From owner-freebsd-stable@FreeBSD.ORG Wed May 2 05:11:34 2012 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id AC99C106564A for ; Wed, 2 May 2012 05:11:34 +0000 (UTC) (envelope-from jhellenthal@dataix.net) Received: from mail-gy0-f182.google.com (mail-gy0-f182.google.com [209.85.160.182]) by mx1.freebsd.org (Postfix) with ESMTP id 51DA68FC08 for ; Wed, 2 May 2012 05:11:34 +0000 (UTC) Received: by mail-gy0-f182.google.com with SMTP id r20so330311ghr.13 for ; Tue, 01 May 2012 22:11:34 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=dataix.net; s=rsa; h=date:from:to:cc:subject:message-id:references:mime-version :content-type:content-disposition:in-reply-to; bh=ube8Xp+fMSE7m8vh0Nicweaaa123vMDfAYsBuvPgxsM=; b=a2NHimwOVGQb8YFUSjLUk4ySCo9ZD7K2uOUF5ihpaz6FK5TmxNhZWygMqNldbWMjs3 /m78Qh+kf1CvTuJmqiL8LIqETAJTiKA/LvqemnB3edWdwS/SVUl0hyd4/Om8zX+wB6EV JJ9y81paQQrlfL1c8KCEJjKWInEJ+7SgIgnjo= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=date:from:to:cc:subject:message-id:references:mime-version :content-type:content-disposition:in-reply-to:x-gm-message-state; bh=ube8Xp+fMSE7m8vh0Nicweaaa123vMDfAYsBuvPgxsM=; b=e41X1iPDkCpgXhFTZfonGzoDzTCa3c2hA7AErNvIicCmIOFKaapZ80bPwmLj2inFdc AsTSI04dHglAtRZvkwpJ+n7n1wBxom2qr5/mDdZiNevfhO83yPWAbVDsUnj3F8PEvoqU OOvNED5eVXsHbpMrp8Cu31OwJdikkZGq8KEtcQRASOb47TEOl9R6txuNQSZ7etLiR8sh 2L2gw49sD/UynThpTRO4dMo3n3x4El+3LAEeseAc9bOQknXplcyynw8D9QTvxbgUVowF jTPJ4PMcUt6S1KOmM/e2aARQ4Bji+GXgnZFLWVBlGEM0pkujWAx7d+bKfGs3meuwtLiB H/zg== Received: by 10.42.19.138 with SMTP id c10mr20131028icb.27.1335935493710; Tue, 01 May 2012 22:11:33 -0700 (PDT) Received: from DataIX.net (adsl-99-181-135-185.dsl.klmzmi.sbcglobal.net. [99.181.135.185]) by mx.google.com with ESMTPS id nq4sm1012492igc.5.2012.05.01.22.11.32 (version=TLSv1/SSLv3 cipher=OTHER); Tue, 01 May 2012 22:11:33 -0700 (PDT) Received: from DataIX.net (localhost [127.0.0.1]) by DataIX.net (8.14.5/8.14.5) with ESMTP id q425BUVu085141 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Wed, 2 May 2012 01:11:31 -0400 (EDT) (envelope-from jhellenthal@DataIX.net) Received: (from jhellenthal@localhost) by DataIX.net (8.14.5/8.14.5/Submit) id q425BRMo084074; Wed, 2 May 2012 01:11:27 -0400 (EDT) (envelope-from jhellenthal@DataIX.net) Date: Wed, 2 May 2012 01:11:27 -0400 From: Jason Hellenthal To: "Bjoern A. Zeeb" Message-ID: <20120502051127.GA73032@DataIX.net> References: <20120501194101.GD66263@redundancy.redundancy.org> <597C92B2-02AA-4093-B6A3-B871CCDB70F8@lists.zabbadoz.net> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <597C92B2-02AA-4093-B6A3-B871CCDB70F8@lists.zabbadoz.net> X-Gm-Message-State: ALoCoQmIWdrwmIre27oI8UU1K7T0BnoXVxTAIN2mY4QR3Xs6epLa00MKGC8qGMcebuoBHR3yNgif Cc: David Thiel , freebsd-stable@freebsd.org Subject: Re: Jails can't get routing info X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 02 May 2012 05:11:34 -0000 On Tue, May 01, 2012 at 09:01:33PM +0000, Bjoern A. Zeeb wrote: > On 1. May 2012, at 19:41 , David Thiel wrote: > > > Hello, > > > > So, I've been trying to debug an issue running nmap scans within jails, > > partially documented here: > > > > http://seclists.org/nmap-dev/2012/q2/220 > > > > On further debugging, it's seeming like jails can't read routing > > information directly at all: > > > > # route get 69.163.203.254 > > route: writing to routing socket: No such process > > > > Now, this is normally done via reading the routing table via something like > > socket(PF_ROUTE, SOCK_RAW, AF_INET), so one would suspect that this is a > > problem with raw sockets; but raw sockets are enabled within the jail. > > netstat is able to read routing information just fine, but I don't think > > it's doing it via the socket() call. > > hmm, sure you don't have /dev/mem in the jail? netstat -rn I think is still > using libkvm *sigh* and not the sysctl API. > Good lord I hope this makes it down to stable/8 > > > Anyone know why this behavior might be happening? > > Without thinking too much (as in if I got the right case) I think you are > hitting this one: > > http://svnweb.freebsd.org/base/head/sys/net/rtsock.c?annotate=234572#l792 > > /bz > > -- > Bjoern A. Zeeb You have to have visions! > It does not matter how good you are. It matters what good you do! > > _______________________________________________ > freebsd-stable@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-stable > To unsubscribe, send any mail to "freebsd-stable-unsubscribe@freebsd.org" -- - (2^(N-1))