Re: em(4): Don't count RX overruns and missed packets as input errros

2014-01-27 Thread Brad Smith
On Tue, Jan 28, 2014 at 01:21:46PM +1000, David Gwynne wrote: > > On 26 Jan 2014, at 11:31 am, Brad Smith wrote: > > > On 31/12/13 5:50 AM, Mike Belopuhov wrote: > >> On 31 December 2013 09:46, Brad Smith wrote: > >>> On 31/12/13 3:14 AM, Mark Kettenis wrote: > > > > Date: Tue, 31 Dec

Re: em(4): Don't count RX overruns and missed packets as input errros

2014-01-27 Thread David Gwynne
On 26 Jan 2014, at 11:31 am, Brad Smith wrote: > On 31/12/13 5:50 AM, Mike Belopuhov wrote: >> On 31 December 2013 09:46, Brad Smith wrote: >>> On 31/12/13 3:14 AM, Mark Kettenis wrote: > > Date: Tue, 31 Dec 2013 01:28:04 -0500 > From: Brad Smith > > Don't count RX overru

Re: bge(4): IPv6 checksum offload

2014-01-27 Thread Brad Smith
On 27/01/14 3:30 PM, Christian Weisgerber wrote: Some bge(4) chips support IPv6 TCP checksum transmit offload. Unfortunately, I have no idea which. My best guess is that this is symmetrical with the receive offload capability: if (BGE_IS_5755_PLUS(sc)) mode |= BGE_RXMO

bge(4): IPv6 checksum offload

2014-01-27 Thread Christian Weisgerber
Some bge(4) chips support IPv6 TCP checksum transmit offload. Unfortunately, I have no idea which. My best guess is that this is symmetrical with the receive offload capability: if (BGE_IS_5755_PLUS(sc)) mode |= BGE_RXMODE_IPV6_ENABLE; So here is an experimental patch to

Re: tcpdump: invalid v6 UDP checksums

2014-01-27 Thread Simon Perreault
Le 2014-01-26 11:27, Christian Weisgerber a écrit : Over IPv6, UDP packets must have a non-zero checksum (RFC2460, section 8.1). That is no longer true. http://tools.ietf.org/html/rfc6935#section-5 VXLAN and friends use zero UDP checksums over IPv6. Simon

Re: signed packages

2014-01-27 Thread Giancarlo Razzolini
Em 27-01-2014 01:33, Nicolai escreveu: > All the TLD and other massive outages say otherwise. I can think of > one project that uses DNSSEC to verify files via TXT lookups. Their > last DNSSEC outage? 3 days ago. Ed25519 in signify provides a 128-bit > security level and is decentralized. DNSSEC pr