From owner-freebsd-jail@freebsd.org Sun Jan 24 23:20:37 2021 Return-Path: Delivered-To: freebsd-jail@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id AF7564DF020 for ; Sun, 24 Jan 2021 23:20:37 +0000 (UTC) (envelope-from peter.garshtja@ambient-md.com) Received: from mail-qt1-x835.google.com (mail-qt1-x835.google.com [IPv6:2607:f8b0:4864:20::835]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4DP89w6hJnz4l8x for ; Sun, 24 Jan 2021 23:20:36 +0000 (UTC) (envelope-from peter.garshtja@ambient-md.com) Received: by mail-qt1-x835.google.com with SMTP id v3so8490668qtw.4 for ; Sun, 24 Jan 2021 15:20:36 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ambient-md-com.20150623.gappssmtp.com; s=20150623; h=to:from:subject:message-id:date:user-agent:mime-version :content-language; bh=VBHWWOjf3skLySWVaNhmPUJyrkUtz4El3VyFaTg+4pI=; b=y+lwLt+SCS1FYl60d/ya7Hrxa1zwewMblt9zihUVzKCzTC6skXDiVB9Q36gc1QiSNy l/Xm/3wgorJP/qTmdRbnKEkj8VjS3cfvJfN2fJPTuy3AhkUo7zC7k7dtIC2h6bAwLAEN wnzi9BmbE37td9tUD9Sk0bndDkQKXvF1N31+dzDPMlGbkyYzk+fRZJdNtZhHBZR7ulaU DGlFSKK1xLr6FzqFm62FwvUXsJyJ110OpmUbZ+/vdONtguje7ZFVjU8OsTsT16OWJ8Xw yZ3S9PgxQOt72nlTtqoR/fJXxDTI+w3K8ezS7YGIR0WuM7X+gYmSa24eYjqC8YNe/Yzq hY4Q== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:to:from:subject:message-id:date:user-agent :mime-version:content-language; bh=VBHWWOjf3skLySWVaNhmPUJyrkUtz4El3VyFaTg+4pI=; b=GdgzqsmwEN4xVRCKT4w7G8MZL18SAO/0CeCfsFjnXt71YRWGHzDV883kV4OaK5hcnh GCgagD0mvEH74bq6QMvLaFDEnoc0700vs2cJx5oz2DsR2JI35GJljYCEwmg7dopd+Jyy lqQHb/70q8jWTcmqtuqEuMZnF8NeO78a3I5Jn0CNsg9hrkVw4AP1tbjXKfQun1mGfGzp GOpAl9VNbynrGt8JGFWTbNuLQS98mhR8tvOs7QZhB7PDAHx4XbDv/KXVcP/BPQZ31jbO kz3LKduHhWxYBNL7GHir9gkQJpBU/Tz+COkFuUeYZ/1R1PhA9JOMgrX8uySEbbt1P5DF CqcQ== X-Gm-Message-State: AOAM531lbgRedgeXBNqYXU/nq+Ks3TINPwG77tMnfyRuTzqM81eBq8ot pVn2GC+y4kN4FuHfItsSQujnpeFimFDO8xk2WwY= X-Google-Smtp-Source: ABdhPJwEiQOQ3fveq9GUovmuapojFgUgp+PLeGE3z93x6DuzSossPDTm/dKB7hxvnb5ygNTESZIP5w== X-Received: by 2002:ac8:2615:: with SMTP id u21mr2596733qtu.233.1611530435762; Sun, 24 Jan 2021 15:20:35 -0800 (PST) Received: from ?IPv6:2001:470:1c:38d::4? ([2001:470:1c:38d::4]) by smtp.gmail.com with ESMTPSA id r54sm10669925qtr.70.2021.01.24.15.20.34 for (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Sun, 24 Jan 2021 15:20:34 -0800 (PST) To: freebsd-jail@freebsd.org From: petru garstea Subject: Jails - vnet- netgraph Message-ID: <5eebbbcf-9912-d980-21e3-c5628005421b@ambient-md.com> Date: Sun, 24 Jan 2021 18:20:33 -0500 User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:78.0) Gecko/20100101 Thunderbird/78.6.1 MIME-Version: 1.0 Content-Language: en-US X-Rspamd-Queue-Id: 4DP89w6hJnz4l8x X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=ambient-md-com.20150623.gappssmtp.com header.s=20150623 header.b=y+lwLt+S; dmarc=none; spf=none (mx1.freebsd.org: domain of peter.garshtja@ambient-md.com has no SPF policy when checking 2607:f8b0:4864:20::835) smtp.mailfrom=peter.garshtja@ambient-md.com X-Spamd-Result: default: False [-3.30 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; ARC_NA(0.00)[]; R_DKIM_ALLOW(-0.20)[ambient-md-com.20150623.gappssmtp.com:s=20150623]; MID_RHS_MATCH_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; NEURAL_HAM_LONG(-1.00)[-1.000]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; TO_DN_NONE(0.00)[]; PREVIOUSLY_DELIVERED(0.00)[freebsd-jail@freebsd.org]; RCPT_COUNT_ONE(0.00)[1]; SPAMHAUS_ZRD(0.00)[2607:f8b0:4864:20::835:from:127.0.2.255]; RCVD_COUNT_THREE(0.00)[3]; DMARC_NA(0.00)[ambient-md.com]; DKIM_TRACE(0.00)[ambient-md-com.20150623.gappssmtp.com:+]; NEURAL_HAM_SHORT(-1.00)[-1.000]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::835:from]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; R_SPF_NA(0.00)[no SPF record]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; RBL_DBL_DONT_QUERY_IPS(0.00)[2607:f8b0:4864:20::835:from]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; RCVD_TLS_ALL(0.00)[]; MAILMAN_DEST(0.00)[freebsd-jail] X-Mailman-Approved-At: Mon, 25 Jan 2021 