From owner-freebsd-jail@FreeBSD.ORG Sun Jan 27 16:44:12 2013 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.FreeBSD.org [8.8.178.115]) by hub.freebsd.org (Postfix) with ESMTP id 15CAF3C6; Sun, 27 Jan 2013 16:44:12 +0000 (UTC) (envelope-from rpoyner@engr.wisc.edu) Received: from smtp-out.cae.wisc.edu (smtp-out.cae.wisc.edu [IPv6:2607:f388:1082:0:33a0:4b4f:ab8b:5979]) by mx1.freebsd.org (Postfix) with ESMTP id C8165A84; Sun, 27 Jan 2013 16:44:11 +0000 (UTC) Received: from smtp.cae.wisc.edu (smtp.cae.wisc.edu [IPv6:2607:f388:1082:0:ac8d:e958:beb5:d993]) by smtp-out.cae.wisc.edu (8.14.3/8.14.3/Debian-9.4) with ESMTP id r0RGi9oc026925 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Sun, 27 Jan 2013 10:44:10 -0600 Received: from dyn-63-84.engr.wisc.edu (dyn-63-84.engr.wisc.edu [10.128.63.84]) (authenticated bits=0) by smtp.cae.wisc.edu (8.14.3/8.14.3/Debian-9.4) with ESMTP id r0RGi6G0023149 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=NOT); Sun, 27 Jan 2013 10:44:06 -0600 X-Virus-Status: Clean X-Virus-Scanned: clamav-milter 0.97.5 at smtp.cae.wisc.edu Subject: Re: ezjail and allow.mount.zfs on 9.1 Mime-Version: 1.0 (Apple Message framework v1085) Content-Type: text/plain; charset=us-ascii From: Russell Poyner In-Reply-To: <5103028A.5050503@FreeBSD.org> Date: Sun, 27 Jan 2013 10:44:05 -0600 Content-Transfer-Encoding: quoted-printable Message-Id: References: <5102DEBC.50604@engr.wisc.edu> <5103028A.5050503@FreeBSD.org> To: Jase Thew X-Mailer: Apple Mail (2.1085) Cc: freebsd-jail@freebsd.org X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 27 Jan 2013 16:44:12 -0000 On Jan 25, 2013, at 4:09 PM, Jase Thew wrote: > On 25/01/2013 19:36, Russell Poyner wrote: >> An earlier thread discussed the issues involved with allowing jails = to >> mount zfs filesystems. >>=20 >> here: >> = http://freebsd.1045724.n5.nabble.com/9-1-PRERELEASE-allow-mount-allow-moun= t-zfs-do-not-get-passed-to-child-td5740553.html#a5742453 >>=20 >>=20 >> I can get it to work if I do: >> jail -m jid=3D12 allow.mount.zfs >>=20 >> on the running jail, but I'm at a loss to figure out how to make the >> setting survive a restart of the jail. >>=20 >> Is there a way to get ezjail to honor the new /etc/jail.conf file? >>=20 >> Or could someone post an example of how to set this using the >> /usr/local/etc/ezjail/JAILNAME >> file? >>=20 >> Thanks >> Russ Poyner >=20 > Hi Russ, >=20 > Since the introduction of jail__parameters support in > /etc/rc.d/jail, you can add a line to your > /usr/local/etc/ezjail/ config file to pass jail start-time > parameters. >=20 > eg. export jail__parameters=3D"allow.mount=3D1 = allow.raw_sockets=3D1 > etc." >=20 > Regards, >=20 > Jase. >=20 >=20 > --=20 > Jase Thew > jase@FreeBSD.org > FreeBSD Ports Committer I still seem to be missing something. I've tried a number of variations on export jail_smb_paramters=3D"allow.mount=3D1 allow.mount.zfs=3D1" in /usr/local/etc/ezjail/smb but see no change in the output of sysctl = inside the jail after stopping and restarting it. I'm running ezjail 3.2.3 and freeBSD 9 STABLE. Perhaps I am missing Drew's patch to the jail rc script? Thanks again Russ Poyner From owner-freebsd-jail@FreeBSD.ORG Sun Jan 27 20:21:24 2013 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.FreeBSD.org [8.8.178.115]) by hub.freebsd.org (Postfix) with ESMTP id AEBFF517; Sun, 27 Jan 2013 20:21:24 +0000 (UTC) (envelope-from rpoyner@engr.wisc.edu) Received: from smtp-out.cae.wisc.edu (smtp-out.cae.wisc.edu [IPv6:2607:f388:1082:0:33a0:4b4f:ab8b:5979]) by mx1.freebsd.org (Postfix) with ESMTP id 63186646; Sun, 27 Jan 2013 20:21:24 +0000 (UTC) Received: from smtp.cae.wisc.edu (smtp.cae.wisc.edu [IPv6:2607:f388:1082:0:ac8d:e958:beb5:d993]) by smtp-out.cae.wisc.edu (8.14.3/8.14.3/Debian-9.4) with ESMTP id r0RKLMoG030055 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Sun, 27 Jan 2013 14:21:22 -0600 Received: from dyn-63-84.engr.wisc.edu (dyn-63-84.engr.wisc.edu [10.128.63.84]) (authenticated bits=0) by smtp.cae.wisc.edu (8.14.3/8.14.3/Debian-9.4) with ESMTP id r0RKLKAY023165 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=NOT); Sun, 27 Jan 2013 14:21:20 -0600 X-Virus-Status: Clean X-Virus-Scanned: clamav-milter 0.97.5 at smtp.cae.wisc.edu Subject: Solved Re: ezjail and allow.mount.zfs on 9.1 Mime-Version: 1.0 (Apple Message framework v1085) Content-Type: text/plain; charset=us-ascii From: Russell Poyner In-Reply-To: Date: Sun, 27 Jan 2013 14:21:20 -0600 Content-Transfer-Encoding: quoted-printable Message-Id: <740C6107-D04C-47D1-B771-81EFA9845E80@engr.wisc.edu> References: <5102DEBC.50604@engr.wisc.edu> <5103028A.5050503@FreeBSD.org> To: Russell Poyner X-Mailer: Apple Mail (2.1085) Cc: freebsd-jail@freebsd.org, Jase Thew X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 27 Jan 2013 20:21:24 -0000 I apparently don't understand the update world process as well as I = thought. make buildworld make installworld did NOT replace my /etc/rc.d/jail script. When I copied the script from /usr/src/etc/rc.d to /etc/rc.d things = started working as expected RP On Jan 27, 2013, at 10:44 AM, Russell Poyner wrote: >=20 > On Jan 25, 2013, at 4:09 PM, Jase Thew wrote: >=20 >> On 25/01/2013 19:36, Russell Poyner wrote: >>> An earlier thread discussed the issues involved with allowing jails = to >>> mount zfs filesystems. >>>=20 >>> here: >>> = http://freebsd.1045724.n5.nabble.com/9-1-PRERELEASE-allow-mount-allow-moun= t-zfs-do-not-get-passed-to-child-td5740553.html#a5742453 >>>=20 >>>=20 >>> I can get it to work if I do: >>> jail -m jid=3D12 allow.mount.zfs >>>=20 >>> on the running jail, but I'm at a loss to figure out how to make the >>> setting survive a restart of the jail. >>>=20 >>> Is there a way to get ezjail to honor the new /etc/jail.conf file? >>>=20 >>> Or could someone post an example of how to set this using the >>> /usr/local/etc/ezjail/JAILNAME >>> file? >>>=20 >>> Thanks >>> Russ Poyner >>=20 >> Hi Russ, >>=20 >> Since the introduction of jail__parameters support in >> /etc/rc.d/jail, you can add a line to your >> /usr/local/etc/ezjail/ config file to pass jail start-time >> parameters. >>=20 >> eg. export jail__parameters=3D"allow.mount=3D1 = allow.raw_sockets=3D1 >> etc." >>=20 >> Regards, >>=20 >> Jase. >>=20 >>=20 >> --=20 >> Jase Thew >> jase@FreeBSD.org >> FreeBSD Ports Committer >=20 > I still seem to be missing something. >=20 > I've tried a number of variations on > export jail_smb_paramters=3D"allow.mount=3D1 allow.mount.zfs=3D1" > in /usr/local/etc/ezjail/smb but see no change in the output of sysctl = inside the jail after stopping and restarting it. >=20 > I'm running ezjail 3.2.3 and freeBSD 9 STABLE. >=20 > Perhaps I am missing Drew's patch to the jail rc script? >=20 > Thanks again > Russ Poyner >=20 > _______________________________________________ > freebsd-jail@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-jail > To unsubscribe, send any mail to = "freebsd-jail-unsubscribe@freebsd.org" >=20 From owner-freebsd-jail@FreeBSD.ORG Sun Jan 27 23:42:27 2013 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.FreeBSD.org [8.8.178.115]) by hub.freebsd.org (Postfix) with ESMTP id 200C5BEE for ; Sun, 27 Jan 2013 23:42:27 +0000 (UTC) (envelope-from jase@FreeBSD.org) Received: from svr06-mx.btshosting.co.uk (mx-2.btshosting.co.uk [178.63.196.248]) by mx1.freebsd.org (Postfix) with ESMTP id C65AACD3 for ; Sun, 27 Jan 2013 23:42:26 +0000 (UTC) Received: from [192.168.1.65] (5e0cd374.bb.sky.com [94.12.211.116]) (using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits)) (No client certificate requested) by svr06-mx.btshosting.co.uk (Postfix) with ESMTPSA id B1CFA4D626; Sun, 27 Jan 2013 23:42:18 +0000 (UTC) Message-ID: <5105BB59.8010300@FreeBSD.org> Date: Sun, 27 Jan 2013 23:42:17 +0000 From: Jase Thew Organization: The FreeBSD Project User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:17.0) Gecko/20130107 Thunderbird/17.0.2 MIME-Version: 