From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits)) (No client certificate requested) by finch.gentoo.org (Postfix) with ESMTPS id 08BB81581FB for ; Wed, 28 Aug 2024 06:48:26 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 54A4CE2A48; Wed, 28 Aug 2024 06:48:20 +0000 (UTC) Received: from tauri.iewc.co.za (tauri.iewc.co.za [154.73.32.4]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id D384DE2A43 for ; Wed, 28 Aug 2024 06:48:19 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=uls.co.za; s=20240625.tauri; h=In-Reply-To:From:To:References:Subject:MIME-Version:Date: Message-ID:Content-Type:Sender:Reply-To:Cc:Content-Transfer-Encoding: Content-ID:Content-Description:Resent-Date:Resent-From:Resent-Sender: Resent-To:Resent-Cc:Resent-Message-ID:List-Id:List-Help:List-Unsubscribe: List-Subscribe:List-Post:List-Owner:List-Archive; bh=ljieUL2YaHeHVoDibuTvgXCd2L68AmlTDCb9C26rWGM=; b=jqt9t6AnPaIDrZZqxec333aa8c Dg27v5ny6XX9aYXy0z6DkGQJpclGtERcufSh0blGEJLXf6lxfBRonqkZbQb9FjIgOacBc+zHiNPUU uyVW7mOvKGx3An9f9zIpT1US3NLoHA6MXR8SqSVmpojVnOOcm29EPiqAliCnwXtykyu21+4GD/VME p5eSJdziw8uAFkHBWBh1I7IAjpupAm0zdWva9w6CM/qi8LSrYoFCEvas5Qb6XS00kUBvEVkLRzZoM CXMphz5jvnzDXpCj0OHfcFMqbe5qJjVw8P/0OtfwzDIKHBw01iFt5zqv2jbS3nDCh6W0ljY6S3vuN +7QuoPzA==; Received: from [192.168.1.104] by tauri.iewc.co.za with esmtpsa (TLS1.3) tls TLS_AES_128_GCM_SHA256 (Exim 4.97.1) (envelope-from ) id 1sjCTW-00000000695-0msK for gentoo-dev@lists.gentoo.org; Wed, 28 Aug 2024 08:48:14 +0200 Content-Type: multipart/alternative; boundary="------------d0sv23CfY64jZxCTmGVIvoLa" Message-ID: Date: Wed, 28 Aug 2024 08:48:12 +0200 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@lists.gentoo.org Reply-to: gentoo-dev@lists.gentoo.org X-Auto-Response-Suppress: DR, RN, NRN, OOF, AutoReply MIME-Version: 1.0 User-Agent: Mozilla Thunderbird Subject: [gentoo-dev] Fwd: open pull requests [was on netifrc] Content-Language: en-GB References: <57f08773-f7b8-4a05-b792-442ef2330ed1@uls.co.za> To: gentoo development From: Jaco Kroon Autocrypt: addr=jaco@uls.co.za; keydata= xsBNBFXtplYBCADM6RTLCOSPiclevkn/gdf8h9l+kKA6N+WGIIFuUtoc9Gaf8QhXWW/fvUq2 a3eo4ULVFT1jJ56Vfm4MssGA97NZtlOe3cg8QJMZZhsoN5wetG9SrJvT9Rlltwo5nFmXY3ZY gXsdwkpDr9Y5TqBizx7DGxMd/mrOfXeql57FWFeOc2GuJBnHPZQMJsQ66l2obPn36hWEtHYN gcUSPH3OOusSEGZg/oX/8WSDQ/b8xz1JKTEgcnu/JR0FxzjY19zSHmbnyVU+/gF3oeJFcEUk HvZu776LRVdcZ0lb1bHQB2K9rTZBVeZLitgAefPVH2uERVSO8EZO1I5M7afV0Kd/Vyn9ABEB AAHNG0phY28gS3Jvb24gPGphY29AdWxzLmNvLnphPsLAdwQTAQgAIQUCVe2mVgIbAwULCQgH AgYVCAkKCwIEFgIDAQIeAQIXgAAKCRAILcSxr/fungCPB/sHrfufpRbrVTtHUjpbY4bTQLQE bVrh4/yMiKprALRYy0nsMivl16Q/3rNWXJuQ0gR/faC3yNlDgtEoXx8noXOhva9GGHPGTaPT hhpcp/1E4C9Ghcaxw3MRapVnSKnSYL+zOOpkGwye2+fbqwCkCYCM7Vu6ws3+pMzJNFK/UOgW Tj8O5eBa3DiU4U26/jUHEIg74U+ypYPcj5qXG0xNXmmoDpZweW41Cfo6FMmgjQBTEGzo9e5R kjc7MH3+IyJvP4bzE5Paq0q0b5zZ8DUJFtT7pVb3FQTz1v3CutLlF1elFZzd9sZrg+mLA5PM o8PG9FLw9ZtTE314vgMWJ+TTYX0kzsBNBFXtplYBCADedX9HSSJozh4YIBT+PuLWCTJRLTLu jXU7HobdK1EljPAi1ahCUXJR+NHvpJLSq/N5rtL12ejJJ4EMMp2UUK0IHz4kx26FeAJuOQMe GEzoEkiiR15ufkApBCRssIj5B8OA/351Y9PFore5KJzQf1psrCnMSZoJ89KLfU7C5S+ooX9e re2aWgu5jqKgKDLa07/UVHyxDTtQKRZSFibFCHbMELYKDr3tUdUfCDqVjipCzHmLZ+xMisfn yX9aTVI3FUIs8UiqM5xlxqfuCnDrKBJjQs3uvmd6cyhPRmnsjase48RoO84Ckjbp/HVu0+1+ 6vgiPjbe4xk7Ehkw1mfSxb79ABEBAAHCwF8EGAEIAAkFAlXtplYCGwwACgkQCC3Esa/37p7u