Page MenuHomeFreeBSD
Differential D11892

[NEW PORT] net/ndproxy: Implementation of IPv6 Neighbor Discovery proxy
ClosedPublic
Actions

Authored by ultima on Aug 6 2017, 3:06 AM.
Tags
None
Referenced Files
Unknown Object (File)
Mar 31 2024, 10:33 AM
Unknown Object (File)
Mar 9 2024, 10:09 PM
Unknown Object (File)
Mar 9 2024, 10:09 PM
Unknown Object (File)
Mar 9 2024, 10:09 PM
Unknown Object (File)
Mar 9 2024, 10:09 PM
Unknown Object (File)
Mar 9 2024, 10:08 PM
Unknown Object (File)
Mar 9 2024, 10:08 PM
Unknown Object (File)
Mar 9 2024, 9:56 PM
View All 68 Files
Subscribers
mat

Details

Reviewers
lifanov
matthew
Commits
rP447578: The ndproxy(4) kernel module implements IPv6 Neighbor Discovery
Summary

The ndproxy(4) kernel module implements IPv6 Neighbor Discovery
proxying with many options to handle several use-cases.

It replies to a neighbor solicitation with a specific neighbor
advertisement, in order to let the PE uplink router send further
packets to a CPE downlink router, that may or may not be the same
node that the one which runs ndproxy.

The main difference with the ndp(8) command-line tool is that, with
ndproxy(4), the host running ndp can be used only to redirect
packets to another IPv6 internal router, for instance a dedicated
one with hardware support of IPv6 routing processes.

WWW: http://www.fenyo.net/newweb/ndproxy.html

PR\: 219622
Submitted by\: Alexandre Fenyo <fbsd.bugzilla@fenyo.net> (maintainer)
Reviewed by\: lifanov (mentor), matthew (mentor), Jov <amutu@amutu.com>
Approved by\: lifanov (mentor), matthew (mentor)
Differential Revision\: https://reviews.freebsd.org/DXXXXX

Test Plan

portlint:
looks fine.

poudriere:
103i386
103amd64
110i386
110amd64
12i386
12amd64

Diff Detail

Repository
rP FreeBSD ports repository
Lint
No Lint Coverage
Unit
No Test Coverage
Build Status
Buildable 10935
Build 11323: arc lint + arc unit

Event Timeline

ultima created this revision.Aug 6 2017, 3:06 AM
Harbormaster completed remote builds in B10883: Diff 31636.Aug 6 2017, 3:06 AM
Herald added a subscriber: mat. · View Herald TranscriptAug 6 2017, 3:06 AM
ultima edited the summary of this revision. (Show Details)Aug 6 2017, 3:07 AM
ultima edited the summary of this revision. (Show Details)
ultima updated this revision to Diff 31648.Aug 6 2017, 7:56 AM
  • Added ndproxy to net/Makefile
  • Moved SUB_FILES to better follow PHB
Harbormaster completed remote builds in B10892: Diff 31648.Aug 6 2017, 7:56 AM
mat added inline comments.Aug 7 2017, 12:44 PM
net/ndproxy/Makefile
6

I am quite sure the * are not supposed to be there.

18
DISTVERSIONPREFIX=v
net/ndproxy/files/ndproxy.in
21–22

if ! sysctl net.inet6.ndproxyconf_uplink_interface > /dev/null 2>&1; then

23–24

if ! kldload ndproxy > /dev/null 2>&1; then

32–35

I would move these after the code testing for them.

52–53

if ! ifconfig ${ndproxy_uplink_interface} | head -1 | grep -q PPROMISC; then

66–67

if ! sysctl net.inet6.ndproxyconf_uplink_interface > /dev/null 2>&1 ; then

70–71

if ! kldunload ndproxy > /dev/null 2>&1 ; then

ultima added inline comments.Aug 7 2017, 6:44 PM
net/ndproxy/Makefile
6

This is how the PHB has them. I *think* portlint wasn't happy without it but i'll verify

net/ndproxy/files/ndproxy.in
21–22

I have always used the former, I like it much similar.

mat added inline comments.Aug 7 2017, 8:53 PM
net/ndproxy/Makefile
6

Mmmm, ok, 5.3.2. Current List of Categories says Those marked with an asterisk (*) are virtual categories.

It never occured to me that people would actually use those asterisks in the category names.

