Re: NPF issue with inet6($if) vs. ifaddrs($if)

To: tech-net%netbsd.org@localhost
Subject: Re: NPF issue with inet6($if) vs. ifaddrs($if)
From: mlelstv%serpens.de@localhost (Michael van Elst)
Date: Thu, 17 Nov 2022 08:02:50 -0000 (UTC)

anthony.mallet%laas.fr@localhost (Anthony Mallet) writes:

>Nice catch, thanks! The bytecode for inet6($ifgw) looks the same as
>what you posted in kern/55403: it jumps to the rest of the rule
>matching as soon as one byte of the address matches :/

>For the ifaddrs($ifgw) the bytecode uses "unimp 0x27". I'm not sure
>what this means, but this seems to behave correctly at least.

BPF_MISC 0x07
BPF_COP  0x20

That's a "co-processor instruction", in this case used for
a table lookup.

   BPF_STMT(BPF_MISC+BPF_COP, NPF_COP_TABLE), 

ifaddrs() works by creating a small table that you can search
for an interface address. A compiled match (inet6()) can only
work for static addresses.

Follow-Ups:
- Re: NPF issue with inet6($if) vs. ifaddrs($if)
  - From: Anthony Mallet

References:
- NPF issue with inet6($if) vs. ifaddrs($if)
  - From: Anthony Mallet
- Re: NPF issue with inet6($if) vs. ifaddrs($if)
  - From: Michael van Elst
- Re: NPF issue with inet6($if) vs. ifaddrs($if)
  - From: Anthony Mallet

Prev by Date: Re: NPF issue with inet6($if) vs. ifaddrs($if)
Next by Date: Re: NPF issue with inet6($if) vs. ifaddrs($if)
Previous by Thread: Re: NPF issue with inet6($if) vs. ifaddrs($if)
Next by Thread: Re: NPF issue with inet6($if) vs. ifaddrs($if)
Indexes:

Home | Main Index | Thread Index | Old Index