09:50:55 +0000 Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 8bit X-Content-Filtered-By: Mailman/MimeDel 2.1.34 X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.34 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 24 Jan 2021 23:20:37 -0000 Greetings FreeBSD community,     OS: FreeBSD sun 12.2-RELEASE-p1 FreeBSD 12.2-RELEASE-p1 GENERIC  amd64 I am trying to build a netgraph vnet jail with support of official jng script that comes with FreeBSD and developed by Devin Teske. jail.conf file netgraph {   devfs_ruleset = 13;   enforce_statfs = 2;   exec.clean;   exec.consolelog = /var/log/bastille/netgraph_console.log;   exec.start = '/bin/sh /etc/rc';   exec.stop = '/bin/sh /etc/rc.shutdown';   host.hostname = netgraph;   mount.devfs;   mount.fstab = /usr/local/bastille/jails/netgraph/fstab;   path = /usr/local/bastille/jails/netgraph/root;   securelevel = 2;   vnet;   vnet.interface = e0b_bastille0; # exec.prestart += "jib addm bastille0 re0"; # exec.poststop += "jib destroy bastille0";   exec.prestart += "jng bridge netgraph re0";   exec.poststop += "jng shutdown netgraph" ; } When I start the jail, netgraph subsystem raise the following exception ngctl: send msg: No such file or directory jail: netgraph: jng bridge netgraph re0: failed I tried also to create the netgraph bridge with not using jng script ngctl mkpeer re0: bridge lower link0 ngctl: send msg: No such file or directory From what I found it looks it used to work on FreeBSD 11.x and stopped working in version 12. Any thoughts ? Please advise Cheers, Petru Garstea From owner-freebsd-jail@freebsd.org Tue Jan 26 17:53:49 2021 Return-Path: Delivered-To: freebsd-jail@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 6D12A4F9BF9 for ; Tue, 26 Jan 2021 17:53:49 +0000 (UTC) (envelope-from luzar722@gmail.com) Received: from mail-qk1-x734.google.com (mail-qk1-x734.google.com [IPv6:2607:f8b0:4864:20::734]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4DQDqv2bp9z3NgZ for ; Tue, 26 Jan 2021 17:53:45 +0000 (UTC) (envelope-from luzar722@gmail.com) Received: by mail-qk1-x734.google.com with SMTP id a7so9907519qkb.13 for ; Tue, 26 Jan 2021 09:53:45 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=message-id:date:from:user-agent:mime-version:to:cc:subject :references:in-reply-to:content-transfer-encoding; bh=+/oAIYnpkNHlg8zmovk1lJZPJSpD5nflQqzNfBNmsLI=; b=ItKGbmWM+KugeC39Z7GmUCElfN5KDsCuV1QFx6hFgZCBzusBkmKlK3n1m6CDJcO1N5 UyPpeBor9Ym73QTT1atWrZiBgTTJHK4C+QycrbbhL0Qhy1VopTc9/W/iQV+LtqCxDp3a O2vGiEAx+Ewu8BVQsnDh2mbgk6EnUvROL1W3pQL3SFsRaNBVRPZS8+VyO5LS1Wga1hlw 4G8Nf1NTuI8say/N9X2rohx0RJyY5mqBVHBCIqLL/gzzgXMZjMpCBLA6k7v1GV6tYQI8 xR1HstTSBXJuqxMR1341YqdEltIlUH6Gklxz26Uhfp7bgTnbt06GZncMDxijUf0VJkuI Tv2A== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:message-id:date:from:user-agent:mime-version:to :cc:subject:references:in-reply-to:content-transfer-encoding; bh=+/oAIYnpkNHlg8zmovk1lJZPJSpD5nflQqzNfBNmsLI=; b=DEteCAYAXBkOSgGg8jf5HRiwyfu6QbBSzaDOoJdZzkoYE643EZ6sFfDNUqp/wXXCtm SVWTf0kYu+O0tQ/1vACwSRJ2mO2dwoDQIa7yj4Nz9q9Pvw/2ZPbzJaVgp9Cpk7qsJBCO u7JW4988Hbtk+ObhL/Tyru2OP5sg+aGWvT3dY4aCNg4AI+v/cKijHdNmYNh96blg5Yas K53XfBdq5qoZQ2rVOMCqQbq84kTcsd+MDByS62BCCHibHH1xBq6yR/YGPWnDrH6eNTHC MpKF0JKQHnAZUhfHOuXKolK2XjOKE8N/+RPbHiuri5YBLUgbqvQ2WagFCV/E2JAMDVAW jF1Q== X-Gm-Message-State: AOAM533PY06S7AoYR9s4hZhX8FXXHWU+VvjU5e17m0P4J2ybFoCE8OQ8 PgkxiD7CGu7HiFTk3zZdZj024C8Obzo= X-Google-Smtp-Source: ABdhPJwi6OS0GQIDPdaojvR5oF+MhsRiI0bUUQluXoN8ZPGguR23hoB5cGU+x0xj5MCSTP/r4YqRVA== X-Received: by 2002:a37:4f44:: with SMTP id d65mr6802744qkb.165.1611683622631; Tue, 26 Jan 2021 09:53:42 -0800 (PST) Received: from [10.0.10.8] (cpe-65-25-51-0.neo.res.rr.com. [65.25.51.0]) by smtp.googlemail.com with ESMTPSA id c49sm14542137qta.89.2021.01.26.09.53.40 (version=TLS1 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Tue, 26 Jan 2021 09:53:41 -0800 (PST) Message-ID: <60105725.3010703@gmail.com> Date: Tue, 26 Jan 2021 12:53:41 -0500 From: Ernie Luzar User-Agent: Thunderbird 2.0.0.24 (Windows/20100228) MIME-Version: 1.0 To: petru garstea CC: freebsd-jail@freebsd.org Subject: Re: Jails - vnet- netgraph References: <5eebbbcf-9912-d980-21e3-c5628005421b@ambient-md.com> In-Reply-To: <5eebbbcf-9912-d980-21e3-c5628005421b@ambient-md.