12:26 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-STABLE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: banezmesm@gmail.com X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D280648 --- Comment #15 from Egor --- I set fib 1 for all frr processes in rc.conf.d Thats why i expected that it took only fib 1 routes from the kernel but it didn't. frr_fib=3D"1" frr_enable=3D"YES" frr_vtysh_boot=3D"YES" frr_daemons=3D"zebra bfdd bgpd mgmtd" frr_config=3D"/usr/local/etc/frr/frr.conf" bgpd_fib=3D"1" bfdd_fib=3D"1" zebra_fib=3D"1" mgmtd_fib=3D"1" --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Thu Sep 19 13:03:27 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X8bL84Dcwz5WY8R for ; Thu, 19 Sep 2024 13:03:28 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X8bL81DCjz4rSb for ; Thu, 19 Sep 2024 13:03:28 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726751008; a=rsa-sha256; cv=none; b=S5JbdTIVrLKgRjFmsgFXjtJ2STGUufMkEThgz71ufOW7H51kocyEUumtzZmofdRUMOmBsq I4BdcbwNo8qcksdAtP5eu/5l40nuAiyK1l3fdkQ/AxUiINEd2cmhAwFXHul+YLBzpQ+JkM eC74gtVmtIijaYmGD2xTceQUAkbhg1MRds6k+BtF8/DsNyYxXa+uQ6O6/7iEPDJRo4uUKa I0mc1ZSENC9Sv9SGe13YQKAwPmHWpo0reWXMBED1GrUPYHQWp2dv9OTq2ANvDIJfp7cQH0 giVw0e9Qt1Z2oK4o0s0UrXkmuAsf1NeFZiZC8HIq/YpfKkF1k4EXOL2JUhrKwQ== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726751008; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=a/xVyKOPguAVL7lwk9svKqmfTciutZ3zBPWRxBIcKDw=; b=thFr4pENi4+TCH8FpoNuTAoXbHRH6yN6UuOrP+VIPbRvY9ttRL7hLLpECzpulTeUDQ/aSI 6TmBkuHihlkSoI13C6i3z2bwJby87U3rjHNQc6HcS+nzW71OHldkcADQsL2vWU8faVGgCN 8JdEtADQK70ddoS8ujsFhyrxsxuRi7aGjV6d3X/An2U/G8ZOhYtLN/+m7Hi6h/dWvKa7IB eHpoW1W5Kg/3OJgyipAaWXJG/XXDHsOhSPXOqN3+lwWJ8zL1tqjmrXO1IuEygU3oKMgnxl 5LZUDee0hfnVC1cqhzBCSVKTe2OyN00+iPIyS7H1bds1WOeTnZJJ7ZvoxDFQ4Q== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X8bL80rT3z168F for ; Thu, 19 Sep 2024 13:03:28 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48JD3Rnj085520 for ; Thu, 19 Sep 2024 13:03:27 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from bugzilla@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48JD3RHg085519 for net@FreeBSD.org; Thu, 19 Sep 2024 13:03:27 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: bugzilla set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 280701] FreeBSD-SA-24:05 fix breaks ICMP/ICMP6 states handling in pf firewall (ping, traceroute) Date: Thu, 19 Sep 2024 13:03:27 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-RELEASE X-Bugzilla-Keywords: regression X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: commit-hook@FreeBSD.org X-Bugzilla-Status: Closed X-Bugzilla-Resolution: FIXED X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D280701 --- Comment #85 from commit-hook@FreeBSD.org --- A commit in branch releng/14.1 references this bug: URL: https://cgit.FreeBSD.org/src/commit/?id=3D84b57a4c5b848d44ec0918c28d8c27bec= 948a151 commit 84b57a4c5b848d44ec0918c28d8c27bec948a151 Author: Kristof Provost AuthorDate: 2024-08-14 09:29:30 +0000 Commit: Mark Johnston CommitDate: 2024-09-19 12:55:09 +0000 pf: invert direction for inner icmp state lookups (e.g. traceroute with icmp) ok henning, jsing Also extend the test case to cover this scenario. Approved by: so Security: FreeBSD-EN-24:16.pf PR: 280701 Obtained from: OpenBSD MFC after: 1 week Sponsored by: Rubicon Communications, LLC ("Netgate") (cherry picked from commit 89f6723288b0d27d3f14f93e6e83f672fa2b8aca) (cherry picked from commit 46c4fc50d3012ca3c8756df243589add36b70830) sys/netpfil/pf/pf.c | 21 +++++++++++---------- 1 file changed, 11 insertions(+), 10 deletions(-) --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Thu Sep 19 13:03:35 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X8bLJ6hXgz5WYXP for ; Thu, 19 Sep 2024 13:03:36 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X8bLJ2QJpz4rcX for ; Thu, 19 Sep 2024 13:03:36 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726751016; a=rsa-sha256; cv=none; b=njN44HTwZNbxDRwDOJCrnMsz3VFXKbbGDpnnS9IQxDfouk0LGUIH6ij9acqSMMEYoro1QB /2YY7DXTE+RwoODBP9COZbaSgHijJC3KvEC1xyA7VhlLctgOe2qnmltvWsf/v969F0T2s0 r9RwdNE070Ts95OAH7EKtiU4DQg+QVynimgA6lD1bIQ/guNJzRKFhWDvAtklg+9wuLyTJg fV18KUOYahgAvuaImJucnQdmnpAuHJ06hMbBmJMwiyNhTDa92aI5Ng+4Q3HJL6gNeiGgO4 NWuiXzt0k1oGH/mqP8CjVfq9z6Gq57alkQfUyim9r3gFqn6cT4HkASiEpZgDyw== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726751016; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=vCS4a2ttDaaUJKNaZ+cj/X5K6Mm3JO7PflAeNhvnC/U=; b=nEZczIbS7oTZL3QjoIJ2dsZDoxVLDD8GJs7dYMberdvSFh3pMowtiVGtG18foAUvxo8ccb ngOXRWR8UnLw49YE7pNZFSPVlV63JxyoB7zf7Fe8OaWbI7+NMOj0fmU/aWYGmjSW9QQTyc PzOHOIfzJKvjWmKhmiKeK5fCWiL5N/Nx4dWz4u8lWpFWKdXUa2k9BiKsUNgl2rOjJXGOY/ EvvZsp9Fq48kMBRRefhcyHWC1bEMslRriQqWhrVgX+3O8BZ/K97XLiwCs1w766e9imf6J4 3MG0mTm+lGR9j6wL7IT25Am/2Qh5HJyKyOoBegWj8CMn32OI2fvnECyl1azS/A== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X8bLJ22YWz15pH for ; Thu, 19 Sep 2024 13:03:36 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48JD3aj1085755 for ; Thu, 19 Sep 2024 13:03:36 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from bugzilla@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48JD3axO085753 for net@FreeBSD.org; Thu, 19 Sep 2024 13:03:36 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: bugzilla set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 280701] FreeBSD-SA-24:05 fix breaks ICMP/ICMP6 states handling in pf firewall (ping, traceroute) Date: Thu, 19 Sep 2024 13:03:35 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-RELEASE X-Bugzilla-Keywords: regression X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: commit-hook@FreeBSD.org X-Bugzilla-Status: Closed X-Bugzilla-Resolution: FIXED X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D280701 --- Comment #86 from commit-hook@FreeBSD.org --- A commit in branch releng/14.1 references this bug: URL: https://cgit.FreeBSD.org/src/commit/?id=3Dfdc0afd4391ef45b5dcba33238b37f135= 972d71a commit fdc0afd4391ef45b5dcba33238b37f135972d71a Author: Kristof Provost AuthorDate: 2024-08-26 12:59:38 +0000 Commit: Mark Johnston CommitDate: 2024-09-19 12:55:21 +0000 pf: improve the ICMPv6 direction check Following bluhm's advice this changes the way we setup state keys and perform state lookups for ICMPv6 Neighbor Discovery packets: - replace the NS-dst with ND target address; - replace the NA-src with ND target address; - replace the NA-dst with unspecified address if it is a multicast. This allows pf to match Address Resolution, Neighbor Unreachability Detection and Duplicate Address Detection packets to the corresponding states without the need to create new ones or match unrelated ones. As a side effect we're doing now one state table lookup for ND packets instead of two. Fixes a bug uncovered by one of the previous commits that virtually breaks IPv6 connectivity after few minutes of use. ok stsp henning, with and ok bluhm Approved by: so Security: FreeBSD-EN-24:16.pf PR: 280701 MFC after: 1 week Obtained from: OpenBSD, mikeb , 2633ae8c4c8a Sponsored by: Rubicon Communications, LLC ("Netgate") (cherry picked from commit 5ab1e5f7e5585558a73b723f07528977a82cee82) (cherry picked from commit 0121a4baaca09049d130d830aa9179e3cb9c9e88) sys/net/pfvar.h | 4 +- sys/netpfil/pf/pf.c | 116 ++++++++++++++++++++++++++++++++++-----------= ---- sys/netpfil/pf/pf_lb.c | 2 +- 3 files changed, 85 insertions(+), 37 deletions(-) --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Thu Sep 19 13:03:38 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X8bLN0YPkz5WY94 for ; Thu, 19 Sep 2024 13:03:40 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X8bLM51pKz4rpG for ; Thu, 19 Sep 2024 13:03:39 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726751019; a=rsa-sha256; cv=none; b=PJIm8Rw72+Qx6zbDv7bz7vPUj5As2+lso3qjRdKpzsJfgB/bNUgQZyZBe1nzNittzWIs21 k66uObopSrH85WFgj+ymXk3t6z0oBLfPXfno1qouv9wRuTN2CMWMe1PhJV6y+o7SQct8/o 0t67pyI2Dl2QI+MeRJhQoQCw7AYJNtgn+2PGhCugLfVZPohbztWtgYxEKbEG4tJack72Ci fl+IvmqVfaqvtlVQ/+26s+wWWHaZw/GTx61GFc24zJPkl3lnJTdH5nMbKZ2USh1HK4Ocj5 /eGa45nTHletyBkpkhHMVkK+ze4KREBVNT0IyqK6iXoKGahWTE/IQyKxx/FwVQ== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726751019; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=lsDqSljsjEa9isvMxai/DQn4BFRFBk0aveXAHBgEE/E=; b=AyUjxG92NGVVil3KP6mMyoObQLPpneNBT6p7Ut+TZ7PQ17qAyD69eYTjoiTKTTdAzUdzWk vN1L0xltkx+aMZ4Lg5LGFvirx/yyjLmnpff1FUQ0eQWFDTBjNPD0vv8ljXPCuuZBLrTYU3 d+Uj61rLEv0vP2a4rU0Ss7/HUKLzyVd2AiZ2GA+hefCwBI4b9gH1xxyiX2ZJFZwLHf230B 8TcpRDKROuyFcg0HjIiDt65zf05uEZplLWZWajezEo3rPhp8wYT6/kMcpI6zAVp4VZsZqU dXjPJHdP334+RysJ8UwAX/i5cSO4LSMXu8/fEU3GBwUOTiXywRgBf/irP7O8uw== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X8bLM4dTQz15pP for ; Thu, 19 Sep 2024 13:03:39 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48JD3d1j085929 for ; Thu, 19 Sep 2024 13:03:39 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from bugzilla@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48JD3dIq085928 for net@FreeBSD.org; Thu, 19 Sep 2024 13:03:39 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: bugzilla set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 280701] FreeBSD-SA-24:05 fix breaks ICMP/ICMP6 states handling in pf firewall (ping, traceroute) Date: Thu, 19 Sep 2024 13:03:38 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-RELEASE X-Bugzilla-Keywords: regression X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: commit-hook@FreeBSD.org X-Bugzilla-Status: Closed X-Bugzilla-Resolution: FIXED X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D280701 --- Comment #87 from commit-hook@FreeBSD.org --- A commit in branch releng/14.1 references this bug: URL: https://cgit.FreeBSD.org/src/commit/?id=3Dfb925cf0a4b38bffc4c9733bae3212f07= a481931 commit fb925cf0a4b38bffc4c9733bae3212f07a481931 Author: Kristof Provost AuthorDate: 2024-08-12 14:07:35 +0000 Commit: Mark Johnston CommitDate: 2024-09-19 12:54:47 +0000 pf: fix icmp-in-icmp state lookup In 534ee17e6 pf state checking for ICMP(v6) was made stricter. This cha= nge failed to correctly set the pf_pdesc for ICMP-in-ICMP lookups, resultin= g in ICMP error packets potentially being dropped incorrectly. Specially, it copied the ICMP header into a separate variable, not into= the pf_pdesc. Populate the required pf_pdesc fields for the embedded ICMP packet's st= ate lookup. Approved by: so Security: FreeBSD-EN-24:16.pf PR: 280701 MFC after: 1 week Sponsored by: Rubicon Communications, LLC ("Netgate") (cherry picked from commit 2da98eef1f352c496ffd458b4c68ddee972bb903) (cherry picked from commit 27a1a56b0d2e6ffa6ab1de69ef84fe66b7fd41e0) sys/netpfil/pf/pf.c | 31 +++++++++++++++++-------------- 1 file changed, 17 insertions(+), 14 deletions(-) --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Thu Sep 19 13:04:41 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X8bMZ1vW8z5WYYv for ; Thu, 19 Sep 2024 13:04:42 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X8bMY5Pgcz4vhY for ; Thu, 19 Sep 2024 13:04:41 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726751081; a=rsa-sha256; cv=none; b=Dc+Uyo2SBHlOl7WY9yan85awldcqqtz3xilOK2tvsKXdNGIPfQ6acGhXIGgZxuJo0+Aj4T b+hIavBAw4I0+g1uXPbeJXF/8P3YBNDfgLAn3CF7QmDaA7f7w9lenupLcnhbgxXriBuDIT WXfDGvOVb8TDLr0BFFz9O4Uc9910LfeodSg2zvN+N79G8lIxCM0SjVotCcSyuelDJ83HwR 4zKFl+xD4VcGT1L5Ug0H/M1hsb1IiiO8xKm88weXNEA5xh2O6+9pH88GyQcaZi7SIrA3AB ru5LzdXNrLyGNhhtNBB25PnO4QLU40tfy8ZQcX0ZEy3tkRs9EGNZr+fMUfTDMQ== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726751081; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=jP0ToVP5/J7KQq2ASKTJstm70YP57ShFpgW42wE6vRg=; b=kEUR6QNgL3wp5RKj52nF1gxDP5SrJDeXq4Q5WlF0tpIRdBDf1+l11Ap/DRscp+XHSnjHP5 2KFXmjj9vHa5RDd6u/9Ye2RmmHzDsyGfYEMQLD4W2PPPZY0gqVehDAfJv3qAGqLVQc4r1U iLtSGufU7KHWwbm7LabpZC23rmHRTOxyxCzU8sxjfh21kFEwEOvr0EaZyG/JPU/7xAsalI 5fpjki8DUg4o7ZFvqB2mkfxKr3BqaML0WGajshYdv4OmlJFi6V+HrQIZ++CzHtfJae2BpE PcJjj74Onyw6Eu5d4pD8Dz5BPtTwvVrdGt4ajS8EPeYGysn8bTTLEQxlQ8sFow== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X8bMY4kDqz15pS for ; Thu, 19 Sep 2024 13:04:41 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48JD4fVm086748 for ; Thu, 19 Sep 2024 13:04:41 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from bugzilla@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48JD4fXR086747 for net@FreeBSD.org; Thu, 19 Sep 2024 13:04:41 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: bugzilla set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 280701] FreeBSD-SA-24:05 fix breaks ICMP/ICMP6 states handling in pf firewall (ping, traceroute) Date: Thu, 19 Sep 2024 13:04:41 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-RELEASE X-Bugzilla-Keywords: regression X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: commit-hook@FreeBSD.org X-Bugzilla-Status: Closed X-Bugzilla-Resolution: FIXED X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D280701 --- Comment #88 from commit-hook@FreeBSD.org --- A commit in branch releng/14.0 references this bug: URL: https://cgit.FreeBSD.org/src/commit/?id=3D2fd8437daed57e34e50beb50013910b64= b456f91 commit 2fd8437daed57e34e50beb50013910b64b456f91 Author: Kristof Provost AuthorDate: 2024-08-26 12:59:38 +0000 Commit: Mark Johnston CommitDate: 2024-09-19 12:58:25 +0000 pf: improve the ICMPv6 direction check Following bluhm's advice this changes the way we setup state keys and perform state lookups for ICMPv6 Neighbor Discovery packets: - replace the NS-dst with ND target address; - replace