From nobody Mon Apr 22 19:20:23 2024 X-Original-To: jail@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4VNZpJ1Fl0z5HjXH for ; Mon, 22 Apr 2024 19:20:24 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4VNZpJ0F56z4h6Q for ; Mon, 22 Apr 2024 19:20:24 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1713813624; a=rsa-sha256; cv=none; b=P3h3rhvGZStOQCVHqDxXb1x7nDrRf6hm/gk0Z1SR9akSoBzwu43w0SaBRRJzgfkopxAm9H s6r6bUvmCcRiOEH6tWAhLYiylhRLG7wZUKYUb2xWec8FgH2aT8JRRoDY4WB1CFcFrAwTsO T5wyFPpNBS4GVyOcttqARoXGlXZICz5y/WPPbqQ5/tdLAajGBjfweniGPprzRJ6i9E85J/ rStLc/04qwqDBCrKDwWoEYVA/e66+MCocPbkPlljPxGLxb492VbsZLD+undPZC2uNt6e+Y MRHOQ/07x2mWU5j8WmHkD7r7tTqRbowi8QWA/q3QhEMlpi+VyQy5Q9nq8GMW5Q== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1713813624; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=rS5K1WVjTjGlWm4BCkMvDZRYw+aqkKjxJ+mHVLnyOwk=; b=pg4/yyqmKgAEmCbsU1vq056/HjIZTAj8eJveAb9KeicYktM8ZUzvDn9BBay+O3ayL3bRal hMRu2NvSJR7rF6jkT2pUT8XyU3HITtVW5kh9lMl62ToqQas2/rPDhL7SGuiyazcMX9huNn xPxctpKlezXsKvfUNDwQB0tTBv+r7lqrGEWo3Asok6IVBDyLQbDnck98tqoKIzck2As9gw TeAi58g8ktjX+yvVt1JCkuP6QGicUKdpN6c7ViZgJgH/7ODNaCXAjAnake9Fr9rjq2Y6z6 COwL9dSSG2f8PXDpx6YhpzlXBoA/06eU8MimPukA8cQErrHbQZF6IFAMmEossw== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4VNZpH6ywFz114F for ; Mon, 22 Apr 2024 19:20:23 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 43MJKNOc024856 for ; Mon, 22 Apr 2024 19:20:23 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 43MJKNBR024855 for jail@FreeBSD.org; Mon, 22 Apr 2024 19:20:23 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: jail@FreeBSD.org Subject: [Bug 278232] Jail IPv4 source address selection inside a jail not working Date: Mon, 22 Apr 2024 19:20:23 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.0-RELEASE X-Bugzilla-Keywords: regression X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: bz@FreeBSD.org X-Bugzilla-Status: Open X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: jail@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: cc Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Discussion about FreeBSD jail(8) List-Archive: https://lists.freebsd.org/archives/freebsd-jail List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-jail@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D278232 Bjoern A. Zeeb changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |bz@FreeBSD.org --- Comment #9 from Bjoern A. Zeeb --- Is the problem here just raw sockets, e.g. does TCP/UDP/.. work correctly? I think this once was the fix for raw sockets (in case it helps to track the problem down -- could also be misleading): https://people.freebsd.org/~bz/20100425-01-jail-raw_ip-src.diff --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Wed Apr 24 16:39:40 2024 X-Original-To: jail@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4VPl7x0Jcyz5Hx9f for ; Wed, 24 Apr 2024 16:39:41 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4VPl7w5nXwz4n0p for ; Wed, 24 Apr 2024 16:39:40 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1713976780; a=rsa-sha256; cv=none; b=jwOvDsQ7UpYNbHDM1MBCCV+lc0iBTrmIn/8XCxFHfjjINg2FgnX9ZIgk75S7GbmRVicB7f V7eAv+QBYH61FySwOS7fxSQxKww80dM9UwLKGSZEYVguHIgAurpSv55ht1I0c6iDCQPK8c thagaBONK1oBnlbCf9edNug93afkctyfVN6+oETgMoEkdLyWq/Qia2fretZ5XdG6vtF6zr +8SMJi2D1chIkVb2cp4JJhkXEW02GfSzahBY0Nla/r+iyrOQq2vBstXSl8gqh68lPUBBYa Fawiq1i9COrH+nyFFgeTnL0UwiCX34t2+u7++tNrXPJqIlI50muHfSchPnKyhw== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1713976780; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=M5gVfTmDS7hp/fkaB005ZQvozTymNfrLvzSy87jToO8=; b=gd7Taw2NiggcTzAOeuHuqR8lv5aa9myPUmjbuarEmy8x4iBy5p8mv+01JHHBRQs1ikaLCA OqcsSWEQ2Xw2kAxtIqCYF+cYe3KcWUAqgp7EjsW12+Mbr1uzRFSl06+UmuWGtB5xCTRKpH uTdrlmdCwIMuL0PpOfaprMBrzQ+FJRf+zJT+ID5eD1nLH6hqTxeXLS1JFZbXpuNxU4ECLs YRyiZtohWk4Blbh4B3GqsS3dU4B4JXex7BOBiMqkhJUnS2dFr/xvi6B4kLSx0S73SQbUuG l4TKg3U0kUg8WIWVTre+dVWboQ83sZOkkpVJogY0PKrfnjxwr9PY/22sl1DWjg== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4VPl7w5D2gzN5d for ; Wed, 24 Apr 2024 16:39:40 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 43OGdevF017177 for ; Wed, 24 Apr 2024 16:39:40 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 43OGdefG017176 for jail@FreeBSD.org; Wed, 24 Apr 2024 16:39:40 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: jail@FreeBSD.org Subject: [Bug 278232] Jail IPv4 source address selection inside a jail not working Date: Wed, 24 Apr 2024 16:39:40 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.0-RELEASE X-Bugzilla-Keywords: regression X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: dinoex@FreeBSD.org X-Bugzilla-Status: Open X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: jail@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Discussion about FreeBSD jail(8) List-Archive: https://lists.freebsd.org/archives/freebsd-jail List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-jail@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D278232 --- Comment #10 from Dirk Meyer --- I see here: ping with passing the correct source ip works. ping without source ip fails, the first IP of the jail is always used. Sending UDP fails, the first IP of the jail is always used. (tested with snmpwalk) Sending TCP fails, the first IP of the jail is always used. (tested with ssh) TCP from a host only in 192.168.22.0/24 top the jail IP 192.168.22.43 works. --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Wed Apr 24 16:47:13 2024 X-Original-To: jail@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4VPlJd46JLz5HxRM for ; Wed, 24 Apr 2024 16:47:13 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4VPlJd32YQz4p9x for ; Wed, 24 Apr 2024 16:47:13 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1713977233; a=rsa-sha256; cv=none; b=dNQTrlxDum7orVMwE1Eo+SVx/DWzOEwV7rweEOPdsO/LF0n73jypVQddaxrYa++uEoUJ8z CFOSz5LUC6+CEBnx4nlzFESEsA1OKdXC1K1Nwdclf4vEVIjwS0AdkEwq3AuL74ebcrIzJP Q6vL22Jw0J6VwIxCulp0FvFqXzXF2dCjU/qdhdqQN5qxmgAAYuU4l6SPLK9ASHaGpMqJQw Eww/iax5U24DjhLP2OX1BorvCU9Oy8VVt7u54L1D5fW+L04HSFik07bfG8NuDN8voy2jUW n2O4PsjRo/cIkmVXhux86uuBDS9k540kffR0VELhsLLezROGOG6D1mUwpiUpxg== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1713977233; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=AyqYxFfWbC04YiPCZuw+2l1iLjM2VpZuNIbx2GHwBws=; b=Zrvcxsvign9UL9zr9cfmqAZrqhkfsCR/xRN03xawefWlxdbTFhituBfSyeHc6ChOuNmRyd ti2G59+xjDy+vyjJ2HypMGxdZvM+slO+RDH4HMlqNTthAa/4nP9E7dzR+LHu8gsbFyW0y6 2fbLZ0tHy/eGNGBZb2YqKvPAEHzDVZFYOcnVPcZxRu2Diq8ungWm4WBrEumhh4omobUnoF 5VotUHsIWs/c3O8+AkqGK4vy6O/jp4vzvjWYJtZv3HFeho/yV6nX5EzA6YdFC+5UIRS+n0 4PICuLraHGOwzlUo9Npqv95ng6VQYcSqvWSofIHcq4m4EqmlC5q4FKekU+IwkQ== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4VPlJd2g1ZzNbn