1.0 To: Russell Poyner Subject: Re: Solved Re: ezjail and allow.mount.zfs on 9.1 References: <5102DEBC.50604@engr.wisc.edu> <5103028A.5050503@FreeBSD.org> <740C6107-D04C-47D1-B771-81EFA9845E80@engr.wisc.edu> In-Reply-To: <740C6107-D04C-47D1-B771-81EFA9845E80@engr.wisc.edu> X-Enigmail-Version: 1.5 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit Cc: freebsd-jail@freebsd.org X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 27 Jan 2013 23:42:27 -0000 On 27/01/2013 20:21, Russell Poyner wrote: > I apparently don't understand the update world process as well as I thought. > > make buildworld > make installworld > > did NOT replace my /etc/rc.d/jail script. > > When I copied the script from /usr/src/etc/rc.d to /etc/rc.d things started working as expected > > RP > Hi Russ, /etc doesn't get touched by {build,install}world. To update it, you need to use either mergemaster(8), as documented in the relevant handbook section http://goo.gl/VTQD7 and also at near the bottom of /usr/src/UPDATING, or perhaps a tool such as sysutils/etcupdate. Regards, Jase. -- Jase Thew jase@FreeBSD.org FreeBSD Ports Committer From owner-freebsd-jail@FreeBSD.ORG Mon Jan 28 11:06:46 2013 Return-Path: Delivered-To: freebsd-jail@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by hub.freebsd.org (Postfix) with ESMTP id 2282B91D for ; Mon, 28 Jan 2013 11:06:46 +0000 (UTC) (envelope-from owner-bugmaster@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:1900:2254:206c::16:87]) by mx1.freebsd.org (Postfix) with ESMTP id 147C8CD7 for ; Mon, 28 Jan 2013 11:06:46 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.6/8.14.6) with ESMTP id r0SB6jhD034590 for ; Mon, 28 Jan 2013 11:06:45 GMT (envelope-from owner-bugmaster@FreeBSD.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.6/8.14.6/Submit) id r0SB6jRS034588 for freebsd-jail@FreeBSD.org; Mon, 28 Jan 2013 11:06:45 GMT (envelope-from owner-bugmaster@FreeBSD.org) Date: Mon, 28 Jan 2013 11:06:45 GMT Message-Id: <201301281106.r0SB6jRS034588@freefall.freebsd.org> X-Authentication-Warning: freefall.freebsd.org: gnats set sender to owner-bugmaster@FreeBSD.org using -f From: FreeBSD bugmaster To: freebsd-jail@FreeBSD.org Subject: Current problem reports assigned to freebsd-jail@FreeBSD.org X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 28 Jan 2013 11:06:46 -0000 Note: to view an individual PR, use: http://www.freebsd.org/cgi/query-pr.cgi?pr=(number). The following is a listing of current problems submitted by FreeBSD users. These represent problem reports covering all versions including experimental development code and obsolete releases. S Tracker Resp. Description -------------------------------------------------------------------------------- o kern/174902 jail [jail] jail should provide validator for jail names o kern/174436 jail [jail] Jails with numbers as names don't work o bin/173469 jail [jail] regression: security.jail.sysvipc_allowed=1 no o kern/169751 jail [jail] reading routing information does not work in ja o bin/167911 jail new jail(8) problem with removal, ifconfg -alias and k o kern/159918 jail [jail] inter-jail communication failure o kern/156111 jail [jail] procstat -b not supported in jail o misc/155765 jail [patch] `buildworld' does not honors WITHOUT_JAIL o conf/154246 jail [jail] [patch] Bad symlink created if devfs mount poin o conf/149050 jail [jail] rcorder ``nojail'' too coarse for Jail+VNET s conf/142972 jail [jail] [patch] Support JAILv2 and vnet in rc.d/jail o conf/141317 jail [patch] uncorrect jail stop in /etc/rc.d/jail o kern/133265 jail [jail] is there a solution how to run nfs client in ja o kern/119842 jail [smbfs] [jail] "Bad address" with smbfs inside a jail o bin/99566 jail [jail] [patch] fstat(1) according to specified jid 15 problems total. From owner-freebsd-jail@FreeBSD.ORG Fri Feb 1 19:57:27 2013 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by hub.freebsd.org (Postfix) with ESMTP id 697DDE67 for ; Fri, 