From owner-freebsd-net@FreeBSD.ORG  Fri Oct 17 05:48:49 2014
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115])
 (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTPS id 90C33EC9;
 Fri, 17 Oct 2014 05:48:49 +0000 (UTC)
Received: from vps1.elischer.org (vps1.elischer.org [204.109.63.16])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client CN "vps1.elischer.org",
 Issuer "CA Cert Signing Authority" (not verified))
 by mx1.freebsd.org (Postfix) with ESMTPS id 61A976C5;
 Fri, 17 Oct 2014 05:48:48 +0000 (UTC)
Received: from Julian-MBP3.local
 (50-196-156-133-static.hfc.comcastbusiness.net [50.196.156.133])
 (authenticated bits=0)
 by vps1.elischer.org (8.14.9/8.14.9) with ESMTP id s9H5mXa7042100
 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES128-SHA bits=128 verify=NO);
 Thu, 16 Oct 2014 22:48:37 -0700 (PDT)
 (envelope-from julian@freebsd.org)
Message-ID: <5440ADAB.6080308@freebsd.org>
Date: Fri, 17 Oct 2014 13:48:27 +0800
From: Julian Elischer <julian@freebsd.org>
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9;
 rv:24.0) Gecko/20100101 Thunderbird/24.6.0
MIME-Version: 1.0
To: "vijju.singh" <vijju.singh@gmail.com>, =?UTF-8?B?RGFnLUVybGluZyBTbcO4?=
 =?UTF-8?B?cmdyYXY=?= <des@des.no>,
 "Bjoern A. Zeeb" <bzeeb-lists@lists.zabbadoz.net>
Subject: Re: Enabling VIMAGE by default for FreeBSD 11?
References: <ie2ua21e0mefn1xm3wob7cca.1413524589411@email.android.com>
In-Reply-To: <ie2ua21e0mefn1xm3wob7cca.1413524589411@email.android.com>
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 8bit
Cc: freebsd-net@freebsd.org, freebsd-virtualization@freebsd.org,
 freebsd-arch <freebsd-arch@freebsd.org>
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.18-1
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-net>,
 <mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net/>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
 <mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 17 Oct 2014 05:48:49 -0000

On 10/17/14, 1:43 PM, vijju.singh wrote:
> We've seen issues with vnet delete causing stale pointers in mbufs referencing the per-vnet loopback interface (deleted with the vnet).
you can also see this sort of problem with removable devices. e.g. USB 
network interfaces, so it's not unique to vnet.

>
> Sent via the Samsung GALAXY S®4, an AT&T 4G LTE smartphone
>
> <div>-------- Original message --------</div><div>From: Dag-Erling Smørgrav <des@des.no> </div><div>Date:10/16/2014  10:39 AM  (GMT-08:00) </div><div>To: "Bjoern A. Zeeb" <bzeeb-lists@lists.zabbadoz.net> </div><div>Cc: freebsd-net@freebsd.org,freebsd-virtualization@freebsd.org,freebsd-arch <freebsd-arch@freebsd.org> </div><div>Subject: Re: Enabling VIMAGE by default for FreeBSD 11? </div><div>
> </div>"Bjoern A. Zeeb" <bzeeb-lists@lists.zabbadoz.net> writes:
>> Dag-Erling Smørgrav <des@des.no> writes:
>>> There are other serious issues with our current pf (checksum
>>> corruption) which I think can only be resolved by importing a newer
>>> version.
>> Sorry, but you lost context.  I was talking about security
>> implications in VIMAGE context, not about random bugs.
> I realize that, but you're talking about patching our current pf, and I
> think that's a waste of time; we should import a newer version instead
> (which I assume already has those patches).
>
> DES