I will try to rewrite it a bit better.

net/ndproxy/files/ndproxy.in
21–22

Mmmm, it is not really, and is prone to errors. The only case where testing $? is required is when you want to check its exact value. In all other cases, use if foo. It allows you to run your script with set -e.

https://stackoverflow.com/questions/36313216/why-is-testing-to-see-if-a-command-succeeded-or-not-an-antipattern

ultima added inline comments.Aug 7 2017, 9:37 PM
net/ndproxy/files/ndproxy.in
21–22

Err, sorry I just reread my comment and it is easily confusing, I like suggested change and always used the former.

mat added inline comments.Aug 7 2017, 9:55 PM
net/ndproxy/Makefile
6

rD50651

ultima added inline comments.Aug 7 2017, 10:33 PM
net/ndproxy/Makefile
6

Yeah, I seem to create many unpredictable scenario. Thanks for making this clear, it is easily unmistakable now.

ultima updated this revision to Diff 31729.Aug 7 2017, 11:05 PM

Added fixes to Categories, DISTVERSIONPREFIX, and rc script

Harbormaster completed remote builds in B10935: Diff 31729.Aug 7 2017, 11:05 PM
matthew requested changes to this revision.Aug 8 2017, 2:36 PM

I'm getting:

=>> Recording filesystem state for preinst... done
=======================<phase: install        >============================
===>  Installing for ndproxy-2.0
===>  Checking if ndproxy already installed
===>   Registering installation for ndproxy-2.0
[pkgrepo.infracaninophile.co.uk] Installing ndproxy-2.0...
kldxref: //boot/modules/ndproxy.ko: file has no valid symbol table

and

=>> Checking for extra files and directories
=>> Error: Files or directories left over:
/%%KMODDIR%%/kldxref.core
/boot/lhint.UBjfJF
build of net/ndproxy | ndproxy-2.0 ended at Tue Aug  8 15:29:45 BST 2017
build time: 00:00:30
!!! build failure encountered !!!

which I think is due to stripping the generated ndproxy.ko. I think that kernel modules, counter to
the normal rules, should be left unstripped.

This revision now requires changes to proceed.Aug 8 2017, 2:36 PM
ultima updated this revision to Diff 31763.EditedAug 8 2017, 4:03 PM
ultima edited edge metadata.

Ah, I see. I actually added this due to portlint warning,

====> Running Q/A tests (stage-qa)
Warning: '/wrkdirs/usr/ports/net/ndproxy/work/stage/boot/modules/ndproxy.ko' is not stripped consider trying INSTALL_TARGET=install-strip or using ${STRIP_CMD}

Removed it. Do you have some extra testing enabled in poudriere? I wonder why I didn't receive this error during the build.

Harbormaster completed remote builds in B10957: Diff 31763.Aug 8 2017, 4:03 PM
matthew added a comment.Aug 8 2017, 4:34 PM
In D11892#247375, @ultima wrote:

Ah, I see. I actually added this due to portlint warning,

====> Running Q/A tests (stage-qa)
Warning: '/wrkdirs/usr/ports/net/ndproxy/work/stage/boot/modules/ndproxy.ko' is not stripped consider trying INSTALL_TARGET=install-strip or using ${STRIP_CMD}

Removed it. Do you have some extra testing enabled in poudriere? I wonder why I didn't receive this error during the build.

I don't think I've any extra testing enabled in poudriere. I am however running poudriere-devel which might explain the difference.

matthew accepted this revision.Aug 8 2017, 6:58 PM

lgtm

This revision is now accepted and ready to land.Aug 8 2017, 6:58 PM
Closed by commit rP447578: The ndproxy(4) kernel module implements IPv6 Neighbor Discovery (authored by ultima). · Explain WhyAug 8 2017, 10:06 PM
This revision was automatically updated to reflect the committed changes.

Revision Contents
Changeset List

PathSize
net/
ndproxy/
30 lines
3 lines
73 lines
22 lines
14 lines

Diff 31729

View Options

net/ndproxy/

Loading...
View Options

net/ndproxy/Makefile

Loading...
View Options

net/ndproxy/distinfo

Loading...
View Options

net/ndproxy/files/

Loading...
View Options

net/ndproxy/files/ndproxy.in

Loading...
View Options

net/ndproxy/files/pkg-message.in

Loading...
View Options

net/ndproxy/pkg-descr

Loading...