1 Feb 2013 19:57:27 +0000 (UTC) (envelope-from zaphod@berentweb.com) Received: from sam.nabble.com (sam.nabble.com [216.139.236.26]) by mx1.freebsd.org (Postfix) with ESMTP id 4192FC14 for ; Fri, 1 Feb 2013 19:57:26 +0000 (UTC) Received: from [192.168.236.26] (helo=sam.nabble.com) by sam.nabble.com with esmtp (Exim 4.72) (envelope-from ) id 1U1Mjl-0002Ra-J2 for freebsd-jail@freebsd.org; Fri, 01 Feb 2013 11:57:25 -0800 Date: Fri, 1 Feb 2013 11:57:25 -0800 (PST) From: Beeblebrox To: freebsd-jail@freebsd.org Message-ID: <1359748645583-5783036.post@n5.nabble.com> Subject: "No bpf devices" problem in jail MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 01 Feb 2013 19:57:27 -0000 uname: 10-current r246145 amd64 Jail must start isc-dhcp but startup complains that there are "No bpf devices". I below have in /etc/devfs.rules, I have tried many alternate settings but no result. Please help me figure out what setting to cahnge to enable bpf ina Jail? [devfsrules_jail=11] add include $devfsrules_hide_all add include $devfsrules_unhide_basic add include $devfsrules_unhide_login add path 'bpf*' unhide #add path net unhide #add path 'net/*' unhide #add include $devfsrules_unhide_bpf my /etc/jail.conf: allow.mount.devfs; allow.mount.procfs; exec.start = "/bin/sh /etc/rc"; exec.stop = "/bin/sh /etc/rc.shutdown"; allow.mount.nullfs; pxe { name = pxe; host.hostname = radulf.org; interface = re0; ip4.addr = 192.168.2.1/32; path = /data/amd64; allow.raw_sockets; enforce_statfs = 1; mount.fstab = /etc/fstab.pxe; allow.mount.procfs; devfs_ruleset = 11; } -- View this message in context: http://freebsd.1045724.n5.nabble.com/No-bpf-devices-problem-in-jail-tp5783036.html Sent from the freebsd-jail mailing list archive at Nabble.com. From owner-freebsd-jail@FreeBSD.ORG Sat Feb 2 03:01:06 2013 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.FreeBSD.org [8.8.178.115]) by hub.freebsd.org (Postfix) with ESMTP id EAB456D4 for ; Sat, 2 Feb 2013 03:01:06 +0000 (UTC) (envelope-from other@ahhyes.net) Received: from srv.ahhyes.net (unknown [IPv6:2001:470:1:203::1001]) by mx1.freebsd.org (Postfix) with ESMTP id D38ADB64 for ; Sat, 2 Feb 2013 03:01:06 +0000 (UTC) Received: from [10.1.1.1] (helo=ahhyes.net) by srv.ahhyes.net with esmtpa (Exim 4.80.1 (FreeBSD)) (envelope-from ) id 1U1TLT-000Kcv-ID for freebsd-jail@freebsd.org; Sat, 02 Feb 2013 14:00:49 +1100 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit Date: Sat, 02 Feb 2013 14:00:47 +1100 From: other@ahhyes.net To: In-Reply-To: <6d589554636c9e588676e75191acb58d@ahhyes.net> References: <6d589554636c9e588676e75191acb58d@ahhyes.net> Message-ID: X-Sender: other@ahhyes.net User-Agent: Roundcube Webmail/0.8.4 X-SA-Exim-Connect-IP: 10.1.1.1 X-SA-Exim-Mail-From: other@ahhyes.net X-Spam-Checker-Version: SpamAssassin 3.3.2 (2011-06-06) on mail.ahhyes.net X-Spam-Level: X-Spam-Status: No, score=-1.0 required=5.0 tests=ALL_TRUSTED autolearn=ham version=3.3.2 Subject: Re: Easiest way to update jails from 9.0 to 9.1 X-SA-Exim-Version: 4.2 X-SA-Exim-Scanned: Yes (on srv.ahhyes.net) X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 02 Feb 2013 03:01:07 -0000 I thought I'd post an update on this, I found the following article on the web which is exactly the sort of info I was after (well, it pointed me in the right direction anyway since I don't use ezjail and each jail was created manually using the process documented in the FreeBSD handbook + Jail manpage): http://www.cyberciti.biz/faq/how-to-upgrade-freebsd-jail-vps/ Obviously I took care to backup all of my /etc directories from each jail first. So far so good though :) All my jails appear to be working fine. It was pretty much a rinse and repeat of: # make installworld DESTDIR=$JAILDIR # mergemaster -i -C -D $JAILDIR It was a bit laborious and time consuming, however a new "RELEASE" doesn't come up that often so it wasn't a big deal, unlike linux where there is a new distro version every couple of months. Cheers, Alex.