On 2023/05/22 12:00, Zack Newman wrote: > On 5/22/23 03:18, Stuart Henderson wrote: > > I don't have time to hand-hold at the moment. Perhaps someone else can, > > or see the ports faq for some details. > > Fair enough. I thought dealing with ports required -current as > https://www.openbsd.org/faq/ports/testing.html states "The ports tree is > developed against -current; there is no guarantee that new ports or > updates will work correctly on the other branches. This means you should > upgrade your system and ports tree to -current." Additionally, the diff > you sent is based on -current. I'll look into it more.
With CVS you can just checkout a single directory/subtree under a different tag, I would suggest doing a checkout with -r OPENBSD_7_3 and then cd into net/dhcpcd and cvs up -PdA to move that to -current. Or you can try this diff instead which applies to 7.3-stable. https://pbot.rmdir.de/TUCpK1TpCmhwZFuax3IBTA > I noticed that some changes to the pf portion in README have been made, > but it is still not quite correct. RFC 8415 does not state the source > ports clients or servers MUST/SHOULD use; therefore the "from port <>" > portions should be removed. Technically RFC 8415 does not require > client-server communication to take place on a link-local address either, > so you may want to remove that as well (emphasis added): "The client uses > a link-local address _or addresses determined through other mechanisms_ > for transmitting and receiving DHCP messages." Huh. So a client can use some other source port to send to the server, but the server is still required to send packets back to port 546 on the client rather than the source port the client actually used. Who came up with this idea... (I am dubious that random DHCPv6 infrastructure on the 'net will cope with a different source port either). Anyway in that case the "out" rule would be pass out quick on pppoe0 proto udp to port dhcpv6-server received-on none The "in" rule is more problematic, I don't think we would want pass in quick on pppoe0 proto udp to port dhcpv6-client because that covers incoming packets to machines behind the router. We can't use "self" because addresses are determined at PF ruleset load time. Do we need "{(self) fe80::/10" or something? Is this something you had to change yourself or is it just from a strict reading of 8415?
