Skip site navigation (1)Skip section navigation (2)
Date:      Sat, 15 Nov 2008 11:53:58 GMT
From:      Timothy Cava <timothy.cava@gmail.com>
To:        freebsd-gnats-submit@FreeBSD.org
Subject:   bin/128886: ntpd -L flag doesn't work
Message-ID:  <200811151153.mAFBrw9b054552@www.freebsd.org>
Resent-Message-ID: <200811151200.mAFC0Bfx080257@freefall.freebsd.org>

next in thread | raw e-mail | index | archive | help

>Number:         128886
>Category:       bin
>Synopsis:       ntpd -L flag doesn't work
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    freebsd-bugs
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Sat Nov 15 12:00:11 UTC 2008
>Closed-Date:
>Last-Modified:
>Originator:     Timothy Cava
>Release:        7.0-STABLE
>Organization:
>Environment:
FreeBSD summit.localdomain 7.0-STABLE FreeBSD 7.0-STABLE #5: Sun Mar  9 06:03:02 PDT 2008     root@summit.localdomain:/usr/obj/usr/src/sys/SUMMIT  i386
>Description:
ntpd's -L flag is supposed to prevent listening on "virtual ips", but doesn't because address_okay() (ntp_io.c:938) determines an address is virtual if it has a ':' in its name. Our aliases don't so it ends up listening on every address.

NOTE: The problem remains in sources from today (2008-11-15).
>How-To-Repeat:
Add "-L" to ntpd_flags in /etc/rc.conf, /etc/rc.d/ntpd restart, sockstat |grep ntpd and notice it listens on every ip.
>Fix:
Make address_okay() check (ntp_io.c:938) if an interface is an alias or not in a BSD way.

>Release-Note:
>Audit-Trail:
>Unformatted:



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200811151153.mAFBrw9b054552>