From nobody Mon Jan 9 17:28:30 2023 X-Original-To: freebsd-current@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4NrPDm50rQz2pMLS for ; Mon, 9 Jan 2023 19:30:48 +0000 (UTC) (envelope-from Mathias.Picker@virtual-earth.de) Received: from www94.your-server.de (www94.your-server.de [213.133.104.94]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4NrPDl52GXz4RST for ; Mon, 9 Jan 2023 19:30:47 +0000 (UTC) (envelope-from Mathias.Picker@virtual-earth.de) Authentication-Results: mx1.freebsd.org; dkim=pass header.d=virtual-earth.de header.s=default_1811 header.b=BV62RNHo; spf=pass (mx1.freebsd.org: domain of Mathias.Picker@virtual-earth.de designates 213.133.104.94 as permitted sender) smtp.mailfrom=Mathias.Picker@virtual-earth.de; dmarc=pass (policy=none) header.from=virtual-earth.de DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=virtual-earth.de; s=default_1811; h=Content-Transfer-Encoding:Content-Type: MIME-Version:Message-ID:Date:Subject:To:From:Sender:Reply-To:Cc:Content-ID: Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc :Resent-Message-ID:In-Reply-To:References; bh=Dp2rggERKkFvAvCoGU8H+s7MzvmVdzGOnc9kAViKzog=; b=BV62RNHoj5uBieP4J7PghN6GIW HaQMkSuWKue3rQn38ibhJR3uisnXkFzjyzGiXOwnoLRUYcmu/ZjajUUXWPJJxSr4Un51ims4z4VJE qTBmn3PumlHs+YjCbZxGPKFsANkBOKxxqjKLRypEWmKJnjYtWLyM6M8CToIX9AeZAsD8MH6px7hEI 0g13camLoFpjnVGun7tgE3gZ2q7UovWNbjyuC4dy1NxEcmoznaxI7cttO6DS6obonp+pg9SYOBkL2 UXKQHl/RQJsTvO27JpAS+MKl5kMvzxQJFZEMSAur28sJ9DA0gM1Dj0I2/rKbl0LghiOc0f0MAhr1B HOH4se5Q==; Received: from sslproxy04.your-server.de ([78.46.152.42]) by www94.your-server.de with esmtpsa (TLS1.3) tls TLS_AES_256_GCM_SHA384 (Exim 4.94.2) (envelope-from ) id 1pExr2-000K8I-Tl for freebsd-current@freebsd.org; Mon, 09 Jan 2023 20:30:44 +0100 Received: from [2a01:c22:6eda:c100:4a2a:e3ff:fe1a:da58] (helo=danton.virtual-earth.de) by sslproxy04.your-server.de with esmtpsa (TLSv1.3:TLS_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from ) id 1pExr2-000FkZ-NM for freebsd-current@freebsd.org; Mon, 09 Jan 2023 20:30:44 +0100 User-agent: mu4e 1.8.13; emacs 28.2 From: Mathias Picker To: freebsd-current@freebsd.org Subject: Trying to switch to 14-CURRENT for linuxulator netlink, now sudo hanging in sbwait in linux jail Date: Mon, 09 Jan 2023 18:28:30 +0100 Message-ID: <86eds3sdy3.fsf@virtual-earth.de> List-Id: Discussions about the use of FreeBSD-current List-Archive: https://lists.freebsd.org/archives/freebsd-current List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-current@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: quoted-printable X-Authenticated-Sender: Mathias.Picker@virtual-earth.de X-Virus-Scanned: Clear (ClamAV 0.103.7/26776/Mon Jan 9 10:39:18 2023) X-Spamd-Result: default: False [-4.00 / 15.00]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; NEURAL_HAM_LONG(-1.00)[-1.000]; NEURAL_HAM_SHORT(-1.00)[-1.000]; DMARC_POLICY_ALLOW(-0.50)[virtual-earth.de,none]; R_DKIM_ALLOW(-0.20)[virtual-earth.de:s=default_1811]; R_SPF_ALLOW(-0.20)[+mx]; MIME_GOOD(-0.10)[text/plain]; RCVD_IN_DNSWL_NONE(0.00)[213.133.104.94:from]; RCVD_VIA_SMTP_AUTH(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; MLMMJ_DEST(0.00)[freebsd-current@freebsd.org]; ASN(0.00)[asn:24940, ipnet:213.133.96.0/19, country:DE]; MIME_TRACE(0.00)[0:+]; DKIM_TRACE(0.00)[virtual-earth.de:+]; RCVD_COUNT_THREE(0.00)[3]; RCPT_COUNT_ONE(0.00)[1]; MID_RHS_MATCH_FROM(0.00)[]; ARC_NA(0.00)[]; RCVD_TLS_ALL(0.00)[]; FROM_HAS_DN(0.00)[]; TO_DN_NONE(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; HAS_X_AS(0.00)[] X-Rspamd-Queue-Id: 4NrPDl52GXz4RST X-Spamd-Bar: --- X-ThisMailContainsUnwantedMimeParts: N Hi all, I was not sure if I should go with this to -current or -emulation,=20 I threw a coin and landed here :) Tell me if I need to take this to -emulation. I=E2=80=99m testing a few linux triplestore in a linux