Broadcast as fall-back mechanism when no HIT->IP
Bug #619332 reported by
Andrius Bentkus
This bug affects 2 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
HIPL |
Fix Released
|
Medium
|
Miika Komu |
Bug Description
If the hip daemon can't resolve an address with hip_map_id_to_addr, it tries to broadcast an I1 message using standard interfaces.
This fallback mechanism is in my and Renes opinion useless and should be stripped out.
The cause of failing in my particular case was that I mounted /etc/hip/hosts with fuse and the fopen function failed to open it, even though hipd had root rights.
Related branches
summary: |
- Fall-back mechanism failure + Broadcast as fall-back mechanism when no HIT->IP |
Changed in hipl: | |
status: | New → Confirmed |
To post a comment you must log in.
I disagree with it being useless. For beginners, it's easy to try HIP in a local network without any hosts configuration by pinging a HIT. Also, I think it's better fail by trying to do something than just to fail and do nothing. IPsec doesn't return error messages that fast to the application anyway, right?
If you want to "get rid of broadcasting", I would suggest to make a configuration option and make the default "off". I don't think it's useless.
The thing with fuse is probably a separate topic and may deserve a bug of its own. Hipd usually drops root privileges to "nobody" (check this with "ps"). Does nobody has access privileges to the hosts file?