the NA-src with ND target address; - replace the NA-dst with unspecified address if it is a multicast. This allows pf to match Address Resolution, Neighbor Unreachability Detection and Duplicate Address Detection packets to the corresponding states without the need to create new ones or match unrelated ones. As a side effect we're doing now one state table lookup for ND packets instead of two. Fixes a bug uncovered by one of the previous commits that virtually breaks IPv6 connectivity after few minutes of use. ok stsp henning, with and ok bluhm Approved by: so Security: FreeBSD-EN-24:16.pf PR: 280701 MFC after: 1 week Obtained from: OpenBSD, mikeb , 2633ae8c4c8a Sponsored by: Rubicon Communications, LLC ("Netgate") (cherry picked from commit 5ab1e5f7e5585558a73b723f07528977a82cee82) (cherry picked from commit 0121a4baaca09049d130d830aa9179e3cb9c9e88) sys/net/pfvar.h | 4 +- sys/netpfil/pf/pf.c | 116 ++++++++++++++++++++++++++++++++++-----------= ---- sys/netpfil/pf/pf_lb.c | 2 +- 3 files changed, 85 insertions(+), 37 deletions(-) --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Thu Sep 19 13:04:44 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X8bMd4047z5WYkc for ; Thu, 19 Sep 2024 13:04:45 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X8bMd1Vkgz4vss for ; Thu, 19 Sep 2024 13:04:45 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726751085; a=rsa-sha256; cv=none; b=bJYvmDxc4aHxZrMJZO6lYY/Pyowvl3+WazLUBY67u14DblD9WwBknIQfHxii+HWjkDiUT6 VhLYLQstXK1rveK1fk3VKC0xn8lM1RxUupHOFBWmbRJcUA8lvB1x0WoVH8ZDdLKBe1wDXd ZdCmkPMXVyurbn6Tq6u/dcWxCn3WXO7wlzUxqYDc5nIsPdPjq8sDie/dnqLvgb7zcltxLW OPMOl2H7gaV67qnu0TZwIVIT5plk6EXWBvIWEVLRFgeKXG6bBwiiKjAoN/VwduZ+REqYKV iZ5kVcC8ZbOSO1qzflCWCEUnrpL06Jte7BzZ2NGeYL18IRLL6hkU3wbONW+l7Q== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726751085; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=vaEdWx45RcvFkF3HbiR5mP9QTufsfmXJb+mPuE/YQdE=; b=uMynIuOkbomzFhu9tGYVR9FYhtVIF/YvmlkaFOOEBcO2NrwxojgaGR1O/0JNBQ7ATHuMNY Fb4GbrPwPDvSv1hY4hBSIm6eeYZtKxb/B7OYtcLXs95EMPNR+aam53EUD8KDxAY05jpQ2a nD63A/S421b0+trleHepUUFGCgUtWuPY/9H1b3y//cTIgi8An0erNEGjpKhASdCI5VXU9W AMC4EK6Sno3BoANdEQKdM1x0vsLz5oiMi9zz49rwZTpDnQShtii/MhYvKDKd1cK8lkySvk TZ1j3+zBWwy196tglqkd56gsV6eI2tmegRictyWxbudfsGqKcWlq7S7dfP/lNQ== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X8bMd16pYz15pT for ; Thu, 19 Sep 2024 13:04:45 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48JD4jwm086931 for ; Thu, 19 Sep 2024 13:04:45 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from bugzilla@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48JD4jVI086929 for net@FreeBSD.org; Thu, 19 Sep 2024 13:04:45 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: bugzilla set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 280701] FreeBSD-SA-24:05 fix breaks ICMP/ICMP6 states handling in pf firewall (ping, traceroute) Date: Thu, 19 Sep 2024 13:04:44 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-RELEASE X-Bugzilla-Keywords: regression X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: commit-hook@FreeBSD.org X-Bugzilla-Status: Closed X-Bugzilla-Resolution: FIXED X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D280701 --- Comment #89 from commit-hook@FreeBSD.org --- A commit in branch releng/14.0 references this bug: URL: https://cgit.FreeBSD.org/src/commit/?id=3Dd1c4f6decb10c7dc826d4a3a27763dc3f= 531ffe5 commit d1c4f6decb10c7dc826d4a3a27763dc3f531ffe5 Author: Kristof Provost AuthorDate: 2024-08-12 14:07:35 +0000 Commit: Mark Johnston CommitDate: 2024-09-19 12:57:46 +0000 pf: fix icmp-in-icmp state lookup In 534ee17e6 pf state checking for ICMP(v6) was made stricter. This cha= nge failed to correctly set the pf_pdesc for ICMP-in-ICMP lookups, resultin= g in ICMP error packets potentially being dropped incorrectly. Specially, it copied the ICMP header into a separate variable, not into= the pf_pdesc. Populate the required pf_pdesc fields for the embedded ICMP packet's st= ate lookup. Approved by: so Security: FreeBSD-EN-24:16.pf PR: 280701 MFC after: 1 week Sponsored by: Rubicon Communications, LLC ("Netgate") (cherry picked from commit 2da98eef1f352c496ffd458b4c68ddee972bb903) (cherry picked from commit 27a1a56b0d2e6ffa6ab1de69ef84fe66b7fd41e0) sys/netpfil/pf/pf.c | 31 +++++++++++++++++-------------- 1 file changed, 17 insertions(+), 14 deletions(-) --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Thu Sep 19 13:04:47 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X8bMg6XfRz5WYvd for ; Thu, 19 Sep 2024 13:04:47 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X8bMg4Rs6z3wZs for ; Thu, 19 Sep 2024 13:04:47 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726751087; a=rsa-sha256; cv=none; b=EGaNxI0iMtKDWbIJ//9XzhJRZIErVRtH/D/syGwBBZYA4GmwaVI5dZbv9RH7KeER89+Xik l2KLijLHzwA73D4ZOrkfj8/gDqOAigXVPwFgUqkRSD4DXb0RGaPp5kclaoUkr5KN0x3LUi 9xXTk3KW7aCyxvyGaCQkpnmMtXUD/en5YxyMg9NFtrPrp+Yqc5SSQUv2Fm4JVKMdQvDPhG csBy3A4+VQheYnarim+N+CTsnf+6Lpw+MZR/ObrwzcMfbTnwje2RbK0UAt7fDfBb4AK0zY 88LBEdqZxY08qIgc8Xl5Trpesi2vxYoLp6L7NoqT2p67+I+EdqhQLtZbxjNS7g== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726751087; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=PX32V/3R/bjH1jBNtubA0Rfu35+pfrOk4fHIFtyjUFM=; b=HMdNEzoX1XKPG2iIsNI2xLihcxpHk7vBA0pgw4JxPpEL8MRI+QrP1miimcz0TDX4PpWmBJ ZzqkZR0nOnTwoj8JeKbklFfJKVxrQ8KQDzAVlIwA04L1lcKU5VSsLL5SWIX49hu9bqKhWK s0NW5p9aIhWpr+KfAXgtQzZYYwYI7LWSWgMbj1vx4MCzBIhwAZN79eN1U33wXo9A3pQhw0 OLXxZXRoBpP1hUhmaKBHfTHaOwNjD8ZHTNCqphZg/iUEl67FBYGaP73/RiYmlizIWgoSk7 HhGK93wTmRFrZ0mBbBDmzc+fs+PUilSHPRDpH7JoPHWq4Em8yIyccNYOV+onnA== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X8bMg3F65z168g for ; Thu, 19 Sep 2024 13:04:47 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48JD4lUW087016 for ; Thu, 19 Sep 2024 13:04:47 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from bugzilla@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48JD4lfW087015 for net@FreeBSD.org; Thu, 19 Sep 2024 13:04:47 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: bugzilla set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 280701] FreeBSD-SA-24:05 fix breaks ICMP/ICMP6 states handling in pf firewall (ping, traceroute) Date: Thu, 19 Sep 2024 13:04:47 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-RELEASE X-Bugzilla-Keywords: regression X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: commit-hook@FreeBSD.org X-Bugzilla-Status: Closed X-Bugzilla-Resolution: FIXED X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D280701 --- Comment #90 from commit-hook@FreeBSD.org --- A commit in branch releng/14.0 references this bug: URL: https://cgit.FreeBSD.org/src/commit/?id=3D9481d7a260822d20d60d582bfff20bdd7= 54c49c5 commit 9481d7a260822d20d60d582bfff20bdd754c49c5 Author: Kristof Provost AuthorDate: 2024-08-14 09:29:30 +0000 Commit: Mark Johnston CommitDate: 2024-09-19 12:58:15 +0000 pf: invert direction for inner icmp state lookups (e.g. traceroute with icmp) ok henning, jsing Also extend the test case to cover this scenario. Approved by: so Security: FreeBSD-EN-24:16.pf PR: 280701 Obtained from: OpenBSD MFC after: 1 week Sponsored by: Rubicon Communications, LLC ("Netgate") (cherry picked from commit 89f6723288b0d27d3f14f93e6e83f672fa2b8aca) (cherry picked from commit 46c4fc50d3012ca3c8756df243589add36b70830) sys/netpfil/pf/pf.c | 21 +++++++++++---------- 1 file changed, 11 insertions(+), 10 deletions(-) --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Thu Sep 19 13:04:50 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X8bMm1XzSz5WYkp for ; Thu, 19 Sep 2024 13:04:52 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X8bMl5jbBz3wtw for ; Thu, 19 Sep 2024 13:04:51 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726751091; a=rsa-sha256; cv=none; b=KHpWXnNzIrAOvxs0MzwNiTiRV71Rx3SfHA6cCgcIRgPiWgc+UE3vRrnpCe6t7O41MRWvrR CCmi2c4dPZ3HZ2KWqEtBVW371kl6WPagPDk+/e45j9SypNkcaui+kfQNP3+Pm56WZBBUyW 2eAB1AUaIpMYwhBJn4hK5TI0abRdNDiIrwNu4QZXFUioudfKR/wU7fULJ/NJCopXrW59Cl w4Eg9n1Sl1XQKdXG1IexpAGPq75n0U+Z8YiIGzK/5OtJ02YrPf5YLPe0SdScKU8a3Bxc20 LTOaWQBRskLNNNPWxDNmFKqGEhmx1gFN2k+yRSJoHWAZPGQN+qnNwysXYqbllQ== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726751091; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=v1E78KifEdwFkuO+Ip+cvWcBEoFuol7S6gUmnljGGYU=; b=qpDD4tiVl2b+EeJXrdVbAdXveqQamangz/0+jsUpxOEh6XbfeeAAN1PCquW1D7PUw5QlJE qrM5YnpvXGjGzeR64BXQR3knjcpyuz/2t6qYx43FBpXebQDX39NcHrZSeVapJZ0REtfjvk 9aO6gEipBsojGIPOd5CrDocmKqINQlBZJLJ7sUYMSWuWewFtLKOwuOLBzdELcKVQ05E342 E0shubaY2wunTzcYa1H8ErsTLiYVNXlupFLMzmh9y/g1NFlbUcgQgF5SfIfZ1hjd55fXmV oYLWOSVHgEOO4rS/BFlBeL5pkkeZDBL1rs1AMjLc9lkpmbkGwquBfWsnRdHdQQ== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X8bMl5HP0z16CW for ; Thu, 19 Sep 2024 13:04:51 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48JD4p6Y087242 for ; Thu, 19 Sep 2024 13:04:51 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from bugzilla@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48JD4pqR087240 for net@FreeBSD.org; Thu, 19 Sep 2024 13:04:51 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: bugzilla set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 280701] FreeBSD-SA-24:05 fix breaks ICMP/ICMP6 states handling in pf firewall (ping, traceroute) Date: Thu, 19 Sep 2024 13:04:50 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-RELEASE X-Bugzilla-Keywords: regression X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: commit-hook@FreeBSD.org X-Bugzilla-Status: Closed X-Bugzilla-Resolution: FIXED X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D280701 --- Comment #91 from commit-hook@FreeBSD.org --- A commit in branch releng/13.3 references this bug: URL: https://cgit.FreeBSD.org/src/commit/?id=3Da16cd5ff50ea2e5954958d90ef6de18e0= f1aa4bc commit a16cd5ff50ea2e5954958d90ef6de18e0f1aa4bc Author: Kristof Provost AuthorDate: 2024-08-12 10:14:43 +0000 Commit: Mark Johnston CommitDate: 2024-09-19 13:00:40 +0000 pf tests: ensure that traceroutes using ICMP work Approved by: so Security: FreeBSD-EN-24:16.pf PR: 280701 MFC after: 1 week Sponsored by: Rubicon Communications, LLC ("Netgate") (cherry picked from commit 34063cb714602972b6d985ad747fc8f66a8daae1) (cherry picked from commit 7024e1066d5aba76dbbc85eb191357da7d32c619) tests/sys/netpfil/pf/icmp.sh | 65 +++++++++++++++++++++++++++++++++++++++= ++++ tests/sys/netpfil/pf/icmp6.sh | 65 +++++++++++++++++++++++++++++++++++++++= ++++ 2 files changed, 130 insertions(+) --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Thu Sep 19 13:04:52 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X8bMq12xVz5WYnY for ; Thu, 19 Sep 2024 13:04:55 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X8bMp52rtz3x1d for ; Thu, 19 Sep 2024 13:04:54 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726751094; a=rsa-sha256; cv=none; b=lVnJizE+cmL7Xr7Nt0cYRQxf6Bqioucpg4gAgRDC0J31vUoe26In6EUWkEeKWdBoUPIUm+ 2cdWCnzJlY244Rtc62jTlq/AJiRURqbcbJCU1bvzDh+BMorzBkPjnnrb5xqMkKmM5IFDK5 ulm1fFizntU48wNGmIe0CoLtwRRlFwuoJiq1eOtg/WuWwv1qvjY4TciY2JUGPp1f0rsEW4 9LyGk3QIFzV64I03AbLP9Cq/z2e+GKsmH5ZIGf0rQoz0QA2se/k64iMXGU07tcJyCCLjSY XzVrscbSeP9/Uml1SBKus/xf/g4mOYUz+abSqOm1VVHt+IWedmwu/LzNhoLBwg== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726751094; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=0nUs3dHKi2ZfXA49UlLFJD657paiqaFNZDPhuzsNAI4=; b=S2CWRdEhoQZLK3XIw3zAm7BnXtCeamtxu1eA0lCQbzDXa/lllkNnIkE0eIpHoUZhb+dYSr CMpr95WrG2bBGbM5RoQEcaAG7F70AVUfXwkDl4gRWwrhw6nPv3sH1NA9tQ83UtFACEH1Fp /VgIqAYgwXV1lOlOig+6VReTzrbryN/f4p0mWALvGIKcETXgFKWaMhb+VJq7Wx533h4ZM4 oaEsZetrrcrPmsXFzmxVMnoc3HQl8jH9Pp9BWUTTrTk8SFZW4TXqU7ycnR4eBQh2dwkaYc YzSpfiat8QvpCxGdrteFSGI+hHxjM+IpyslY4i2e+mj/08icX6HL71Nq9IuHiw== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X8bMp31gSz16CY for ; Thu, 19 Sep 2024 13:04:54 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48JD4sD1087374 for ; Thu, 19 Sep 2024 13:04:54 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from bugzilla@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48JD4sIh087373 for net@FreeBSD.org; Thu, 19 Sep 2024 13:04:54 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: bugzilla set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 280701] FreeBSD-SA-24:05 fix breaks ICMP/ICMP6 states handling in pf firewall (ping, traceroute) Date: Thu, 19 Sep 2024 13:04:52 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-RELEASE X-Bugzilla-Keywords: regression X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: commit-hook@FreeBSD.org X-Bugzilla-Status: Closed X-Bugzilla-Resolution: FIXED X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D280701 --- Comment #92 from commit-hook@FreeBSD.org --- A commit in branch releng/13.3 references this bug: URL: https://cgit.FreeBSD.org/src/commit/?id=3Df51f7cb8997f2e43047a84e937144c2ac= 7e84587 commit f51f7cb8997f2e43047a84e937144c2ac7e84587 Author: Kristof Provost AuthorDate: 2024-08-12 14:07:35 +0000 Commit: Mark Johnston CommitDate: 2024-09-19 13:00:07 +0000 pf: fix icmp-in-icmp state lookup In 534ee17e6 pf state checking for ICMP(v6) was made stricter. This cha= nge failed to correctly set the pf_pdesc for ICMP-in-ICMP lookups, resultin= g in ICMP error packets potentially being dropped incorrectly. Specially, it copied the ICMP header into a separate variable, not into= the pf_pdesc. Populate the required pf_pdesc fields for the embedded ICMP packet's st= ate lookup. Approved by: so Security: FreeBSD-EN-24:16.pf PR: 280701 MFC after: 1 week