for ; Wed, 24 Apr 2024 16:47:13 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 43OGlDeu067738 for ; Wed, 24 Apr 2024 16:47:13 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 43OGlDGF067732 for jail@FreeBSD.org; Wed, 24 Apr 2024 16:47:13 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: jail@FreeBSD.org Subject: [Bug 278232] Jail IPv4 source address selection inside a jail not working Date: Wed, 24 Apr 2024 16:47:13 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.0-RELEASE X-Bugzilla-Keywords: regression X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: jamie@FreeBSD.org X-Bugzilla-Status: Open X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: jail@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Discussion about FreeBSD jail(8) List-Archive: https://lists.freebsd.org/archives/freebsd-jail List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-jail@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D278232 --- Comment #11 from Jamie Gritton --- This appears to be a feature, working exactly what as it says it does. From jail(8): ip4.saddrsel A boolean option to change the formerly mentioned behaviour and disable IPv4 source address selection for the jail in favour of the primary IPv4 address of the jail. Source address selection is enabled by default for all jails and the ip4.nosaddrsel setting of a parent jail is not inherited for any child jails. --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Sat Apr 27 15:01:39 2024 X-Original-To: jail@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4VRXqS1VK7z5JHFQ for ; Sat, 27 Apr 2024 15:01:40 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4VRXqR66H6z43tK for ; Sat, 27 Apr 2024 15:01:39 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1714230099; a=rsa-sha256; cv=none; b=ioy3LnlIIgZ6tBe7rpZIciX+2NCn4lOEssZP6bImCMET6dAraZHltx2T8MA+g4SD0mXMC1 aMCuZ17j0IYPtE9UrkJrhRv/k5yThSfPQl5I6L0ar66RnFJMSHUCZkMoOptCbR+/0ho3mo ++t+9OFOFwUlYlbI/q0troYkp4gAiiOuYYX++zG6rV/E0LLd/ivM20eN60RWQ7IDxhVjF1 LrOQZgHy6Wu8oJgQoRCD3//Hm6tRrmbag93R5FpBW1k2Uqv9/6lTpOMhOj8pko0WYXBYp9 SvN9E0Bunar/0mCwWe2zEWEYQTvkfPMv4/wf+PQcyPm3oHmO/mgRSB0ggbD1mg== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1714230099; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=hmjmFQ9tL6vLybkEOpWeAc7EWEPagSBA1A0YbJzXo6Y=; b=R/PgCO//UZ6BfisxPhYw9ygoh6ql5z0/+IIZ21dmVnMpQjtVOakWxDnPtVJmdVIEpuuQmT u066WUjXVC5Pmo4++5PQrhMQbrjSnrsyFmI9L1wEo1R2qX5u275pwF4G5V3R7PhtTz8ZJj ONa3ag5aD0Z2JI3uxD+LVdZOm5KWbOarbU5rd8+Q7pxFucsuQ2/Rqb63t7o0hlrxInrxai sGBiAHZq0mCKtp2AVkYS50HrDwiYxoQShGriEFKd8xTxKOmSM812qGriwHjA5VnHsuu0CC aX/i6AcWVZOpVxhizZ9aMwyRf+pGM4ERJMUPGqMQHXUG57o8g1LJx+U/a1RuiA== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4VRXqR5kLgzX10 for ; Sat, 27 Apr 2024 15:01:39 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 43RF1dHX027998 for ; Sat, 27 Apr 2024 15:01:39 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 43RF1dbd027996 for jail@FreeBSD.org; Sat, 27 Apr 2024 15:01:39 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: jail@FreeBSD.org Subject: [Bug 278232] Jail IPv4 source address selection inside a jail not working Date: Sat, 27 Apr 2024 15:01:39 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.0-RELEASE X-Bugzilla-Keywords: regression X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: dinoex@FreeBSD.org X-Bugzilla-Status: Open X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: jail@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Discussion about FreeBSD jail(8) List-Archive: https://lists.freebsd.org/archives/freebsd-jail List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-jail@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D278232 --- Comment #12 from Dirk Meyer --- Sorry this text is still unclear to me. I would expect "ip4.saddrsel" to allow source selection and "ip4.nosaddrsel" will disable it. but "ip4.nosaddrsel" is not documented in "man jail"? I confirmed removing "ip4.saddrsel" does not change anything. quote from "man jail" [...] For IPv4 the first address given will be used as the source address when source address selection on unbound sockets cannot find a better match. [...] What is the correct way to have "source address selection" in the jail? For now only with "ip4=3Dinherit" I can see the RFC1918 IP is used. --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Sat Apr 27 16:07:58 2024 X-Original-To: jail@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4VRZKT21drz5JPDy for ; Sat, 27 Apr 2024 16:09:17 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4VRZKS56wWz4KbH for ; Sat, 27 Apr 2024 16:09:16 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1714234156; a=rsa-sha256; cv=none; b=lRHYo7vnxkHdfxsezinIMj2vz+G3XPKlC+0xtloMJgu9oX1qtJ3YG3gQncG7cuuE9v0Nmm Mx1Kz15TpbmguX1oKj0Mori4FOw8JwmGQqMUMfQ0YO/GoNHT9cRyOs/N4bONaLFu55fwq+ oY38SY1P95ErT3fvam4ZoyBINO4jFG4GD0Ft6HTLdLsflIZ8ECXYm60dPXbU5QQQyP2l2c +A+u+lu8rfs6FIZnq1371NMfqGWZLbmd7JSqfd0PkqyF8LdlXuniTh2PXMjqAjDSf5MT8t ej4NLZqTLFEsWmwCav3pcWsBDb4RDmRyC46Jbpkdse/UwwjWrHhzS8f+zDCbLw== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1714234156; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=aQ5tXOCaPd/Sna2qGQMMIg8V3enEwwZHBf+f5h3zGi8=; b=ZlCVpV/t9hamSOxirakqGl7qRr3GQfkvMKXLr699FYwT9O5CO29T8z2prWCd08DRvle5q8 izatqjP+MUv+YnjnJJsFnA68f2Ki9q6eSyWutaYMiEcTe5q/mEUjc/oatktWPE2YONqaHV gRnwMqd4sDIrX/HVfpgLTIAEf1r/7idwg+XOrFDh0h6KKdt0ruiJXmnZPL9mJNZCnc5QoX c/LeauCGk7xI9QGhexwX1C9rHXYLdI75JBU3q3KAmJM1iOykdjXsMdI2SBxnJaV2n0LAhi Rh6iLdevXPp9HxdzjyAA9vSO0WbmJ+8JfPvR6XnVxPgEQ5CYeK35TrZnshCLpQ== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4VRZHy6SPRzhPn for ; Sat, 27 Apr 2024 16:07:58 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 43RG7wQY011339 for ; Sat, 27 Apr 2024 16:07:58 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 43RG7wj9011336 for jail@FreeBSD.org; Sat, 27 Apr 2024 16:07:58 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: jail@FreeBSD.org Subject: [Bug 278232] Jail IPv4 source address selection inside a jail not working Date: Sat, 27 Apr 2024 16:07:58 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.0-RELEASE X-Bugzilla-Keywords: regression X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: jamie@FreeBSD.org X-Bugzilla-Status: Open X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: jail@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Discussion about FreeBSD jail(8) List-Archive: https://lists.freebsd.org/archives/freebsd-jail List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-jail@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D278232 --- Comment #13 from Jamie Gritton --- Sorry, it's been a while since I wrote that man page, and it's unclear enou= gh that I didn't read it right myself. ip[46].saddrsel is one of the few opti= ons that's on by default, so only the "nosaddrsel" version is important. While nosaddrsel itself isn't documented, jail(8) talks about the boolean options generally and adding "no" to them, and at least mentions the word (though n= ot ina heading) so searching for it gets you to the right place. So yeah, that's not the right direction and you can ignore my comment. --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Sat Apr 27 16:29:05 2024 X-Original-To: jail@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4VRZmL4Ftvz5JQLP for ; Sat, 27 Apr 2024 16:29:06 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4VRZmL2sJ0z4SSH for ; Sat, 27 Apr 2024 16:29:06 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1714235346; a=rsa-sha256; cv=none; b=oMHb01DMqwC5+r55N9GIZGxpj3QK4ogg8NVveqte8otxCIIVhmAdwnEWf6lhZl/SBRAzHu CHaNoi+hzJNaTWHRwLM5pDL1HhO56nfT7NXJn2uVeQR7G42PdMWEWHRnNLJmdVoSsCjZDa PtdKRdgGI9fIZXU4zoBco5ZmZFupOwzsDHZ98T9i4w1h/JUHdegOZpj7Ycr7mFJekrlbhj 6VRvHs0MQwLJL/03tmHHl7nYIiS2CsjNH56JyLcU/Wu3Yq88qFEpaC1TICSYdHBEAsm2ph J3Ql342azW9xXKpDsg/P5rZ0yOr3kJLGbgZNYU1FOjH1QD951/gX4nx0AObzAw== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1714235346; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=lHmSzsnULAoO7151cLxIC461kR+310NT7mujMI+MSus=; b=rHybUm4+KOptRxWp2eCCBocoUnM9fE4fSkz6e7DdqyYDGSew+0iO6p1ET/CzTdPAB35QoW BoJ0YgHgZBjRMMoaoM7F6XJ6JPp9N6DARmtGi+MwJHTGmv0gG3he2p5pmKujLUCRAQ7YNQ iyjUpaZbxhwrw0BGZPxtUH0L3fc+SZqIbwbjGYXnTvtJtyF9pZDrX8vTMzz8wkk0QB8jOw ChksgZXbczycq/YK4ASACQNYccfDh7877FKADkYyfUAmfeLFGSUOpraHOLmsDgN8FsXnTP bQPT1dER4Zp9h97aF+R6vuK36nYc8bEp5DXCygZec9RY3nsQhHhf8kaOcpeyIQ== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4VRZmL2LfnzpfD for ; Sat, 27 Apr 2024 16:29:06 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 43RGT6WJ059399 for ; Sat, 27 Apr 2024 16:29:06 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 43RGT6W6059398 for jail@FreeBSD.org; Sat, 27 Apr 2024 16:29:06 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: jail@FreeBSD.org Subject: [Bug 278232] Jail IPv4 source address selection inside a jail not working Date: Sat, 27 Apr 2024 16:29:05 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 14.0-RELEASE X-Bugzilla-Keywords: regression X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: bz@FreeBSD.org X-Bugzilla-Status: Open X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: jail@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: cc Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Discussion about FreeBSD jail(8) List-Archive: https://lists.freebsd.org/archives/freebsd-jail List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-jail@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D278232 Bjoern A. Zeeb changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |glebius@FreeBSD.org, | |markj@FreeBSD.org --- Comment #14 from Bjoern A. Zeeb --- I am adding @glebius in the bases and he's one of the people knowing today's (IN)PCB code and probably has changed it for 14 enough. Maybe markj@ as we= ll? --=20 You are receiving this mail because: You are the assignee for the bug.=