Date: Sun, 30 Aug 2020 14:03:24 +0200 From: Peter Libassi <peter@libassi.se> To: freebsd-net@freebsd.org Subject: wireguard integration D26137 test on 13-CURRENT r364973 Message-ID: <AF3FB5C6-6E52-4907-BBCA-25C8F424D010@libassi.se>
next in thread | raw e-mail | index | archive | help
I had a first look at the latest version of the wireguard kernel =
integration. There was some findings that may need attention.
buildkernel stops with kernel option INVARIANTS enabled:
--- all_subdir_if_wg ---
/usr/src/sys/dev/if_wg/module/if_wg_session.c:1639:22: error: unused =
variable 'e' [-Werror,-Wunused-variable]
struct wg_endpoint *e =3D wg_mbuf_endpoint_get(m);
^
2 errors generated.
*** [if_wg_session.o] Error code 1
buildkernel KERNCONF=3D"GENERIC-NODEBUG" works fine.
I managed to figure out these options to the ifconfig command:
# ifconfig wg create private-key =
AtT4BNuidrJrDGZUH1Ddd4e6D0HMCq3Z+KawQVZQqXU=3D listen-port 9999 peer =
public-key bmUgcaOtlEFcIoSlwPQ3qO/c14nJHYr+a7Ms/kJmOFA=3D endpoint =
192.168.4.4:8888 allowed-ips 10.2.3.0/24
which seems to get everything in place. However peer-list shows the =
allowed ips in a funny way:
# ifconfig wg0 peer-list
[Peer]
PublicKey =3D bmUgcaOtlEFcIoSlwPQ3qO/c14nJHYr+a7Ms/kJmOFA
Endpoint =3D 192.168.4.4:8888
AllowedIPs =3D 0.0.10.2/24
and if you specify two allowed-ips in the wg create peer section it gets =
worse:
# ifconfig wg create =E2=80=A6=E2=80=A6. allowed-ips 10.2.3.0/24 =
allowed-ips 10.11.12.0/24
# ifconfig wg0 peer-list
[Peer]
PublicKey =3D bmUgcaOtlEFcIoSlwPQ3qO/c14nJHYr+a7Ms/kJmOFA
Endpoint =3D 192.168.4.4:8888
AllowedIPs =3D 0.0.10.11/24, 0.0.10.11/24
Otherwise this looks really nice! Next i=E2=80=99ll try some =
connectivity tests.
/Peter
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?AF3FB5C6-6E52-4907-BBCA-25C8F424D010>