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit X-Rspamd-Queue-Id: 4DQDqv2bp9z3NgZ X-Spamd-Bar: + Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=ItKGbmWM; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of luzar722@gmail.com designates 2607:f8b0:4864:20::734 as permitted sender) smtp.mailfrom=luzar722@gmail.com X-Spamd-Result: default: False [1.96 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; TO_DN_SOME(0.00)[]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36:c]; FREEMAIL_FROM(0.00)[gmail.com]; RCVD_COUNT_THREE(0.00)[3]; DKIM_TRACE(0.00)[gmail.com:+]; RCPT_COUNT_TWO(0.00)[2]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; RECEIVED_SPAMHAUS_PBL(0.00)[65.25.51.0:received]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[gmail.com]; MID_RHS_MATCH_FROM(0.00)[]; RBL_DBL_DONT_QUERY_IPS(0.00)[2607:f8b0:4864:20::734:from]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; NEURAL_SPAM_SHORT(0.96)[0.961]; NEURAL_HAM_LONG(-1.00)[-1.000]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-jail@freebsd.org]; SPAMHAUS_ZRD(0.00)[2607:f8b0:4864:20::734:from:127.0.2.255]; TO_MATCH_ENVRCPT_SOME(0.00)[]; FORGED_MUA_THUNDERBIRD_MSGID(4.00)[]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::734:from]; RCVD_TLS_ALL(0.00)[]; MAILMAN_DEST(0.00)[freebsd-jail] X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.34 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 26 Jan 2021 17:53:50 -0000 petru garstea wrote: > Greetings FreeBSD community, > > >    OS: FreeBSD sun 12.2-RELEASE-p1 FreeBSD 12.2-RELEASE-p1 GENERIC > amd64 > > > I am trying to build a netgraph vnet jail with support of official jng > script that comes with FreeBSD and developed by Devin Teske. > > jail.conf file > > netgraph { >  devfs_ruleset = 13; >  enforce_statfs = 2; >  exec.clean; >  exec.consolelog = /var/log/bastille/netgraph_console.log; >  exec.start = '/bin/sh /etc/rc'; >  exec.stop = '/bin/sh /etc/rc.shutdown'; >  host.hostname = netgraph; >  mount.devfs; >  mount.fstab = /usr/local/bastille/jails/netgraph/fstab; >  path = /usr/local/bastille/jails/netgraph/root; >  securelevel = 2; > >  vnet; >  vnet.interface = e0b_bastille0; > # exec.prestart += "jib addm bastille0 re0"; > # exec.poststop += "jib destroy bastille0"; >  exec.prestart += "jng bridge netgraph re0"; >  exec.poststop += "jng shutdown netgraph" ; > } > > When I start the jail, netgraph subsystem raise the following exception > > ngctl: send msg: No such file or directory > jail: netgraph: jng bridge netgraph re0: failed > > I tried also to create the netgraph bridge with not using jng script > > ngctl mkpeer re0: bridge lower link0 > ngctl: send msg: No such file or directory > > From what I found it looks it used to work on FreeBSD 11.x and stopped > working in version 12. > > Any thoughts ? > > Please advise > > > Cheers, > > Petru Garstea > Don't see any reply so I will try to help you. If I remember correctly the jib and jng was added as documentation back around freebsd 10.00. I have tried to get it to work 10+, 11+ ,12+ with no joy. There is something missing but can not tell what it is. The jail environment has gone through many changes over time so no wonder jib/jng don't work now. Netgraph is a complete subsystem for network configuration that has it's own syntax and commands. The learning curve is pretty great. There is a outstanding bug and Devin Teske & (she) has taken up the bug. Hopping 13 holds the bug fix. From owner-freebsd-jail@freebsd.org Wed Jan 27 02:59:11 2021 Return-Path: Delivered-To: freebsd-jail@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 2E9A34EB223 for ; Wed, 27 Jan 2021 02:59:11 +0000 (UTC) (envelope-from peter.garshtja@ambient-md.com) Received: from mail-qt1-x82b.google.com (mail-qt1-x82b.google.com [IPv6:2607:f8b0:4864:20::82b]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4DQSxB3FF1z4rLJ for ; Wed, 27 Jan 2021 02:59:09 +0000 (UTC) (envelope-from peter.garshtja@ambient-md.com) Received: by mail-qt1-x82b.google.com with SMTP id o18so461407qtp.10 for ; Tue, 26 Jan 2021 18:59:09 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ambient-md-com.20150623.gappssmtp.com; s=20150623; h=subject:to:cc:references:from:message-id:date:user-agent :mime-version:in-reply-to:content-transfer-encoding:content-language; bh=HQsUhRytFo2nUIVUR9xTvKQdE577hYQODRAEsgtzWOo=; b=qTxJcIDJuFPrfaiEe9hbFfHOLEwvXVBGNgQi4uMKmU23LZSSnoCZ6LeI16C4PqOKB9 +ICQvNo98X0vWGn55Y1vUZkiKamoytc/H1PRknv7xY2Jwl/Grbp1pW5luhX6oM9/BIFV eyHHuoSbB56qXsqS0oidWxh9T6hjfZDP1aXZviJTp1SxGhIjNmbe2si0ypufaSacKx7n bq/0FaaldvPgNaPNBvo7aWM4Oc3zfA9yTYNYViuKLMh31VLTfUZWbXRAgcbsGTnGadcg gwHKc4aCsAqqlDz4yrg8p1cVkb4Is+FnUUxGSazHAFphFc6umTsCQ4yO12Qv6izggz/L J5XA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:to:cc:references:from:message-id:date :user-agent:mime-version:in-reply-to:content-transfer-encoding :content-language; bh=HQsUhRytFo2nUIVUR9xTvKQdE577hYQODRAEsgtzWOo=; b=ZeUyF+jD9cxZz7TrQFtlNZcV/fa+eLKWBHWTWpP9xzjnZY50uOn9vjYpRd0UQ72NOn eWjylsu6SOXUfYsJTnvY/DuysH5JtRlc7tS2GW7K7Z0gZwcHMy9ZvdMyez1kx5vv3MsQ kZhuEuqTh0ozSfCayhRWWh3px7+MkHQxplAGmgYC+gU4+aGefFVA33MnYdV6LfQ6IlxB 701L6oZPri5pHQg7G6EjaLzoDvs13YYuTgT2pXgTNxlt7QQGIP683nMbAbuKxbPmupkR U2b27btfwBEsSPQMJHZOScpLU6KLYjlDtKGDT55hed8co0CofNLbHXZf5ANKbstaZUCc 22oA== X-Gm-Message-State: AOAM5329GZ/a0Daup6+2sFOZm3/hhzQjB5vkL0BlAneRh+/BAVQCzq/t 01qtQ1m4nHabgz7FbKGzjO8y7IlCAziUhLjI8l8= X-Google-Smtp-Source: ABdhPJw2J508XiZhihg9F3LBV3rtPNf1+BzKSpMqxSL8BfCDXiCqbEc16AxMujFfREhDTTGNOwPh0w== X-Received: by 2002:ac8:5448:: with SMTP id d8mr8169324qtq.6.1611716349048; Tue, 26 Jan 2021 18:59:09 -0800 (PST) Received: from ?IPv6:2001:470:1c:38d::4? ([2001:470:1c:38d::4]) by smtp.gmail.com with ESMTPSA id w42sm511701qtw.22.2021.01.26.18.59.07 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Tue, 26 Jan 2021 18:59:08 -0800 (PST) Subject: Re: Jails - vnet- netgraph To: Ernie Luzar Cc: freebsd-jail@freebsd.org References: <5eebbbcf-9912-d980-21e3-c5628005421b@ambient-md.com> <60105725.3010703@gmail.com> From: petru garstea Message-ID: <1cdee0f4-a684-0c7d-f4b7-377d5a29d722@ambient-md.com> Date: Tue, 26 Jan 2021 21:59:05 -0500 User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:78.0) Gecko/20100101 Thunderbird/78.6.1 MIME-Version: 1.0 In-Reply-To: <60105725.3010703@gmail.com> Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 8bit Content-Language: en-US X-Rspamd-Queue-Id: 4DQSxB3FF1z4rLJ X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=ambient-md-com.20150623.gappssmtp.com header.s=20150623 header.b=qTxJcIDJ; dmarc=none; spf=none (mx1.freebsd.org: domain of peter.garshtja@ambient-md.com has no SPF policy when checking 2607:f8b0:4864:20::82b) smtp.mailfrom=peter.garshtja@ambient-md.com X-Spamd-Result: default: False [-3.30 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; TO_DN_SOME(0.00)[]; RCVD_COUNT_THREE(0.00)[3]; DKIM_TRACE(0.00)[ambient-md-com.20150623.gappssmtp.com:+]; RCPT_COUNT_TWO(0.00)[2]; NEURAL_HAM_SHORT(-1.00)[-1.000]; FREEMAIL_TO(0.00)[gmail.com]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; RBL_DBL_DONT_QUERY_IPS(0.00)[2607:f8b0:4864:20::82b:from]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; MID_RHS_MATCH_FROM(0.00)[]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; R_DKIM_ALLOW(-0.20)[ambient-md-com.20150623.gappssmtp.com:s=20150623]; FROM_HAS_DN(0.00)[]; NEURAL_HAM_LONG(-1.00)[-1.000]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-jail@freebsd.org]; DMARC_NA(0.00)[ambient-md.com]; SPAMHAUS_ZRD(0.00)[2607:f8b0:4864:20::82b:from:127.0.2.255]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::82b:from]; R_SPF_NA(0.00)[no SPF record]; RCVD_TLS_ALL(0.00)[]; MAILMAN_DEST(0.00)[freebsd-jail] X-Mailman-Approved-At: Wed, 27 Jan 2021 09:29:11 +0000 X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.34 