From owner-freebsd-jail@FreeBSD.ORG Mon Nov 24 11:07:16 2008 Return-Path: Delivered-To: freebsd-jail@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 63353106564A for ; Mon, 24 Nov 2008 11:07:16 +0000 (UTC) (envelope-from owner-bugmaster@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 528A58FC2B for ; Mon, 24 Nov 2008 11:07:16 +0000 (UTC) (envelope-from owner-bugmaster@FreeBSD.org) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.3/8.14.3) with ESMTP id mAOB7G1n019947 for ; Mon, 24 Nov 2008 11:07:16 GMT (envelope-from owner-bugmaster@FreeBSD.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.3/8.14.3/Submit) id mAOB7FxS019943 for freebsd-jail@FreeBSD.org; Mon, 24 Nov 2008 11:07:15 GMT (envelope-from owner-bugmaster@FreeBSD.org) Date: Mon, 24 Nov 2008 11:07:15 GMT Message-Id: <200811241107.mAOB7FxS019943@freefall.freebsd.org> X-Authentication-Warning: freefall.freebsd.org: gnats set sender to owner-bugmaster@FreeBSD.org using -f From: FreeBSD bugmaster To: freebsd-jail@FreeBSD.org Cc: Subject: Current problem reports assigned to freebsd-jail@FreeBSD.org X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 24 Nov 2008 11:07:16 -0000 Note: to view an individual PR, use: http://www.freebsd.org/cgi/query-pr.cgi?pr=(number). The following is a listing of current problems submitted by FreeBSD users. These represent problem reports covering all versions including experimental development code and obsolete releases. S Tracker Resp. Description -------------------------------------------------------------------------------- o kern/126368 jail [jail] Running ktrace/kdump in jail leads to stale jai o kern/120753 jail [jail] Zombie jails (jailed child process exits while o kern/119842 jail [smbfs] [jail] "Bad address" with smbfs inside a jail o bin/99566 jail [jail] [patch] fstat(1) according to specified jid o kern/97071 jail [jail] [patch] add security.jail.jid sysctl o kern/89989 jail [jail] [patch] Add option -I (ASCII 73) PID to specif s kern/89528 jail [jail] [patch] impossible to kill a jail o kern/84215 jail [jail] [patch] wildcard ip (INADDR_ANY) should not bin o kern/74314 jail [resolver] [jail] DNS resolver broken under certain ja o kern/72498 jail [libc] [jail] timestamp code on jailed SMP machine gen o kern/68192 jail [quotas] [jail] Cannot use quotas on jailed systems o bin/32828 jail [jail] w(1) incorrectly handles stale utmp slots with 12 problems total. From owner-freebsd-jail@FreeBSD.ORG Wed Nov 26 06:11:49 2008 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id CF9611065673 for ; Wed, 26 Nov 2008 06:11:49 +0000 (UTC) (envelope-from spry@anarchy.in.the.ph) Received: from fk-out-0910.google.com (fk-out-0910.google.com [209.85.128.190]) by mx1.freebsd.org (Postfix) with ESMTP id 6A6318FC1B for ; Wed, 26 Nov 2008 06:11:49 +0000 (UTC) (envelope-from spry@anarchy.in.the.ph) Received: by fk-out-0910.google.com with SMTP id k31so288834fkk.11 for ; Tue, 25 Nov 2008 22:11:48 -0800 (PST) Received: by 10.181.134.11 with SMTP id l11mr1840495bkn.18.1227678624846; Tue, 25 Nov 2008 21:50:24 -0800 (PST) Received: by 10.181.155.10 with HTTP; Tue, 25 Nov 2008 21:50:24 -0800 (PST) Message-ID: Date: Wed, 26 Nov 2008 13:50:24 +0800 From: "Mars G Miro" To: "Bjoern A. Zeeb" In-Reply-To: <20081106114254.E16105@maildrop.int.zabbadoz.net> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <20081106114254.E16105@maildrop.int.zabbadoz.net> Cc: freebsd-jail@freebsd.org Subject: Re: Succesful patch on several hosts with RELENG_7 X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 26 Nov 2008 06:11:49 -0000 On Thu, Nov 6, 2008 at 7:44 PM, Bjoern A. Zeeb wrote: > On Thu, 6 Nov 2008, Matheus Cucoloto wrote: > > Hi, > >> I tried to apply this patch, but i had no success. >> >> That is the message I got: > > ... >> >> Any hint? > > http://lists.freebsd.org/pipermail/freebsd-jail/2008-October/000577.html > > So the reason there is no 7 patch is that Robert and I finally found a > solution for one of the problems that came up during the review and I > still need to implement it. My plan was to do so later today... > > There will be a new set of patches soon (famous last words;) > > So, any word on the new set of patches? ;-) I've had a box in production w/ this multi-IP patch (v4 and v6 in use) and it been running fine smoothly. I wanted to updated to the latest 7.1X but the last patch doesn't apply cleanly. Thanks. > /bz > > -- > Bjoern A. Zeeb Stop bit received. Insert coin for new game. > _______________________________________________ > freebsd-jail@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-jail > To unsubscribe, send any mail to "freebsd-jail-unsubscribe@freebsd.org" > -- cheers mars From owner-freebsd-jail@FreeBSD.ORG Wed Nov 26 07:35:07 2008 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C0BED1065670 for ; Wed, 26 Nov 2008 07:35:07 +0000 (UTC) (envelope-from bzeeb-lists@lists.zabbadoz.net) Received: from mail.cksoft.de (mail.cksoft.de [62.111.66.27]) by mx1.freebsd.org (Postfix) with ESMTP id 7670E8FC0C for ; Wed, 26 Nov 2008 07:35:07 +0000 (UTC) (envelope-from bzeeb-lists@lists.zabbadoz.net) Received: from localhost (amavis.str.cksoft.de [192.168.74.71]) by mail.cksoft.de (Postfix) with ESMTP id E6A0441C711; Wed, 26 Nov 2008 08:35:05 +0100 (CET) X-Virus-Scanned: amavisd-new at cksoft.de Received: from mail.cksoft.de ([62.111.66.27]) by localhost (amavis.str.cksoft.de [192.168.74.71]) (amavisd-new, port 10024) with ESMTP id t4QHq06g4+8s; Wed, 26 Nov 2008 08:35:05 +0100 (CET) Received: by mail.cksoft.de (Postfix, from userid 66) id 9F86841C70C; Wed, 26 Nov 2008 