Date: Sun, 08 Jan 2017 16:53:55 +0000 From: bugzilla-noreply@freebsd.org To: freebsd-bugs@FreeBSD.org Subject: [Bug 215874] [patch] [icmp] [mbuf_tags] teach icmp_error() optionally keep original packet's mbuf_tags Message-ID: <bug-215874-8@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D215874 Bug ID: 215874 Summary: [patch] [icmp] [mbuf_tags] teach icmp_error() optionally keep original packet's mbuf_tags Product: Base System Version: 11.0-STABLE Hardware: Any OS: Any Status: New Keywords: patch Severity: Affects Some People Priority: --- Component: kern Assignee: freebsd-bugs@FreeBSD.org Reporter: ports@grosbein.net Keywords: patch Created attachment 178624 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D178624&action= =3Dedit introduce new sysctl net.inet.icmp.error_keeptags Currently, icmp_error() function copies FIB number into generated ICMP resp= onse from original packet but not mbuf_tags(9) chain. This prevents us from easi= ly matching of ICMP packets corresponding to tagged original ones by means of ipfw(8). For example, ICMP "time-exceeded in-transit" packets (usually generated in response to traceroute probes) lose tags attached to original packets. Atta= ched simble patch introduces new sysctl net.inet.icmp.error_keeptags with default value 0 corresponding to current behaviour to avoid extra overhead. sysctl net.inet.icmp.error_keeptags=3D1 makes icmp_error() copy mbuf_tags f= rom original packet to generated ICMP response. --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-215874-8>