Date: Fri, 10 Nov 2017 15:15:17 +0000 From: bugzilla-noreply@freebsd.org To: freebsd-ports-bugs@FreeBSD.org Subject: [Bug 223595] dns/bind911 - disable TCP_FASTOPEN by default Message-ID: <bug-223595-13@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D223595 Bug ID: 223595 Summary: dns/bind911 - disable TCP_FASTOPEN by default Product: Ports & Packages Version: Latest Hardware: amd64 OS: Any Status: New Severity: Affects Some People Priority: --- Component: Individual Port(s) Assignee: mat@FreeBSD.org Reporter: jdc@koitsu.org Assignee: mat@FreeBSD.org Flags: maintainer-feedback?(mat@FreeBSD.org) I recently upgraded from bind910-9.10.6_3 to bind911-9.11.2_3 on FreeBSD 10.4-STABLE (stable/10, kernel/world built from r325340) and have begun to = see this show up in my kernel logs/syslog (i.e. console, /var/log/all.log, dmes= g, etc.) every time named is started: Nov 10 06:51:44 mambo named[71491]: socket.c:5695: unexpected error: Nov 10 06:51:44 mambo named[71491]: setsockopt(21, TCP_FASTOPEN) failed with Protocol not available Nov 10 06:51:44 mambo named[71491]: socket.c:5695: unexpected error: Nov 10 06:51:44 mambo named[71491]: setsockopt(22, TCP_FASTOPEN) failed with Protocol not available dns/bind910 does not have this problem. I have not checked dns/bind912. RFC7413 (TCP fast open) support is disabled (read: not included in the kern= el) by default on FreeBSD 10.x (and also 11.x, unless that's changed recently) because it's considered experimental. This system uses a kernel config very similar to GENERIC, and thus does not include "option TCP_RFC7413". Bug 206338 is for an unrelated piece of software, but further justifies advocacy of disabling this feature (in 3rd-party software) by default. Reviewing the BIND 9.11.2 source, it appears configure.in includes TCP_FAST= OPEN auto-detection by using #include and #ifdef TCP_FASTOPEN, resulting in #def= ine ISC_PLATFORM_HAVETFO 1. FreeBSD should override this somehow (either throu= gh a patch that comments out the code, or better yet, #undef ISC_PLATFORM_HAVETF= O).=20 I do not see an explicit configure flag for disabling it. See lib/isc/unix/socket.c lines ~5684 to ~5700 and/or configure.in lines ~3206 = to ~3222 for details. --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-223595-13>