XwgAjpFzUj+GMmo8ZeYwHH6YfNZQV+hfesr7tqlZn5DhQXJgT2NF6qh5Vn8TcFPR4JZiVIkF o0je7c8FJe34Aqex/H9R8LxvhENX/YOtq5+PqZj59y9G9+0FFZ1CyguTDC845zuJnnR5A0lw FARZaL8T7e6UGphtiT0NdR7EXnJ/alvtsnsNudtvFnKtigYvtw2wthW6CLvwrFjsuiXPjVUX 825zQUnBHnrED6vG67UG4z5cQ4uY/LcSNsqBsoj6/wsT0pnqdibhCWmgFimOsSRgaF7qsVtg TWyQDTjH643+qYbJJdH91LASRLrenRCgpCXgzNWAMX6PJlqLrNX1Ye4CQw== Organization: Ultimate Linux Solutions (Pty) Ltd In-Reply-To: <57f08773-f7b8-4a05-b792-442ef2330ed1@uls.co.za> X-Forwarded-Message-Id: <57f08773-f7b8-4a05-b792-442ef2330ed1@uls.co.za> X-Archives-Salt: 47de14d6-dba8-45b0-a89b-1e1d3904f691 X-Archives-Hash: 1ea70fed0bc9b4db167fba33fd4c47b9 This is a multi-part message in MIME format. --------------d0sv23CfY64jZxCTmGVIvoLa Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8bit Hi All, I've got two PRs open on netifrc project, one of which is becoming more and more of a pain for us, I'd prefer to push it upstream into netifrc since more people can benefit from it than just us, but I'm struggling to get that done so may have to revert to pushing it into our local repositories and projects instead. Hoping for some advise on how to proceed. Kind regards, Jaco -------- Forwarded Message -------- Subject: open pull requests Date: Thu, 22 Aug 2024 09:06:58 +0200 From: Jaco Kroon Organization: Ultimate Linux Solutions (Pty) Ltd To: netifrc@gentoo.org Hi, Would someone please be able to look at the open pull requests for netifrc? I'm in more and more need of https://github.com/gentoo/netifrc/pull/56 in particular, the other PR I'm much less worried about, and was a "simple" drive-by based on the suggestion from the referenced bug. I've deployed same to one or two servers already, but we really want it more widespread.  Due to the way ipv6 routing works configuring that by hand is a massive PITA, thus the only effective solutions (which is really much more convenient than IPv4) is to: 1.  Rely on DHCPv6 (requires a dhcp client to be running, something I prefer to avoid in DC); 2.  Rely on RAs from the gateways (yea, plural), the host can then self-configure using EUI64 or the iptoken mechanism, MAC addresses can (and does) change, tokens can be configured which gives predictability. Combined with other changes since last release may warrant a new point release as well (wireguard improvements, as well as non-device routes - something which we've done in a custom netifrc script for quite some time already, including routing rules, and specific to net.lo, so we loaded these as unreachable_routes=(...) and prohibit_routes=(...), and route[46]_rules=(...) in conf.d/net, happy to share these, they'll conflict a bit with [1] as in it's providing multiple mechanisms to get the same job done.  I think it would be good for Gentoo to standardise the mechanisms.  I do like the idea of just adding non-device routes to routes_lo=, that said, I've often wondered about just externalising non-devices routes and routing rules out of netifrc handling completely into it's own init script which does depend() { before net.lo; }.  This is a separate discussion though. Kind regards, Jaco 1. https://github.com/gentoo/netifrc/commit/7c6a8de0c521ea474bccb0dbda4338ff293cdfc6 --------------d0sv23CfY64jZxCTmGVIvoLa Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: 8bit