08:35:05 +0100 (CET) Received: from maildrop.int.zabbadoz.net (maildrop.int.zabbadoz.net [10.111.66.10]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mail.int.zabbadoz.net (Postfix) with ESMTP id 895C74448D5; Wed, 26 Nov 2008 07:31:55 +0000 (UTC) Date: Wed, 26 Nov 2008 07:31:55 +0000 (UTC) From: "Bjoern A. Zeeb" X-X-Sender: bz@maildrop.int.zabbadoz.net To: freebsd-jail@freebsd.org In-Reply-To: Message-ID: <20081126070902.B61259@maildrop.int.zabbadoz.net> References: <20081106114254.E16105@maildrop.int.zabbadoz.net> X-OpenPGP-Key: 0x14003F198FEFA3E77207EE8D2B58B8F83CCF1842 MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Cc: Subject: Re: Succesful patch on several hosts with RELENG_7 X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 26 Nov 2008 07:35:07 -0000 On Wed, 26 Nov 2008, Mars G Miro wrote: Hi, > So, any word on the new set of patches? ;-) I have one for HEAD, almost had one all the time. In case you want to test it on HEAD as it would be comitted let me know. As it comes to 7, see my yesterday's work here: http://perforce.freebsd.org/chv.cgi?CH=153529 merging 40 or so changesets back from HEAD. I need to check that it compiles and works and reduce the diff to HEAD in a few places. Regards, Bjoern -- Bjoern A. Zeeb Stop bit received. Insert coin for new game. From owner-freebsd-jail@FreeBSD.ORG Wed Nov 26 07:45:20 2008 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 5F9401065687 for ; Wed, 26 Nov 2008 07:45:20 +0000 (UTC) (envelope-from spry@anarchy.in.the.ph) Received: from fk-out-0910.google.com (fk-out-0910.google.com [209.85.128.188]) by mx1.freebsd.org (Postfix) with ESMTP id EF3758FC19 for ; Wed, 26 Nov 2008 07:45:19 +0000 (UTC) (envelope-from spry@anarchy.in.the.ph) Received: by fk-out-0910.google.com with SMTP id k31so320980fkk.11 for ; Tue, 25 Nov 2008 23:45:18 -0800 (PST) Received: by 10.181.240.7 with SMTP id s7mr1842045bkr.110.1227685518566; Tue, 25 Nov 2008 23:45:18 -0800 (PST) Received: by 10.181.155.10 with HTTP; Tue, 25 Nov 2008 23:45:18 -0800 (PST) Message-ID: Date: Wed, 26 Nov 2008 15:45:18 +0800 From: "Mars G Miro" To: "Bjoern A. Zeeb" In-Reply-To: <20081126070902.B61259@maildrop.int.zabbadoz.net> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <20081106114254.E16105@maildrop.int.zabbadoz.net> <20081126070902.B61259@maildrop.int.zabbadoz.net> Cc: freebsd-jail@freebsd.org Subject: Re: Succesful patch on several hosts with RELENG_7 X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 26 Nov 2008 07:45:20 -0000 On Wed, Nov 26, 2008 at 3:31 PM, Bjoern A. Zeeb wrote: > On Wed, 26 Nov 2008, Mars G Miro wrote: > > Hi, > >> So, any word on the new set of patches? ;-) > > I have one for HEAD, almost had one all the time. In case you want to > test it on HEAD as it would be comitted let me know. > > As it comes to 7, see my yesterday's work here: > http://perforce.freebsd.org/chv.cgi?CH=153529 > merging 40 or so changesets back from HEAD. I need to check that it > compiles and works and reduce the diff to HEAD in a few places. > > Nice. ahm, how do i grab those changes in one diff again? Thanks. > Regards, > Bjoern > > -- > Bjoern A. Zeeb Stop bit received. Insert coin for new game. > -- cheers mars From owner-freebsd-jail@FreeBSD.ORG Wed Nov 26 08:35:08 2008 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 09A3C1065672 for ; Wed, 26 Nov 2008 08:35:08 +0000 (UTC) (envelope-from bzeeb-lists@lists.zabbadoz.net) Received: from mail.cksoft.de (mail.cksoft.de [62.111.66.27]) by mx1.freebsd.org (Postfix) with ESMTP id B22E78FC18 for ; Wed, 26 Nov 2008 08:35:07 +0000 (UTC) (envelope-from bzeeb-lists@lists.zabbadoz.net) Received: from localhost (amavis.str.cksoft.de [192.168.74.71]) by mail.cksoft.de (Postfix) with ESMTP id 243E741C64A; Wed, 26 Nov 2008 09:35:06 +0100 (CET) X-Virus-Scanned: amavisd-new at cksoft.de Received: from mail.cksoft.de ([62.111.66.27]) by localhost (amavis.str.cksoft.de [192.168.74.71]) (amavisd-new, port 10024) with ESMTP id iJZ9ASpY2Y1V; Wed, 26 Nov 2008 09:35:05 +0100 (CET) Received: by mail.cksoft.de (Postfix, from userid 66) id C534B41C63C; Wed, 26 Nov 2008 09:35:05 +0100 (CET) Received: from maildrop.int.zabbadoz.net (maildrop.int.zabbadoz.net [10.111.66.10]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mail.int.zabbadoz.net (Postfix) with ESMTP id B546E4448D5; Wed, 26 Nov 2008 08:31:26 +0000 (UTC) Date: Wed, 26 Nov 2008 08:31:26 +0000 (UTC) From: "Bjoern A. Zeeb" X-X-Sender: bz@maildrop.int.zabbadoz.net To: Mars G Miro In-Reply-To: Message-ID: <20081126082955.P61259@maildrop.int.zabbadoz.net> References: <20081106114254.E16105@maildrop.int.zabbadoz.net> <20081126070902.B61259@maildrop.int.zabbadoz.net> X-OpenPGP-Key: 0x14003F198FEFA3E77207EE8D2B58B8F83CCF1842 MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Cc: freebsd-jail@freebsd.org Subject: Re: Succesful patch on several hosts with RELENG_7 X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 26 Nov 2008 08:35:08 -0000 On Wed, 26 Nov 2008, Mars G Miro wrote: > On Wed, Nov 26, 2008 at 3:31 PM, Bjoern A. Zeeb > wrote: >> On Wed, 26 Nov 2008, Mars G Miro wrote: >> >> Hi, >> >>> So, any word on the new set of patches? ;-) >> >> I have one for HEAD, almost had one all the time. In case you want to >> test it on HEAD as it would be comitted let me know. >> >> As it comes to 7, see my yesterday's work here: >> http://perforce.freebsd.org/chv.cgi?CH=153529 >> merging 40 or so changesets back from HEAD. I need to check that it >> compiles and works and reduce the diff to HEAD in a few places. >> >> > > Nice. ahm, how do i grab those changes in one diff