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 27 Jan 2021 02:59:11 -0000 Hi Ernie,     jib script is working fine, however in my current setup I need to emulate bridge interface with netgraph subsystem, I tried to manage that part with jng script with no luck then I decided to create the netgraph bridge manually using ngctl client and in the end the result was the same. In the recent FreeBSD magazines it was mentioned that "bridging" was refactored and I would like to know if that might be impacted the netgraph bridge. Please advise Cheers, Petru Garstea On 1/26/21 12:53 PM, Ernie Luzar wrote: > petru garstea wrote: >> Greetings FreeBSD community, >> >> >>     OS: FreeBSD sun 12.2-RELEASE-p1 FreeBSD 12.2-RELEASE-p1 >> GENERIC  amd64 >> >> >> I am trying to build a netgraph vnet jail with support of official >> jng script that comes with FreeBSD and developed by Devin Teske. >> >> jail.conf file >> >> netgraph { >>   devfs_ruleset = 13; >>   enforce_statfs = 2; >>   exec.clean; >>   exec.consolelog = /var/log/bastille/netgraph_console.log; >>   exec.start = '/bin/sh /etc/rc'; >>   exec.stop = '/bin/sh /etc/rc.shutdown'; >>   host.hostname = netgraph; >>   mount.devfs; >>   mount.fstab = /usr/local/bastille/jails/netgraph/fstab; >>   path = /usr/local/bastille/jails/netgraph/root; >>   securelevel = 2; >> >>   vnet; >>   vnet.interface = e0b_bastille0; >> # exec.prestart += "jib addm bastille0 re0"; >> # exec.poststop += "jib destroy bastille0"; >>   exec.prestart += "jng bridge netgraph re0"; >>   exec.poststop += "jng shutdown netgraph" ; >> } >> >> When I start the jail, netgraph subsystem raise the following exception >> >> ngctl: send msg: No such file or directory >> jail: netgraph: jng bridge netgraph re0: failed >> >> I tried also to create the netgraph bridge with not using jng script >> >> ngctl mkpeer re0: bridge lower link0 >> ngctl: send msg: No such file or directory >> >>  From what I found it looks it used to work on FreeBSD 11.x and >> stopped working in version 12. >> >> Any thoughts ? >> >> Please advise >> >> >> Cheers, >> >> Petru Garstea >> > > Don't see any reply so I will try to help you. > If I remember correctly the jib and jng was added as documentation > back around freebsd 10.00. I have tried to get it to work 10+, 11+ > ,12+ with no joy. There is something missing but can not tell what it > is. The jail environment has gone through many changes over time so no > wonder jib/jng don't work now. > > Netgraph is a complete subsystem for network configuration that has > it's own syntax and commands. The learning curve is pretty great. > There is a outstanding bug and Devin Teske & (she) has taken up the > bug. Hopping 13 holds the bug fix. > > > > > > > > > From owner-freebsd-jail@freebsd.org Wed Jan 27 10:36:58 2021 Return-Path: Delivered-To: freebsd-jail@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 4554C4F4B91 for ; Wed, 27 Jan 2021 10:36:58 +0000 (UTC) (envelope-from kp@FreeBSD.org) Received: from smtp.freebsd.org (smtp.freebsd.org [96.47.72.83]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "smtp.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4DQg5Q1bxgz3mH9; Wed, 27 Jan 2021 10:36:58 +0000 (UTC) (envelope-from kp@FreeBSD.org) Received: from venus.codepro.be (venus.codepro.be [5.9.86.228]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mx1.codepro.be", Issuer "R3" (verified OK)) (Authenticated sender: kp) by smtp.freebsd.org (Postfix) with ESMTPSA id 103FC2463D; Wed, 27 Jan 2021 10:36:58 +0000 (UTC) (envelope-from kp@FreeBSD.org) Received: by venus.codepro.be (Postfix, authenticated sender kp) id CC1EB1784D; Wed, 27 Jan 2021 11:36:56 +0100 (CET) From: "Kristof Provost" To: "petru garstea" Cc: freebsd-jail@freebsd.org Subject: Re: Jails - vnet- netgraph Date: Wed, 27 Jan 2021 11:36:56 +0100 X-Mailer: MailMate (1.13.2r5673) Message-ID: <4F2D1547-7B59-427E-850D-8BC0AB26ED78@FreeBSD.org> In-Reply-To: <1cdee0f4-a684-0c7d-f4b7-377d5a29d722@ambient-md.com> References: <5eebbbcf-9912-d980-21e3-c5628005421b@ambient-md.com> <60105725.3010703@gmail.com> <1cdee0f4-a684-0c7d-f4b7-377d5a29d722@ambient-md.com> MIME-Version: 1.0 Content-Type: text/plain; format=flowed X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.34 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 27 Jan 2021 10:36:58 -0000 On 27 Jan 2021, at 3:59, petru garstea wrote: > In the recent FreeBSD magazines it was mentioned that "bridging" was > refactored and I would like to know if that might be impacted the > netgraph bridge. > No, the if_bridge changes do not affect the netgraph code. Best regards, Kristof From owner-freebsd-jail@freebsd.org Thu Jan 28 01:54:53 2021 Return-Path: Delivered-To: freebsd-jail@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 850C04F2A6B for ; Thu, 28 Jan 2021 01:54:53 +0000 (UTC) (envelope-from peter.garshtja@ambient-md.com) Received: from mail-qk1-x72f.google.com (mail-qk1-x72f.google.com [IPv6:2607:f8b0:4864:20::72f]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4DR3SY3790z4QvP for ; Thu, 28 Jan 2021 01:54:53 +0000 (UTC) (envelope-from peter.garshtja@ambient-md.com) Received: by mail-qk1-x72f.google.com with SMTP id x81so3942751qkb.0 for ; Wed, 27 Jan 2021 17:54:53 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ambient-md-com.20150623.gappssmtp.com; s=20150623; h=subject:to:cc:references:from:message-id:date:user-agent :mime-version:in-reply-to:content-transfer-encoding:content-language; bh=HebpzeptLetXsdLKotB88ITWfsQ5pjyVLNd5YBDKFLc=; b=XD7dyZAU5Vo679NtJgoB1l7VDs2Y5o7TsEQBK0531Gf83ZU4CEVKhE/uMv0n2LwDat P6Pvl+aMtNjq9fyBMBWCRX+jVrCpSxdKAxHzn6/fz14sdah7HMi8eBriYWmW44Spp0c6 saQjKIadmhNijmeazGPtZYCsDYTPu6iNNegMHx05s80HNADVvAXipveA7qQJcbzVV1QH wLbITFp0R3jSHhBfhc3uD/z3ka4GwT/B00D3B/g0PVi2W9iX4ZHtn1FJChMhhcCESGOR uqNvJURHkNWE4S+JQ2HacYlbXJiTGHvQpzoXhqA49f7Qq5J41yQc/Ak/BlgnSjYvHU9B /bHA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:to:cc:references:from:message-id:date :user-agent:mime-version:in-reply-to:content-transfer-encoding :content-language; bh=HebpzeptLetXsdLKotB88ITWfsQ5pjyVLNd5YBDKFLc=; b=RxtZFQoebZaUi2yI+rUx6wDxlzHclf62QV/P2bUjvDNh7rYZzYEbAYeCLP1TCnJ6qY 4321DFUybFORfQMnKw7YYUQgbdXjSvaVfgwxK9CzD29k5gQ6g6oOe3fhVBndze/a8ypr 9Zxsiy67FLB/qf46kJt4yA+2UCnSf2DQ8WijxnggVInEKtRYImFyWUZMjQG5NaKUaI4/ ro21a8FseZIT87O2wj1hdcwrVGCdGpO0fGEiVqgsWebaOCcTC5X32+4OGhxILJetNVNN u/1mxrQH4SVNkwxbG7laSeWqxTn6ejoZiEDU493pyQmncDKuCOpmyxp2z6zQIeStIlzw eW1Q== X-Gm-Message-State: AOAM532+gZlDBYX5DfLITIqNybMr3d/Pn6yt5o+wqt9H/0Eqa/2XI99p Hbw+dEM3AzNZu4xvloYx/N6+TWDNBpQRQ1Jxe9U= X-Google-Smtp-Source: ABdhPJzR4W0bK6G5Zqcz6ABFCsA0RbLsuFZB6QYlxP3R9y5LfQjeKa9BTI5Mw58sGckhjNED7HUPEw== X-Received: by 2002:a37:c06:: with SMTP id 6mr3102010qkm.39.1611798891997; Wed, 27 Jan 2021 17:54:51 -0800 (PST) Received: from ?IPv6:2001:470:1c:38d::4? ([2001:470:1c:38d::4]) by smtp.gmail.com with ESMTPSA id d9sm2447307qko.84.2021.01.27.17.54.50 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Wed, 27 Jan 2021 17:54:51 -0800 (PST) Subject: Re: Jails - vnet- netgraph To: Kristof Provost Cc: freebsd-jail@freebsd.org References: <5eebbbcf-9912-d980-21e3-c5628005421b@ambient-md.com> <60105725.3010703@gmail.com> <1cdee0f4-a684-0c7d-f4b7-377d5a29d722@ambient-md.com> <4F2D1547-7B59-427E-850D-8BC0AB26ED78@FreeBSD.org> From: petru garstea Message-ID: <1ea707ea-0d0e-3f10-b544-77b1bccdddca@ambient-md.com> Date: Wed, 27 Jan 2021 20:54:49 -0500 User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:78.0) Gecko/20100101 Thunderbird/78.6.1 MIME-Version: 1.0 In-Reply-To: <4F2D1547-7B59-427E-850D-8BC0AB26ED78@FreeBSD.org> Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 8bit Content-Language: en-US X-Rspamd-Queue-Id: 4DR3SY3790z4QvP X-Spamd-Bar: ---- Authentication-Results: mx1.freebsd.org; none X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[] X-Mailman-Approved-At: Thu, 28 Jan 2021 08:46:43 +0000 X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.34 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 28 Jan 2021 01:54:53 -0000 Greetings,     Finally, I