oh I see what I did wrong hah

Is anybody running tailscale inside a jail?

no, but it would be great to see a write-up on how someone is running it in a loopback jail (as opposed to vnet or shared ip)

I've read that it's possible however I'm still getting an error regarding missing /dev/tun even though I created a rule in /etc/devfs.rules and linked it to jail conf.

also I restarted defs, server devfs restart before restarting the jail.

s2r: are all the relevant kernel modules loaded on the host, not the jail?

s2r: or forum.tailscale.com/t/tailscale-on-a-freebsd-jail/923/4

I will check it, thank you. After setting the jail to vnet I no longer get /dev/tun missing error.

mlargh, somehow i mismanaged my occambsd build jail and my /usr/src ended up missing a fix that it seems it should have had emacs.ch/@jaredj/112929814364241575

Say, why is 0.0.0.0/32 the same as 127.0.0.1/32 ?

Ltning: it's not

any updates on paris olympics 2024?

Updates cause blue screens :(

Alver: Well according to bsd44 as of 31 years ago, it's effectively the same. And it's in "all" IP stacks except .. Windows?

Fairly sure old NT/2000 will still have that behaviour, though.

in what way the same?

Like this: github.com/freebsd/freebsd-src/blob…28/sys/netinet/in_pcb.c#L1312-L1331

Also, given recent news that javascript in browsers can bypass the sandbox and access resources on localhost by connecting to 0.0.0.0 ..

Ltning: well on freebsd browser sandbox isn't really a thing (at least on chromium, i haven't checked FF but i'd be surprised if it was capsicumized)

But this is kinda bad, because any listening port is reachable via 0.0.0.0, no matter which interface the port is on.

And browsers will prevent you from talking to localhost if the javascript is remote (I don't know the exact rules or implementations here).

yep, it seems strange that 0.0.0.0 (which is something else than 0.0.0.0/32) is allowed for connect, but I can't really follow that code, it seems to connect to an arbitary ip of an arbitary interface, which could be 127.0.0.1 or something else

strange and interesting world. I just pulled my inspiron 2020 all in one out of the closet and tried to install netbsd some complaining about iipxide or some such, no such complaining from freebsd.

I'm trying to branch out from freebsd, but it just works and the other bsd's are so foreign :)

that's what i get for trying to branch out.

with icewm, my mem is at 1.66G/7.86G... trim

Update from yesterday's home assistant chat, I've got it up and running in a jail. It sees several devices on my network by default.

I don't think I'll run it here long term, because updating it would be too painful.