again? those changes alone don't help you to get anything working. I'll publish a complete patch for 7 once I finished the list from above: - check it compiles - make sure it works You don't want to immediately panic your server, do you? I prefer to at least have caught the obvious parts;-) /bz -- Bjoern A. Zeeb Stop bit received. Insert coin for new game. From owner-freebsd-jail@FreeBSD.ORG Wed Nov 26 09:22:30 2008 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id ADC891065672 for ; Wed, 26 Nov 2008 09:22:30 +0000 (UTC) (envelope-from spry@anarchy.in.the.ph) Received: from fg-out-1718.google.com (fg-out-1718.google.com [72.14.220.155]) by mx1.freebsd.org (Postfix) with ESMTP id 40BDC8FC18 for ; Wed, 26 Nov 2008 09:22:29 +0000 (UTC) (envelope-from spry@anarchy.in.the.ph) Received: by fg-out-1718.google.com with SMTP id l26so230844fgb.35 for ; Wed, 26 Nov 2008 01:22:28 -0800 (PST) Received: by 10.181.219.15 with SMTP id w15mr1871364bkq.90.1227691348468; Wed, 26 Nov 2008 01:22:28 -0800 (PST) Received: by 10.181.155.10 with HTTP; Wed, 26 Nov 2008 01:22:28 -0800 (PST) Message-ID: Date: Wed, 26 Nov 2008 17:22:28 +0800 From: "Mars G Miro" To: "Bjoern A. Zeeb" In-Reply-To: <20081126082955.P61259@maildrop.int.zabbadoz.net> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <20081106114254.E16105@maildrop.int.zabbadoz.net> <20081126070902.B61259@maildrop.int.zabbadoz.net> <20081126082955.P61259@maildrop.int.zabbadoz.net> Cc: freebsd-jail@freebsd.org Subject: Re: Succesful patch on several hosts with RELENG_7 X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 26 Nov 2008 09:22:30 -0000 On Wed, Nov 26, 2008 at 4:31 PM, Bjoern A. Zeeb wrote: > On Wed, 26 Nov 2008, Mars G Miro wrote: > >> On Wed, Nov 26, 2008 at 3:31 PM, Bjoern A. Zeeb >> wrote: >>> >>> On Wed, 26 Nov 2008, Mars G Miro wrote: >>> >>> Hi, >>> >>>> So, any word on the new set of patches? ;-) >>> >>> I have one for HEAD, almost had one all the time. In case you want to >>> test it on HEAD as it would be comitted let me know. >>> >>> As it comes to 7, see my yesterday's work here: >>> http://perforce.freebsd.org/chv.cgi?CH=153529 >>> merging 40 or so changesets back from HEAD. I need to check that it >>> compiles and works and reduce the diff to HEAD in a few places. >>> >>> >> >> Nice. ahm, how do i grab those changes in one diff again? > > those changes alone don't help you to get anything working. > I'll publish a complete patch for 7 once I finished the list from > above: > - check it compiles > - make sure it works > > You don't want to immediately panic your server, do you? I prefer to > at least have caught the obvious parts;-) > Ok cool. I can test patches for recent 7.X and 8.X. Thanks. > /bz > > -- > Bjoern A. Zeeb Stop bit received. Insert coin for new game. > -- cheers mars From owner-freebsd-jail@FreeBSD.ORG Thu Nov 27 00:00:09 2008 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 44FE81065677 for ; Thu, 27 Nov 2008 00:00:09 +0000 (UTC) (envelope-from bzeeb-lists@lists.zabbadoz.net) Received: from mail.cksoft.de (mail.cksoft.de [62.111.66.27]) by mx1.freebsd.org (Postfix) with ESMTP id D479D8FC12 for ; Thu, 27 Nov 2008 00:00:08 +0000 (UTC) (envelope-from bzeeb-lists@lists.zabbadoz.net) Received: from localhost (amavis.str.cksoft.de [192.168.74.71]) by mail.cksoft.de (Postfix) with ESMTP id EFD0A41C711 for ; Thu, 27 Nov 2008 01:00:07 +0100 (CET) X-Virus-Scanned: amavisd-new at cksoft.de Received: from mail.cksoft.de ([62.111.66.27]) by localhost (amavis.str.cksoft.de [192.168.74.71]) (amavisd-new, port 10024) with ESMTP id cCc-fWXnR7or for ; Thu, 27 Nov 2008 01:00:06 +0100 (CET) Received: by mail.cksoft.de (Postfix, from userid 66) id DD2FF41C736; Thu, 27 Nov 2008 01:00:06 +0100 (CET) Received: from maildrop.int.zabbadoz.net (maildrop.int.zabbadoz.net [10.111.66.10]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mail.int.zabbadoz.net (Postfix) with ESMTP id D76CD4448D5 for ; Wed, 26 Nov 2008 23:56:55 +0000 (UTC) Date: Wed, 26 Nov 2008 23:56:55 +0000 (UTC) From: "Bjoern A. Zeeb" X-X-Sender: bz@maildrop.int.zabbadoz.net To: freebsd-jail@freebsd.org Message-ID: <20081126234502.S61259@maildrop.int.zabbadoz.net> X-OpenPGP-Key: 0x14003F198FEFA3E77207EE8D2B58B8F83CCF1842 MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Subject: Anyone interested in jail patches? X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 27 Nov 2008 00:00:09 -0000 Hi, it's 1am and I am out of caffeine so excuse all those typos and in case there will be bugs blame them on whatever you want...; I just want to get this out, finally, to you. If you are interested in a new set of jail patches... anyone?;-) 1) read the changelog from http://perforce.freebsd.org/chv.cgi?CH=153529 that's a good summary for the diff to the last set of patches. 2) I freshly integrated both branches; there had been a few changes since yesterday after my testing but those should be ok. It also means that the patches should apply to the sources of `now`. 