Date: Tue, 29 Jul 2014 03:46:20 +0000 (UTC) From: "Vanilla I. Shu" <vanilla@FreeBSD.org> To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r363291 - head/sysutils/qjail Message-ID: <201407290346.s6T3kK1k008780@svn.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: vanilla Date: Tue Jul 29 03:46:20 2014 New Revision: 363291 URL: http://svnweb.freebsd.org/changeset/ports/363291 QAT: https://qat.redports.org/buildarchive/r363291/ Log: Upgrade to 3.6. 1. Add allow.mount.tmpfs parameter to build-jail.conf routine. Check if kernel tmpfs.ko has been loaded to host and if not then issue "kldload tmpfs" command. 2. Add code to config logic for lower case t to enable allow.mount.tmpfs parameter and upper case T to disable allow.mount.tmpfs parameter. 3. Remove -l null as method to disable nullfs and replace with upper case L to to disable nullfs. 4. Add upper case S to disable lower case s option. 5. Remove -w null as method to disable and replace with upper case W to to disable. 6. Fix fib -f parameter so it now works as wanted. 7. Comment out code for setcpu parameter as jail(8) now has bug about it. 8. Remove -w null as method to disable vnet interface parameter and replace with upper case W to disable it. 9. Make appropriate changes to man qjail.8 file. 10. Change good os version from 93 to 92. 11. Make appropriate changes to qjail.bootime script. PR: ports/192220 Submitted by: maintainer Modified: head/sysutils/qjail/Makefile head/sysutils/qjail/distinfo head/sysutils/qjail/pkg-descr Modified: head/sysutils/qjail/Makefile ============================================================================== --- head/sysutils/qjail/Makefile Tue Jul 29 03:36:48 2014 (r363290) +++ head/sysutils/qjail/Makefile Tue Jul 29 03:46:20 2014 (r363291) @@ -2,7 +2,7 @@ # $FreeBSD$ PORTNAME= qjail -PORTVERSION= 3.5 +PORTVERSION= 3.6 CATEGORIES= sysutils MASTER_SITES= SF/${PORTNAME} @@ -12,7 +12,7 @@ COMMENT= Utility to quickly deploy and m USES= tar:bzip2 NO_BUILD= yes -CONFLICTS_INSTALL= qjail-2.* qjail-3.0 qjail-3.1 +CONFLICTS_INSTALL= qjail-2.* qjail-3.0 qjail-3.1 do-install: .for i in qjail qjail.vnet.be qjail.vnet.ng Modified: head/sysutils/qjail/distinfo ============================================================================== --- head/sysutils/qjail/distinfo Tue Jul 29 03:36:48 2014 (r363290) +++ head/sysutils/qjail/distinfo Tue Jul 29 03:46:20 2014 (r363291) @@ -1,2 +1,2 @@ -SHA256 (qjail-3.5.tar.bz2) = a167b4172fbb371dd8f4fdd9a6e3e5b7741a5a14ae561f537387248cf32cf702 -SIZE (qjail-3.5.tar.bz2) = 62439 +SHA256 (qjail-3.6.tar.bz2) = 091a3167441ff597e7bf7934ae507176a7dd4be604b83f3afb3da2f1edbaab9d +SIZE (qjail-3.6.tar.bz2) = 62447 Modified: head/sysutils/qjail/pkg-descr ============================================================================== --- head/sysutils/qjail/pkg-descr Tue Jul 29 03:36:48 2014 (r363290) +++ head/sysutils/qjail/pkg-descr Tue Jul 29 03:46:20 2014 (r363291) @@ -3,17 +3,13 @@ system that includes security and perfor of "user friendliness" enhancements dealing with deploying just a few jails or large scale jail environments consisting of 100's of jails. -This version of qjail has been converted from using the legacy rc.d-method as -used in all previous versions of qjail-2.x, to using the jail(8) -jail.conf-method available in RELEASE-9.1 which contained many bugs, some that -were fixed in RELEASE-9.2 and others that were finally fixed in RELEASE-9.3 -and RELEASE-10.0. This upgrade provides the ability to enable the following -new options on a per-jail basis. exec.fib, securelevel, allow.sysvipc, -devfs_rulesets, allow.raw_sockets, allow.quotas, allow.mount.nullfs, -allow.mount.zfs, cpuset.id, vnet.interface, and vnet. The vnet option gives a -jail its own network stack using the experimental vimage software. This qjail -version is not intended for RELEASES older than RELEASE-9.3. The vnet option -has only been tested on i386 and amd64 equipment. +This version of qjail uses the jail(8) jail.conf method. This provides the +ability to enable the following options on a per-jail basis. exec.fib, +securelevel, allow.sysvipc, devfs_rulesets, allow.raw_sockets, allow.quotas, +allow.mount.nullfs, allow.mount.tmpfs, allow.mount.zfs, vnet.interface, and +vnet. The vnet option gives a jail its own network stack using the experimental +vimage kernel module. This qjail version is not intended for RELEASES older than +RELEASE-9.2. The vnet option has only been tested on i386 and amd64 equipment. Qjail requires no knowledge of the jail command usage. It uses "nullfs" for read-only system executables, sharing one copy of them with all the jails. @@ -31,4 +27,7 @@ group of jails. Ability to designate a portion of the jail name as a group prefix so the command being executed will apply to only those jail names matching that prefix. +Qjail has been incorporated into the Finch open source project, +see http://dreamcat4.github.io/finch/ for details. + WWW: http://qjail.sourceforge.net/
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201407290346.s6T3kK1k008780>