From owner-freebsd-jail@FreeBSD.ORG Mon Aug 6 07:35:27 2007 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 0A41416A417; Mon, 6 Aug 2007 07:35:27 +0000 (UTC) (envelope-from alexander@leidinger.net) Received: from redbull.bpaserver.net (redbullneu.bpaserver.net [213.198.78.217]) by mx1.freebsd.org (Postfix) with ESMTP id B4D0913C461; Mon, 6 Aug 2007 07:35:26 +0000 (UTC) (envelope-from alexander@leidinger.net) Received: from outgoing.leidinger.net (p54A55A8D.dip.t-dialin.net [84.165.90.141]) by redbull.bpaserver.net (Postfix) with ESMTP id 4391D2E135; Mon, 6 Aug 2007 09:35:17 +0200 (CEST) Received: from webmail.leidinger.net (webmail.Leidinger.net [192.168.1.102]) by outgoing.leidinger.net (Postfix) with ESMTP id E90AF5B5A04; Mon, 6 Aug 2007 09:33:03 +0200 (CEST) Received: (from www@localhost) by webmail.leidinger.net (8.13.8/8.13.8/Submit) id l767X3mS033431; Mon, 6 Aug 2007 09:33:03 +0200 (CEST) (envelope-from Alexander@Leidinger.net) Received: from pslux.cec.eu.int (pslux.cec.eu.int [158.169.9.14]) by webmail.leidinger.net (Horde MIME library) with HTTP; Mon, 06 Aug 2007 09:33:03 +0200 Message-ID: <20070806093303.axopv21aw0ckowco@webmail.leidinger.net> X-Priority: 3 (Normal) Date: Mon, 06 Aug 2007 09:33:03 +0200 From: Alexander Leidinger To: Boris Samorodov References: <45722684@bsam.ru> In-Reply-To: <45722684@bsam.ru> MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8; DelSp="Yes"; format="flowed" Content-Disposition: inline Content-Transfer-Encoding: 7bit User-Agent: Internet Messaging Program (IMP) H3 (4.1.4) / FreeBSD-7.0 X-BPAnet-MailScanner-Information: Please contact the ISP for more information X-BPAnet-MailScanner: Found to be clean X-BPAnet-MailScanner-SpamCheck: not spam, SpamAssassin (not cached, score=-14.9, required 8, BAYES_00 -15.00, DKIM_POLICY_SIGNSOME 0.00, RDNS_DYNAMIC 0.10) X-BPAnet-MailScanner-From: alexander@leidinger.net X-Spam-Status: No Cc: emulation@freebsd.org, freebsd-jail@freebsd.org Subject: Re: Is it safe to change compat.linux.osrelease inside a jail? X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 06 Aug 2007 07:35:27 -0000 Quoting Boris Samorodov (from Sat, 04 Aug 2007 00:00:35 +0400): > Hi! > > > I'm porting some Fedora Core 6 applications. Since the FreeBSD > package of a FC6 port should be build with non-default > compat.linux.osrelease and pointyhat is using jails to create > packages, here is the question at the Subject. > > I know it _may_ be changed (I've tried and succeeded). Can someone > say that it's quite OK to do so (without bad effects to jail/host)? > Sure I ask about -CURRENT. Roman did some work to make this a per-jail feature. I haven't seen any obvious stuff in the code which would make using this a bad idea. So: there are no known side-effects to use this in a jail. Bye, Alexander. -- "Well, if you can't believe what you read in a comic book, what *___can* you believe?!" -- Bullwinkle J. Moose [Jay Ward] http://www.Leidinger.net Alexander @ Leidinger.net: PGP ID = B0063FE7 http://www.FreeBSD.org netchild @ FreeBSD.org : PGP ID = 72077137 From owner-freebsd-jail@FreeBSD.ORG Mon Aug 6 09:22:01 2007 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 6E79D16A41A for ; Mon, 6 Aug 2007 09:22:01 +0000 (UTC) (envelope-from rdivacky@vlk.vlakno.cz) Received: from vlakno.cz (vlk.vlakno.cz [62.168.28.247]) by mx1.freebsd.org (Postfix) with ESMTP id 279E113C45A for ; Mon, 6 Aug 2007 09:21:55 +0000 (UTC) (envelope-from rdivacky@vlk.vlakno.cz) Received: from localhost (localhost [127.0.0.1]) by vlakno.cz (Postfix) with ESMTP id A82578C0B87; Mon, 6 Aug 2007 11:04:26 +0200 (CEST) X-Virus-Scanned: amavisd-new at vlakno.cz Received: from vlakno.cz ([127.0.0.1]) by localhost (vlk.vlakno.cz [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id b9L3vVOfNleU; Mon, 6 Aug 2007 11:04:25 +0200 (CEST) Received: from vlk.vlakno.cz (localhost [127.0.0.1]) by vlakno.cz (Postfix) with ESMTP id 7FDA58C0B81; Mon, 6 Aug 2007 11:04:25 +0200 (CEST) Received: (from rdivacky@localhost) by vlk.vlakno.cz (8.13.8/8.13.8/Submit) id l7694M3X047185; Mon, 6 Aug 2007 11:04:22 +0200 (CEST) (envelope-from rdivacky) Date: Mon, 6 Aug 2007 11:04:22 +0200 From: Roman Divacky To: Alexander Leidinger Message-ID: <20070806090422.GA47161@freebsd.org> References: <45722684@bsam.ru> <20070806093303.axopv21aw0ckowco@webmail.leidinger.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20070806093303.axopv21aw0ckowco@webmail.leidinger.net> User-Agent: Mutt/1.4.2.3i Cc: emulation@freebsd.org, freebsd-jail@freebsd.org Subject: Re: Is it safe to change compat.linux.osrelease inside a jail? X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 06 Aug 2007 09:22:01 -0000 On Mon, Aug 06, 2007 at 09:33:03AM +0200, Alexander Leidinger wrote: > Quoting Boris Samorodov (from Sat, 04 Aug 2007 00:00:35 > +0400): > > >Hi! > > > > > >I'm porting some Fedora Core 6 applications. Since the FreeBSD > >package of a FC6 port should be build with non-default > >compat.linux.osrelease and pointyhat is using jails to create > >packages, here is the question at the Subject. > > > >I know it _may_ be changed (I've tried and succeeded). Can someone > >say that it's quite OK to do so (without bad effects to jail/host)? > >Sure I ask about -CURRENT. > > Roman did some work to make this a per-jail feature. I haven't seen > any obvious stuff in the code which would make using this a bad idea. > So: there are no known side-effects to use this in a jail. I didnt do anything.. this has always been per-jail attribute :) From owner-freebsd-jail@FreeBSD.ORG Mon Aug 6 09:51:39 2007 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id E337816A418; Mon, 6 Aug 2007 09:51:38 +0000 (UTC) (envelope-from alexander@leidinger.net) Received: from redbull.bpaserver.net (redbullneu.bpaserver.net [213.198.78.217]) by mx1.freebsd.org (Postfix) with ESMTP id 95B6F13C45A; Mon, 6 Aug 2007 09:51:38 +0000 (UTC) (envelope-from alexander@leidinger.net) Received: from outgoing.leidinger.net (p54A55A8D.dip.t-dialin.net [84.165.90.141]) by redbull.bpaserver.net (Postfix) with ESMTP id 1E4EE2E13F; Mon, 6 Aug 2007 11:51:27 +0200 (CEST) Received: from webmail.leidinger.net (webmail.Leidinger.net [192.168.1.102]) by outgoing.leidinger.net (Postfix) with ESMTP id 00A445B5A04; Mon, 6 Aug 2007 11:49:13 +0200 (CEST) Received: (from www@localhost) by webmail.leidinger.net (8.13.8/8.13.8/Submit) id l769nDEa056125; Mon, 6 Aug 2007 11:49:13 +0200 (CEST) (envelope-from Alexander@Leidinger.net) Received: from pslux.cec.eu.int (pslux.cec.eu.int [158.169.9.14]) by webmail.leidinger.net (Horde MIME library) with HTTP; Mon, 06 Aug 2007 11:49:13 +0200 Message-ID: <20070806114913.vwjsryyko4kgo4g8@webmail.leidinger.net> X-Priority: 3 (Normal) Date: Mon, 06 Aug 2007 11:49:13 +0200 From: Alexander Leidinger To: Roman Divacky References: <45722684@bsam.ru> <20070806093303.axopv21aw0ckowco@webmail.leidinger.net> <20070806090422.GA47161@freebsd.org> In-Reply-To: <20070806090422.GA47161@freebsd.org> MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8; DelSp="Yes"; format="flowed" Content-Disposition: inline Content-Transfer-Encoding: quoted-printable User-Agent: Internet Messaging Program (IMP) H3 (4.1.4) / FreeBSD-7.0 X-BPAnet-MailScanner-Information: Please contact the ISP for more information X-BPAnet-MailScanner: Found to be clean X-BPAnet-MailScanner-SpamCheck: not spam, SpamAssassin (not cached, score=-15.4, required 8, autolearn=not spam, BAYES_00 -15.00, DKIM_POLICY_SIGNSOME 0.00, RDNS_DYNAMIC 0.10, SMILEY -0.50) X-BPAnet-MailScanner-From: alexander@leidinger.net X-Spam-Status: No Cc: emulation@freebsd.org, freebsd-jail@freebsd.org Subject: Re: Is it safe to change compat.linux.osrelease inside a jail? X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 06 Aug 2007 09:51:39 -0000 Quoting Roman Divacky (from Mon, 6 Aug 2007 =20 11:04:22 +0200): > On Mon, Aug 06, 2007 at 09:33:03AM +0200, Alexander Leidinger wrote: >> Quoting Boris Samorodov (from Sat, 04 Aug 2007 00:00:35 >> +0400): >> >> >Hi! >> > >> > >> >I'm porting some Fedora Core 6 applications. Since the FreeBSD >> >package of a FC6 port should be build with non-default >> >compat.linux.osrelease and pointyhat is using jails to create >> >packages, here is the question at the Subject. >> > >> >I know it _may_ be changed (I've tried and succeeded). Can someone >> >say that it's quite OK to do so (without bad effects to jail/host)? >> >Sure I ask about -CURRENT. >> >> Roman did some work to make this a per-jail feature. I haven't seen >> any obvious stuff in the code which would make using this a bad idea. >> So: there are no known side-effects to use this in a jail. > > I didnt do anything.. this has always been per-jail attribute :) Yes. Sorry for not being clear. You did the right work from the =20 beginning to make the sysctl per jail instead of making it a global =20 property of the system. And the feature which is protected by this =20 sysctl should be able to work correctly for the use case. Hmmm... while I think about jails... wouldn't it be better from a =20 security perspective to have the list/queue/... which is behind the =20 use26 part be a per jail list/queue/...? It may be not an issue, but =20 can you verify that root in jail A can not do something (kill/...) / =20 get some info (even if it is just a PID of a linux process) from jail =20 B when both -current jails run in the non-default linuxulator? I ask =20 as I don't have time to look at it ATM. Bye, Alexander. --=20 Q:=09How can we get the Beatles to reunite for one more concert? A:=09With three more bullets. http://www.Leidinger.net Alexander @ Leidinger.net: PGP ID =3D B0063FE7 http://www.FreeBSD.org netchild @ FreeBSD.org : PGP ID =3D 72077137 From owner-freebsd-jail@FreeBSD.ORG Mon Aug 6 17:45:52 2007 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C291D16A417 for ; Mon, 6 Aug 2007 17:45:52 +0000 (UTC) (envelope-from bsam@ipt.ru) Received: from mail.kuban.ru (mail.kuban.ru [62.183.66.246]) by mx1.freebsd.org (Postfix) with ESMTP id 314AF13C467 for ; Mon, 6 Aug 2007 17:45:51 +0000 (UTC) (envelope-from bsam@ipt.ru) Received: from bsam.ru ([85.172.12.83]) by mail.kuban.ru (8.9.1/8.9.1) with ESMTP id l76HjMWW038884; Mon, 6 Aug 2007 21:45:32 +0400 (MSD) Received: (from bsam@localhost) by bsam.ru (8.14.1/8.14.1/Submit) id l76HjgEx001222; Mon, 6 Aug 2007 21:45:42 +0400 (MSD) (envelope-from bsam@ipt.ru) X-Authentication-Warning: bsam.ru: bsam set sender to bsam@ipt.ru using -f To: Alexander Leidinger