From owner-freebsd-hackers  Wed Sep 22  6: 8: 3 1999
Delivered-To: freebsd-hackers@freebsd.org
Received: from citadel.cequrux.com (citadel.cdsec.com [192.96.22.18])
	by hub.freebsd.org (Postfix) with ESMTP id B14FF15CC5
	for <hackers@freebsd.org>; Wed, 22 Sep 1999 06:07:39 -0700 (PDT)
	(envelope-from gram@cequrux.com)
Received: (from nobody@localhost)
	by citadel.cequrux.com (8.9.3/8.9.3) id PAA08584
	for <hackers@freebsd.org>; Wed, 22 Sep 1999 15:07:29 +0200 (SAST)
Received: by citadel.cequrux.com via recvmail id 8541; Wed Sep 22 15:07:04 1999
Message-ID: <37E8D481.5A8C484A@cequrux.com>
Date: Wed, 22 Sep 1999 15:07:13 +0200
From: Graham Wheeler <gram@cequrux.com>
Organization: Cequrux Technologies
X-Mailer: Mozilla 4.08 [en] (X11; I; FreeBSD 2.2.8-RELEASE i386)
MIME-Version: 1.0
To: hackers@freebsd.org
Subject: Domain sockets and chroot
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-hackers@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

Hi all

I have an interesting problem. I have two processes that need to 
communicate via a domain socket. One of the processes (the client)
runs in a chrooted environment.

The server creates a domain socket to listen for requests with the
path /cage/tmp/server. The client runs chrooted in the /cage directory, 
and creates a domain socket /tmp/client.<pid>. It sends a request to
the server with a sendto() specifying the socket address /tmp/server.
The server received the request okay, but gets the sender socket address
/tmp/client.<pid> ; i.e. it is the chrooted view of the client socket. 
If it tries to send back a response, it fails (no such file or
directory).

I have tried having the server prepend /cage to the client socket
address before sending the response, but this has made no difference,
even though (in the non-chrooted view) /cage/tmp/client.<pid> clearly
does exist.

Does anyone have an idea why prepending /cage doesn't work, and how I
can solve this? And is this arguably a bug with chroot()/recvfrom()?

TIA
gram
-- 
Dr Graham Wheeler                        E-mail: gram@cequrux.com
Cequrux Technologies                     Phone:  +27(21)423-6065/6/7
Firewalls/Virtual Private Networks       Fax:    +27(21)24-3656
Data/Network Security Specialists        WWW:    http://www.cequrux.com/


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message