Date: Tue, 10 Nov 2015 13:45:21 -0800 From: NGie Cooper <yaneurabeya@gmail.com> To: Kristof Provost <kp@freebsd.org> Cc: Shawn Webb <shawn.webb@hardenedbsd.org>, FreeBSD Current <freebsd-current@freebsd.org> Subject: Re: pf NAT and VNET Jails Message-ID: <CAGHfRMBSAuz823rVC_BVsvucpaaxMocM1=-aG%2BXCTebXpJNO4g@mail.gmail.com> In-Reply-To: <20151110212805.GB13268@vega.codepro.be> References: <CAExMvs=jVsASLyiqU9nTpir0Hy_s_DfChgf4XKeGWv-8yojNBw@mail.gmail.com> <13324720.omGDCH0sVj@hbsd-dev-laptop> <D8AAC66A-ED1D-4A6C-9CCF-447CA788073A@FreeBSD.org> <5815854.WJiA8b3P58@hbsd-dev-laptop> <20151110024701.GA2694@mutt-hardenedbsd> <20151110212805.GB13268@vega.codepro.be>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, Nov 10, 2015 at 1:28 PM, Kristof Provost <kp@freebsd.org> wrote: > On 2015-11-09 21:47:01 (-0500), Shawn Webb <shawn.webb@hardenedbsd.org> wrote: >> I found the problem: it seems that the new Intel Haswell graphics >> support (which I've been running with) is at odds somehow with pf NAT. >> Removing Haswell graphics support means working pf NAT. >> > That's ... very strange. > > I've built the drm-i915-update-38 branch of http:////github.com/freebsd/freebsd-base-graphics.git, > but still haven't managed to reproduce the problem. > It is if course entirely possible that it would only manifest if the > haswell graphics are actually in use. In that case there's little I can > do as I don't have haswell hardware I could test on. 1. Add memguard(9) support to kernel. 2. Set the descriptions for the zones (as noted in the manpage) to catch panics when either driver tries to touch eachothers' space. Cheers, -NGie
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAGHfRMBSAuz823rVC_BVsvucpaaxMocM1=-aG%2BXCTebXpJNO4g>