making SCTP loadable and removing it from GENERIC
Doug Hardie
bc979 at lafn.org
Fri Jul 10 10:29:31 UTC 2020
> On 10 July 2020, at 02:39, Michael Tuexen <tuexen at freebsd.org> wrote:
>
> Hi Eugene,
>
> you are completely right. However, it requires that the program needs to run
> with root privileges just to be able to communicate.
> In the context of userland stack, this is one of the most important issues.
> In case of SCTP, this is needed to open a raw socket to send/recv SCTP packets.
> This is one of the reasons why you use UDP encapsulation...
I see RFC 6951 on UDP encapsulation and understand there are situations where that would be needed. However, my replication processes do run as root. Just for fun, I started them as non-root and SCTP worked just fine. I didn't see any raw sockets in a ktrace of the processes.
76330 replicate CALL socket(PF_INET6,0x5<SOCK_SEQPACKET>,IPPROTO_SCTP)
76330 replicate RET socket 5
-- Doug
More information about the freebsd-net
mailing list