Sponsored by: Rubicon Communications, LLC ("Netgate") (cherry picked from commit 2da98eef1f352c496ffd458b4c68ddee972bb903) (cherry picked from commit 0d8d4cc3ea47f1ee61d749b22b135eb73c7d33cd) sys/netpfil/pf/pf.c | 31 +++++++++++++++++-------------- 1 file changed, 17 insertions(+), 14 deletions(-) --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Thu Sep 19 13:04:55 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X8bMr3WCPz5WYfL for ; Thu, 19 Sep 2024 13:04:56 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X8bMr15CVz3xCC for ; Thu, 19 Sep 2024 13:04:56 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726751096; a=rsa-sha256; cv=none; b=y2mEYNNOiQuHeJi9tAGaOqpuijIakQ7epqNxuoJ35uWXlo3LdLfwzxX5YQDtJSppxTh0GZ y2G6TmRTU4AA3j/oqvWtT8VdO6XLzvegiI4Tus2tSBdCWmj+YSiAjG2FlhYNGVhTefwQQx 6XNU6tANY01ms69rz7yNwIMcXt2jWJd6d0WDuUlfAQGULiDpxVE0YNXlnoWHMeqk8vCP5q /Hs9tVNA0kq8U6T649Y1C817MTEVN5kPPOaqZpPdIbNiOLnFSY/XTFwvwlf+01i22kVfeG zAuQh7J/XsATQOmvbccKFDYnWSchF9yXoN3AeqTUYPtXK2qqazO0gS83trU5jQ== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726751096; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=gXRzHN+qmWSsymZOlxTku4anAPvNJ5OkrUmV7qMmvFU=; b=Kht7UizV2yP362bXRf2LLi8Z2gD5PewZIpB+j/l7MjJyCbnEbHD18uROGQnnF3am63fLr1 W5jSlB7KGCyz634HhHVfE4xm3y48ybEBD75apL72TVupdsWNHEyU6r4OerC/tgTACpFLSI jVPkPRWc5qFw/+JWnQ7ZUTp4Es4Xga7rX60nC3KZydDnca3aAwIZKNtZhpuHql2uM6p92N 9fblaAl4G8AA7NqyaOG6s3JwGsNXSZmVrbaZvimYwdZ910KA6Kpz4vRVxadIeExKXELz43 aJZ8YYNkPWIAYysruSnLv6qeghCfRotIUth3DeqOm0bUn5r0UIRhaOhMiVjhRw== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X8bMr0YwFz16Cc for ; Thu, 19 Sep 2024 13:04:56 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48JD4teO087441 for ; Thu, 19 Sep 2024 13:04:55 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from bugzilla@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48JD4tGU087440 for net@FreeBSD.org; Thu, 19 Sep 2024 13:04:55 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: bugzilla set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 280701] FreeBSD-SA-24:05 fix breaks ICMP/ICMP6 states handling in pf firewall (ping, traceroute) Date: Thu, 19 Sep 2024 13:04:55 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-RELEASE X-Bugzilla-Keywords: regression X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: commit-hook@FreeBSD.org X-Bugzilla-Status: Closed X-Bugzilla-Resolution: FIXED X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D280701 --- Comment #93 from commit-hook@FreeBSD.org --- A commit in branch releng/13.3 references this bug: URL: https://cgit.FreeBSD.org/src/commit/?id=3D7dabb892096e4e3ba7526914b94f97218= d9690d3 commit 7dabb892096e4e3ba7526914b94f97218d9690d3 Author: Kristof Provost AuthorDate: 2024-08-26 12:59:38 +0000 Commit: Mark Johnston CommitDate: 2024-09-19 13:00:57 +0000 pf: improve the ICMPv6 direction check Following bluhm's advice this changes the way we setup state keys and perform state lookups for ICMPv6 Neighbor Discovery packets: - replace the NS-dst with ND target address; - replace the NA-src with ND target address; - replace the NA-dst with unspecified address if it is a multicast. This allows pf to match Address Resolution, Neighbor Unreachability Detection and Duplicate Address Detection packets to the corresponding states without the need to create new ones or match unrelated ones. As a side effect we're doing now one state table lookup for ND packets instead of two. Fixes a bug uncovered by one of the previous commits that virtually breaks IPv6 connectivity after few minutes of use. ok stsp henning, with and ok bluhm Approved by: so Security: FreeBSD-EN-24:16.pf PR: 280701 MFC after: 1 week Obtained from: OpenBSD, mikeb , 2633ae8c4c8a Sponsored by: Rubicon Communications, LLC ("Netgate") (cherry picked from commit 5ab1e5f7e5585558a73b723f07528977a82cee82) (cherry picked from commit b84344206721ed2803d5da68585289d5880efe3f) sys/net/pfvar.h | 2 +- sys/netpfil/pf/pf.c | 116 ++++++++++++++++++++++++++++++++++-----------= ---- sys/netpfil/pf/pf_lb.c | 2 +- 3 files changed, 84 insertions(+), 36 deletions(-) --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Thu Sep 19 13:04:58 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X8bMw6F8kz5WZ1v for ; Thu, 19 Sep 2024 13:05:00 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X8bMw1yT5z3x0K for ; Thu, 19 Sep 2024 13:05:00 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726751100; a=rsa-sha256; cv=none; b=SsE6gMhXYZj0yoE+M1X1obRa4bk+szgjB74kevcuTBMPmGIHX4uf1s2d/Mu7QTmwnfPKkc j2TOPKEmjTnaEH3p2J2ym60Scse4zkfACCx0m6wa3zJYoz4sSWsjk5eJs1N6+jZbcojIx9 DLXE3WLLQLJlSUWMJmGIbuD+0/Zh+aqftn7+tQRyD6J9rMICUOKrTOkkU0iDmFN/saWoTW AnQqzhO6U5vjsoE0Wl0vFlD3hiQqEfroLhH+s/v01XwmGbdxCHAwQVTDS3TeZhChyvMc8K 2iG5Xcoq4B8unf9xBdV66ZyOaQS7Hh48MRIAeLWZgHFGg/j6T+RYkDZD/PrMUw== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726751100; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=Rr5R9W/hwvBDn9lbBfmcpKypJuP9daZSTXutGLD4AqM=; b=o1e7yCuO4+qRACfMChax2ic/th40xHR4SnBYjMequqqR/slHqjGPrTBbbLxXSql0tycdmj tQkkmQlBFP4cWbo6p2TFiQ1i6NMIL5DUAB4FZJvN0F+V0Oc8rsTAEb+j7ERzbdR6Nzh3bE Q0IfPO6rv0HEGXYLb4lMxqoKh1aIDLlRV4Za4DTuxqEgTf1fE5f2k+885beE87jJtoQYIW emTazGRnd6scYij/0ksmLfqNbgvn3Ct4GcnjxmeFqzfeJ0PNz5H3qJxDzEgNpv89yOcxiT 0LfoCuUccfTFyxMB/2O0lgz2dwEMD7bjtmGtSMZdMOXvBT3OjYjxWE+QlZxfkQ== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X8bMv6qZCz16Yp for ; Thu, 19 Sep 2024 13:04:59 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48JD4xln087631 for ; Thu, 19 Sep 2024 13:04:59 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from bugzilla@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48JD4xrZ087630 for net@FreeBSD.org; Thu, 19 Sep 2024 13:04:59 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: bugzilla set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 280701] FreeBSD-SA-24:05 fix breaks ICMP/ICMP6 states handling in pf firewall (ping, traceroute) Date: Thu, 19 Sep 2024 13:04:58 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-RELEASE X-Bugzilla-Keywords: regression X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: commit-hook@FreeBSD.org X-Bugzilla-Status: Closed X-Bugzilla-Resolution: FIXED X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D280701 --- Comment #94 from commit-hook@FreeBSD.org --- A commit in branch releng/13.3 references this bug: URL: https://cgit.FreeBSD.org/src/commit/?id=3D36265a707dc51189843498e059361010e= a3c9718 commit 36265a707dc51189843498e059361010ea3c9718 Author: Kristof Provost AuthorDate: 2024-08-14 09:29:30 +0000 Commit: Mark Johnston CommitDate: 2024-09-19 13:00:48 +0000 pf: invert direction for inner icmp state lookups (e.g. traceroute with icmp) ok henning, jsing Also extend the test case to cover this scenario. Approved by: so Security: FreeBSD-EN-24:16.pf PR: 280701 Obtained from: OpenBSD MFC after: 1 week Sponsored by: Rubicon Communications, LLC ("Netgate") (cherry picked from commit 89f6723288b0d27d3f14f93e6e83f672fa2b8aca) (cherry picked from commit 5f3f07397a7909e8f9449d1aa0b465159cbf0d60) sys/netpfil/pf/pf.c | 21 +++++++++++---------- tests/sys/netpfil/pf/icmp.sh | 4 +++- tests/sys/netpfil/pf/icmp6.sh | 4 +++- 3 files changed, 17 insertions(+), 12 deletions(-) --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Thu Sep 19 13:14:50 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X8bbG6sS5z5WZk6 for ; Thu, 19 Sep 2024 13:14:50 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X8bbG59g4z44ZH for ; Thu, 19 Sep 2024 13:14:50 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726751690; a=rsa-sha256; cv=none; b=iIkW+TAODD3U0VHL7YEvGk/gT0mURiS4Y7r9/v+DnoXvweFJgvvQNXCfUCqd7bmCkiCCoX WRW1qdMWfLth4KpjDqMFyaNA0U+xIMx9o7Kv5cfz0zVbJMJHsZT0eDEZQpv4xzX/WlYTnv yO01ZA847WsMH69U+oS9SEdMlUma58oTgjsASn2eKXsJWL/dYCH3ZrgS9edVRr7OZvYY84 MvLuNZtzI2FbIUaCcQCK+pPmnIRCTQugokjRyh+NJBtY03Pfj2wuGBbJT+dlhX2g94IMHz AC+v0gEIUNy5zTZCFA/Z2LB3OuMVhv+3hyn0/Z8ur3W1fiVWvGns7zXo0pOVMw== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726751690; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=NjZXbTqlMnkczJSRwk9ACN1D9uNqiWeeaCdAcYwUURg=; b=HxWo3n1vXHpclwMzy0To10oE6ZNBvvNhDRkLQseTCE9YLnzNyVSagzkgrniB+jBteZaG31 YCiOGX/tzJafBTmhPY3+/+ydAISRIN+xgv9yLIgmttn2TtwXk9ivFMTugB4RksKi9iQTKW 0mHxd1nGLjZF5Z+PfCXjup5QMyhFnePg70jA6cpXUhWivaU41L6wThh01y18g+uxN68pWL EwMaiN4Mc0B9gaMxd25MbPEYc84AYf5xD+ahfikBgPxQG/wri+rtzAcU+rn0Ht9zAO/UK2 jPR4BBkHX81HGzwt4TIOSupYVymQ5UL6X4de5KtDXf9KWCLo4L30ragQoJBbrw== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X8bbG4nblz16rv for ; Thu, 19 Sep 2024 13:14:50 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48JDEo7D004317 for ; Thu, 19 Sep 2024 13:14:50 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48JDEoCI004316 for net@FreeBSD.org; Thu, 19 Sep 2024 13:14:50 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 280648] Traffic leak between fibs Date: Thu, 19 Sep 2024 13:14:50 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-STABLE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: zarychtam@plan-b.pwste.edu.pl X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: cc Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D280648 Marek Zarychta changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |zarychtam@plan-b.pwste.edu. | |pl --- Comment #16 from Marek Zarychta --- (In reply to Egor from comment #15) >I set fib 1 for all frr processes in rc.conf.d Thats why i expected that i= t took only >fib 1 routes from the kernel but it didn't. When FRR runs under FIB 1 it means that all the connections with peers will= be done from that FIB. Nothing more. If you want to import routes from non-standard fib (FIB =E2=89=A0 0) then use option "ip import table" instea= d, which should also work when you will run FRR under default FIB. I don't know if our FRR port supports multiple routing tables correctly, but definitely net/bird2 copes fine with them. That's probably not a bug though, but I have not investigated this PR extensively. --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Thu Sep 19 14:00:09 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X8cbZ0V2wz5WgcR for ; Thu, 19 Sep 2024 14:00:10 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X8cbY2Wxvz4DkD for ; Thu, 19 Sep 2024 14:00:09 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726754409; a=rsa-sha256; cv=none; b=pTATvF+zITWTalYAxNVOrWagAW7G27DMMqzvF7SbjUgpyephXbnauh51N2u5cJ33qE+WOF c2x+58NFBvJhJ6shtjyoAPeg+zLK8FafSo151bHtJdA9g4l8nthNfV+Yqh2kUT7Bg/DinW D9WT0FO8vnFE2P9N6XYBKMaPkkHgKsVtwnu5Q3RiBzOk8vcmjy+DK2F5Xbd8zfK7C3ZPgx NTqjrz1G0etT1GG07GsS9NgjjAO70Ki4xNqMenAG7I488pi+lkY9rEV3FHF8vgs8Bwww1j ASgYGetYUlxRTmYjBXC59wA8J4o92pRasuKKL6MfXFBsFZ5/a/T/B239Qq54IA== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726754409; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=p9zDhGeiW334yYxZXwU2gP2tC83BYubEJ+tPjR9n2Fw=; b=OwLnuh4Ylld4jES68M6tgbYJw6o1UVXHj3BIJSc8LyFQqaZjBXDcjQ5gIkuPF/FAZQSpEe EgzK6721lJsD2JiBuYBRNMVRzXUTKxwnTOQa/RGriqbo033KcNfJ+Tcx758158Rkcsgbvr khydnt066D80fdaQHQfXn5NzVnQBVb+5OfXEisz+OAsTB8ms9RFV/kOkaPzIMHerUrPjte hhtxfE3t4yhRnUe3iwB3dhSLaCIJPnAl7Ha2VbAvq+KMklPl5wfcY3nrYX2djm5vkJA1lk QzAtO2ujDpDmUf9D1G3rairpI7YxRw2z3m3EQAEydWBvpQnGXtBejlsgGLCt3w== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X8cbY27dDz17fg for ; Thu, 19 Sep 2024 14:00:09 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48JE09KR078771 for ; Thu, 19 Sep 2024 14:00:09 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48JE09gE078770 for net@FreeBSD.org; Thu, 19 Sep 2024 14:00:09 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 280648] Traffic leak between fibs Date: Thu, 19 Sep 2024 14:00:09 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-STABLE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: banezmesm@gmail.com X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D280648 --- Comment #17 from Egor --- I tried to use bird but it didn't up bgp sessions in fib 1. bird_enable=3D"YES" bird_fib=3D"1" log "/var/log/bird.log" all; log stderr all; router id 10.64.244.139; protocol device { } protocol kernel { # Primary routing table learn; # Learn alien routes from the kernel persist; # Do not remove routes on bird shutdown scan time 10; # Scan kernel routing table every 10 seconds kernel table 1; ipv4 { import all; export all; }; } protocol bfd { interface "mce*" { interval 100 ms; min rx interval 100 ms; multiplier 5; }; } filter vxlan_fabric { if (net ~ [ 172.16.0.0/15{15,16}]) then { accept; } } protocol bgp { local as 4230040015; neighbor 192.168.255.0 as 4230041240; hold 180; keepalive 60; bfd on; ipv4 { export filter vxlan_fabric; import all; next hop self; }; } bgp1 BGP --- start 13:55:50.007 Connect Socket: Connection refused BGP state: Connect Neighbor address: 192.168.255.0 Neighbor AS: 4230041240 Local AS: 4230040015 Last error: Socket: Connection refused Channel ipv4 State: DOWN Table: master4 Preference: 100 Input filter: ACCEPT Output filter: vxlan_fabric --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Thu Sep 19 17:43:00 2024 X-Original-To: freebsd-net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X8jYB2tDQz5WhHH for ; Thu, 19 Sep 2024 17:43:26 +0000 (UTC) (envelope-from cross+freebsd@relay.distal.com) Received: from relay.wiredblade.com (relay.wiredblade.com [168.235.105.136]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4X8jY82tpFz45K1 for ; Thu, 19 Sep 2024 17:43:24 +0000 (UTC) (envelope-from cross+freebsd@relay.distal.com) Authentication-Results: mx1.freebsd.org; dkim=pass header.d=relay.distal.com header.s=mail header.b=rN02UwfB; dmarc=none; spf=pass (mx1.freebsd.org: domain of cross+freebsd@relay.distal.com designates 168.235.105.136 as permitted sender) smtp.mailfrom=cross+freebsd@relay.distal.com dkim-signature: v=1; a=rsa-sha256; d=relay.distal.com; s=mail; c=relaxed/relaxed; q=dns/txt; h=From:Subject:Date:Message-ID:To:CC:MIME-Version:Content-Type:Content-Transfer-Encoding:In-Reply-To:References; bh=FnQqKiSXbBfRTUkdHu9gsEt33KZ/Z8ZsRBtMJrQTnxo=; b=rN02UwfBT/bv/cjoihg1Z/69p4npegyxx3Zzl4kWeB9vovK6XLNNP8UMleXL6+6sqtKXsBhhTkiwlFU+I8damw3YagRrfYJCpQGBmEVOWHex4SOP3DhRnHdPpqFQ3b4h97XZJ4x+WD+GYq3xSREai1YYlGtFudIu40uW9RIo+ocevejTM23ee2LT5Iwd0go/EzWs99a9LwHlwHh6Zl5W/BXNGmFtzHoz614NrPYtpPc5nOYaLGDZIXlxH4 0BlXX6gK8XqrywMAh3StUPQ+wouU7hxpo2FvGGglhDTEepxqpWgMMRCBsVF45z5QMcTQqYm9iE5RQJpSfSE0HVrvRSWQ== Received: from mail.distal.com (pool-108-51-233-124.washdc.fios.verizon.net [108.51.233.124]) by relay.wiredblade.com with ESMTPSA (version=TLSv1.2 cipher=ECDHE-RSA-CHACHA20-POLY1305 bits=256) ; Thu, 19 Sep 2024 17:43:15 +0000 Received: from smtpclient.apple ( [173.38.117.75]) by tristain.distal.com (OpenSMTPD) with ESMTPSA id b33448c0 (TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256:NO); Thu, 19 Sep 2024 13:43:13 -0400 (EDT) Content-Type: text/plain; charset=utf-8 List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3776.700.51\)) Subject: Re: IPv6 neighbor flaps for ISP router are occurring frequently From: Chris Ross In-Reply-To: Date: Thu, 19 Sep 2024 13:43:00 -0400 Cc: Karl Denninger Content-Transfer-Encoding: quoted-printable Message-Id: <80124FC7-3C96-489C-803D-D0310FBA3D05@distal.com> References: <89F4F5A4-E3D9-4A43-84F6-908E3FA221A6@distal.com> <83BCC913-3375-4847-B720-5F06D76F6646@distal.com> <6CFC398B-BC5C-4CFC-8733-8D9732B121CA@distal.com> To: freebsd-net@freebsd.org X-Mailer: Apple Mail (2.3776.700.51) X-Spamd-Result: default: False [-3.20 / 15.00]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; NEURAL_HAM_LONG(-1.00)[-1.000]; NEURAL_HAM_SHORT(-1.00)[-1.000]; FORGED_SENDER(0.30)[cross@distal.com,cross@relay.distal.com]; R_DKIM_ALLOW(-0.20)[relay.distal.com:s=mail]; R_SPF_ALLOW(-0.20)[+a:relay.dynu.com]; MIME_GOOD(-0.10)[text/plain]; RCVD_TLS_ALL(0.00)[]; TAGGED_FROM(0.00)[freebsd]; DMARC_NA(0.00)[distal.com]; RCPT_COUNT_TWO(0.00)[2]; DKIM_TRACE(0.00)[relay.distal.com:+]; ARC_NA(0.00)[]; FROM_HAS_DN(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; MIME_TRACE(0.00)[0:+]; RCVD_COUNT_TWO(0.00)[2]; FROM_NEQ_ENVFROM(0.00)[cross@distal.com,cross@relay.distal.com]; ASN(0.00)[asn:3842, ipnet:168.235.104.0/22, country:US]; TO_MATCH_ENVRCPT_SOME(0.00)[]; MID_RHS_MATCH_FROM(0.00)[]; MLMMJ_DEST(0.00)[freebsd-net@freebsd.org]; APPLE_MAILER_COMMON(0.00)[]; TO_DN_SOME(0.00)[] X-Rspamd-Queue-Id: 4X8jY82tpFz45K1 X-Spamd-Bar: --- > On Sep 17, 2024, at 14:46, Chris Ross = wrote: >=20 > Hmm. Well, I updated my releng/14.1 tree and built a new kernel last = night. > I rebooted and after dhcpcd started up it was emitting the same = notices > for many hours. But, at about 07:30 this morning it stopped. It=E2=80=99= s now been > 7 hours since there have been any such notices from dhcpcd. And, I = can=E2=80=99t > think of what couple. hanged. dhcpcd has been running for 15+ hours, > complained for 8 hours, then stopped for 7. I=E2=80=99ll keep an eye = on it, but > suffice to say I=E2=80=99m perplexed. Alright. Coming back to this, I was clearly not paying attention. At = the time I stopped seeing the aforementioned problem, a new one started. = There seemed to be some sort of link flap on my local interfaces a couple of times the morning of Sept 17, and after that IPv6 wasn=E2=80=99t = working. The next-hop and router seems to be unreachable now. All =E2=80=9Croute monitor=E2=80=9D has been showing me of late is: 12:59:49.473 PID 0 delete neigh fe80::3e8a:b0ff:fe3e:4dce%vlan0 state = INCOMPLETE iface vlan0 12:59:53.522 PID 0 delete neigh fe80::3e8a:b0ff:fe3e:4dce%vlan0 state = INCOMPLETE iface vlan0 12:59:57.450 PID 0 delete neigh fe80::3e8a:b0ff:fe3e:4dce%vlan0 state = INCOMPLETE iface vlan0 I restarted dhcpcd, and it acquired an address reportedly from this same peer. Well, maybe I=E2=80=99m wrong and it just reestablished based on = the prior delegation: Sep 19 12:39:25 logrus dhcpcd[50864]: main: pidfile_lock: = /var/run/dhcpcd/pid: Permission denied Sep 19 12:39:29 logrus dhcpcd[52739]: dhcpcd-10.0.10 starting Sep 19 12:39:29 logrus dhcpcd[53589]: DUID = 00:01:00:01:2e:3e:5e:7f:a4:53:0e:79:b9:82 Sep 19 12:39:29 logrus dhcpcd[53589]: vlan0: IAID ff:00:00:06 Sep 19 12:39:29 logrus dhcpcd[53589]: vlan0: IA type 25 IAID 00:00:00:00 Sep 19 12:39:29 logrus dhcpcd[53589]: vlan0: rebinding prior DHCPv6 = lease Sep 19 12:39:29 logrus dhcpcd[53589]: intnet1: activating for delegation Sep 19 12:39:29 logrus dhcpcd[53589]: intnet1: IAID ff:00:00:05 Sep 19 12:39:29 logrus dhcpcd[53589]: intnet2: activating for delegation Sep 19 12:39:29 logrus dhcpcd[53589]: intnet2: IAID ff:00:00:03 Sep 19 12:39:29 logrus dhcpcd[53589]: intnet3: activating for delegation But, in either case, I still have a default inet6 route, but it isn=E2=80=99= t working because the next-hop seems to be unreachable. :-/ As much of an IPv6 fan-boy as I am, even I am thinking this is just a PITA. ;-) - Chris= From nobody Fri Sep 20 09:46:48 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X96wn6QG7z5XWMs for ; Fri, 20 Sep 2024 09:46:49 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X96wn5LYDz4L6P for ; Fri, 20 Sep 2024 09:46:49 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726825609; a=rsa-sha256; cv=none; b=jYBPTk9VIvEVLH/d2EppOz39KeonX+UEhleSQDxz/fcoGP6kTSA2DYHEb8asQ4yzj7KXxA RRMxwu+PT2f2UYntUNU+wtIj9TtC26N/SSHfo4ipA2DHJjRhu67z2sMbye1BxPtl03OddD j51271dWgyL2ds0ZW3WYeq+dp5nK/D0Ji+2CW3f+/TeZwRrinnqZ4feEMFPI9jUXjO7dyE e60zeMd7OnaVY/lN3WJ/ANj7IGcfLyOWRZ/6HRSm9dMrB+BYiaxmllZBAt7zR6bPbAyDn/ RTrXYaSY4FGjR3BtwMZHRcQzYNL1QQCk4IQ1eidfnsjIzTNSYatrEQv1ku4+Rg== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726825609; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=8oKVPMcPkZFz05NCPWi9f5f97S6sDiBZsIhbvbIhR8c=; b=HelwQcwHpk/zmZc+mjIBMQpR9/8Mxz2cst4XH44fF8Bwn5srQtrng+IxgLdbFgsDjgD/T7 Q+/xc0zcYwvX2ZgXMb49orzODfgooWJ4NRVgUQ7AE7kow7iprgBsJrYTeV+Pka5ugmL7Bc 9/zhPyeaSGaP0BxTVw9X91Bu+qUmy/pEvPJZWDZuCM/5fpIdp4dEfOXblgF4o0QomrOayk wqznWVIJ7VzB2oKnVk+NxcImLZcg0m+1gyXL/ucJ1i7xSarvZg45WBWDX9of/QzVSYzJBa qGIaAmJL2Nlo+tOO8cYLjLcI+Zpt/rfPXd3QJqelLQ8ObT+Z9eANqKdlb9w4fg== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X96wn4z97zl7D for ; Fri, 20 Sep 2024 09:46:49 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48K9knHp037417 for ; Fri, 20 Sep 2024 09:46:49 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48K9knaW037416 for net@FreeBSD.org; Fri, 20 Sep 2024 09:46:49 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 280648] Traffic leak between fibs Date: Fri, 20 Sep 2024 09:46:48 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-STABLE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: banezmesm@gmail.com X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: attachments.created Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D280648 --- Comment #18 from Egor --- Created attachment 253684 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D253684&action= =3Dedit bird rd.d bird rc.d script that allowes to run int in non-standart fib --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Fri Sep 20 09:47:47 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X96xv6XF9z5XWZ3 for ; Fri, 20 Sep 2024 09:47:47 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X96xv5Ms1z4Ldp for ; Fri, 20 Sep 2024 09:47:47 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726825667; a=rsa-sha256; cv=none; b=ZUQtYeyIihQwojlIE4cPBbOnMfs2hbwo5fayaWQZrz0/estDTLQj3vJ9b4C6KisaVnO0mW 8LmQ6v4fM7vd0XnqfoPixrSt0Wxp42xcrRf3qtrlvd/ct8mFySFHNUwnA0Fo7AroYOPyFI 4ADr7RL/TkbTXYqZMiQnVkuswcQQ3uXLFOcokNTOPsfKR37mMVsOnNzREl7WBY8VkdQmf7 ZXARxV9w2rJ18HV/tOuxAgktigiuf2OejW8CxhC0VQ1sJQfgc3s/guCnMPIK8TJC8YNpjN ulE9gOmMKwytNVBM2A/C24/PfjTtnNPXCWMYwHcOpRSsD8HwOGab3zZhvh5QlA== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726825667; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=1hVkawDNjN3hD0SP2buwdCwPGD5dxAsloLdlyVjz5UU=; b=TTvYHHyKMIvGPhu4R0sW1AcGIbmU5Vvrf5OHJDGGf6YhH9dgAOFwmbY0WVwnCkzVw/6WKl rwQgzjaKBjqYMm5245Y8xpOEeeVT+7V1yj7t3sq4mFegu/Shq4ArbLxY38zO0Ac1Vfr3D7 QWX1Cot371uJBsCdc6Wzcxcu5xRGZtmu6NgHaeNfCxQsy++TTQ+Q4skLogCGp9rSibHuHn UyLnM3XL0ejqvH3+x11mkkEwAHtwE6cUknSiAh1sH7KefhyAnI+fQMk7riQn8zEBNayvTF EmSg22N22pOXw/K9kciPI6XpFGOKFuDdygnFT7hI8EhnmI6iFwwuu5INQwtJhA== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X96xv4sMJzkqg for ; Fri, 20 Sep 2024 09:47:47 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48K9lltI038133 for ; Fri, 20 Sep 2024 09:47:47 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48K9llom038132 for net@FreeBSD.org; Fri, 20 Sep 2024 09:47:47 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 280648] Traffic leak between fibs Date: Fri, 20 Sep 2024 09:47:47 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-STABLE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: banezmesm@gmail.com X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: attachments.created Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D280648 --- Comment #19 from Egor --- Created attachment 253685 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D253685&action= =3Dedit bird.conf config for bird daemon --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Fri Sep 20 10:02:53 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X97HL0TRFz5Vb8C for ; Fri, 20 Sep 2024 10:02:54 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X97HK6PsRz4RqF for ; Fri, 20 Sep 2024 10:02:53 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726826573; a=rsa-sha256; cv=none; b=snpJ6ymkv8uzyfBlbI+Jgl6TI2o06Bu44G9slJf28VYebWAOguIAWhNTvMA+kax9vIoTI/ hruShRik5kL6huOm5e9+0eqZJl+CO/fJ3F1pxkcHJfvLfxkNxEQDidotD7uDH+90I2xuXC +kQQ15yZVcwZrhYnxK5dD5YJ0s33Z5LuEAeSNKpqtzCEsb92GzEU5Rw523ZrwZJmPFIQD3 F7avJ0USDLA5xBYNDJWMqeH+RaiH18yjuo7E8ph1vYsjX2e6P94DfL3zzyRY3lHOlWHe9B nQFYCiHJlJbgxnWRig5nYzCcT+WBg73wmkZBMgkLbbYnP+cJyCI0L7O/hCZezQ== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726826573; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=ENZrBc1TaY5XezTS0n0zQP8I/giikQzF6WcvNAE6sUk=; b=IKQCOh5AcuBMcx3k5+AGb6AzMtKgckyAGCYNLR4/OsCcMNA+hR8tVohscLP5dVLQ2P5ScZ cfNpfyP8uwjmdfFb7TBTMwypNihWJ7IgyV671bMXlnNLcfw4mIq9Lu+OYQWHho2WiWXcN4 kvNe6JBYepnRBAWLdb1H4Q3on/8F5VjJgFMsANSq2wDHIbZbMqih+38OE/n52Wt+Gf5lPy /xN7Aid+0WsReyY0ViuEHD9+nTZ0aQuNTQDO/idf+8ywsZGfyJdoWQhwDU0CfjYLakdS6a dAzKDfT49Yeuog/FTEQMABgaQbMxTWQ4r8WpssweLql/k18siXEskcEs5Q6Ttw== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X97HK5jt7zlYS for ; Fri, 20 Sep 2024 10:02:53 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48KA2rY4068261 for ; Fri, 20 Sep 2024 10:02:53 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48KA2rI7068260 for net@FreeBSD.org; Fri, 20 Sep 2024 10:02:53 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 280648] Traffic leak between fibs Date: Fri, 20 Sep 2024 10:02:53 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-STABLE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: banezmesm@gmail.com X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D280648 --- Comment #20 from Egor --- I managed to run bird in non standart fib and at this time there wasn't lea= ked routes in routing table but it didn't change traffic behavior. I still had SYN-ACK drops in packet filter and i didn't see SYN packets on outgoing interface. 