2a) for HEAD: http://people.freebsd.org/~bz/bz_jail-20081126-02-at153644.diff 2b) for RELENG_7: http://people.freebsd.org/~bz/bz_jail7-20081126-02-at153644.diff 2c) there is no 7.0-RELEASE support anymore; sorry. As always please report problems or success stories to the list rather than to me directly. Same usually applies for questions. In case you are happy consider http://www.freebsdfoundation.org/donate/ . Regards, Bjoern -- Bjoern A. Zeeb Stop bit received. Insert coin for new game. From owner-freebsd-jail@FreeBSD.ORG Thu Nov 27 07:22:50 2008 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id CE4931065672 for ; Thu, 27 Nov 2008 07:22:50 +0000 (UTC) (envelope-from spry@anarchy.in.the.ph) Received: from fg-out-1718.google.com (fg-out-1718.google.com [72.14.220.154]) by mx1.freebsd.org (Postfix) with ESMTP id 6B5BB8FC14 for ; Thu, 27 Nov 2008 07:22:50 +0000 (UTC) (envelope-from spry@anarchy.in.the.ph) Received: by fg-out-1718.google.com with SMTP id l26so517509fgb.35 for ; Wed, 26 Nov 2008 23:22:49 -0800 (PST) Received: by 10.181.201.13 with SMTP id d13mr2232629bkq.197.1227770568495; Wed, 26 Nov 2008 23:22:48 -0800 (PST) Received: by 10.181.155.10 with HTTP; Wed, 26 Nov 2008 23:22:48 -0800 (PST) Message-ID: Date: Thu, 27 Nov 2008 15:22:48 +0800 From: "Mars G Miro" To: "Bjoern A. Zeeb" In-Reply-To: <20081126234502.S61259@maildrop.int.zabbadoz.net> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <20081126234502.S61259@maildrop.int.zabbadoz.net> Cc: freebsd-jail@freebsd.org Subject: Re: Anyone interested in jail patches? X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 27 Nov 2008 07:22:50 -0000 On Thu, Nov 27, 2008 at 7:56 AM, Bjoern A. Zeeb wrote: > Hi, > > it's 1am and I am out of caffeine so excuse all those typos and in case > there will be bugs blame them on whatever you want...; I just want to > get this out, finally, to you. > > If you are interested in a new set of jail patches... anyone?;-) > > 1) read the changelog from http://perforce.freebsd.org/chv.cgi?CH=153529 > that's a good summary for the diff to the last set of patches. > > 2) I freshly integrated both branches; there had been a few changes > since yesterday after my testing but those should be ok. It also > means that the patches should apply to the sources of `now`. > Tried both on recent 7.X and 8.X. Used about 4,5 different IPs ( IPv4 and v6 ) for the jails. So far so good ;-) Thanks! > 2a) for HEAD: > http://people.freebsd.org/~bz/bz_jail-20081126-02-at153644.diff > > 2b) for RELENG_7: > http://people.freebsd.org/~bz/bz_jail7-20081126-02-at153644.diff > > 2c) there is no 7.0-RELEASE support anymore; sorry. > > > As always please report problems or success stories to the list rather > than to me directly. Same usually applies for questions. In case you > are happy consider http://www.freebsdfoundation.org/donate/ . > > > Regards, > Bjoern > > -- > Bjoern A. Zeeb Stop bit received. Insert coin for new game. > _______________________________________________ > freebsd-jail@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-jail > To unsubscribe, send any mail to "freebsd-jail-unsubscribe@freebsd.org" > -- cheers mars From owner-freebsd-jail@FreeBSD.ORG Thu Nov 27 12:35:07 2008 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 96DD6106564A for ; Thu, 27 Nov 2008 12:35:07 +0000 (UTC) (envelope-from bzeeb-lists@lists.zabbadoz.net) Received: from mail.cksoft.de (mail.cksoft.de [62.111.66.27]) by mx1.freebsd.org (Postfix) with ESMTP id 4D6A58FC0A for ; Thu, 27 Nov 2008 12:35:07 +0000 (UTC) (envelope-from bzeeb-lists@lists.zabbadoz.net) Received: from localhost (amavis.str.cksoft.de [192.168.74.71]) by mail.cksoft.de (Postfix) with ESMTP id 916E841C707; Thu, 27 Nov 2008 13:35:05 +0100 (CET) X-Virus-Scanned: amavisd-new at cksoft.de Received: from mail.cksoft.de ([62.111.66.27]) by localhost (amavis.str.cksoft.de [192.168.74.71]) (amavisd-new, port 10024) with ESMTP id mVfHj8syF5GV; Thu, 27 Nov 2008 13:35:05 +0100 (CET) Received: by mail.cksoft.de (Postfix, from userid 66) id 2CE1341C6A3; Thu, 27 Nov 2008 13:35:05 +0100 (CET) Received: from maildrop.int.zabbadoz.net (maildrop.int.zabbadoz.net [10.111.66.10]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mail.int.zabbadoz.net (Postfix) with ESMTP id 2250A4448D5; Thu, 27 Nov 2008 12:33:58 +0000 (UTC) Date: Thu, 27 Nov 2008 12:33:58 +0000 (UTC) From: "Bjoern A. Zeeb" X-X-Sender: bz@maildrop.int.zabbadoz.net To: Mars G Miro In-Reply-To: Message-ID: <20081127123322.Y61259@maildrop.int.zabbadoz.net> References: <20081126234502.S61259@maildrop.int.zabbadoz.net> X-OpenPGP-Key: 0x14003F198FEFA3E77207EE8D2B58B8F83CCF1842 MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Cc: freebsd-jail@freebsd.org Subject: Re: Anyone interested in jail patches? X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 27 Nov 2008 12:35:07 -0000 On Thu, 27 Nov 2008, Mars G Miro wrote: Hi, > Tried both on recent 7.X and 8.X. Used about 4,5 different IPs ( IPv4 > and v6 ) for the jails. > > So far so good ;-) That was good news the next morning:) Thanks. Regards, Bjoern -- Bjoern A. Zeeb Stop bit received. Insert coin for new game. From owner-freebsd-jail@FreeBSD.ORG Thu Nov 27 21:18:45 2008 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C46D91065672 for ; Thu, 27 Nov 2008 21:18:45 +0000 (UTC) (envelope-from frank@harz.behrens.de) Received: from post.behrens.de (post.behrens.de [IPv6:2a01:170:1023::1:2]) by mx1.freebsd.org (Postfix) with ESMTP id 26B578FC0C for ; Thu, 27 Nov 2008 21:18:44 +0000 (UTC) (envelope-from frank@harz.behrens.de) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=behrens.de; h=from:to:date:mime-version:subject:cc:in-reply-to:content-type:content-transfer-encoding:content-description; s=pinky1; t=1227820723; i=frank@harz.behrens.de; bh=zBeoE/v8RTzagdpB69IG3k50EoWfqV1Yd5HNIGXK89E=; b=oLP5Syum4xwXWU0580aaJh6guWv5d40K3FBSIQh1KYCQN9YKsbA9pvr9md/WVEH4LvrOd4sZdGCbERLs+Tl2oA== Received: from sun.behrens ([IPv6:2a01:170:1023:0:c0d6:53ce:9573:dd8b]) by post.behrens.de (8.14.3/8.14.2) with ESMTP(MSA) id mARLIdKH006580; Thu, 27 Nov 2008 22:18:39 +0100 (CET) (envelope-from frank@harz.behrens.de) Message-Id: <200811272118.mARLIdKH006580@post.behrens.de> From: "Frank Behrens" To: "Bjoern A. Zeeb" Date: Thu, 27 Nov 2008 22:18:38 +0100 MIME-Version: 1.0 Priority: normal In-reply-to: <20081126234502.S61259@maildrop.int.zabbadoz.net> X-mailer: Pegasus Mail for Windows (4.31, DE v4.31 R1) Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Content-description: Mail message body X-Hashcash: 1:23:081127:freebsd-jail@freebsd.org::7Bm4LnHPuvPlMC0J:0000000002Kzk X-Hashcash: 1:23:081127:bzeeb-lists@lists.zabbadoz.net::HqN/aPCD5nyVIBDd:000OWtv Cc: freebsd-jail@freebsd.org Subject: Re: Anyone interested in jail patches? X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 27 Nov 2008 21:18:45 -0000 Hi Bjoern, thanks for the good news! Bjoern A. Zeeb wrote on 26 Nov 2008 23:56: > 2b) for RELENG_7: > http://people.freebsd.org/~bz/bz_jail7-20081126-02-at153644.diff I already used your patch from May 2008 in production without any problems. The update was no problem, you patch applied cleanly to current sources. Until now I could not see any regression in jail handling compared to the version from May, so I would say: good work. (Source address handling is another topic and another thread.) There is still a question left: In earlier version we had a sysctl security.jail.jailed_sockets_first. This sysctl was removed, so I assume it is "built-in" now, eventually I did not see any problems. On the other side I still read in the patched jail(2) man page: "Similarly, it might be a good idea to add an address alias flag such that daemons listening on all IPs (INADDR_ANY) will not bind on that address...". Can you explain the current behaviour? I did not test your patch with multiple IPv4 adresses, but jails are working well with an IPv4 and IPv6 address. I would like to see this functionality in RELENG_7. Thanks again for your good work, I believe many FreeBSD users will appreciate this long missed feature. Frank -- Frank Behrens, Osterwieck, Germany PGP-key 0x5B7C47ED on public servers available. From owner-freebsd-jail@FreeBSD.ORG Fri Nov 28 00:00:09 2008 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 854341065670; Fri, 28 Nov 2008 00:00:09 +0000 (UTC) (envelope-from bzeeb-lists@lists.zabbadoz.net) Received: from mail.cksoft.de (mail.cksoft.de [62.111.66.27]) by mx1.freebsd.org (Postfix) with ESMTP id 328AB8FC0A; Fri, 28 Nov 2008 00:00:09 +0000 (UTC) (envelope-from bzeeb-lists@lists.zabbadoz.net) Received: from localhost (amavis.str.cksoft.de [192.168.74.71]) by mail.cksoft.de (Postfix) with ESMTP id 0995141C735; Fri, 28 Nov 2008 01:00:07 +0100 (CET) X-Virus-Scanned: amavisd-new at cksoft.de Received: from mail.cksoft.de ([62.111.66.27]) by localhost (amavis.str.cksoft.de [192.168.74.71]) (amavisd-new, port 10024) with ESMTP id KrC0qEkXsNJB; Fri, 28 Nov 2008 01:00:05 +0100 (CET) Received: by mail.cksoft.de (Postfix, from userid 66) id D242541C734; Fri, 28 Nov 2008 01:00:05 +0100 (CET) Received: from maildrop.int.zabbadoz.net (maildrop.int.zabbadoz.net [10.111.66.10]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mail.int.zabbadoz.net (Postfix) with ESMTP id CEDA24448D5; Thu, 27 Nov 2008 23:55:38 +0000 (UTC) Date: Thu, 27 Nov 2008 23:55:38 +0000 (UTC) From: "Bjoern A. Zeeb" X-X-Sender: bz@maildrop.int.zabbadoz.net To: freebsd-jail@freebsd.org Message-ID: <20081127233005.E61259@maildrop.int.zabbadoz.net> X-OpenPGP-Key: 0x14003F198FEFA3E77207EE8D2B58B8F83CCF1842 MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Cc: freebsd-current@freebsd.org Subject: HEADS UP: multi/no-IPv4/v6 jails going to hit HEAD X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 28 Nov 2008 00:00:09 -0000 Hi, I haven't heard back anything bad after (almost) 24 hours since I had released the latest patchset. So this is the HEADS UP for you that unless major regessions or other important "stop"s show up I plan to commit the latest multi/no-IPv4/v6 jail patch to HEAD saturday (2008-11-29) morning UTC. You'll find a few things like man page dates, etc. updated to the current diff so it will slightly change - but there should be no functional changes anymore (unless a regression is found or make universe won't like me later today;-). For patches see my original mail to freebsd-jail from last night below and the entire thread here: http://lists.freebsd.org/pipermail/freebsd-jail/2008-November/000615.html This is mostly intended for two things: - to get out of the way for other vimage/mgmt work for 8.x - possible MFC to 7 in a few weeks or rather months (don't even think about asking for 7.1-RELEASE; the answer would be: in case you are going to donate 100.000 USD I could start talking to re@ about that but we might need more money for bribing during the negotiations;) and: - add a lot of good FreeBSD marketing after the commit here - send patches! :-) Regards, Bjoern ------------------------------------------------------------------------ Date: Wed, 26 Nov 2008 23:56:55 +0000 (UTC) From: Bjoern A. Zeeb To: freebsd-jail@freebsd.org Subject: Anyone interested in jail patches? Hi, it's 1am and I am out of caffeine so excuse all those typos and in case there will be bugs blame them on whatever you want...; I just want to get this out, finally, to you. If you are interested in a new set of jail patches... anyone?;-) 1) read the changelog from http://perforce.freebsd.org/chv.cgi?CH=153529 that's a good summary for the diff to the last set of patches. 2) I freshly integrated both branches; there had been a few changes since yesterday after my testing but those should be ok. It also means that the patches should apply to the sources of `now`. 