Date: Tue, 25 Jan 2005 16:35:47 +0100 From: Jeremie Le Hen <jeremie@le-hen.org> To: Nickolay Kritsky <Nickolay.Kritsky@astra-sw.com> Cc: Jeremie Le Hen <jeremie@le-hen.org> Subject: Re: gif(4) and bpf(4) Message-ID: <20050125153547.GF59685@obiwan.tataz.chchile.org> In-Reply-To: <D86BF562467D944EB435513F725B236A07C11F@exchange.stardevelopers4msi.com> References: <D86BF562467D944EB435513F725B236A07C11F@exchange.stardevelopers4msi.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--a8Wt8u1KmwUX3Y2C
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
> Please tell me more about your problem: is it that tcpdump cannot
> attach to device, or it shows no packets when you are sure there is
> traffic on the gif(4) interface, or something else? If there is some
> error report - send it here. Please check that you have free bpf
> device :-) . What version of 4.x are you running? On my 4.9 system
> if_gif.c has references to bpf_mtap in both _input and _output
> routines. That should work.
Yes sorry, I should have given these informations earlier :
4.10-STABLE FreeBSD 4.10-STABLE #44: Wed Jul 7 03:35:21 CEST 2004
bpf(4) is compiled in the kernel but gif(4) is loaded as a module (can
this be the point ?).
There is absolutely no error. I attached the strace log.
See also my next reply to Bruce, I'll give my file revisions.
Many thanks.
Best regards,
--
Jeremie Le Hen
jeremie@le-hen.org
--a8Wt8u1KmwUX3Y2C
Content-Type: text/plain; charset=us-ascii
Content-Disposition: attachment; filename="strace.tcpdump"
execve("/usr/local/sbin/tcpdump", ["/usr/local/sbin/tcpdump", "-y", "null", "-i", "gif0"], [/* 27 vars */]) = 0 <0.000935>
mmap(0, 2048, PROT_READ|PROT_WRITE, MAP_ANON, -1, 0) = 0x280d7000 <0.000061>
munmap(0x280d7000, 2048) = 0 <0.000061>
__sysctl([hw.pagesize], 2, "\0\20\0\0", [4], NULL, 0) = 0 <0.000079>
mmap(0, 32768, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANON, -1, 0) = 0x280d7000 <0.000052>
geteuid(0xbfbff76c) = 0 <0.000041>
getuid() = 0 (euid 0) <0.000040>
getegid(0xbfbff76c) = 0 <0.000040>
getgid() = 0 (egid 0) <0.000039>
open("/etc/libmap.conf", O_RDONLY) = -1 ENOENT (No such file or directory) <0.000081>
open("/var/run/ld-elf.so.hints", O_RDONLY) = 3 <0.000091>
read(3, "Ehnt\1\0\0\0\200\0\0\0Q\0\0\0\0\0\0\0P\0\0\0\0\0\0\0\0"..., 128) = 128 <0.000070>
lseek(3, 128, SEEK_SET) = 128 <0.000040>
read(3, "/usr/lib:/usr/lib/compat:/usr/X1"..., 81) = 81 <0.000062>
close(3) = 0 <0.000069>
access("/usr/lib/libc.so.4", F_OK) = 0 <0.000082>
open("/usr/lib/libc.so.4", O_RDONLY) = 3 <0.000080>
fstat(3, {st_mode=S_IFREG|0444, st_size=589976, ...}) = 0 <0.000048>
read(3, "\177ELF\1\1\1\t\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0\264(\1"..., 4096) = 4096 <0.000106>
mmap(0, 638976, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_NOCORE, 3, 0) = 0x280df000 <0.000064>
mprotect(0x28162000, 4096, PROT_READ|PROT_WRITE|PROT_EXEC) = 0 <0.000052>
mprotect(0x28162000, 4096, PROT_READ|PROT_EXEC) = 0 <0.000048>