09:20:24.123696 rule 5/0(match): pass in on mce0.1280: 172.16.179.42.51806 > 172.16.188.194.22: Flags [S], seq 2399537834, win 64240, options [mss 1460,[|tcp]> 09:20:24.123742 rule 1/0(match): block in on mce0.3101: 172.16.188.194.22 > 172.16.179.42.51806: Flags [S.], seq 1440191918, ack 2399537835, win 65535, options [mss 1460,[|tcp]> 09:20:25.130047 rule 1/0(match): block in on mce0.3101: 172.16.188.194.22 > 172.16.179.42.51806: Flags [S.], seq 1440191918, ack 2399537835, win 65535, options [mss 1460,[|tcp]> 09:20:27.330596 rule 1/0(match): block in on mce0.3101: 172.16.188.194.22 > 172.16.179.42.51806: Flags [S.], seq 1440191918, ack 2399537835, win 65535, options [mss 1460,[|tcp]> 09:20:31.531341 rule 1/0(match): block in on mce0.3101: 172.16.188.194.22 > 172.16.179.42.51806: Flags [S.], seq 1440191918, ack 2399537835, win 65535, options [mss 1460,[|tcp]> test-fw01:~$ sudo birdc "show route table all" | grep 172.16.188 -A 3 172.16.188.192/26 unicast [bgp18 09:19:04.118] * (100) [AS4231000004i] via 192.168.255.114 on mce1.3101 unicast [bgp17 09:19:04.225] (100) [AS4231000004i] via 192.168.255.112 on mce0.3101 test-fw01:~$ netstat -nrF 1 | grep 172.16.188.192 172.16.188.192/26 192.168.255.114 UG1 mce1.310 test-fw01:~$ sudo tcpdump -nli mce0.3101 host 172.16.179.42 tcpdump: verbose output suppressed, use -v or -vv for full protocol decode listening on mce0.3101, link-type EN10MB (Ethernet), capture size 262144 by= tes 09:59:40.753971 IP 172.16.188.194.22 > 172.16.179.42.51806: Flags [S.], seq 3265751352, ack 2606051427, win 65535, options [mss 1460,nop,wscale 9,sackO= K,TS val 738593035 ecr 3656452229], length 0 09:59:41.748887 IP 172.16.188.194.22 > 172.16.179.42.51806: Flags [S.], seq 3265751352, ack 2606051427, win 65535, options [mss 1460,nop,wscale 9,sackO= K,TS val 738594032 ecr 3656452229], length 0 09:59:41.755927 IP 172.16.188.194.22 > 172.16.179.42.51806: Flags [S.], seq 3265751352, ack 2606051427, win 65535, options [mss 1460,nop,wscale 9,sackO= K,TS val 738594032 ecr 3656453231], length 0 09:59:42.779932 IP 172.16.188.194.22 > 172.16.179.42.51806: Flags [S.], seq 3265751352, ack 2606051427, win 65535, options [mss 1460,nop,wscale 9,sackO= K,TS val 738595063 ecr 3656454255], length 0 09:59:43.788132 IP 172.16.188.194.22 > 172.16.179.42.51806: Flags [S.], seq 3265751352, ack 2606051427, win 65535, options [mss 1460,nop,wscale 9,sackO= K,TS val 738596071 ecr 3656454255], length 0 09:59:43.803928 IP 172.16.188.194.22 > 172.16.179.42.51806: Flags [S.], seq 3265751352, ack 2606051427, win 65535, options [mss 1460,nop,wscale 9,sackO= K,TS val 738596083 ecr --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Fri Sep 20 10:15:52 2024 X-Original-To: freebsd-net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X97ZL1mRPz5VdLg for ; Fri, 20 Sep 2024 10:15:54 +0000 (UTC) (envelope-from DutchDaemon@FreeBSD.org) Received: from smtp.freebsd.org (smtp.freebsd.org [IPv6:2610:1c1:1:606c::24b:4]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "smtp.freebsd.org", Issuer "R10" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X97ZK6s1Rz4VtQ for ; Fri, 20 Sep 2024 10:15:53 +0000 (UTC) (envelope-from DutchDaemon@FreeBSD.org) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726827354; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: in-reply-to:in-reply-to:references:references:autocrypt:autocrypt; bh=299kj6ill8KrYDeOKhKZGgs3JW/sTjmnEDXecBRQ7eo=; b=K5hSQ6d3U/+YZ9cEdwX1qqgwi7zf1fn81ufCHlgme+Zi8qGoazZZ+k2jwxRNudRtDpAWpA GKDtxClsWQtfQJmwdx3HvDyP7YRJhWuzTRVJBRoWhP1yJBtZRija63HEVlaiVtLX741AhB GpdU/PVWR9h/SeALx1SW1/VffeeV5KCgQkposAqpzwJ6Wy91WnNtgWisK+rvMm/x7GkgSG 8TfYl/eO72OYqGodevuV6YpZD5hig5I2z/vpHz1fs1HX7VrhVhotYQcAVbWn+l7Yr1uWS3 IwuSrn//BGDRfqEAvk0Zxf4g31NY6cr1pGBxn2mzd8G+Q56DqgALBI+N6eFxtg== ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726827354; a=rsa-sha256; cv=none; b=H3aE1QRGFk/UScKR5abPOn7er2t8gYNsNv+YO2/YdW6/b2CweEiD2Ct1LisIEMm5fN9A71 agHM2hGZVYLRB+Vba5XVAROMg4Of58KsXWF+0trKvuyvHOa35JtHvLMYePIlvE0IBDippL BgO119DwsjNUwooCGD4Jdh2gDuNKn3s3rXeLouF66SltL6Aw9AAzHucK/QgRRYdpmj3vTg DdnMLIbYaKGhuBvRrfx4kKKtr/aCOgoTZnECHzbQtl853W2JXyaoXIINAtPPQ1aO6d6104 V6+vbXoh+8NtwaCVhBAdtzxQYbvcawszWvd+rQ9sA+gbOtt2E/DDn4hVzY8xbA== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726827354; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: in-reply-to:in-reply-to:references:references:autocrypt:autocrypt; bh=299kj6ill8KrYDeOKhKZGgs3JW/sTjmnEDXecBRQ7eo=; b=D5jQhmsEJJuiqYT/9E0uDlxJt/WNH45iZboSLSPiWeuXv+ocZL5LI3htfK0uLjdnEp9Gyr in3yf5LF5B10veK61MbpW9tk7MJDq0BAlomsKwOyduDqWGKCtragjbSIAwuJL/M5VRltvh 4uUXtM5EaR+16CYVPtTKzBVJiBhCCdhXOx6VerFWXvlaXo9YNtBT+097/mpuUzEZY1uw/9 SbwDs+LBggYDNh7IxAntEfEk3KWbSFufTPjOzKLt/owOoz20Z7oiuUmdPfEUQesFGthD14 qHeWX77kra98HQBSwqgc0WrDwV30K/us4uheoG7BQV3iEJwxjQv1u/JOktFaLA== Received: from [192.168.178.212] (unknown [85.148.89.7]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) (Authenticated sender: dutchdaemon/mail) by smtp.freebsd.org (Postfix) with ESMTPSA id 4X97ZK5Dzzz1RPn for ; Fri, 20 Sep 2024 10:15:53 +0000 (UTC) (envelope-from DutchDaemon@FreeBSD.org) Message-ID: <380a4641-9300-4803-bd38-819beb77ed21@FreeBSD.org> Date: Fri, 20 Sep 2024 12:15:52 +0200 List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 User-Agent: Betterbird (Windows) Subject: Re: IPv6 neighbor flaps for ISP router are occurring frequently To: freebsd-net@freebsd.org References: <89F4F5A4-E3D9-4A43-84F6-908E3FA221A6@distal.com> <83BCC913-3375-4847-B720-5F06D76F6646@distal.com> <6CFC398B-BC5C-4CFC-8733-8D9732B121CA@distal.com> <80124FC7-3C96-489C-803D-D0310FBA3D05@distal.com> Content-Language: en-US From: DutchDaemon - FreeBSD Forums Administrator Autocrypt: addr=DutchDaemon@FreeBSD.org; keydata= xjMEZa5xHxYJKwYBBAHaRw8BAQdAfWZ69PhvjxSC5/RYQaU5TFyz+SENz3Oi0fkdJIISjGHN RER1dGNoRGFlbW9uIC0gRnJlZUJTRCBGb3J1bXMgQWRtaW5pc3RyYXRvciA8RHV0Y2hEYWVt b25ARnJlZUJTRC5vcmc+wokEExYIADEWIQSDIpfQllw48uFsWk/r4FMJZEPckQUCZa5xHwIb AwQLCQgHBRUICQoLBRYCAwEAAAoJEOvgUwlkQ9yRf7EBAMinyZF8zVzNuHpeKdGPHVZcNqBj 1H192nmduRSxejFnAP490W4kl7pwtdpMVrX7iJqkWanO2L0kWlig7csNIi5nAs44BGWucR8S CisGAQQBl1UBBQEBB0Ajr12wp47yOqDF5v8c+VC9pklim0qa1FrqxTMaA1kUJAMBCAfCeAQY FggAIBYhBIMil9CWXDjy4WxaT+vgUwlkQ9yRBQJlrnEfAhsMAAoJEOvgUwlkQ9yRsg0A/1UY CnRZEZOesZgnpCTuERpnJR5chIY9Y1bxUSxTerF7AP9x+CE28IZ7xFZfwHiss0VaDvQhNG08 NzNJHBSshFjtBQ== Organization: The FreeBSD Forums In-Reply-To: <80124FC7-3C96-489C-803D-D0310FBA3D05@distal.com> Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="------------jMIOUNCI1ujl0Or9x3WtwTId" This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --------------jMIOUNCI1ujl0Or9x3WtwTId Content-Type: multipart/mixed; boundary="------------EF8EhzaI0M5dfD0BCoAsNM7J"; protected-headers="v1" From: DutchDaemon - FreeBSD Forums Administrator To: freebsd-net@freebsd.org Message-ID: <380a4641-9300-4803-bd38-819beb77ed21@FreeBSD.org> Subject: Re: IPv6 neighbor flaps for ISP router are occurring frequently References: <89F4F5A4-E3D9-4A43-84F6-908E3FA221A6@distal.com> <83BCC913-3375-4847-B720-5F06D76F6646@distal.com> <6CFC398B-BC5C-4CFC-8733-8D9732B121CA@distal.com> <80124FC7-3C96-489C-803D-D0310FBA3D05@distal.com> In-Reply-To: <80124FC7-3C96-489C-803D-D0310FBA3D05@distal.com> --------------EF8EhzaI0M5dfD0BCoAsNM7J Content-Type: multipart/alternative; boundary="------------rHFVdi1ebvQZ5Buwb1p3hxna" --------------rHFVdi1ebvQZ5Buwb1p3hxna Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: base64 T24gMTktOS0yMDI0IDE5OjQzLCBDaHJpcyBSb3NzIHdyb3RlOg0KPg0KPj4gT24gU2VwIDE3 LCAyMDI0LCBhdCAxNDo0NiwgQ2hyaXMgUm9zczxjcm9zcytmcmVlYnNkQGRpc3RhbC5jb20+ ICB3cm90ZToNCj4+DQo+PiBIbW0uICBXZWxsLCBJIHVwZGF0ZWQgbXkgcmVsZW5nLzE0LjEg dHJlZSBhbmQgYnVpbHQgYSBuZXcga2VybmVsIGxhc3QgbmlnaHQuDQo+PiBJIHJlYm9vdGVk IGFuZCBhZnRlciBkaGNwY2Qgc3RhcnRlZCB1cCBpdCB3YXMgZW1pdHRpbmcgdGhlIHNhbWUg bm90aWNlcw0KPj4gZm9yIG1hbnkgaG91cnMuICBCdXQsIGF0IGFib3V0IDA3OjMwIHRoaXMg bW9ybmluZyBpdCBzdG9wcGVkLiAgSXTigJlzIG5vdyBiZWVuDQo+PiA3IGhvdXJzIHNpbmNl IHRoZXJlIGhhdmUgYmVlbiBhbnkgc3VjaCBub3RpY2VzIGZyb20gZGhjcGNkLiAgQW5kLCBJ IGNhbuKAmXQNCj4+IHRoaW5rIG9mIHdoYXQgY291cGxlLiBoYW5nZWQuIGRoY3BjZCBoYXMg YmVlbiBydW5uaW5nIGZvciAxNSsgaG91cnMsDQo+PiBjb21wbGFpbmVkIGZvciA4IGhvdXJz LCB0aGVuIHN0b3BwZWQgZm9yIDcuICBJ4oCZbGwga2VlcCBhbiBleWUgb24gaXQsIGJ1dA0K Pj4gc3VmZmljZSB0byBzYXkgSeKAmW0gcGVycGxleGVkLg0KPiBBbHJpZ2h0LiAgQ29taW5n IGJhY2sgdG8gdGhpcywgSSB3YXMgY2xlYXJseSBub3QgcGF5aW5nIGF0dGVudGlvbi4gIEF0 IHRoZQ0KPiB0aW1lIEkgc3RvcHBlZCBzZWVpbmcgdGhlIGFmb3JlbWVudGlvbmVkIHByb2Js ZW0sIGEgbmV3IG9uZSBzdGFydGVkLiAgVGhlcmUNCj4gc2VlbWVkIHRvIGJlIHNvbWUgc29y dCBvZiBsaW5rIGZsYXAgb24gbXkgbG9jYWwgaW50ZXJmYWNlcyBhIGNvdXBsZQ0KPiBvZiB0 aW1lcyB0aGUgbW9ybmluZyBvZiBTZXB0IDE3LCBhbmQgYWZ0ZXIgdGhhdCBJUHY2IHdhc27i gJl0IHdvcmtpbmcuDQo+IFRoZSBuZXh0LWhvcCBhbmQgcm91dGVyIHNlZW1zIHRvIGJlIHVu cmVhY2hhYmxlIG5vdy4NCkFyZSB5b3UgdXNpbmcgcGY/IEZyZWVCU0QtRU4tMjQ6MTYucGYN Cg== --------------rHFVdi1ebvQZ5Buwb1p3hxna Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: quoted-printable
On 19-9-2024 19:43, Chris Ross wrote:<= br>

On Sep 17, 2024, at 14:46,=
 Chris Ross <cross+freebsd@distal.com> wrote:

Hmm.  Well, I updated my releng/14.1 tree and built a new kernel last nig=
ht.
I rebooted and after dhcpcd started up it was emitting the same notices
for many hours.  But, at about 07:30 this morning it stopped.  It=E2=80=99=
s now been
7 hours since there have been any such notices from dhcpcd.  And, I can=E2=
=80=99t
think of what couple. hanged. dhcpcd has been running for 15+ hours,
complained for 8 hours, then stopped for 7.  I=E2=80=99ll keep an eye on =
it, but
suffice to say I=E2=80=99m perplexed.
Alright.  Coming back to this, I was clearly not paying attention.  At th=
e
time I stopped seeing the aforementioned problem, a new one started.  The=
re
seemed to be some sort of link flap on my local interfaces a couple
of times the morning of Sept 17, and after that IPv6 wasn=E2=80=99t worki=
ng.
The next-hop and router seems to be unreachable now.
Are you using pf? FreeBSD-EN-24:16.pf --------------rHFVdi1ebvQZ5Buwb1p3hxna-- --------------EF8EhzaI0M5dfD0BCoAsNM7J-- --------------jMIOUNCI1ujl0Or9x3WtwTId Content-Type: application/pgp-signature; name="OpenPGP_signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="OpenPGP_signature.asc" -----BEGIN PGP SIGNATURE----- wnsEABYIACMWIQSDIpfQllw48uFsWk/r4FMJZEPckQUCZu1LWAUDAAAAAAAKCRDr4FMJZEPckW1X AQDxk33wWe6yvgQcKxelVUJVoQthbLjxK7lc9UbfMHRZHAEAy2KPCbZNIiMl2imgxaP6cmYAnzjd UtaCL0ukglWNlAI= =aZM6 -----END PGP SIGNATURE----- --------------jMIOUNCI1ujl0Or9x3WtwTId-- From nobody Fri Sep 20 10:53:53 2024 X-Original-To: freebsd-net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X98QW5nyxz5VklF for ; Fri, 20 Sep 2024 10:54:11 +0000 (UTC) (envelope-from cross+freebsd@relay.distal.com) Received: from relay.wiredblade.com (relay.wiredblade.com [168.235.105.136]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4X98QW1JzGz4dbw; Fri, 20 Sep 2024 10:54:10 +0000 (UTC) (envelope-from cross+freebsd@relay.distal.com) Authentication-Results: mx1.freebsd.org; none dkim-signature: v=1; a=rsa-sha256; d=relay.distal.com; s=mail; c=relaxed/relaxed; q=dns/txt; h=From:Subject:Date:Message-ID:To:CC:MIME-Version:Content-Type:Content-Transfer-Encoding:In-Reply-To:References; bh=btDPz5JijuzvBwvd+MMI/TwJ6+lb5cXtxKGCNnhU6zE=; b=MJ7TxcLP6gdb04dnSDobaxd0q8JAFHDVvvOey3kXMni92A2QxavaIOvnu0cYXzXDpPYIrWDX3UW3QuGVdho7qFiwTeTpMkFcqd89fKkvSd5iXv8QjA3/i6VDamY7zaKILI6DAy5VCGRAHIERgqfpkH1KmG5G+gce5i6yPXzTD9ufRzH5iLjbmksEo2LvPh1MjQmGsX1MkvpXPa+4qjxPG6gJVUxq4KxIVb2dRVLzN6P55suqhLJLCDaeWD /nOcdwf4dq43c02nQCAybh5XZJerKGijURJnT4TkyIacK/phNklLzS1WuGs8SzS98lk3UVRK9joREfz4D2wxgN9kKohA== Received: from mail.distal.com (pool-108-51-233-124.washdc.fios.verizon.net [108.51.233.124]) by relay.wiredblade.com with ESMTPSA (version=TLSv1.2 cipher=ECDHE-RSA-CHACHA20-POLY1305 bits=256) ; Fri, 20 Sep 2024 10:54:09 +0000 Received: from smtpclient.apple ( [192.168.186.131]) by tristain.distal.com (OpenSMTPD) with ESMTPSA id cc2b6ba7 (TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256:NO); Fri, 20 Sep 2024 06:54:05 -0400 (EDT) Content-Type: text/plain; charset=utf-8 List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3776.700.51.11.1\)) Subject: Re: IPv6 neighbor flaps for ISP router are occurring frequently From: Chris Ross In-Reply-To: <380a4641-9300-4803-bd38-819beb77ed21@FreeBSD.org> Date: Fri, 20 Sep 2024 06:53:53 -0400 Cc: freebsd-net@freebsd.org Content-Transfer-Encoding: quoted-printable Message-Id: <5884C537-91F1-4044-93B8-9D2C31A08434@distal.com> References: <89F4F5A4-E3D9-4A43-84F6-908E3FA221A6@distal.com> <83BCC913-3375-4847-B720-5F06D76F6646@distal.com> <6CFC398B-BC5C-4CFC-8733-8D9732B121CA@distal.com> <80124FC7-3C96-489C-803D-D0310FBA3D05@distal.com> <380a4641-9300-4803-bd38-819beb77ed21@FreeBSD.org> To: DutchDaemon - FreeBSD Forums Administrator X-Mailer: Apple Mail (2.3776.700.51.11.1) X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; TAGGED_FROM(0.00)[freebsd]; ASN(0.00)[asn:3842, ipnet:168.235.104.0/22, country:US] X-Rspamd-Queue-Id: 4X98QW1JzGz4dbw X-Spamd-Bar: ---- X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated > On Sep 20, 2024, at 06:15, DutchDaemon - FreeBSD Forums Administrator = wrote: >=20 > On 19-9-2024 19:43, Chris Ross wrote: >> Alright. Coming back to this, I was clearly not paying attention. At = the >> time I stopped seeing the aforementioned problem, a new one started. = There >> seemed to be some sort of link flap on my local interfaces a couple >> of times the morning of Sept 17, and after that IPv6 wasn=E2=80=99t = working. >> The next-hop and router seems to be unreachable now. > Are you using pf? FreeBSD-EN-24:16.pf I am. Thank you. Looking at the patch for FreeBSD-EN-24:16.pf, I see I = do not have that change. Updating my releng/14.1 tree and rebuilding now. - Chris= From nobody Fri Sep 20 15:09:54 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X9G5c1V6tz5XVcm for ; Fri, 20 Sep 2024 15:09:56 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X9G5b5Qdgz4S20 for ; Fri, 20 Sep 2024 15:09:55 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726844995; a=rsa-sha256; cv=none; b=dkhUsIjxL1bBWneSyTAPlz9X3ejvKUUWz7XKUWb5gMYUYV5tfEfhvfXryobgF5m6gsCISA /wkmW/OKIQMUavO2+uvGhLt36Yv14UL8KlucgFebhaBxkDGGvo6zSOwv4pNGmL0xACoqTL m8w4TFWeGdAnaJXz3N5uP0Ji2OX4MJXLgz9CSXOfgxhFVRySSgL6AKhKatO3yZPFfoCJG9 v8R6VxkG3MXqaWDvi4oz1i+yLOho2iNTZGO2UNZle3Cq7YjG2BuxVeO+1jnkDaKLnG8RCK BqHEw2uHvApjy67Wf2Xn1y33f3qgPgdeHtuRfhKzmAPuFJ4MpQXld20vf4DBjA== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726844995; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=TEBELNflaN3E0usD4rLlQlCkAVVnHX1ofPoDqwsUZFs=; b=atfod5hWrXs0xcvW9jTHZ+5lhndEwWE+P8xka2X295wMb5pCRUBUs36rB39BJnFc91da00 fg4bJ44sHbS+a7ZJYj5vcHz2xLUUi2+QO3M0fcIxNxdXxS/j11iaN+lEbEgCTBNrj5Vmqs HVJxacXj2Yrp9JV9Dd98+9LXU891XoGvntAfe1TwnSX7MDmnSaa2AAfkQ7dS5y2Jg+sIhH Jvy4Tm6lWnOl7qSBbQ8W3N/gBshL/JCs0e1KaY4IrKxeV72Et5UafdDR7n4DkZAJ3nOYDC xqXt2xcOUmX3erFyKP+q5gpBTEbl1MjiWo/XhwKCCKgaPKCkkMDZBPkzBDWDYA== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X9G5b2H6bzvM4 for ; Fri, 20 Sep 2024 15:09:55 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48KF9tK0071882 for ; Fri, 20 Sep 2024 15:09:55 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48KF9t8I071881 