2a) for HEAD: http://people.freebsd.org/~bz/bz_jail-20081126-02-at153644.diff 2b) for RELENG_7: http://people.freebsd.org/~bz/bz_jail7-20081126-02-at153644.diff 2c) there is no 7.0-RELEASE support anymore; sorry. As always please report problems or success stories to the list rather than to me directly. Same usually applies for questions. In case you are happy consider http://www.freebsdfoundation.org/donate/ . Regards, Bjoern ------------------------------------------------------------------------ -- Bjoern A. Zeeb Stop bit received. Insert coin for new game. From owner-freebsd-jail@FreeBSD.ORG Fri Nov 28 17:49:30 2008 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 86694106564A for ; Fri, 28 Nov 2008 17:49:30 +0000 (UTC) (envelope-from nbari@k9.cx) Received: from exprod7og104.obsmtp.com (exprod7og104.obsmtp.com [64.18.2.161]) by mx1.freebsd.org (Postfix) with SMTP id 1C9618FC0C for ; Fri, 28 Nov 2008 17:49:29 +0000 (UTC) (envelope-from nbari@k9.cx) Received: from source ([209.85.198.230]) by exprod7ob104.postini.com ([64.18.6.12]) with SMTP ID DSNKSTAvKUEc8zXQWAtYQL/frgGyY+XAmBSs@postini.com; Fri, 28 Nov 2008 09:49:30 PST Received: by rv-out-0506.google.com with SMTP id f6so1639131rvb.51 for ; Fri, 28 Nov 2008 09:49:29 -0800 (PST) Received: by 10.114.92.2 with SMTP id p2mr4683049wab.122.1227894569288; Fri, 28 Nov 2008 09:49:29 -0800 (PST) Received: from ?192.168.5.10? ([201.136.64.124]) by mx.google.com with ESMTPS id t1sm1174646poh.16.2008.11.28.09.49.26 (version=TLSv1/SSLv3 cipher=RC4-MD5); Fri, 28 Nov 2008 09:49:27 -0800 (PST) Message-Id: From: Nicolas de Bari Embriz Garcia Rojas To: freebsd-jail@FreeBSD.org Content-Type: multipart/signed; protocol="application/pgp-signature"; micalg=pgp-sha1; boundary="Apple-Mail-4-479261891" Content-Transfer-Encoding: 7bit Mime-Version: 1.0 (Apple Message framework v929.2) Date: Fri, 28 Nov 2008 11:49:24 -0600 X-Pgp-Agent: GPGMail d53 (v53, Leopard) X-Mailer: Apple Mail (2.929.2) Cc: Subject: Diskless Operation X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 28 Nov 2008 17:49:30 -0000 This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --Apple-Mail-4-479261891 Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes Content-Transfer-Encoding: 7bit Hi all, it is posible to set up an dislkess operation system under a jail ? regards -- > nbari --Apple-Mail-4-479261891 content-type: application/pgp-signature; x-mac-type=70674453; name=PGP.sig content-description: This is a digitally signed message part content-disposition: inline; filename=PGP.sig content-transfer-encoding: 7bit -----BEGIN PGP SIGNATURE----- iEYEARECAAYFAkkwLyQACgkQKHSHKa69I1uZigCgmvAUrChVBJ+C79bKcTa5qZtY U7EAoLJMKXilGEK9Q5XqyLpwoGyEegtO =psSM -----END PGP SIGNATURE----- --Apple-Mail-4-479261891-- From owner-freebsd-jail@FreeBSD.ORG Sat Nov 29 16:51:04 2008 Return-Path: Delivered-To: freebsd-jail@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 8E7271065673; Sat, 29 Nov 2008 16:51:04 +0000 (UTC) (envelope-from bz@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 6F3778FC18; Sat, 29 Nov 2008 16:51:04 +0000 (UTC) (envelope-from bz@FreeBSD.org) Received: from freefall.freebsd.org (bz@localhost [127.0.0.1]) by freefall.freebsd.org (8.14.3/8.14.3) with ESMTP id mATGp4AL099587; Sat, 29 Nov 2008 16:51:04 GMT (envelope-from bz@freefall.freebsd.org) Received: (from bz@localhost) by freefall.freebsd.org (8.14.3/8.14.3/Submit) id mATGp4fE099583; Sat, 29 Nov 2008 16:51:04 GMT (envelope-from bz) Date: Sat, 29 Nov 2008 16:51:04 GMT Message-Id: <200811291651.mATGp4fE099583@freefall.freebsd.org> To: bz@FreeBSD.org, freebsd-jail@FreeBSD.org, bz@FreeBSD.org From: bz@FreeBSD.org Cc: Subject: Re: kern/74314: [resolver] [jail] DNS resolver broken under certain jail conditions X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 29 Nov 2008 16:51:04 -0000 Synopsis: [resolver] [jail] DNS resolver broken under certain jail conditions Responsible-Changed-From-To: freebsd-jail->bz Responsible-Changed-By: bz Responsible-Changed-When: Sat Nov 29 16:50:28 UTC 2008 Responsible-Changed-Why: Sounds like a NAT or configuration error. Let's see if it's still relevant and if so if we can get more information. http://www.freebsd.org/cgi/query-pr.cgi?pr=74314 From owner-freebsd-jail@FreeBSD.ORG Sat Nov 29 16:55:16 2008 Return-Path: Delivered-To: freebsd-jail@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C4D88106567D; Sat, 29 Nov 2008 16:55:16 +0000 (UTC) (envelope-from bz@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id A4FC98FC21; Sat, 29 Nov 2008 16:55:16 +0000 (UTC) (envelope-from bz@FreeBSD.org) Received: from freefall.freebsd.org (bz@localhost [127.0.0.1]) by freefall.freebsd.org (8.14.3/8.14.3) with ESMTP id mATGtGik099673; Sat, 29 Nov 2008 16:55:16 GMT (envelope-from bz@freefall.freebsd.org) Received: (from bz@localhost) by freefall.freebsd.org (8.14.3/8.14.3/Submit) id mATGtGhv099669; Sat, 29 Nov 2008 16:55:16 GMT (envelope-from bz) Date: Sat, 29 Nov 2008 16:55:16 GMT Message-Id: <200811291655.mATGtGhv099669@freefall.freebsd.org> To: bz@FreeBSD.org, freebsd-jail@FreeBSD.org, bz@FreeBSD.org From: bz@FreeBSD.org Cc: Subject: Re: kern/84215: [jail] [patch] wildcard ip (INADDR_ANY) should not bind inside a jail X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 29 Nov 2008 16:55:16 -0000 Synopsis: [jail] [patch] wildcard ip (INADDR_ANY) should not bind inside a jail Responsible-Changed-From-To: freebsd-jail->bz Responsible-Changed-By: bz Responsible-Changed-When: Sat Nov 29 16:54:30 UTC 2008 Responsible-Changed-Why: Take. It seems that the proposed solution is not suitable for general FreeBSD