mmap(0x28163000, 20480, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED, 3, 0x83000) = 0x28163000 <0.000079>
mmap(0x28168000, 77824, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANON, -1, 0) = 0x28168000 <0.000059>
close(3) = 0 <0.000048>
mmap(0, 864, PROT_READ|PROT_WRITE, MAP_ANON, -1, 0) = 0x2817b000 <0.000050>
munmap(0x2817b000, 864) = 0 <0.000067>
mmap(0, 13360, PROT_READ|PROT_WRITE, MAP_ANON, -1, 0) = 0x2817b000 <0.000053>
munmap(0x2817b000, 13360) = 0 <0.000071>
sigaction(SIGILL, {0x280c69c8, [], 0}, {SIG_DFL}) = 0 <0.000053>
sigprocmask(SIG_BLOCK, NULL, []) = 0 <0.000041>
sigaction(SIGILL, {SIG_DFL}, NULL) = 0 <0.000043>
sigprocmask(SIG_BLOCK, ~[ILL TRAP ABRT EMT FPE BUS SEGV SYS], []) = 0 <0.000042>
sigprocmask(SIG_SETMASK, [], NULL) = 0 <0.000042>
gettimeofday({1106667099, 812736}, NULL) = 0 <0.000042>
issetugid(0x28166cac) = 0 <0.000040>
open("/usr/share/zoneinfo/GMT", O_RDONLY) = 3 <0.000109>
fstat(3, {st_mode=S_IFREG|0644, st_size=56, ...}) = 0 <0.000046>
read(3, "TZif\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\1\0\0\0\1\0"..., 7944) = 56 <0.000066>
close(3) = 0 <0.000066>
issetugid(0x28166cac) = 0 <0.000040>
open("/usr/share/zoneinfo/CET", O_RDONLY) = 3 <0.000089>
fstat(3, {st_mode=S_IFREG|0644, st_size=755, ...}) = 0 <0.000044>
read(3, "TZif\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\4\0\0\0\4\0"..., 7944) = 755 <0.000072>
close(3) = 0 <0.000065>
readlink("/etc/malloc.conf", 0xbfbff410, 63) = -1 ENOENT (No such file or directory) <0.000065>
mmap(0, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANON, -1, 0) = 0x2817b000 <0.000062>
break(0x819e000) = 0 <0.000049>
break(0x819f000) = 0 <0.000047>
open("/dev/bpf0", O_RDONLY) = -1 EBUSY (Device busy) <0.000092>
open("/dev/bpf1", O_RDONLY) = 3 <0.000105>
ioctl(3, BIOCVERSION, 0xbfbff4c8) = 0 <0.000049>
ioctl(3, BIOCGBLEN, 0xbfbff4c4) = 0 <0.000044>
ioctl(3, BIOCSBLEN, 0xbfbff4c4) = 0 <0.000047>
ioctl(3, BIOCSETIF, 0xbfbff580) = 0 <0.000161>
ioctl(3, BIOCGDLT, 0xbfbff4c4) = 0 <0.000044>
ioctl(3, BIOCSRTIMEOUT, 0xbfbff4bc) = 0 <0.000049>
ioctl(3, BIOCPROMISC, 0) = 0 <0.000263>
ioctl(3, BIOCGBLEN, 0xbfbff4c4) = 0 <0.000045>
break(0x81a7000) = 0 <0.000047>
__sysctl([kern.ostype], 2, "FreeBSD\0", [8], NULL, 0) = 0 <0.000077>
__sysctl([kern.hostname], 2, "yoda.tataz.chchile.org\0", [23], NULL, 0) = 0 <0.000077>
__sysctl([kern.osrelease], 2, "4.10-STABLE\0", [12], NULL, 0) = 0 <0.000074>
__sysctl([kern.version], 2, 0xbfbff540, 0xbfbff474, NULL, 0) = -1 ENOMEM (Cannot allocate memory) <0.000076>
__sysctl([hw.machine], 2, "i386\0", [5], NULL, 0) = 0 <0.000077>
write(2, "tcpdump: data link type null\n", 29) = 29 <0.001243>
socket(PF_INET, SOCK_DGRAM, IPPROTO_IP) = 4 <0.000084>
ioctl(4, SIOCGIFADDR, 0xbfbff590) = 0 <0.000066>
ioctl(4, SIOCGIFNETMASK, 0xbfbff590) = 0 <0.000053>
close(4) = 0 <0.000075>
getuid() = 0 (euid 0) <0.000041>
setuid(0) = 0 <0.000042>
