Re: kern/52074: -current npf map directive broken

To: Robert Elz <kre%munnari.OZ.AU@localhost>, Frank Kardel <kardel%netbsd.org@localhost>
Subject: Re: kern/52074: -current npf map directive broken
From: Roy Marples <roy%marples.name@localhost>
Date: Wed, 10 May 2017 13:22:01 +0100

On 09/05/2017 23:45, Robert Elz wrote:
>     Date:        Sun, 07 May 2017 23:07:42 +0200
>     From:        Frank Kardel <kardel%netbsd.org@localhost>
>     Message-ID:  <590F8C9E.3040102%netbsd.org@localhost>
> 
>   | From what I understand  this code originally attempted to avoid sending 
>   | from invalid/unusable local address (e. g. duplicate IP - error, 
>   | tentative and detached should just be dropped).
> 
> You also shouldn't be able to send from an address you don't own
> (generally - a router has to be able to forward, as distinct from
> originate, packets from anywhere of course).

This is what my initial code did.
What I'm more concerned about though is the panic.
I think we should revert xtos's change and solve the panic, as this just
masks over it.

Roy

Follow-Ups:
- Re: kern/52074: -current npf map directive broken
  - From: Frank Kardel
- Re: kern/52074: -current npf map directive broken
  - From: Christos Zoulas

References:
- Re: kern/52074: -current npf map directive broken
  - From: Frank Kardel
- Re: kern/52074: -current npf map directive broken
  - From: Mindaugas Rasiukevicius
- Re: kern/52074: -current npf map directive broken
  - From: Roy Marples
- Re: kern/52074: -current npf map directive broken
  - From: Robert Elz

Prev by Date: Re: kern/52074: -current npf map directive broken
Next by Date: Re: kern/52074: -current npf map directive broken
Previous by Thread: Re: kern/52074: -current npf map directive broken
Next by Thread: Re: kern/52074: -current npf map directive broken
Indexes:

Home | Main Index | Thread Index | Old Index