but might no longer be needed with updated jails. Try to get feedback. http://www.freebsd.org/cgi/query-pr.cgi?pr=84215 From owner-freebsd-jail@FreeBSD.ORG Sat Nov 29 17:05:08 2008 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 378911065679 for ; Sat, 29 Nov 2008 17:05:08 +0000 (UTC) (envelope-from bzeeb-lists@lists.zabbadoz.net) Received: from mail.cksoft.de (mail.cksoft.de [62.111.66.27]) by mx1.freebsd.org (Postfix) with ESMTP id EDC768FC0A for ; Sat, 29 Nov 2008 17:05:07 +0000 (UTC) (envelope-from bzeeb-lists@lists.zabbadoz.net) Received: from localhost (amavis.str.cksoft.de [192.168.74.71]) by mail.cksoft.de (Postfix) with ESMTP id 4BD8F41C67E; Sat, 29 Nov 2008 18:05:06 +0100 (CET) X-Virus-Scanned: amavisd-new at cksoft.de Received: from mail.cksoft.de ([62.111.66.27]) by localhost (amavis.str.cksoft.de [192.168.74.71]) (amavisd-new, port 10024) with ESMTP id emsD2saKx+Pq; Sat, 29 Nov 2008 18:05:06 +0100 (CET) Received: by mail.cksoft.de (Postfix, from userid 66) id ECB0941C678; Sat, 29 Nov 2008 18:05:05 +0100 (CET) Received: from maildrop.int.zabbadoz.net (maildrop.int.zabbadoz.net [10.111.66.10]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mail.int.zabbadoz.net (Postfix) with ESMTP id A76B74448D5; Sat, 29 Nov 2008 17:00:23 +0000 (UTC) Date: Sat, 29 Nov 2008 17:00:23 +0000 (UTC) From: "Bjoern A. Zeeb" X-X-Sender: bz@maildrop.int.zabbadoz.net To: Frank Behrens In-Reply-To: <200811272118.mARLIdKH006580@post.behrens.de> Message-ID: <20081129165714.E61259@maildrop.int.zabbadoz.net> References: <200811272118.mARLIdKH006580@post.behrens.de> X-OpenPGP-Key: 0x14003F198FEFA3E77207EE8D2B58B8F83CCF1842 MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Cc: freebsd-jail@freebsd.org Subject: Re: Anyone interested in jail patches? X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 29 Nov 2008 17:05:08 -0000 On Thu, 27 Nov 2008, Frank Behrens wrote: Hi, > On the other side I still read in the patched jail(2) man page: > "Similarly, it might be a good idea to add an address alias flag such > that daemons listening on all IPs (INADDR_ANY) will not bind on that > address...". Can you explain the current behaviour? I think this question is related to your PR kern/84215. The current situation is: jails take precendence. So if sshd is listening on inaddr_any on the host and on inaddr_any inside a jail the connection to an IP belonging to a jail will end up inside the jail; any connections to IPs not beloning to jails will end up on the base. Obviously if you stop the jail and ssh to a former jail IP you'll end up on the bsae system and ssh would complain about different keys possibly while telnet or similar things won't notice. /bz -- Bjoern A. Zeeb Stop bit received. Insert coin for new game. From owner-freebsd-jail@FreeBSD.ORG Sat Nov 29 17:17:46 2008 Return-Path: Delivered-To: freebsd-jail@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id CD5721065675; Sat, 29 Nov 2008 17:17:46 +0000 (UTC) (envelope-from bz@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id AA3328FC1D; Sat, 29 Nov 2008 17:17:46 +0000 (UTC) (envelope-from bz@FreeBSD.org) Received: from freefall.freebsd.org (bz@localhost [127.0.0.1]) by freefall.freebsd.org (8.14.3/8.14.3) with ESMTP id mATHHksp014975; Sat, 29 Nov 2008 17:17:46 GMT (envelope-from bz@freefall.freebsd.org) Received: (from bz@localhost) by freefall.freebsd.org (8.14.3/8.14.3/Submit) id mATHHkMx014971; Sat, 29 Nov 2008 17:17:46 GMT (envelope-from bz) Date: Sat, 29 Nov 2008 17:17:46 GMT Message-Id: <200811291717.mATHHkMx014971@freefall.freebsd.org> To: bz@FreeBSD.org, freebsd-jail@FreeBSD.org, bz@FreeBSD.org From: bz@FreeBSD.org Cc: Subject: Re: kern/89989: [jail] [patch] Add option -I (ASCII 73) PID to specify tryprid within jail(2) X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 29 Nov 2008 17:17:46 -0000 Synopsis: [jail] [patch] Add option -I (ASCII 73) PID to specify tryprid within jail(2) Responsible-Changed-From-To: freebsd-jail->bz Responsible-Changed-By: bz Responsible-Changed-When: Sat Nov 29 17:15:36 UTC 2008 Responsible-Changed-Why: Jail IDs are system internal. We had even (temporary) changed the allocator in the mean time. But jails in HEAD now support jail names for management purposes. See if that would work for the submitter. http://www.freebsd.org/cgi/query-pr.cgi?pr=89989 From owner-freebsd-jail@FreeBSD.ORG Sat Nov 29 17:20:02 2008 Return-Path: Delivered-To: freebsd-jail@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 7A21C1065676; Sat, 29 Nov 2008 17:20:02 +0000 (UTC) (envelope-from bz@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 4FE598FC17; Sat, 29 Nov 2008 17:20:02 +0000 (UTC) (envelope-from bz@FreeBSD.org) Received: from freefall.freebsd.org (bz@localhost [127.0.0.1]) by freefall.freebsd.org (8.14.3/8.14.3) with ESMTP id mATHK2oa015056; Sat, 29 Nov 2008 17:20:02 GMT (envelope-from bz@freefall.freebsd.org) Received: (from bz@localhost) by freefall.freebsd.org (8.14.3/8.14.3/Submit) id mATHK2nx015052; Sat, 29 Nov 2008 17:20:02 GMT (envelope-from bz) Date: Sat, 29 Nov 2008 17:20:02 GMT Message-Id: <200811291720.mATHK2nx015052@freefall.freebsd.org> To: bz@FreeBSD.org, freebsd-jail@FreeBSD.org, bz@FreeBSD.org From: bz@FreeBSD.org Cc: Subject: Re: kern/97071: [jail] [patch] add security.jail.jid sysctl X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 29 Nov 2008 17:20:02 -0000 Synopsis: [jail] [patch] add security.jail.jid sysctl Responsible-Changed-From-To: freebsd-jail->bz Responsible-Changed-By: bz Responsible-Changed-When: Sat Nov 29 17:19:06 UTC 2008 Responsible-Changed-Why: JIDs are