for net@FreeBSD.org; Fri, 20 Sep 2024 15:09:55 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 281391] IPv6 multicast sent to wrong MAC address Date: Fri, 20 Sep 2024 15:09:54 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.0-RELEASE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: markj@FreeBSD.org X-Bugzilla-Status: Open X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: cc bug_status Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D281391 Mark Johnston changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |markj@FreeBSD.org Status|New |Open --- Comment #2 from Mark Johnston --- (In reply to antonfb from comment #1) Is it possible to share the test program? --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Fri Sep 20 15:21:10 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X9GLZ2Wy3z5XXJf for ; Fri, 20 Sep 2024 15:21:10 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X9GLZ0lglz4VKd for ; Fri, 20 Sep 2024 15:21:10 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726845670; a=rsa-sha256; cv=none; b=DWYjmC/i4YVY2RyuYgEU9f/gc43AlpMBIQuQ5asyAqqFuI56t80p9gPMNn+M/w7b5U0TH5 8b05apJ+tQXbxccVucUHgFYB6bvsVS6RE/7muIEQsy/WALlf+MhgeP0ku60pkw98gijkob E+dKFV1s+UHykhWK+ewSV/eS7er2PA3l0XKG6JRtdN/ATHg6M2Ku0zzASfo6v4uTYI2oJN hyyHvU4aXciVWzkyYB8HT4KBjJmWAcehm8+OZdAnup3lt0xpOwUBoQsteUfb1IBvgghZhe hi+2B12ML4LnUgBow6v9hpBhERFyyBE/oMWPk5WOhXOuKsfb1szZwJxm916tAg== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726845670; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=VMLePxRQK9gNXRm5t+9474f3nQZuiH2iJwPbThpyMAI=; b=uKbgou2/DD8tqphj2fnkZB00c81bKdaFhwfPOfrep/3jhyrvFZSIhIjRegBoMCv6FVEgWs CAcyXLFfKqdSoKduOog7/GPBS4Yhbgb/PQwnG4fYmBsZms/ROx3jqaTWzTQO0VHG0ZvrQ2 wBjVszv9NLjhrHITcWaIKAbQcKIiMPBqobxZtOPLty0u5C8gSg6m7tDr5hPi/uO5lOKWvW rhp1jxow7XxaW4E+5Zmp9P/IVr0fIGNj2Rvyo2r0Ch16zTwSjISZoTdHiBI/RUiMLrIH7H UzE17Nfi14c0GwkmLbVV9TJQd/EL1W0UbZ08hbLdGlSR7DyIK2qGtNjb6X0MHw== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X9GLZ0Mgjzv6P for ; Fri, 20 Sep 2024 15:21:10 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48KFL9PM094061 for ; Fri, 20 Sep 2024 15:21:09 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48KFL99C094060 for net@FreeBSD.org; Fri, 20 Sep 2024 15:21:09 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 281452] Realtek 'if_re' module crashes on module load Date: Fri, 20 Sep 2024 15:21:10 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-RELEASE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: markj@FreeBSD.org X-Bugzilla-Status: Open X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: bug_status cc Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D281452 Mark Johnston changed: What |Removed |Added ---------------------------------------------------------------------------- Status|New |Open CC| |markj@FreeBSD.org --- Comment #5 from Mark Johnston --- (In reply to Zhenlei Huang from comment #4) This is in 14.1, which already has the commit in question, and from the line number it looks like the ifm_status function pointer is NULL. (In reply to Mithun from comment #0) This is likely a problem with your build. We'd need to see exactly how you built if_re.ko in order to track it down, together with a copy of the kernel configuration file. --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Fri Sep 20 15:26:00 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X9GS92b89z5XYKk for ; Fri, 20 Sep 2024 15:26:01 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X9GS84H9vz4Wdg for ; Fri, 20 Sep 2024 15:26:00 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726845960; a=rsa-sha256; cv=none; b=uCvlR3jT3E6ZnTuNlGYKMVAPteEOe+TbRQH82MKy/8jUO65J8UEdwE/DmzMUcqOZg9ZTpa 1njAVcOwN/uIOqlmdYp1z5kbuNYnx6KaL9Jj79rzLNkv5MOScVbfDMXxgTqYSJF3K0fPbC 4vrCwKUdo0roS7pAYeH1vf2mDwLZEe3tWp6RtKEOHN3hMqqwipuy35Uq98tQhtbGH/WLGD zY/3otUhqwcZsiZRkOr8PlkM2eDYjV+vBw1IGjBHq9nE6gbsfROfJ6Y1zSewQLqgKc6TXR vJQvHi9mFdjkVpTRq4aEUYeDXiofoU2L7GzrivUT09vb/8GjTLpeVvZMw8Fyrg== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726845960; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=ZH+Cbj5OfWivioXmnDim26OPqvCKeF980yah8bUDxw0=; b=LLauAQa+egruFQhlAoXLcGnUq8TXZwUJzt1Z5cVKJQd8QVousTN6DOXz4SVb9alYmU9EcP ZD2Ihvuah8yJA9n7CHSCX79s+z697av9jzpdS/3pyeutMoE6I5nvYW85QO0JIad9ZZEJN9 CBKqmWT+Swe7FiHuF4DPPOe0Se2+qw08Ql8fBZCt6LRCNfZiCGydkzcB0VZzcR9VJzDcnn 4/jvtzxsedOVrzLHeSj485r63uh+ghWTM07C+TWpcjui8532DTtcD6EmO+TOltYfmGnLBC 9wI9M29OexndaqFVBpyATDfZb5I+b7ABBRR5VApBrMRegWqOwV4eEVjf6pq+Zw== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X9GS83vTQzv6k for ; Fri, 20 Sep 2024 15:26:00 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48KFQ0Df005075 for ; Fri, 20 Sep 2024 15:26:00 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48KFQ0aA005074 for net@FreeBSD.org; Fri, 20 Sep 2024 15:26:00 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 281560] gve (4) uma deadlock during high tcp throughput Date: Fri, 20 Sep 2024 15:26:00 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-RELEASE X-Bugzilla-Keywords: vendor X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: markj@FreeBSD.org X-Bugzilla-Status: Open X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: cc bug_status Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D281560 Mark Johnston changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |markj@FreeBSD.org Status|New |Open --- Comment #4 from Mark Johnston --- (In reply to Konstantin Belousov from comment #3) It'd also be useful to see output from "show page" and "show uma" from DDB.= =20 Perhaps there's a kernel memory leak somewhere? --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Fri Sep 20 15:41:42 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X9GpH35fSz5Xc7s for ; Fri, 20 Sep 2024 15:41:43 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X9GpH10Myz4ZgR for ; Fri, 20 Sep 2024 15:41:43 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726846903; a=rsa-sha256; cv=none; b=PgXrtYbBsYrdZSSnxxqYqdJDum+SIOTAI78MTySvbe5kQepjK4f1s4c0+XDmxB2eP7iLcc ENcdsqMhYiMcKHtINvt92S0wXffPF9duqxjsNtwO0TWc47O5z3lFdtynb8bh36jyJx9N4v Y0jsfC4SHx3kL6gNB7xpYz1trOhSL63Ui8THZxZUhw5YQByGEJ/0Pb/ioPqHkchlI8xvEh h/55CyX3Q/MKM10tQx1XXzKk5BuDPGiTtKjG7PUojxt1NLHj0iq30aO6X/b1ECguaIlUQb 1XOXhxgnG7Nvv0kRuXf8NwJrTiYPDRrm9g5JPUuhvmcmiiEaT1D2P/MDAOO79g== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726846903; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=dhCUUSeI526pLK3ZdxktzGNaIgtTjzNzONjtSNj6UUo=; b=MbyhuMcrGP0B6TMguAkL3e7PVaCM9DssWDrSUyw5ii7sox6IOPR0a7/TvUb8mF/OTrp4NE FRWX1DeHww1XiK6j9ML6rKtKbD+qjvZfcV9kQf2+sUL4mMdjULSNxfPfifv4WTw19py0m4 WI8mQXygvATLxTZF3lABqUQc3KQJSwmffK1PgthgpcQoxkg05e5XlXGNOZjTV5pza7iSm8 vqb3FlCycKsc//iB2pJOChK9hnRL2badh+O2KF3EaXUARxezPLEEpCiQV1yc9unNmfaY+y b/Yof/qzKTjvh94J0AvGzOUD9eutHgNMTnMCh/hUqKhMHrNcqwKTrj1fxPSTEw== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X9GpG6yKyzvtJ for ; Fri, 20 Sep 2024 15:41:42 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48KFfg6G031391 for ; Fri, 20 Sep 2024 15:41:42 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48KFfgOB031389 for net@FreeBSD.org; Fri, 20 Sep 2024 15:41:42 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 281560] gve (4) uma deadlock during high tcp throughput Date: Fri, 20 Sep 2024 15:41:42 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-RELEASE X-Bugzilla-Keywords: vendor X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: gallatin@FreeBSD.org X-Bugzilla-Status: Open X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: cc Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D281560 Andrew Gallatin changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |gallatin@FreeBSD.org --- Comment #5 from Andrew Gallatin --- (In reply to Mark Johnston from comment #4) To expand on this, the pattern of stack traces look very much like a degene= rate behavior in the UMA memory allocator when the per-cpu caches are empty, and= the allocation must go back to the zone, and you wind up taking a lock on every allocation. I'd check to see if there is a mbuf leak. The output of vmstat -z would be helpful here. --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Fri Sep 20 21:42:02 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X9Qp334Q6z5XGCG for ; Fri, 20 Sep 2024 21:42:03 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X9Qp31BSMz4sj9 for ; Fri, 20 Sep 2024 21:42:03 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726868523; a=rsa-sha256; cv=none; b=tJQo/xwz5Q529/FX9ousE1Vtqr7Bi5gHsFQTm87TnEPTmhAqaM+9PvMXi8puGtc3+75rXW 1sZ/LCCdBjecow7zqkfVrAiyXN6x/AAzP11rCvLh/kUUERlZeXWifsQB7JZ2K5KudiGwqJ MCkNs+eSXXAg3vN40Q7t+2uiDi5M7oPhj30Q6diz//WJ0cOvaewmU9Du3BuleROX4js3gn KNEJlaFyG3tHw68te+dIDLWmjPa/p5RBbtushOnuS0KAbNmPDAkJvREWTlz89O3YHbvWNV 9tQBuDJJtLt5RyWzBncxYMzVV7/+2+IykluhloDP3waBLBB6myUuouurvUbOZw== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726868523; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=fEvVi6Sz0k/kNl7JW/6gli/KAGZz0OlG2Jt28mTWg+k=; b=LauHv/8tbwzZ5BcTftCdNvpT95qR4FvamAXZer0KXsCrmVc+OtnUEVju87e3LcG66bAdOp csrnkvE8tDphVQdqydJXh/PKinD472m27gsvWzwHLPV4+xRQLDgn/+qA2w7ADPGLn5E3V0 79n9Y9shG8w0tHzss5I71EXMjuYQGFpbK4tInolWFxkSwG8eeT5fSw+2UJWfS8Vz1pGHGZ lmFoLBmrCNB8K60X2R8uxBZSgTqP/ZzV4W4N5w9zwjZI5v1/q4RhuUUUiLOJfmlRF+q5ku 4kh/rYxCHj40TEs9kDXpqIp/wZx48Mr1g8L/+w7dFKNYk2PWdOzrobjBx5oK+w== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X9Qp274B9z15qw for ; Fri, 20 Sep 2024 21:42:02 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48KLg26K033543 for ; Fri, 20 Sep 2024 21:42:02 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48KLg2UE033542 for net@FreeBSD.org; Fri, 20 Sep 2024 21:42:02 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 281391] IPv6 multicast sent to wrong MAC address Date: Fri, 20 Sep 2024 21:42:02 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.0-RELEASE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: antonfb@hesiod.org X-Bugzilla-Status: Open X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: attachments.mimetype attachments.created Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D281391 antonfb@hesiod.org changed: What |Removed |Added ---------------------------------------------------------------------------- Attachment #253704|text/x-c++src |text/plain mime type| | --- Comment #3 from antonfb@hesiod.org --- Created attachment 253704 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D253704&action= =3Dedit test case program My test program attached. NOTE: You need to modify it with your /64 address in the location with a comment. Here's some of my truss output with concurrent runs on 13.4 and 14.1 the 14.1 machine... (command "hive foo" i.e. one argument to cause ipv6 case...) NOTE this receives the multicast messages... socket(PF_INET6,SOCK_DGRAM,0) =3D 3 (0x3) bind(3,{ AF_INET6 [::]:3412 },28) =3D 0 (0x0) setsockopt(3,IPPROTO_IPV6,IPV6_MULTICAST_HOPS,0x8209f444c,4) =3D 0 (0x0) setsockopt(3,IPPROTO_IPV6,IPV6_MULTICAST_LOOP,0x8209f444c,4) =3D 0 (0x0) setsockopt(3,IPPROTO_IPV6,IPV6_JOIN_GROUP,0x8209f4438,20) =3D 0 (0x0) sendmsg(3,{{ AF_INET6 [ff34:40:2001:5a8:60c8:1e00:2:1]:3412 },28,[{"This is= a test",14}],1,{},0,0},0) =3D 14 (0xe) select(4,{ 3 },0x0,0x0,{ 4.999998 }) =3D 1 (0x1) recvfrom(3,"This is a test",200,0,{ AF_INET6 [2001:5a8:60c8:1e00:8647:9ff:fe2e:141a]:3412 },0x8209f433c) =3D 14 (0xe) fstat(1,{ mode=3Dcrw--w---- ,inode=3D379,size=3D0,blksize=3D4096 }) =3D 0 (= 0x0) ioctl(1,TIOCGETA,0x8209f3ac4) =3D 0 (0x0) 2001:5a8:60c8:1e00:8647:9ff:fe2e:141a 3412 This is a test write(1,"2001:5a8:60c8:1e00:8647:9ff:fe2e"...,58) =3D 58 (0x3a) select(4,{ 3 },0x0,0x0,{ 4.678515 }) =3D 0 (0x0) sendmsg(3,{{ AF_INET6 [ff34:40:2001:5a8:60c8:1e00:2:1]:3412 },28,[{"This is= a test",14}],1,{},0,0},0) =3D 14 (0xe) The 13.4 machine... same command run, one argument to cause ipv6 NOTE this does not receive messages from the 14.1 machine socket(PF_INET6,SOCK_DGRAM,0) =3D 3 (0x3) bind(3,{ AF_INET6 [::]:3412 },28) =3D 0 (0x0) setsockopt(3,IPPROTO_IPV6,IPV6_MULTICAST_HOPS,0x820ada4dc,4) =3D 0 (0x0) setsockopt(3,IPPROTO_IPV6,IPV6_MULTICAST_LOOP,0x820ada4dc,4) =3D 0 (0x0) setsockopt(3,IPPROTO_IPV6,IPV6_JOIN_GROUP,0x820ada4c8,20) =3D 0 (0x0) sendmsg(3,{{ AF_INET6 [ff34:40:2001:5a8:60c8:1e00:2:1]:3412 },28,[{"This is= a test",14}],1,{},0,0},0) =3D 14 (0xe) select(4,{ 3 },0x0,0x0,{ 5.000000 }) =3D 0 (0x0) sendmsg(3,{{ AF_INET6 [ff34:40:2001:5a8:60c8:1e00:2:1]:3412 },28,[{"This is= a test",14}],1,{},0,0},0) =3D 14 (0xe) select(4,{ 3 },0x0,0x0,{ 4.999999 }) =3D 0 (0x0) sendmsg(3,{{ AF_INET6 [ff34:40:2001:5a8:60c8:1e00:2:1]:3412 },28,[{"This is= a test",14}],1,{},0,0},0) =3D 14 (0xe) select(4,{ 3 },0x0,0x0,{ 4.999999 }) =3D 0 (0x0) sendmsg(3,{{ AF_INET6 [ff34:40:2001:5a8:60c8:1e00:2:1]:3412 },28,[{"This is= a test",14}],1,{},0,0},0) =3D 14 (0xe) select(4,{ 3 },0x0,0x0,{ 4.999999 }) =3D 0 (0x0) sendmsg(3,{{ AF_INET6 [ff34:40:2001:5a8:60c8:1e00:2:1]:3412 },28,[{"This is= a test",14}],1,{},0,0},0) =3D 14 (0xe) select(4,{ 3 },0x0,0x0,{ 4.999999 }) =3D 0 (0x0) For completeness... the ipv4 runs work. 14.1 machine... socket(PF_INET,SOCK_DGRAM,0) =3D 3 (0x3) bind(3,{ AF_INET 0.0.0.0:3412 },16) =3D 0 (0x0) setsockopt(3,IPPROTO_IP,IP_MULTICAST_TTL,0x821026d5c,4) =3D 0 (0x0) setsockopt(3,IPPROTO_IP,IP_MULTICAST_LOOP,0x821026d5c,4) =3D 0 (0x0) setsockopt(3,IPPROTO_IP,IP_ADD_MEMBERSHIP,0x821026d48,8) =3D 0 (0x0) sendmsg(3,{{ AF_INET 239.1.0.1:3412 },16,[{"This is a