From nobody@FreeBSD.org  Tue Apr  6 22:50:06 2010
Return-Path: <nobody@FreeBSD.org>
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 30745106564A
	for <freebsd-gnats-submit@FreeBSD.org>; Tue,  6 Apr 2010 22:50:06 +0000 (UTC)
	(envelope-from nobody@FreeBSD.org)
Received: from www.freebsd.org (www.freebsd.org [IPv6:2001:4f8:fff6::21])
	by mx1.freebsd.org (Postfix) with ESMTP id 1EDCE8FC1A
	for <freebsd-gnats-submit@FreeBSD.org>; Tue,  6 Apr 2010 22:50:06 +0000 (UTC)
Received: from www.freebsd.org (localhost [127.0.0.1])
	by www.freebsd.org (8.14.3/8.14.3) with ESMTP id o36Mo5Cp042840
	for <freebsd-gnats-submit@FreeBSD.org>; Tue, 6 Apr 2010 22:50:05 GMT
	(envelope-from nobody@www.freebsd.org)
Received: (from nobody@localhost)
	by www.freebsd.org (8.14.3/8.14.3/Submit) id o36Mo5pV042839;
	Tue, 6 Apr 2010 22:50:05 GMT
	(envelope-from nobody)
Message-Id: <201004062250.o36Mo5pV042839@www.freebsd.org>
Date: Tue, 6 Apr 2010 22:50:05 GMT
From: Dan Naumov <dan.naumov@gmail.com>
To: freebsd-gnats-submit@FreeBSD.org
Subject: error in /etc/rc.d/jail (bad logic)
X-Send-Pr-Version: www-3.1
X-GNATS-Notify:

>Number:         145445
>Category:       conf
>Synopsis:       [rc.d] error in /etc/rc.d/jail (bad logic)
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    freebsd-rc
>State:          closed
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Tue Apr 06 23:00:12 UTC 2010
>Closed-Date:    Fri Nov 02 11:51:09 UTC 2012
>Last-Modified:  Fri Nov 02 11:51:09 UTC 2012
>Originator:     Dan Naumov
>Release:        8.0
>Organization:
>Environment:
FreeBSD atombsd.localdomain 8.0-RELEASE-p2 FreeBSD 8.0-RELEASE-p2 #0: Tue Jan  5 21:11:58 UTC 2010     root@amd64-builder.daemonology.net:/usr/obj/usr/src/sys/GENERIC  amd64
>Description:
The jail rc.d script outputs some messages to the system console when bringing up jails if certain sysctl conditions are met. There seems to be an error in the logic of the script, which results in "backwards" output.

security.jail.socket_unixiproute_only: 0 results in unixiproute_only=YES being printed to system console
security.jail.socket_unixiproute_only: 1 results in no output
>How-To-Repeat:
Install FreeBSD 8.0
Build and install a jail
Set security.jail.socket_unixiproute_only to 0
Bring up the jail using the jail rc.d script
>Fix:


>Release-Note:
>Audit-Trail:
Responsible-Changed-From-To: freebsd-bugs->freebsd-rc 
Responsible-Changed-By: linimon 
Responsible-Changed-When: Tue Apr 6 23:21:11 UTC 2010 
Responsible-Changed-Why:  
Over to maintainer(s). 

http://www.freebsd.org/cgi/query-pr.cgi?pr=145445 
State-Changed-From-To: open->closed 
State-Changed-By: crees 
State-Changed-When: Fri Nov 2 11:51:08 UTC 2012 
State-Changed-Why:  
The message appears because unixiproute_only is being set to YES, which 
is the default.  If you want security.jail.socket_unixiproute_only to be 
kept at 0, then you should put jail_socket_unixiproute_only=NO in 
/etc/rc.conf. 

http://www.freebsd.org/cgi/query-pr.cgi?pr=145445 
>Unformatted:
