From owner-freebsd-stable@FreeBSD.ORG Tue Feb 28 15:38:00 2012 Return-Path: Delivered-To: stable@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 2459C1065690; Tue, 28 Feb 2012 15:38:00 +0000 (UTC) (envelope-from alexander@leidinger.net) Received: from mail.ebusiness-leidinger.de (mail.ebusiness-leidinger.de [217.11.53.44]) by mx1.freebsd.org (Postfix) with ESMTP id ABA9A8FC0A; Tue, 28 Feb 2012 15:37:59 +0000 (UTC) Received: from outgoing.leidinger.net (p5796C834.dip.t-dialin.net [87.150.200.52]) by mail.ebusiness-leidinger.de (Postfix) with ESMTPSA id 9B31A844C51; Tue, 28 Feb 2012 16:37:43 +0100 (CET) Received: from webmail.leidinger.net (webmail.Leidinger.net [IPv6:fd73:10c7:2053:1::3:102]) by outgoing.leidinger.net (Postfix) with ESMTPS id E586A11F2; Tue, 28 Feb 2012 16:37:40 +0100 (CET) DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=leidinger.net; s=outgoing-alex; t=1330443461; bh=CbfwLWupr8NdOPXx1ZXqQxvUFOo5tY//APyx786ptC4=; h=Date:Message-ID:From:To:Cc:Subject:References:In-Reply-To: Content-Type:MIME-Version:Content-Transfer-Encoding; b=C0dBkluk/q5FRQlfe+ErYrQx/I7OuLOo5Q3ygdvc3JgasaO0czbD8Edr4MJJ+IaE4 tnbjvuZHIlXZq95ZM4UjP/sx45PLEX6Ua8MsA781f9Zt91knl+raPxIv3wzjoNte+E FnfHX1fBTrUsUxrCP3uZ7HCtx7SNYcy0hkgbqipKibbpka28ISPptgIu6vskN+u2yN qKQQAJunAE6fNXXQGfv2iUMQSbCTPB4adgxdlmd4E9TzJJGShESW/LmtnyN1VqjoZ3 6/znVPMUcs+ehIdF7Jzzr7qtUL79GSfVJP5n8GRO+WnhatHc9bq2HFxACyNIp2f7/x 5rAeutdKMzFqw== Received: (from www@localhost) by webmail.leidinger.net (8.14.5/8.14.4/Submit) id q1SFbeKu036673; Tue, 28 Feb 2012 16:37:40 +0100 (CET) (envelope-from Alexander@Leidinger.net) X-Authentication-Warning: webmail.leidinger.net: www set sender to Alexander@Leidinger.net using -f Received: from 85.94.224.19 ([85.94.224.19]) by webmail.leidinger.net (Horde Framework) with HTTP; Tue, 28 Feb 2012 16:37:40 +0100 Date: Tue, 28 Feb 2012 16:37:40 +0100 Message-ID: <20120228163740.Horde.-AvCD5jmRSRPTPTEkzY476A@webmail.leidinger.net> From: Alexander Leidinger To: ~Lst References: <20120221143537.Horde.deyFDZjmRSRPQ52pxBIpnLA@webmail.leidinger.net> <4F4BA707.5070608@wasikowski.net> <4F4C3FE7.3040802@FreeBSD.org> In-Reply-To: User-Agent: Internet Messaging Program (IMP) H4 (5.0.18) Content-Type: text/plain; charset=utf-8; format=flowed; DelSp=Yes MIME-Version: 1.0 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable X-EBL-MailScanner-Information: Please contact the ISP for more information X-EBL-MailScanner-ID: 9B31A844C51.AFD56 X-EBL-MailScanner: Found to be clean X-EBL-MailScanner-SpamCheck: not spam, spamhaus-ZEN, SpamAssassin (not cached, score=-0.549, required 6, autolearn=disabled, AWL -0.44, DKIM_SIGNED 0.10, DKIM_VALID -0.10, DKIM_VALID_AU -0.10, T_RP_MATCHES_RCVD -0.01) X-EBL-MailScanner-From: alexander@leidinger.net X-EBL-MailScanner-Watermark: 1331048266.9265@LAiGz8Pt0JvM5yZ0hI5caw X-EBL-Spam-Status: No Cc: stable@freebsd.org, current@freebsd.org Subject: Re: [CFT] modular kernel config X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 28 Feb 2012 15:38:00 -0000 Quoting ~Lst (from Tue, 28 Feb 2012 16:38:43 +0700): > 2012/2/28 Steve Wills : >> -----BEGIN PGP SIGNED MESSAGE----- >> Hash: SHA1 >> >> On 02/27/12 10:53, =C5=81ukasz W=C4=85sikowski wrote: >>> W dniu 2012-02-22 23:31, Bjoern A. Zeeb pisze: >>> >>>> You cannot ship that on by default for non-tecnical reasons in a >>>> kernel. =C2=A0Please do not commit a kernel config that can be booted >>>> (no LINT cannot be booted) with these on without consulting >>>> appropriate hats upfront. >>>> >>>> >>>>> - ALTQ - SW_WATCHDOG - QUOTA - IPSTEALTH (disabled in >>>>> loader.conf) - IPFIREWALL_FORWARD (touches every packet, power >>>>> users which need a bigger PPS but not this feature can >>>>> recompile the kernel, discussed with julian@) - FLOWTABLE >>>>> (disabled in loader.conf) >>>> Which is not the same as it's not 100% disabled and will still >>>> allocate memory. >>> >>> FLOWTABLE on 8.x crashed BGP routers (kern/144917). I don't know if >>> it is fixed by now, but this kind of potential problematic features >>> should not be enabled by default. >>> >> >> Agree, I've run into problems with FLOWTABLE (with just the features >> that were enabled by default in 8.0) when routers changed MAC >> addresses. As far as I understand it, FLOWTABLE is both broken and >> abandoned (but if I'm wrong, please let me know). >> >> So, IMHO, not only should it not be enabled by default, but given that >> it was disabled complete in 8.x after 8.0 (too lazy to look at exactly >> when right now), I think it shouldn't even be included, since that >> might encourage users to try it out only to encounter problems with it. >> >> Steve >> > > Definitely yes, I'd some problems too with FLOWTABLE running for router. > So I have to disabled in kernel and sysctl. To make sure I understand you correctly: Did you disabled it with the sysctl/loader-tunable and everything was OK again, or did you had to remove it from the kernel config (disabling via sysctl was not enough) to resolve the issue? I have one report where a person has issue with FLOWTABLE, but disabling it via the sysctl/loader-tunable was enough to address his concerns. Bye, Alexander. -- The light at the end of the tunnel is the headlamp of an oncoming train. http://www.Leidinger.net Alexander @ Leidinger.net: PGP ID =3D B0063FE7 http://www.FreeBSD.org netchild @ FreeBSD.org : PGP ID =3D 72077137