test",14}],1,{},0,0},= 0) =3D 14 (0xe) select(4,{ 3 },0x0,0x0,{ 5.000000 }) =3D 1 (0x1) recvfrom(3,"This is a test",200,0,{ AF_INET 192.168.2.5:3412 },0x821026c4c)= =3D 14 (0xe) fstat(1,{ mode=3Dcrw--w---- ,inode=3D379,size=3D0,blksize=3D4096 }) =3D 0 (= 0x0) ioctl(1,TIOCGETA,0x8210263d4) =3D 0 (0x0) 192.168.2.5 3412 This is a test write(1,"192.168.2.5 3412 This is a test"...,32) =3D 32 (0x20) select(4,{ 3 },0x0,0x0,{ 4.998028 }) =3D 0 (0x0) sendmsg(3,{{ AF_INET 239.1.0.1:3412 },16,[{"This is a test",14}],1,{},0,0},= 0) =3D 14 (0xe) select(4,{ 3 },0x0,0x0,{ 5.000000 }) =3D 1 (0x1) recvfrom(3,"This is a test",200,0,{ AF_INET 192.168.2.5:3412 },0x821026c4c)= =3D 14 (0xe) 192.168.2.5 3412 This is a test 13.2 machine... socket(PF_INET,SOCK_DGRAM,0) =3D 3 (0x3) bind(3,{ AF_INET 0.0.0.0:3412 },16) =3D 0 (0x0) setsockopt(3,IPPROTO_IP,IP_MULTICAST_TTL,0x8205725ec,4) =3D 0 (0x0) setsockopt(3,IPPROTO_IP,IP_MULTICAST_LOOP,0x8205725ec,4) =3D 0 (0x0) setsockopt(3,IPPROTO_IP,IP_ADD_MEMBERSHIP,0x8205725d8,8) =3D 0 (0x0) sendmsg(3,{{ AF_INET 239.1.0.1:3412 },16,[{"This is a test",14}],1,{},0,0},= 0) =3D 14 (0xe) select(4,{ 3 },0x0,0x0,{ 5.000000 }) =3D 0 (0x0) sendmsg(3,{{ AF_INET 239.1.0.1:3412 },16,[{"This is a test",14}],1,{},0,0},= 0) =3D 14 (0xe) select(4,{ 3 },0x0,0x0,{ 5.000000 }) =3D 0 (0x0) sendmsg(3,{{ AF_INET 239.1.0.1:3412 },16,[{"This is a test",14}],1,{},0,0},= 0) =3D 14 (0xe) select(4,{ 3 },0x0,0x0,{ 5.000000 }) =3D 1 (0x1) recvfrom(3,"This is a test",200,0,{ AF_INET 192.168.2.3:3412 },0x8205724dc)= =3D 14 (0xe) fstat(1,{ mode=3Dcrw--w---- ,inode=3D381,size=3D0,blksize=3D4096 }) =3D 0 (= 0x0) ioctl(1,TIOCGETA,0x820571c64) =3D 0 (0x0) 192.168.2.3 3412 This is a test --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Fri Sep 20 22:11:20 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X9RS11mWsz5XQrg for ; Fri, 20 Sep 2024 22:11:29 +0000 (UTC) (envelope-from benoitc@enki-multimedia.eu) Received: from mail-4323.proton.ch (mail-4323.proton.ch [185.70.43.23]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "protonmail.com", Issuer "R10" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X9RRz0w8Hz52Py for ; Fri, 20 Sep 2024 22:11:26 +0000 (UTC) (envelope-from benoitc@enki-multimedia.eu) Authentication-Results: mx1.freebsd.org; dkim=pass header.d=enki-multimedia.eu header.s=protonmail3 header.b=GgvgYOgV; dmarc=pass (policy=none) header.from=enki-multimedia.eu; spf=pass (mx1.freebsd.org: domain of benoitc@enki-multimedia.eu designates 185.70.43.23 as permitted sender) smtp.mailfrom=benoitc@enki-multimedia.eu DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=enki-multimedia.eu; s=protonmail3; t=1726870284; x=1727129484; bh=XekGdvnikQosAmGmSsRUpkKEloWGOmK54EcWtlmBPtg=; h=Date:To:From:Subject:Message-ID:In-Reply-To:References: Feedback-ID:From:To:Cc:Date:Subject:Reply-To:Feedback-ID: Message-ID:BIMI-Selector; b=GgvgYOgVm16zaXaoLnbbQhwXm8TZhzNQVsrBPQobiYXlZTbhzYxzArxfE3PKaKQ1I V/Mfu30shDEHzlNn/7bzRHftw4ks68w59Khoo0le6oojyqlOKwPoMA0RbtVvFKC/Qx yeBPzutKTSyqxPoXEp9VlirdEGbu6iEijMt6yDjO+hycDVPEkTBv5WYE+wqsHyF29w uG/0hbHwSnMu33E6dBNcU0aj3TaaFD1sgiNq6q8OzbTOrfiLiV6vO/Q/LgeVZkrWlc gZEsjum3poOITLmJq74CxrZ6TxoHBoStcCnsamLIV0BMHNUgMTezG3lROjGodN9PT1 T6Q/XKsRpAQsQ== Date: Fri, 20 Sep 2024 22:11:20 +0000 To: net@FreeBSD.org From: "benoitc@enki-multimedia.eu" Subject: Re: issue with ICMP with PF and nat and latest 14.1 Message-ID: <973C6711-9760-4978-AA2A-0219BA81C5B9@enki-multimedia.eu> In-Reply-To: <87v7ysiqge.wl-herbert@gojira.at> References: <764EE8F1-BE88-4714-AD3F-9D93028FFEC4@icloud.com> <87v7ysiqge.wl-herbert@gojira.at> Feedback-ID: 9066678:user:proton X-Pm-Message-ID: fbded9f8b493b99b45cdeb13768efed114ba3cf4 List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-Spamd-Result: default: False [-3.20 / 15.00]; NEURAL_HAM_LONG(-1.00)[-1.000]; FROM_DN_EQ_ADDR(1.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; NEURAL_HAM_SHORT(-1.00)[-0.998]; DMARC_POLICY_ALLOW(-0.50)[enki-multimedia.eu,none]; R_SPF_ALLOW(-0.20)[+ip4:185.70.43.0/24]; R_DKIM_ALLOW(-0.20)[enki-multimedia.eu:s=protonmail3]; RWL_MAILSPIKE_VERYGOOD(-0.20)[185.70.43.23:from]; MIME_GOOD(-0.10)[text/plain]; MISSING_XM_UA(0.00)[]; ASN(0.00)[asn:62371, ipnet:185.70.43.0/24, country:CH]; MIME_TRACE(0.00)[0:+]; FROM_EQ_ENVFROM(0.00)[]; MLMMJ_DEST(0.00)[net@FreeBSD.org]; RCPT_COUNT_ONE(0.00)[1]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MID_RHS_MATCH_FROM(0.00)[]; TO_DN_NONE(0.00)[]; ARC_NA(0.00)[]; RCVD_COUNT_ZERO(0.00)[0]; DKIM_TRACE(0.00)[enki-multimedia.eu:+] X-Rspamd-Queue-Id: 4X9RRz0w8Hz52Py X-Spamd-Bar: --- as a quick update, latest patched version of RELENG 14.1 is fixing the issu= e. Thanks for all the work :) Beno=C3=AEt > Le 19 sept. 2024 =C3=A0 00:01, benoitc@enki-multimedia.eu a =C3=A9crit : >=20 > I am running releng/14.1 . But this tickets looks very similar to the beh= aviour I'm seeing. Thanks for the link! >=20 >> Le 18 sept. 2024 =C3=A0 23:48, Herbert J. Skuhra a = =C3=A9crit : >>=20 >> On Wed, 18 Sep 2024 23:34:16 +0200, Benoit Chesneau wrote: >>>=20 >>> Hi, >>>=20 >>> It seems that since the latest update of PF in FreeBSD 14.1 mtr >>> doesn't provide a correct trace using the default. It works with the >>> ``--udp` and `-T` options so it doesn't seem to be an issue with the >>> next hop. Also mtr works perfectly on the firewall machine. Issue >>> only happen on the nated machines on the lan behind it. No issue >>> with ipv6. >>>=20 >>> I tried to change the config or pass everything but I still >>> reproduce the issue. Any idea to troubleshoot/fix it is welcome :) >>=20 >> Latest 14.1? Do you run stable/14 or releng/14.1? Maybe: >> >>=20 >> -- >> Herbert >>=20 >=20 From nobody Sat Sep 21 06:10:22 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X9f4d2TH3z5XNcP for ; Sat, 21 Sep 2024 06:10:25 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X9f4c6NGbz48mF for ; Sat, 21 Sep 2024 06:10:24 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726899024; a=rsa-sha256; cv=none; b=Hv42hRnBwqvc6AD974ED1A90bEo8Ldv3ce9qHmgoIPH+eQwBRS2hB69bdvzQ5hRvwK89id l5MgHMQ6Vvc7cTDZ6e4suWGnsmT+H3JHm913U8Pb642JvHlBZN/Q+Ngl1+32KhBidP9CAo Z4zWGOMyN3ud7m+BOGxc8ZAiuIcs54H4oMiNCu3OHJvbE0+I23NjVkmvWBA6+5wkPruOUJ xSdljS+CSSSUIlcS+W0EQphK8ICqB5mYgMqEjsvtIah+lGi/vpr/MN/2WBuI7LoJDfrady HjFBX7OhTxxlLt3EyZD2+h6d8kke4eESzjticvy5YnP1Y2LjoyPRCSi0NpeuCQ== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726899024; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=+Fhi4c1H4YoGwCSIMNLzB1aOoKYZjhtCNbFEV6n9jR0=; b=iK1th0+LsFoJkprsVOGYlIppP+MSZU2x+GYsSMm8WzAkp3yzEsalXkyUOeLuxitAAc2DHS S9+n3uSWn0pG8c8H2b3H56AU8ajLsy6DH1SzF337bFgtDqLQ1xKE1RV7I15qBWE+qvfL7M 762glntwuOtGqxtRKigYFQQmDCTR+Z93pnBXaO6NVvYbhn64Xss4O6/H8cR0ktXh5Dl0y5 89MjNEZ4QQEmz/4XH30GLJqUrxzH5J5opXOt8rzjFfCwovnS8OKRgb0PlhzCk5YKakUXLM R1hUK061x2ZtCcsKgTJRAzX0pn6+tVX4fAgPYPwEd4oRpO9x0hIvvW0387i+3Q== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X9f4c5D5lzMKf for ; Sat, 21 Sep 2024 06:10:24 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48L6AOb0093231 for ; Sat, 21 Sep 2024 06:10:24 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48L6AOKm093230 for net@FreeBSD.org; Sat, 21 Sep 2024 06:10:24 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 253888] exclusive sleep mutex vtnet0-rx0 (vtnet0-rx0) r = 0 (0xfffff800035d4780) locked Date: Sat, 21 Sep 2024 06:10:22 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: CURRENT X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: linimon@FreeBSD.org X-Bugzilla-Status: Open X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: see_also Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D253888 Mark Linimon changed: What |Removed |Added ---------------------------------------------------------------------------- See Also| |https://bugs.freebsd.org/bu | |gzilla/show_bug.cgi?id=3D2= 814 | |69 --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Sat Sep 21 17:52:10 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X9xfN1ggqz5XmRv for ; Sat, 21 Sep 2024 17:52:12 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4X9xfN04Skz42Hy for ; Sat, 21 Sep 2024 17:52:12 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726941132; a=rsa-sha256; cv=none; b=Juw6ZkSJH9tZbO22/cR0sYGVlV4yiBYLO5gWnfH47EzX9dbgWIlUECwBcjNm8Dxj2EsetE f8SogSANNeiGhikfb0Oyu67e9/cS68BSGNX7qDy2lre4LZLOLiBVyyAnguZcE1lC0ICUJz jton+rS14wahhOY/FPKGExXtx5Wssyu+bMvjuo8umht1BFAjpgFjaH24I2RTYs9b3dcKnO HFDDbcN//62szD74VEBI7YqhzD30/mAYu5NeCACP43EgH2LZzLi5pt4Er5zHkemToFf07f xDsxXo0qHGWcJXtbCLLBHLZZWk2nIz57xNOlIFPVQG7DjWl2DpoMcypFDRCEhA== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726941132; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=78PNbm/5PfQSLFvKpZec0xl7ARXJre6kHmRqTWrnsRc=; b=npR+aWlOF8rXyCfFETrjlGTj3ThtVoehubnEjk9L/8BTsd4A/6XfUNcxx4wk9LGYS9PWoj rccbzTx+ArkHmzsvsYWNfMu0YrutyM5j1fTy4KtOBwHohljVH1L5zFoSGuxR7o6I0LZAS4 sibf6KfXwyxbThmjm+dRZSzKBoUiz647mzUa2A3Og8Obsag2zCFBblvBhnBN1j2epzQ2xp Q+gbj+oKr4p8uhoFk9o4tq7TnAJ743waz7Nkjk/qHWRnn5atadh5TrGyrBmCepYu2N1GBS rceYwlAP6LCzcsfsU4S7qYLVDiHcPkvQwImUaeE8gzljo5sFB7Zd1HMGtejUVg== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X9xfM6TZMzjrC for ; Sat, 21 Sep 2024 17:52:11 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48LHqBfq057650 for ; Sat, 21 Sep 2024 17:52:11 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48LHqBqv057649 for net@FreeBSD.org; Sat, 21 Sep 2024 17:52:11 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 278028] VXLAN interface is not working Date: Sat, 21 Sep 2024 17:52:10 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.0-STABLE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Many People X-Bugzilla-Who: tbannard@20thcenturyart.net X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: cc Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D278028 Trevor Bannard changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |tbannard@20thcenturyart.net --- Comment #9 from Trevor Bannard --- (In reply to Dmitriy V. from comment #8) Dmitriy, in your case it looks like the issue is that the MAC addresses are identical on both vxlan interfaces, which prevents ARP from working. i'm not sure how these addresses are assigned on interface creation though and why they're identical in this case. --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Sat Sep 21 22:12:18 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4XB3QX6Gs9z5X8fj for ; Sat, 21 Sep 2024 22:12:20 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4XB3QX46Shz4tkk for ; Sat, 21 Sep 2024 22:12:20 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726956740; a=rsa-sha256; cv=none; b=Jhn/3zBczXYoLCoFdQkjbGUof/Vt+OjRzMPvmU2h1dK9bDE84DgrpQvY31CteBOXbOb9g2 bGiOgxqgEQ1WrFjYgdMM/ZIQq0kF/0eoFqlB6mcFu/QYz+IGvKkuLWkCI69yzI5z1Wd7i4 zJ2W8alML9OWtofJliBAuSLOnWqVXgzR7YcR0LyxRS7d5stGYJGWQ/rnWPI1SygeSlSk3H ytyj2I4OPDWrstK7nGTYpv6adLBkyR9qn823ulNGLCCli8M9p0Vzw6ScRWf27lKU99yk7J hyj253T88Hyba/Ozigdw4tzqZeoLimjVzxd2iwZqtu2As6CNRJ0W6xdxmshS3Q== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726956740; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=cKRrI0yCNG9Jz5zTLmwpPQbf5Frx1uz8j7ngu7QhDTI=; b=cAzeXExWI6ts2Wz+0KbxdyKh9OGE80ctMPbAU7+tSCDVIf7U4PFJmyHGaKrEVvvpuPHqB+ i12z07i0/P92KgqDTsdo/3VBnGrQfk5pWB9DGT+bD/dnysAYUJGIiN8lTn30GRbPErxPUJ 8xymxR0x/kL1zO/+qSDuJRwL9FpNfMTIUpTwpRZlsvX2tjQgPIWyx+caxvzJ0MqpkMU97R 4znTDaFS4zP4pSTfhIxHGom+HsRho4vznHQ5vuFNbrWOWC29YcVd1EBDKo/ugKPj4LsLqj 01/HEfWAEPgYuMf35kOml9ZCBjvi15HehGpKpZ6oXgFF8qo/7OzYGTMic949hw== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4XB3QX3kZlzqQb for ; Sat, 21 Sep 2024 22:12:20 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48LMCKq4008510 for ; Sat, 21 Sep 2024 22:12:20 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48LMCKDO008509 for net@FreeBSD.org; Sat, 21 Sep 2024 22:12:20 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 278028] VXLAN interface is not working Date: Sat, 21 Sep 2024 22:12:18 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.0-STABLE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Many People X-Bugzilla-Who: zarychtam@plan-b.pwste.edu.pl X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: cc Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D278028 Marek Zarychta changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |zarychtam@plan-b.pwste.edu. | |pl --- Comment #10 from Marek Zarychta --- (In reply to Trevor Bannard from comment #9) >why they're identical in this case. The answer is likely simple: both systems were cloned from the same source = and no steps toward changing random seed and hostid were taken. --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Sun Sep 22 09:08:17 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4XBKzQ26tmz5VgC2 for ; Sun, 22 Sep 2024 09:08:18 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4XBKzP3w01z4Lfs for ; Sun, 22 Sep 2024 09:08:17 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726996097; a=rsa-sha256; cv=none; b=NiEFu+ckLAA+bzwRHpMAZ4z1w9Bwkyky2caILlbqz3Os1qZo/REd9Y6sq/dUoupu5ThV+e +tpCvqZkNQZDxCqpLQoBaeD+TbHoCERMmKJ/F2bm+jX+vZ12+ykJRwZMMMXZw8Wwq+0pMU 4S15AWbvtFlhhWI7bdZMYVyaUekBDS/36/HdFoEPNv1J9sTQWEuRYVN0AcqQbw3UjQFyho RVPNW0mm3eADQjd27c/Mz9sQY1d0i7cr2ktgX5JjN3yRHYZVd70QtxXeF5i9NFLpX6loOH ReOc8msTzg5NHdqpuoP+Q6ukRdafoRjkmbYKsmeacLBpTzQexPZtG8H0/i7RVA== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1726996097; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=Bz0jvtZ5gSJWMQzpmF5ItBWMKoDdtUuNpnr3o/4/M6c=; b=fv5kB8ngRIi648CoO2nsJuJCrCV9bpmrKQng3n9pP+6eztmQ307JAsZq5bFJK7cNS4dDhX