sorted out. I have copied an example from the following path /usr/share/examples/netgraph/ether.bridge and found out that I needed to load modules into the kernel ng_socket.ko ng_bridge.ko ng_ether.ko ng_eiface.ko and jng script start working, I spawned a jail and confirmed that vnet netgraph interface was properly configured However I have another question, if I run ifconfig on the host I dont see in the list the netgraph bridge interface and the jails ether interface, I can see these interfaces only if run ngctl list   Name: ng0_vnetjail    Type: eiface          ID: 00000010   Num hooks: 1   Name: re0                  Type: ether           ID: 00000005 Num hooks: 2   Name: ngctl1544       Type: socket          ID: 00000017   Num hooks: 0   Name: re0bridge       Type: bridge          ID: 0000000b   Num hooks: 3 Please advise Cheers, Petru Garstea On 1/27/21 5:36 AM, Kristof Provost wrote: > On 27 Jan 2021, at 3:59, petru garstea wrote: >> In the recent FreeBSD magazines it was mentioned that "bridging" was >> refactored and I would like to know if that might be impacted the >> netgraph bridge. >> > No, the if_bridge changes do not affect the netgraph code. > > Best regards, > Kristof From owner-freebsd-jail@freebsd.org Thu Jan 28 08:53:56 2021 Return-Path: Delivered-To: freebsd-jail@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 9CF214FD71E for ; Thu, 28 Jan 2021 08:53:56 +0000 (UTC) (envelope-from kp@FreeBSD.org) Received: from smtp.freebsd.org (smtp.freebsd.org [96.47.72.83]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "smtp.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4DRDm4490jz4pVk; Thu, 28 Jan 2021 08:53:56 +0000 (UTC) (envelope-from kp@FreeBSD.org) Received: from venus.codepro.be (venus.codepro.be [5.9.86.228]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mx1.codepro.be", Issuer "R3" (verified OK)) (Authenticated sender: kp) by smtp.freebsd.org (Postfix) with ESMTPSA id 6842F2EB74; Thu, 28 Jan 2021 08:53:56 +0000 (UTC) (envelope-from kp@FreeBSD.org) Received: by venus.codepro.be (Postfix, authenticated sender kp) id CF6E31C7F0; Thu, 28 Jan 2021 09:53:54 +0100 (CET) From: "Kristof Provost" To: "petru garstea" Cc: freebsd-jail@freebsd.org Subject: Re: Jails - vnet- netgraph Date: Thu, 28 Jan 2021 09:53:53 +0100 X-Mailer: MailMate (1.13.2r5673) Message-ID: In-Reply-To: <1ea707ea-0d0e-3f10-b544-77b1bccdddca@ambient-md.com> References: <5eebbbcf-9912-d980-21e3-c5628005421b@ambient-md.com> <60105725.3010703@gmail.com> <1cdee0f4-a684-0c7d-f4b7-377d5a29d722@ambient-md.com> <4F2D1547-7B59-427E-850D-8BC0AB26ED78@FreeBSD.org> <1ea707ea-0d0e-3f10-b544-77b1bccdddca@ambient-md.com> MIME-Version: 1.0 Content-Type: text/plain; charset="UTF-8"; format=flowed Content-Transfer-Encoding: 8bit X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.34 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 28 Jan 2021 08:53:56 -0000 On 28 Jan 2021, at 2:54, petru garstea wrote: > Greetings, > >     Finally, I sorted out. > > I have copied an example from the following path > /usr/share/examples/netgraph/ether.bridge and found out that I needed > to load modules into the kernel > > ng_socket.ko > ng_bridge.ko > ng_ether.ko > ng_eiface.ko > > and jng script start working, I spawned a jail and confirmed that vnet > netgraph interface was properly configured > > However I have another question, if I run ifconfig on the host I dont > see in the list the netgraph bridge interface and the jails ether > interface, I can see these interfaces only if run > Vnet jails own the interfaces, so it’s entirely expected that you wouldn’t see them in on the host. > ngctl list > >   Name: ng0_vnetjail    Type: eiface          ID: > 00000010   Num hooks: 1 >   Name: re0                  Type: > ether           ID: 00000005 Num hooks: 2 >   Name: ngctl1544       Type: socket          ID: > 00000017   Num hooks: 0 >   Name: re0bridge       Type: bridge          ID: > 0000000b   Num hooks: 3 > If you can see those from the host that seems like it’d be a bug