Page MenuHomeFreeBSD
Differential D26488

Add additional example to ng_bpf(4)
ClosedPublic
Actions

Authored by markus_stoffdv.at on Sep 20 2020, 8:26 AM.
Tags
Referenced Files
F82097410: D26488.id77312.diff
Thu, Apr 25, 11:48 AM
Unknown Object (File)
Tue, Apr 23, 10:42 PM
Unknown Object (File)
Fri, Apr 5, 6:40 PM
Unknown Object (File)
Fri, Mar 29, 3:32 PM
Unknown Object (File)
Thu, Mar 28, 10:19 PM
Unknown Object (File)
Thu, Mar 28, 9:49 PM
Unknown Object (File)
Mar 16 2024, 1:15 AM
Unknown Object (File)
Mar 16 2024, 1:15 AM
View All 50 Files
Subscribers
bcr
hselasky
imp
pi

Details

Reviewers
donner
pi
hselasky
bcr
Group Reviewers
manpages
Commits
rS366873: MFC r365958:
rS365958: Add example to ng_bpf(4) showing how ng_bpf(4) can be used to prevent spoofing.
Summary

Include a practical example that shows how ng_bpf can be used to prevent spoofing.

Diff Detail

Repository
rS FreeBSD src repository - subversion
Lint
Lint Skipped
Unit
Tests Skipped

Event Timeline

markus_stoffdv.at created this revision.Sep 20 2020, 8:26 AM
Herald added a reviewer: manpages. · View Herald TranscriptSep 20 2020, 8:26 AM
Herald added a subscriber: imp. · View Herald Transcript
markus_stoffdv.at requested review of this revision.Sep 20 2020, 8:26 AM
donner accepted this revision.Sep 20 2020, 12:08 PM

May you please provide a full context diff?
See https://wiki.freebsd.org/Phabricator

Okay from my side, final words come from "manpages".

share/man/man4/ng_bpf.4
182

May you use "documentation" IP space? See RFC 5737

This revision is now accepted and ready to land.Sep 20 2020, 12:08 PM
markus_stoffdv.at updated this revision to Diff 77253.Sep 20 2020, 2:11 PM

Now using documentation IP space and full context diff.

This revision now requires review to proceed.Sep 20 2020, 2:11 PM
pi added a subscriber: pi.Sep 20 2020, 5:42 PM

There are two ways to check man pages:

textproc/igor, it reports:

$ igor ng_bpf.4
ng_bpf.4:38:date not today, September 20, 2020:.Dd [April 29, 2020]
ng_bpf.4:173:blank line:

and mandoc -Tlint, which reports:

$ mandoc -Tlint ng_bpf.4
mandoc: ng_bpf.4:173:1: WARNING: blank line in fill mode, using .sp
mandoc: ng_bpf.4:117:2: STYLE: useless macro: Tn
mandoc: ng_bpf.4:124:2: STYLE: useless macro: Tn
mandoc: ng_bpf.4:130:2: STYLE: useless macro: Tn

Can you fix them ?

markus_stoffdv.at updated this revision to Diff 77260.Sep 20 2020, 6:26 PM
markus_stoffdv.at marked an inline comment as done.
In D26488#589643, @pi wrote:

There are two ways to check man pages:

textproc/igor, it reports:

$ igor ng_bpf.4
ng_bpf.4:38:date not today, September 20, 2020:.Dd [April 29, 2020]
ng_bpf.4:173:blank line:

and mandoc -Tlint, which reports:

$ mandoc -Tlint ng_bpf.4
mandoc: ng_bpf.4:173:1: WARNING: blank line in fill mode, using .sp
mandoc: ng_bpf.4:117:2: STYLE: useless macro: Tn
mandoc: ng_bpf.4:124:2: STYLE: useless macro: Tn
mandoc: ng_bpf.4:130:2: STYLE: useless macro: Tn

Can you fix them ?

Sure. Here you go.

pi added a comment.Sep 20 2020, 7:01 PM

The EXAMPLES section mentions tcpdump to generate BPF instructions that are fed into awk -- I do not see the awk(1) call in the example ? Is awk really needed for the example ?

donner added inline comments.Sep 20 2020, 7:09 PM
share/man/man4/ng_bpf.4
146

This awk script exists in an older version of the man page.
It was rewritten to shell starting with 7.1-RELEASE, but this comment was not modified.

pi added a comment.Sep 20 2020, 7:15 PM
  1. about awk: So the mention of awk(1) can be removed from the EXAMPLES section ?
  1. tcpdump wants to operate on some interface, as far as I can see, even it that interface will not be used ?

So running it as normal user gives this error:

$ tcpdump -s 8192 -p -ddd tcp dst port 80
tcpdump: igb0: You don't have permission to capture on that device

So this script needs to be run as root, right ? Can this be mentioned somewhere ? Any options to avoid running this as root ?

pi accepted this revision as: manpages.Sep 20 2020, 7:35 PM

The change is fine, with or without removing awk(1), and the root requirement is implicit, you can't modify hooks as normal user anyway (or can you?).

markus_stoffdv.at updated this revision to Diff 77261.Sep 20 2020, 7:46 PM
In D26488#589662, @pi wrote:

The change is fine, with or without removing awk(1), and the root requirement is implicit, you can't modify hooks as normal user anyway (or can you?).

I'm glad to hear that. As it isn't any effort, I've removed the awk reference anyway.

pi accepted this revision.Sep 21 2020, 5:11 AM
This revision is now accepted and ready to land.Sep 21 2020, 5:11 AM
hselasky accepted this revision.Sep 21 2020, 9:46 AM
hselasky added a subscriber: hselasky.

Looks good to me.

bcr accepted this revision.Sep 21 2020, 3:38 PM
bcr added a subscriber: bcr.

Also good from manpages (again).

Closed by commit rS365958: Add example to ng_bpf(4) showing how ng_bpf(4) can be used to prevent spoofing. (authored by hselasky). · Explain WhySep 21 2020, 6:17 PM
This revision was automatically updated to reflect the committed changes.
hselasky added a commit: rS365958: Add example to ng_bpf(4) showing how ng_bpf(4) can be used to prevent spoofing..
hselasky added a commit: rS366873: MFC r365958:.Oct 20 2020, 8:11 AM

Revision Contents
Changeset List

PathSize
share/
man/
man4/
45 lines

Diff 77253

View Options

share/man/man4/ng_bpf.4

Loading...