sigprocmask(SIG_BLOCK, NULL, []) = 0 <0.000041>
break(0x81a8000) = 0 <0.000048>
break(0x81a9000) = 0 <0.000047>
break(0x81aa000) = 0 <0.000047>
open("/etc/ethers", O_RDONLY) = -1 ENOENT (No such file or directory) <0.000078>
open("/etc/services", O_RDONLY) = 4 <0.000083>
fstat(4, {st_mode=S_IFREG|0644, st_size=73544, ...}) = 0 <0.000046>
read(4, "#\n# Network services, Internet s"..., 8192) = 8192 <0.000141>
break(0x81ab000) = 0 <0.000047>
read(4, "ISO-TSAP Class 0\ngppitnp\t\t103/tc"..., 8192) = 8192 <0.000129>
break(0x81ac000) = 0 <0.000046>
break(0x81ad000) = 0 <0.000047>
read(4, " #AppleTalk Zone Information\nat"..., 8192) = 8192 <0.000130>
break(0x81ae000) = 0 <0.000047>
break(0x81af000) = 0 <0.000047>
read(4, "nteractive Mail Support Protocol"..., 8192) = 8192 <0.000129>
break(0x81b0000) = 0 <0.000047>
break(0x81b1000) = 0 <0.000047>
read(4, "p\t #Apertus Technologies Load "..., 8192) = 8192 <0.000125>
break(0x81b2000) = 0 <0.000048>
break(0x81b3000) = 0 <0.000048>
read(4, "/tcp\napplix\t\t999/udp\t #App"..., 8192) = 8192 <0.000134>
break(0x81b4000) = 0 <0.000047>
break(0x81b5000) = 0 <0.000049>
read(4, "anager\nsas-1\t\t1426/tcp #Satell"..., 8192) = 8192 <0.000129>
break(0x81b6000) = 0 <0.000047>
read(4, "udp\nmiroconnect\t1532/tcp\nmirocon"..., 8192) = 8192 <0.000131>
break(0x81b7000) = 0 <0.000047>
read(4, " web - development\nwww-dev\t\t2784"..., 8192) = 8008 <0.000732>
break(0x81b8000) = 0 <0.000052>
break(0x81b9000) = 0 <0.000046>
read(4, "", 8192) = 0 <0.000051>
close(4) = 0 <0.000046>
sigaction(SIGPIPE, {0x807d384, [], 0}, {SIG_DFL}) = 0 <0.000050>
sigaction(SIGTERM, {0x807d384, [], 0}, {SIG_DFL}) = 0 <0.000044>
sigaction(SIGINT, {0x807d384, [], 0}, {SIG_DFL}) = 0 <0.000046>
sigaction(SIGHUP, {0x807d384, [], 0}, {SIG_DFL}) = 0 <0.000046>
ioctl(3, BIOCSETF, 0xbfbff5fc) = 0 <0.000058>
sigaction(SIGINFO, {0x807d82c, [], 0}, {SIG_DFL}) = 0 <0.000045>
write(2, "tcpdump: verbose output suppress"..., 75) = 75 <0.001092>
write(2, "listening on gif0, link-type NUL"..., 72) = 72 <0.000698>
read(3, "", 32768) = 0 <0.987321>
read(3, "", 32768) = 0 <0.999422>
read(3, <unfinished ...>
--- SIGINT (Interrupt) ---
--- SIGINT (Interrupt) ---
--- SIGINT (Interrupt) ---
<... read resumed> 0x819f000, 32768) = -1 EINTR (Interrupted system call) <0.917070>
sigreturn(0xbfbff3c0) = -1 EINTR (Interrupted system call) <0.000048>
fstat(1, {st_mode=S_IFCHR|0620, st_rdev=makedev(5, 16), ...}) = 0 <0.000052>
ioctl(1, TIOCGETA, {B38400 opost isig icanon echo ...}) = 0 <0.000050>
write(1, "\n", 1) = 1 <0.000887>
ioctl(3, BIOCGSTATS, 0xbfbff558) = 0 <0.000050>
write(2, "0 packets captured", 18) = 18 <0.000636>
write(2, "\n", 1) = 1 <0.000634>
write(2, "0 packets received by filter", 28) = 28 <0.000583>
write(2, "\n", 1) = 1 <0.000653>
write(2, "0 packets dropped by kernel\n", 28) = 28 <0.000659>
close(3) = 0 <0.000402>
exit(0) = ?
--a8Wt8u1KmwUX3Y2C--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20050125153547.GF59685>