User Details
- User Since
- Sep 28 2014, 7:22 PM (532 w, 5 d)
Mon, Dec 9
Does this need an MFC tag too?
Wed, Dec 4
LGTM. Approved regardless of how you choose to deal with the remarks I've raised.
Tue, Dec 3
Mon, Dec 2
Fri, Nov 29
Approved.
Review remarks
Approved (without the 'draft' in the commit header line, of course).
Thu, Nov 28
review remarks
I need to have a closer look again tomorrow, but this looks like a good idea.
It expects to be applied on top of D47770, right?
rename PF_RT_RPOOL/PF_RT_NAT
Wed, Nov 27
Okay, mostly cosmetic issues. I'd like to give Tom a chance to comment on the udp endpoint thing too, but we can fix the open remarks while we wait for that.
Please do try to *explain* the problem. "Fixes a regression" does not do this.
Let's start with the full backtrace, yes.
Shall we finish D47658 before we move on to other issues?
Tue, Nov 26
Approved.
Sun, Nov 24
Fri, Nov 22
Change the approach. Tell pf_refragment6() what interface to use. If unspecified
fall back to the previous ip6_forward/ip6_output calls.
This is basically the same approach OpenBSD took for this issue, and it's a
smaller change than splitting pf_refragment6() into two functions.
I'd love to see https://cgit.freebsd.org/src/tree/tests/sys/netpfil/pf/table.sh#n119 extended to also check for this.
Thu, Nov 21
I have the same patch (along with a test case) running a final test build now.
Wed, Nov 20
Same deal as D47679, send me the format-patch. Probably the last ones we'll do this dance for.
More a note to self: looking at structure pf_src_node, the only other field we don't set is *kif, but given that it's a pointer that's not really something we can do in the ioctl. I'll make a note of it to revisit this once the netlink migration is complete. We ought to be able to return the interface name then.
Good catch. Given that it also needs to be fixed on stable/14 you should add an 'MFC after' tag to the commit message.
Tue, Nov 19
Mon, Nov 18
<snip>
The entire backtrace would have been nice.
Still, that's not the most important thing right now. Concentrate on the test case, which will mean we can trivially reproduce backtraces and we can circle back to improving the commit message once we have both the test case and an actual fix.
The backtrace appears to have gotten mangled here.
Also, a gdb backtrace would be more useful as it'll decode to line numbers rather than to addresses.
Fri, Nov 15
Update the counter in ip_forward(), so we only set 'cantroute' in the forwarding case.
Extend the tests to test both slow and fast path forwarding.
Thu, Nov 14
That's kind of expected to not work. We don't run tests that way. We always run them via kyua because it does a lot of setup work for us. This starts the process midway, and stops before it's entirely done.
Nov 13 2024
What do you mean by "On an atf-sh script capture"?