Hi All,

I've got two PRs open on netifrc project, one of which is becoming more and more of a pain for us, I'd prefer to push it upstream into netifrc since more people can benefit from it than just us, but I'm struggling to get that done so may have to revert to pushing it into our local repositories and projects instead.

Hoping for some advise on how to proceed.

Kind regards,
Jaco



-------- Forwarded Message --------
Subject: open pull requests
Date: Thu, 22 Aug 2024 09:06:58 +0200
From: Jaco Kroon <jaco@uls.co.za>
Organization: Ultimate Linux Solutions (Pty) Ltd
To: netifrc@gentoo.org


Hi,

Would someone please be able to look at the open pull requests for netifrc?

I'm in more and more need of https://github.com/gentoo/netifrc/pull/56 in particular, the other PR I'm much less worried about, and was a "simple" drive-by based on the suggestion from the referenced bug.

I've deployed same to one or two servers already, but we really want it more widespread.  Due to the way ipv6 routing works configuring that by hand is a massive PITA, thus the only effective solutions (which is really much more convenient than IPv4) is to:

1.  Rely on DHCPv6 (requires a dhcp client to be running, something I prefer to avoid in DC);
2.  Rely on RAs from the gateways (yea, plural), the host can then self-configure using EUI64 or the iptoken mechanism, MAC addresses can (and does) change, tokens can be configured which gives predictability.

Combined with other changes since last release may warrant a new point release as well (wireguard improvements, as well as non-device routes - something which we've done in a custom netifrc script for quite some time already, including routing rules, and specific to net.lo, so we loaded these as unreachable_routes=(...) and prohibit_routes=(...), and route[46]_rules=(...) in conf.d/net, happy to share these, they'll conflict a bit with [1] as in it's providing multiple mechanisms to get the same job done.  I think it would be good for Gentoo to standardise the mechanisms.  I do like the idea of just adding non-device routes to routes_lo=, that said, I've often wondered about just externalising non-devices routes and routing rules out of netifrc handling completely into it's own init script which does depend() { before net.lo; }.  This is a separate discussion though.

Kind regards,
Jaco

1. https://github.com/gentoo/netifrc/commit/7c6a8de0c521ea474bccb0dbda4338ff293cdfc6

--------------d0sv23CfY64jZxCTmGVIvoLa--