Re: kern/53199: stateful npf

To: kern-bug-people%netbsd.org@localhost,gnats-admin%netbsd.org@localhost,netbsd-bugs%netbsd.org@localhost,prlw1%cam.ac.uk@localhost
Subject: Re: kern/53199: stateful npf
From: Patrick Welche <prlw1%cam.ac.uk@localhost>
Date: Wed, 9 May 2018 10:55:01 +0000 (UTC)

The following reply was made to PR kern/53199; it has been noted by GNATS.

From: Patrick Welche <prlw1%cam.ac.uk@localhost>
To: gnats-bugs%NetBSD.org@localhost
Cc: 
Subject: Re: kern/53199: stateful npf
Date: Wed, 9 May 2018 11:54:20 +0100

 Changed "broken" to
 
 # modstat | grep npf
 if_npflog               driver   builtin  -        0       - -
 npf                     misc     builtin  -        4       - bpf
 npf_alg_icmp            misc     builtin  -        0       - npf
 npf_ext_log             misc     builtin  -        0       - npf
 npf_ext_normalize       misc     builtin  -        0       - npf
 npf_ext_rndblock        misc     builtin  -        0       - npf
 
 and it still is broken (second packet should match rule 3):
 
 procedure "log"
 
 group "ext" on wm1 # id="1" 
         block in all apply "log" # id="2" 
         pass stateful in final family inet4 proto tcp flags S/SA to 131.111.65.65 port 80 apply "log" # id="3" 
 
 group # id="4" 
         pass all apply "log" # id="5" 
 
 11:50:42.035452 rule 3.rules.0/0(match): pass in on ???: (tos 0x0, ttl 62, id 56144, offset 0, flags [DF], proto TCP (6), length 60)
     131.111.62.210.44044 > 131.111.65.65.80: Flags [S], cksum 0x9ca2 (correct), seq 2696319833, win 29200, options [mss 1460,sackOK,TS val 2313504777 ecr 0,nop,wscale 7], length 0
 11:50:42.035469 rule 5.rules.0/0(match): pass out on ???: (tos 0x0, ttl 64, id 0, offset 0, flags [DF], proto TCP (6), length 60, bad cksum 0 (->b3ca)!)

Prev by Date: Re: kern/53261: kernel crash during test run
Next by Date: Re: kern/53199: stateful npf
Previous by Thread: Re: kern/53199: stateful npf
Next by Thread: Re: kern/53199: stateful npf
Indexes:

Home | Main Index | Thread Index | Old Index