system internal and the PR doesn't give a reason why it would be helpful to know them within the jail. Ask for feedback. http://www.freebsd.org/cgi/query-pr.cgi?pr=97071 From owner-freebsd-jail@FreeBSD.ORG Sat Nov 29 17:37:30 2008 Return-Path: Delivered-To: freebsd-jail@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 426151065677; Sat, 29 Nov 2008 17:37:30 +0000 (UTC) (envelope-from bz@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 190148FC14; Sat, 29 Nov 2008 17:37:30 +0000 (UTC) (envelope-from bz@FreeBSD.org) Received: from freefall.freebsd.org (bz@localhost [127.0.0.1]) by freefall.freebsd.org (8.14.3/8.14.3) with ESMTP id mATHbU2x030668; Sat, 29 Nov 2008 17:37:30 GMT (envelope-from bz@freefall.freebsd.org) Received: (from bz@localhost) by freefall.freebsd.org (8.14.3/8.14.3/Submit) id mATHbTNk030664; Sat, 29 Nov 2008 17:37:29 GMT (envelope-from bz) Date: Sat, 29 Nov 2008 17:37:29 GMT Message-Id: <200811291737.mATHbTNk030664@freefall.freebsd.org> To: piotr.koper@gmail.com, bz@FreeBSD.org, freebsd-jail@FreeBSD.org, bz@FreeBSD.org From: bz@FreeBSD.org Cc: Subject: Re: kern/120753: [jail] Zombie jails (jailed child process exits while non-jailed parent is alive) X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 29 Nov 2008 17:37:30 -0000 Synopsis: [jail] Zombie jails (jailed child process exits while non-jailed parent is alive) State-Changed-From-To: open->closed State-Changed-By: bz State-Changed-When: Sat Nov 29 17:33:15 UTC 2008 State-Changed-Why: This is not a bug. This is the way processes are tracked. Note that in your second exmaple your parent exists before your jail call but after your fork, so there is no parent to "collect" the dead child later so the jail can go away instantly. Responsible-Changed-From-To: freebsd-jail->bz Responsible-Changed-By: bz Responsible-Changed-When: Sat Nov 29 17:33:15 UTC 2008 Responsible-Changed-Why: Assign to me in case of possible follow-ups. http://www.freebsd.org/cgi/query-pr.cgi?pr=120753 From owner-freebsd-jail@FreeBSD.ORG Sat Nov 29 17:38:44 2008 Return-Path: Delivered-To: freebsd-jail@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id CD1D01065670; Sat, 29 Nov 2008 17:38:44 +0000 (UTC) (envelope-from bz@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id A4EF08FC1A; Sat, 29 Nov 2008 17:38:44 +0000 (UTC) (envelope-from bz@FreeBSD.org) Received: from freefall.freebsd.org (bz@localhost [127.0.0.1]) by freefall.freebsd.org (8.14.3/8.14.3) with ESMTP id mATHciKg030718; Sat, 29 Nov 2008 17:38:44 GMT (envelope-from bz@freefall.freebsd.org) Received: (from bz@localhost) by freefall.freebsd.org (8.14.3/8.14.3/Submit) id mATHciKY030714; Sat, 29 Nov 2008 17:38:44 GMT (envelope-from bz) Date: Sat, 29 Nov 2008 17:38:44 GMT Message-Id: <200811291738.mATHciKY030714@freefall.freebsd.org> To: bz@FreeBSD.org, freebsd-jail@FreeBSD.org, bz@FreeBSD.org From: bz@FreeBSD.org Cc: Subject: Re: kern/126368: [jail] Running ktrace/kdump in jail leads to stale jails X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 29 Nov 2008 17:38:44 -0000 Synopsis: [jail] Running ktrace/kdump in jail leads to stale jails Responsible-Changed-From-To: freebsd-jail->bz Responsible-Changed-By: bz Responsible-Changed-When: Sat Nov 29 17:38:17 UTC 2008 Responsible-Changed-Why: I'll track this; I thought it was patched already but I'll look. http://www.freebsd.org/cgi/query-pr.cgi?pr=126368 From owner-freebsd-jail@FreeBSD.ORG Sat Nov 29 18:30:07 2008 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id B9EC01065676; Sat, 29 Nov 2008 18:30:07 +0000 (UTC) (envelope-from nejc@skoberne.net) Received: from mail.tnode.com (common.tnode.com [91.185.203.243]) by mx1.freebsd.org (Postfix) with ESMTP id 6CDB68FC16; Sat, 29 Nov 2008 18:30:07 +0000 (UTC) (envelope-from nejc@skoberne.net) Received: from localhost (mail.jail [10.1.1.10]) by mail.tnode.com (Postfix) with ESMTP id 2ACDA21FC6D8; Sat, 29 Nov 2008 19:11:31 +0100 (CET) Received: from mail.tnode.com ([10.1.1.10]) by localhost (mail.tnode.com [10.1.1.10]) (amavisd-maia, port 10024) with ESMTP id 16993-03; Sat, 29 Nov 2008 19:11:30 +0100 (CET) Received: from [192.168.123.100] (lk.84.20.249.154.dc.cable.static.lj-kabel.net [84.20.249.154]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) (Authenticated sender: nejc@skoberne.net) by mail.tnode.com (Postfix) with ESMTPSA id 5DB4C21FC6D7; Sat, 29 Nov 2008 19:11:30 +0100 (CET) Message-ID: <493185D2.3050901@skoberne.net> Date: Sat, 29 Nov 2008 19:11:30 +0100 From: Nejc Skoberne User-Agent: Thunderbird 2.0.0.18 (Windows/20081105) MIME-Version: 1.0 To: bz@FreeBSD.org References: <200811291738.mATHciKY030714@freefall.freebsd.org> In-Reply-To: <200811291738.mATHciKY030714@freefall.freebsd.org> X-Enigmail-Version: 0.95.7 Content-Type: text/plain; charset=ISO-8859-2 Content-Transfer-Encoding: 7bit X-Virus-Scanned: Maia Mailguard Cc: freebsd-jail@FreeBSD.org Subject: Re: kern/126368: [jail] Running ktrace/kdump in jail leads to stale jails X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 29 Nov 2008 18:30:07 -0000 Hello, > Synopsis: [jail] Running ktrace/kdump in jail leads to stale jails > > Responsible-Changed-From-To: freebsd-jail->bz > Responsible-Changed-By: bz > Responsible-Changed-When: Sat Nov 29 17:38:17 UTC 2008 > Responsible-Changed-Why: > I'll track this; I thought it was patched already but I'll look. As I wrote on August 10: "Sorry, please ignore the previous post, my problem of "the delay" seems to be unrelated with "ktrace-in-jail" issue. I guess this patch fixes the problem after all." So I think you don't need to look again ... Thanks, Nejc