in the netgraph code. Regards, Kristof From owner-freebsd-jail@freebsd.org Fri Jan 29 09:24:40 2021 Return-Path: Delivered-To: freebsd-jail@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id F2DC04E3ACB for ; Fri, 29 Jan 2021 09:24:40 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mailman.nyi.freebsd.org (mailman.nyi.freebsd.org [IPv6:2610:1c1:1:606c::50:13]) by mx1.freebsd.org (Postfix) with ESMTP id 4DRsP46NFmz4b01 for ; Fri, 29 Jan 2021 09:24:40 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: by mailman.nyi.freebsd.org (Postfix) id D91C44E3079; Fri, 29 Jan 2021 09:24:40 +0000 (UTC) Delivered-To: jail@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id D8DF64E3CE4 for ; Fri, 29 Jan 2021 09:24:40 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4DRsP45lBPz4Zwy for ; Fri, 29 Jan 2021 09:24:40 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id B82512058D for ; Fri, 29 Jan 2021 09:24:40 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 10T9Oe4G029556 for ; Fri, 29 Jan 2021 09:24:40 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 10T9OekI029555 for jail@FreeBSD.org; Fri, 29 Jan 2021 09:24:40 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: jail@FreeBSD.org Subject: [Bug 238326] Kernel crash on jail stop (VIMAGE/VNET) Date: Fri, 29 Jan 2021 09:24:39 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 12.1-RELEASE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: zlei.huang@gmail.com X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: jail@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.34 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 29 Jan 2021 09:24:41 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D238326 --- Comment #19 from Zhenlei Huang --- The problem is still present on 12.2-RELEASE-p3. --=20 You are receiving this mail because: You are the assignee for the bug.= From owner-freebsd-jail@freebsd.org Fri Jan 29 13:46:28 2021 Return-Path: Delivered-To: freebsd-jail@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id D8BB34ECD5D for ; Fri, 29 Jan 2021 13:46:28 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mailman.nyi.freebsd.org (unknown [127.0.1.3]) by mx1.freebsd.org (Postfix) with ESMTP id 4DRzC85dSBz4v5H for ; Fri, 29 Jan 2021 13:46:28 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: by mailman.nyi.freebsd.org (Postfix) id C15594ECD5C; Fri, 29 Jan 2021 13:46:28 +0000 (UTC) Delivered-To: jail@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id C11FC4ECD5B for ; Fri, 29 Jan 2021 13:46:28 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4DRzC853HZz4v5G for ; Fri, 29 Jan 2021 13:46:28 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id A079923A1E for ; Fri, 29 Jan 2021 13:46:28 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 10TDkStM076739 for ; Fri, 29 Jan 2021 13:46:28 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 10TDkS48076738 for jail@FreeBSD.org; Fri, 29 Jan 2021 13:46:28 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: jail@FreeBSD.org Subject: [Bug 238326] Kernel crash on jail stop (VIMAGE/VNET) Date: Fri, 29 Jan 2021 13:46:28 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 12.1-RELEASE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: kevans@freebsd.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: jail@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: cc Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.34 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 29 Jan 2021 13:46:28 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D238326 Kyle Evans changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |kevans@freebsd.org --- Comment #20 from Kyle Evans --- (In reply to Zhenlei Huang from comment #19) A panic message would be helpful; some folks have noted a tangentially rela= ted use-after-free in similar circumstances. It'd be good to note if you're hit= ting the primary issue that kp fixed or a second UAF. --=20 You are receiving this mail because: You are the assignee for the bug.=