References: <45722684@bsam.ru> <20070806093303.axopv21aw0ckowco@webmail.leidinger.net> <20070806090422.GA47161@freebsd.org> <20070806114913.vwjsryyko4kgo4g8@webmail.leidinger.net> From: Boris Samorodov Date: Mon, 06 Aug 2007 21:45:42 +0400 In-Reply-To: <20070806114913.vwjsryyko4kgo4g8@webmail.leidinger.net> (Alexander Leidinger's message of "Mon\, 06 Aug 2007 11\:49\:13 +0200") Message-ID: <54644073@bsam.ru> User-Agent: Gnus/5.11 (Gnus v5.11) Emacs/22.1 (berkeley-unix) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Cc: emulation@freebsd.org, Roman Divacky , freebsd-jail@freebsd.org Subject: Re: Is it safe to change compat.linux.osrelease inside a jail? X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 06 Aug 2007 17:45:52 -0000 On Mon, 06 Aug 2007 11:49:13 +0200 Alexander Leidinger wrote: > Quoting Roman Divacky (from Mon, 6 Aug 2007 > 11:04:22 +0200): > > On Mon, Aug 06, 2007 at 09:33:03AM +0200, Alexander Leidinger wrote: > >> Quoting Boris Samorodov (from Sat, 04 Aug 2007 00:00:35 > >> +0400): > >> >I'm porting some Fedora Core 6 applications. Since the FreeBSD > >> >package of a FC6 port should be build with non-default > >> >compat.linux.osrelease and pointyhat is using jails to create > >> >packages, here is the question at the Subject. > >> > > >> >I know it _may_ be changed (I've tried and succeeded). Can someone > >> >say that it's quite OK to do so (without bad effects to jail/host)? > >> >Sure I ask about -CURRENT. > >> > >> Roman did some work to make this a per-jail feature. I haven't seen > >> any obvious stuff in the code which would make using this a bad idea. > >> So: there are no known side-effects to use this in a jail. > > > > I didnt do anything.. this has always been per-jail attribute :) > Yes. Sorry for not being clear. You did the right work from the > beginning to make the sysctl per jail instead of making it a global > property of the system. And the feature which is protected by this > sysctl should be able to work correctly for the use case. Got it, thanks. WBR -- bsam From owner-freebsd-jail@FreeBSD.ORG Fri Aug 10 17:07:57 2007 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D4ACB16A419 for ; Fri, 10 Aug 2007 17:07:57 +0000 (UTC) (envelope-from cthunes@tqhosting.com) Received: from ug-out-1314.google.com (ug-out-1314.google.com [66.249.92.170]) by mx1.freebsd.org (Postfix) with ESMTP id 72FD813C46A for ; Fri, 10 Aug 2007 17:07:57 +0000 (UTC) (envelope-from cthunes@tqhosting.com) Received: by ug-out-1314.google.com with SMTP id o4so533474uge for ; Fri, 10 Aug 2007 10:07:56 -0700 (PDT) Received: by 10.66.232.9 with SMTP id e9mr3216718ugh.1186764164947; Fri, 10 Aug 2007 09:42:44 -0700 (PDT) Received: by 10.67.26.5 with HTTP; Fri, 10 Aug 2007 09:42:44 -0700 (PDT) Message-ID: Date: Fri, 10 Aug 2007 12:42:44 -0400 From: "Chris Thunes" To: freebsd-jail@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: jtune not showing resource usage X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 10 Aug 2007 17:07:57 -0000 Hey all, I've been working with the resource limiting patches on a 6.2 installation and haven't been able to get jtune to show memory usage for jails at all. [root@virt1] ~ # jtune -j 15 -i JID Hostname Memory Used / Limit CPU Shares 15 jail0.rootbsd.net 0 M / 256 M 0 I have the limits enabled in sysctl and really have idea as to why this wouldn't be displaying correctly. If there is anyone who can point me in the right direction the help would be greatly appreciated. - Chris