Re: kern/52074: -current npf map directive broken

[Frank Kardel <kardel%netbsd.org@localhost>]

Hi Roy !

Don't worry about the panic at all - it is unrelated - that was a side 
issue I already analyzed and discussed with christos@ and rmind@. Root 
cause there is currently a semantic problem in NPF regarding naming of 
dynamic rules.

Frank

On 05/10/17 14:22, Roy Marples wrote:
> On 09/05/2017 23:45, Robert Elz wrote:
> >      Date:        Sun, 07 May 2017 23:07:42 +0200
> >      From:        Frank Kardel <kardel%netbsd.org@localhost>
> >      Message-ID:  <590F8C9E.3040102%netbsd.org@localhost>
> >
> >    | From what I understand  this code originally attempted to avoid sending
> >    | from invalid/unusable local address (e. g. duplicate IP - error,
> >    | tentative and detached should just be dropped).
> >
> > You also shouldn't be able to send from an address you don't own
> > (generally - a router has to be able to forward, as distinct from
> > originate, packets from anywhere of course).
> This is what my initial code did.
> What I'm more concerned about though is the panic.
> I think we should revert xtos's change and solve the panic, as this just
> masks over it.
>
> Roy