MwN5EdY/LJk7JBDdXjE/jebU6zNzRNDYwtTildGkmyfIgfSUVijd+1NVTXdbfHiEi3Gx56 xwt4ZU1UPd0E7dLYepCrl1Tk06A9bezyd5WNOPgt0Jjda3QPu5E9Eu6NAzAZnOfUe3iOgL MPOEueTDXP0rfYg2HQIGmzP/tJfugnGueTxuVNEMwQdUSNi3XjzX5rkXCPmDVLohkzo4k5 kNHAGW74SW0ZY8krpkSrXRUf4umb6W+pi6kXnWTzLIl3t4cmTYLcBtYJ3t5f1Q== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4XBKzP3VvQz19NN for ; Sun, 22 Sep 2024 09:08:17 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48M98HlA021980 for ; Sun, 22 Sep 2024 09:08:17 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48M98HBY021979 for net@FreeBSD.org; Sun, 22 Sep 2024 09:08:17 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 280648] Traffic leak between fibs Date: Sun, 22 Sep 2024 09:08:17 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.1-STABLE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: zarychtam@plan-b.pwste.edu.pl X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D280648 --- Comment #21 from Marek Zarychta --- (In reply to Egor from comment #20) >I managed to run bird in non standart fib and at this time there wasn't >leaked routes in routing table That's good to hear. Please consider closing this PR if the routes are no longer leaking for you. --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Sun Sep 22 14:17:02 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4XBSqh0fSPz5Xb6s for ; Sun, 22 Sep 2024 14:17:04 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4XBSqg654lz4YB1 for ; Sun, 22 Sep 2024 14:17:03 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1727014623; a=rsa-sha256; cv=none; b=AGxsDDk4/BSOtxI9FdCOvS02GvfW6pnVZaD9D5UJ4eLN9sEoLl3sw0Y5rQty+4UUGcpLpN IkfB4bYTVf4WS7rbeL549yEi0aHNuHZD1JDJ3csrZ4Tv14+thi1dNMfHhUjDf6tW6KMEuF zS3SnkDN+rSbdYH9m2lUaIh8gxrnyJLmZ5ogzoZkBXVp86sr/4PQQIfH6LYLNf0JgxcVXh FsdrQL8jluBc/NQpFDNo+sdSQ2aBAxhCXdDxVIhW3yaswIgNYra53zTQcG/J0dQ8Myp6DL bk80MMVZ1pNTiPcrVTvdtcuen9Zua/fMTX7cFbA2kue6cLzicLyuU5FCZYbnKw== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1727014623; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=Wnxr1Wrjg85SpIhwVYKvIuOo/65tG6+hYztiGIhrmpU=; b=Ufxd5qGmXZ6sjHxe1/nvQNFpPJWJ7/a0ByMxrIfJHkFw9kVl7R8M2G98VXjJ1Vlo32HhkK AqMfjiEB6YPDFzpp7Qqy3GfJC8ZclWgSL4RnwRjejkfzpW2nPqJ0QEVNmvIhYuNNuDHkIe AJyWbtqhsi6R+Qdoi35aIwqN+ytxC4Wich0GzDmemFFTB+x/cp8+kvR6pOVEXv4Ea9U4p+ zl1xdHEco83VxP3tOw3AxoslwdsYoQBgXgKCEqx78gp5FZx8lZKybvD383xmfEjrSGNOds Yz8CUtfXjC63C8xop//djJNtFbfJ2GnxAklaIpixxddiGXGPPACS+iQS1bLnIQ== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4XBSqg5ZySz1JpS for ; Sun, 22 Sep 2024 14:17:03 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48MEH37o054592 for ; Sun, 22 Sep 2024 14:17:03 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48MEH3Bo054591 for net@FreeBSD.org; Sun, 22 Sep 2024 14:17:03 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 278028] VXLAN interface is not working Date: Sun, 22 Sep 2024 14:17:02 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.0-STABLE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Many People X-Bugzilla-Who: d@voronin.it X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D278028 --- Comment #11 from Dmitriy V. --- (In reply to Trevor Bannard from comment #9) Definitely didn't notice! Thank you very much for the tip. (In reply to Marek Zarychta from comment #10) Yes, they were really cloned, hostid reset was done. Maybe you can tell me = what else needs to be done so that it normally generates MAC on such devices when cloning? --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Sun Sep 22 14:55:07 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4XBTgc2tJ4z5WN5S for ; Sun, 22 Sep 2024 14:55:08 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4XBTgc0M6qz4j4G for ; Sun, 22 Sep 2024 14:55:08 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1727016908; a=rsa-sha256; cv=none; b=hxoHz37s1islrOkPam5uuV65phPLaSyfxW0QO92StDHZuUhUJLuLG/p6sRFsEgcZpGBi1g ztvyl9H6GIKqHsg+EG1xaB8Fvji2s93F24xfA5LkulKGcK3DBZ30uaNKuBZ4oNPqo8Fhvu at2tguMo37J0UL9lw7DdeW8xcpFWqJv1kE9a0TYlWrIxUl2VVGY2v8wZAq0xYNwQj9LmqY 27s3ArTiBKNBBcgkPljy5NP88xB4ITJJeTjQ3eN7Xi+f87kqk1b9P/gVsSedKWdZ60DckJ rLSoBnLIdFLJjKGGZ2QoiI3Ibv2HWyB90S4fk8yidOh73lTRlLgALLBTW4MRnA== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1727016908; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=fqDTk0lUYfO7l8+YXKnVgdtip4uQONkoJAy9jMlKCX4=; b=heiaYsO1dEt/J/+xiyn81+h8HIaKwojLuwcwokm0LiEYozFytk3MrnAkPali08SuprQAHI dvzhKjkn8DbiyIRkHjLNRz1Nhb2XO9pNpx3q2VJE/kY2MJrzfk9hIahej3dFrBuWso20fl vnwpQnYgDDDrZXu3prNZkK9fIOUefXaBILSX07l8ACiu7EWgi8asLdLkzNMrDHZH5XPph1 9msymjme54KtskKP1Z7JM3k1Iytro464J6KUpbS29I/PRqkrx6KtvBXKV7m+4ubVtUdDKq ZYlgP4qeeBFup9D+BDDSFB1HLASQrIoXqr80gG84qtooccBSBAFrD5KXfqKvkQ== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4XBTgb6yNqz1L14 for ; Sun, 22 Sep 2024 14:55:07 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48MEt7s7019478 for ; Sun, 22 Sep 2024 14:55:07 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48MEt7pZ019477 for net@FreeBSD.org; Sun, 22 Sep 2024 14:55:07 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 278028] VXLAN interface is not working Date: Sun, 22 Sep 2024 14:55:07 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.0-STABLE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Many People X-Bugzilla-Who: zarychtam@plan-b.pwste.edu.pl X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D278028 --- Comment #12 from Marek Zarychta --- (In reply to Dmitriy V. from comment #11) >Yes, they were really cloned, hostid reset was done. In the case of vxlan(4) interfaces, the regeneration of hostid should be sufficient to fix connectivity between cloned hosts. --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Sun Sep 22 16:30:47 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4XBWnz6zHKz5XK9V for ; Sun, 22 Sep 2024 16:30:47 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4XBWnz5J8Bz45vf for ; Sun, 22 Sep 2024 16:30:47 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1727022647; a=rsa-sha256; cv=none; b=f6mXo2VZ9eBoNp/T1qplinNndN4q8kbGu2SrVbQj+efnbvqJ1JedUs2ltgpJMbHsQqpYC2 1pp/BzW4w/vk/rGXN2F6qXDk0ZTpVtaW2Rhmq49OYy//AOoG2PdQktFqpOlBoRDth6Udv9 tbfEkePwPLZF5s6SaHamUWyOWwgX7PGXIFeUUeTSVaHuIexYnQ7+P7iaBht0OnzY92/Vyt Q4OPKPuP2XiMinUmVv8sMdsyXYFgOvXH30PyreF/Z4bBTsN7VA3zSyQTMYI5qARmULl8ff EWspBKRzgbQ3mfo61fs6qYeagkeB15jI4Da50Q+S9F2zp+9Su25LDyKApWa0Dw== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1727022647; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=6OOVxrmcj33IkTKQ0+cpx2z5PyPgK/UL73AQoyHyQRo=; b=s0rpkW6ALsgX+TAUMcx+BplYR1OAZU+UoU1eQGjEJKikUt0feGHxLttFG8dukAHV4rCpVK i/HKsm8xtS128n6x44ibwZtdrEoecJC/v9wYOFN65vfr4jF4U+2Zr8lRk4KHBEpWX8bWqt 6iW0AGdnqHIgLf2xLmom4Ci4S4ee64cKYlSpcGQzc2JQnZPNpMrV/57s1SCUSPce7plctP 1fzaBKKpvisq4v+EKf60yujuBVTSA13TLdNixwjCgmTnaA78l4avcKeOil6AkjWACPP15n iAWWrBpnRaRyHJZGiUtacAeVr0ptDr9AbzDhqbAZYldmLjEpDLMViBBRqsPZjA== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4XBWnz4wlGz1NPV for ; Sun, 22 Sep 2024 16:30:47 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48MGUlZ7083072 for ; Sun, 22 Sep 2024 16:30:47 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48MGUl9P083071 for net@FreeBSD.org; Sun, 22 Sep 2024 16:30:47 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 278028] VXLAN interface is not working Date: Sun, 22 Sep 2024 16:30:47 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.0-STABLE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Many People X-Bugzilla-Who: d@voronin.it X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D278028 --- Comment #13 from Dmitriy V. --- Thanks for your help friends, everything worked as it should! --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Sun Sep 22 21:00:25 2024 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4XBdn61kbDz5Wm1p for ; Sun, 22 Sep 2024 21:00:26 +0000 (UTC) (envelope-from bugzilla-noreply@FreeBSD.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4XBdn54wq6z49S6 for ; Sun, 22 Sep 2024 21:00:25 +0000 (UTC) (envelope-from bugzilla-noreply@FreeBSD.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1727038825; a=rsa-sha256; cv=none; b=sZGFGFgRR7VqSwHyhznfBopGBgiX/EM+Aw5qPdY3Tim2+ad0YAQ+xRX6XgSeXVaWLHmb0U A4SJYT/U99RmztRAw9868gEjy1p7WBmXbff4OqdU7sZWqYafsNo9qRvtOc8TRFEWK+yRZM +TvrRqNfRyA+7QokgXPvIDFb2gM6w0200wnjk9LxTevj5Pnoewn5fl4AvHYHfI6TAV0lsE O8URxSBPMrVxGifkXxFDmY8t6v52nbSskRbjKUqae98rnpgO4cs/65w7pvEEZRIC2Wc6QD MpSJoSAHbueoSNDURc7c6IRh3OH+A4oxxyB42hYMTWAcjkqG6byGEv4x9RSNNA== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1727038825; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding; bh=IoG0JUAi1ZJpq56AQJkflwngM3E4SrZ3UW4agqqyIzQ=; b=aJFeHTj+x1fTeaIvtlULlwQxsqC2FYNCa68zhnTl8TpPbRzJy6WwFahULXzwnY3NsvKXu6 T/+Bfh11ZcJatRJj+7gG6eVV5sdaV60SQa81otMggJ/jW3gZuasFr+0Az9MJjU3h/Aq/WF 9j2RpYyFCeRW3G8J7DQpI2abkoPaevWw+6n4y7IgM0+K4NCGmwhkpKcEZ/FXbhxaQjmIs7 Y4+EuipofcyOWE1rP//zb1wwwQD7ghsJ/B5TaQ5/UfDqoHXWq/Y6qlUGx6YkiPyUCq6piE caYYFOd4lEzXuXBgCf71l9iHgH7QWJv2i4PopC1jMlVYuZSSP+YVYw8++k9AAw== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4XBdn524FxzGq6 for ; Sun, 22 Sep 2024 21:00:25 +0000 (UTC) (envelope-from bugzilla-noreply@FreeBSD.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 48ML0PLc050455 for ; Sun, 22 Sep 2024 21:00:25 GMT (envelope-from bugzilla-noreply@FreeBSD.org) Received: (from bugzilla@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 48ML0P9i050454 for net@FreeBSD.org; Sun, 22 Sep 2024 21:00:25 GMT (envelope-from bugzilla-noreply@FreeBSD.org) Message-Id: <202409222100.48ML0P9i050454@kenobi.freebsd.org> X-Authentication-Warning: kenobi.freebsd.org: bugzilla set sender to bugzilla-noreply@FreeBSD.org using -f From: bugzilla-noreply@FreeBSD.org To: net@FreeBSD.org Subject: Problem reports for net@FreeBSD.org that need special attention Date: Sun, 22 Sep 2024 21:00:25 +0000 List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="17270388250.10AC3BFd.47719" Content-Transfer-Encoding: 7bit --17270388250.10AC3BFd.47719 Date: Sun, 22 Sep 2024 21:00:25 +0000 MIME-Version: 1.0 Content-Type: text/plain; charset="UTF-8" To view an individual PR, use: https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=(Bug Id). The following is a listing of current problems submitted by FreeBSD users, which need special attention. These represent problem reports covering all versions including experimental development code and obsolete releases. Status | Bug Id | Description ------------+-----------+--------------------------------------------------- New | 254445 | cloned_interfaces="bridge0" does not respect net. Open | 166724 | if_re(4): watchdog timeout Open | 200836 | iovctl(8): Return descriptions in the returned sc Open | 223824 | Panic in ng_base.c (netgraph) Open | 232472 | ixgbe(4): SR-IOV passthru not working on Hyper-V Open | 234073 | ixl(4): Host X710-DA2 drops connect starting bhyv Open | 241106 | tun/ppp: panic: vm_fault: fault on nofault entry Open | 245981 | bnxt(4): BCM57414 / BCM57416 not initializing: bn Open | 257038 | em(4): Panic on HTTP traffic to or from jail thro Open | 257286 | gateway with `ping -6 -e` is ignored Open | 258623 | cxgbe(4): Slow routing performance: 2 numa domain Open | 258850 | lagg(4): interface vanishes when both member inte Open | 261866 | ixgbe(4): Resets media type -> autoselect after s Open | 262024 | em(4): iflib handles bad packets incorrectly Open | 262093 | ixl(4): RX packet errors on Intel X710 after 12.2 Open | 263568 | ix(4): SR-IOV connection lost after loading VM wi In Progress | 118111 | rc: network.subr Add MAC address based interface 17 problems total for which you should take action. --17270388250.10AC3BFd.47719 Date: Sun, 22 Sep 2024 21:00:25 +0000 MIME-Version: 1.0 Content-Type: text/html; charset="UTF-8"
The following is a listing of current problems submitted by FreeBSD users,
which need special attention. These represent problem reports covering
all versions including experimental development code and obsolete releases.

Status      |    Bug Id | Description
------------+-----------+---------------------------------------------------
New         |    254445 | cloned_interfaces="bridge0" does not respect net.
Open        |    166724 | if_re(4): watchdog timeout
Open        |    200836 | iovctl(8): Return descriptions in the returned sc
Open        |    223824 | Panic in ng_base.c (netgraph)
Open        |    232472 | ixgbe(4): SR-IOV passthru not working on Hyper-V 
Open        |    234073 | ixl(4): Host X710-DA2 drops connect starting bhyv
Open        |    241106 | tun/ppp: panic: vm_fault: fault on nofault entry 
Open        |    245981 | bnxt(4): BCM57414 / BCM57416 not initializing: bn
Open        |    257038 | em(4): Panic on HTTP traffic to or from jail thro
Open        |    257286 | gateway with `ping -6 -e` is ignored
Open        |    258623 | cxgbe(4): Slow routing performance: 2 numa domain
Open        |    258850 | lagg(4): interface vanishes when both member inte
Open        |    261866 | ixgbe(4): Resets media type -> autoselect after s
Open        |    262024 | em(4): iflib handles bad packets incorrectly
Open        |    262093 | ixl(4): RX packet errors on Intel X710 after 12.2
Open        |    263568 | ix(4): SR-IOV connection lost after loading VM wi
In Progress |    118111 | rc: network.subr Add MAC address based interface 

17 problems total for which you should take action.
--17270388250.10AC3BFd.47719--