jail, and used 13.1= =20 which worked fine most of the time. Now one of the stores shows dropped connections with many clients,=20 and as I can see logs of netlink errors in the logs, I thought I=E2=80=99d= =20 try -CURRENT. I haven=E2=80=99t been on current for years, and have to say, beinstall.sh= =20 is a very nice tool and a comfortable way to do this, especially=20 if one is on a remote server. With bectl activate -t this feels=20 quite safe. So, thanks to whoever did this! Sadly, my linux jail (Ubuntu 16.04.7) now shows an irritating=20 behaviour, some programs seem to hang indefinitely waiting for=20 name resolution: Inside the jail: Working version with ping root@bayerlinux:/home/mathiasp/triplestore-analysis/tmp# ping=20 google.de WARNING: setsockopt(ICMP_FILTER): Protocol not available PING google.de (172.217.16.131) 56(84) bytes of data. Outside: root@kap:/usr/home/mathiasp # tcpdump -ni bayerlinux_b tcpdump: verbose output suppressed, use -v or -vv for full=20 protocol decode listening on bayerlinux_b, link-type EN10MB (Ethernet), capture=20 size 262144 bytes 20:17:10.852625 IP 192.168.100.10.13809 > 192.168.100.1.53: 3191+=20 [1au] A? google.de. (38) 20:17:10.852668 IP 192.168.100.1.53 > 192.168.100.10.13809: 3191=20 1/0/1 A 172.217.16.131 (54) Non-working with wget (same for curl and others) Inside the jail: root@bayerlinux:/home/mathiasp/triplestore-analysis/tmp# wget=20 http://google.de/ --2023-01-09 19:21:58-- http://google.de/ Resolving google.de (google.de)...=20 (waitet for max 5 minutes, no change) Outside the jail: root@kap:/usr/home/mathiasp # tcpdump -ni bayerlinux_b tcpdump: verbose output suppressed, use -v or -vv for full=20 protocol decode listening on bayerlinux_b, link-type EN10MB (Ethernet), capture=20 size 262144 bytes 20:17:02.738570 IP 192.168.100.10.60967 > 192.168.100.1.53: 30219+=20 A? google.de. (27) 20:17:02.738893 IP 192.168.100.1.53 > 192.168.100.10.60967: 30219=20 1/0/0 A 172.217.16.131 (43) So, this tcpdump looks pretty much as if both got answers from=20 unbound. Why is wget (and host, and curl, and sudo) not =E2=80=9Cgetting=E2=80=9D th= is=20 answer? Any ideas where to look or questions about my setup welcome! This is on a current from around 4p.m. CET: FreeBSD kap.virtual-earth.de 14.0-CURRENT FreeBSD 14.0-CURRENT #0=20 main-n259979-9408f36627b7: Mon Jan 9 16:36:51 CET 2023=20 root@kap.virtual-earth.de:/usr/obj/usr/src/amd64.amd64/sys/GENERIC-NODEBUG= =20 amd64 /etc/jail.conf looks like this: $iface=3D"igb0"; $j=3D"/jail"; path=3D"/jails/$name"; mount.devfs; exec.clean; exec.start=3D"sh /etc/rc"; exec.stop=3D"sh /etc/rc.shutdown"; exec.prestart=3D"logger starting jail $name ..."; exec.poststart=3D"logger jail $name has started"; exec.prestop=3D"logger shutting down jail $name"; exec.poststop=3D"logger jail $name has shut down"; # generic hostnames host.hostname=3D"$name.kap.local"; # vnet jails vnet; vnet.interface=3D"${name}_j"; exec.prestart+=3D"/usr/local/sbin/jailtobridge $name jailbridge0"; exec.poststop+=3D"/sbin/ifconfig jailbridge0 deletem=20 ${name}_b;/sbin/ifconfig ${name}_b destroy"; exec.consolelog=3D"/var/log/jails/$name-console.log"; # virtual earth vnet jails # linux jails # needs FreeBSD ifconfig and route from /rescue to work! bayerlinux { mount.fstab=3D"/jails/fstabs/bayerlinux"; allow.mount; allow.raw_sockets; allow.read_msgbuf; allow.socket_af; sysvmsg; sysvsem; sysvshm; #mount.devfs; exec.start =3D "/etc/init.d/rc 3"; exec.stop =3D "/etc/init.d/rc 0"; persist; } Thanks, Mathias --=20 Mathias Picker=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20 Gesch=C3=A4ftsf=C3=BChrer Mathias.Picker@virtual-earth.de virtual earth Gesellschaft f=C3=BCr Wissens re/pr=C3=A4 sentation mbH http://www.virtual-earth.de/ HRB126870 support@virtual-earth.de Westendstr. 142 089 / 1250 3943=20=20=20=20=20=20=20=20=20=20=20=20