From owner-freebsd-jail@freebsd.org Mon Oct 31 18:07:07 2016 Return-Path: Delivered-To: freebsd-jail@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 56B8FC16851 for ; Mon, 31 Oct 2016 18:07:07 +0000 (UTC) (envelope-from luzar722@gmail.com) Received: from mail-yb0-x22d.google.com (mail-yb0-x22d.google.com [IPv6:2607:f8b0:4002:c09::22d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 1437A1944 for ; Mon, 31 Oct 2016 18:07:07 +0000 (UTC) (envelope-from luzar722@gmail.com) Received: by mail-yb0-x22d.google.com with SMTP id o7so11101214ybb.0 for ; Mon, 31 Oct 2016 11:07:07 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=message-id:date:from:user-agent:mime-version:to:cc:subject :references:in-reply-to:content-transfer-encoding; bh=boa+58f/e8j7TJCI4NsCpuKrljSiAvHaBHhwXCPJ350=; b=Bea4p9O9FWEIcDkO2e30YPpOuRvI76BDjcJOyknSx0F8weBNGY3nA6B4POYqobtV8K olKbnrTfjPiTk/5UqUOGVTcRkz4CqLFb5MHShH8jhzX2aHLdAQFKQ379hJJJTewUhYgD oYTdsw/dM9fn6DfgaWGfURXe8krI99bYexc4+33slGknLQXpkXa8D5YWrUi0pdKEl8C3 lRJncIJOniC3WwTjgwnnP9YMko5MCsDTlLDsskfMcP7toYd0VPIiIhClB2XEDT4EfbfJ 89sTGIp6pyhxQ+DDO+e1XCjxrQrwZpThwYHq9585Q17jorfA7JEey4eoDMDp/OCjC0jQ baIQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:message-id:date:from:user-agent:mime-version:to :cc:subject:references:in-reply-to:content-transfer-encoding; bh=boa+58f/e8j7TJCI4NsCpuKrljSiAvHaBHhwXCPJ350=; b=bhNmG824ANAcMnyWlvSOhJ7sM3ZenAlEuGz5PRruTIqUzWZQ2xx/lqYIxkpn/uzv2U E5ctVF/mld6W3GNhP1MHla35TotAERl2LL5h7mEqUTHAc2ROWDg6ZSp9e/OLKJjzLCKJ 4S7kkxsXNBAZORlOSj5OKEFDljHWNVFrSiaANv+xvmPhqN4tnVGLOusHMvmZSsuP/tZW PFc/uGXlnv7ZpHFgaXUAObKNH9H2VXNbHVpSj6QRLOu/tjVbwxMpwqic66MjrpI5HpDb 1CBEbnJJB6z+w6+kG7BP170k+idurk3gVlkXPGp7hGcLizNUO9/mEK0Gdelr6JEoPn4n eewA== X-Gm-Message-State: ABUngvevveqA9hyATzrPhxJgelWtB8YBKiMOE3w2veQPdg83mAOlNpHGCtdIhKOld6F4UA== X-Received: by 10.36.122.143 with SMTP id a137mr9490823itc.52.1477937226230; Mon, 31 Oct 2016 11:07:06 -0700 (PDT) Received: from [10.0.10.3] (cpe-24-165-204-240.neo.res.rr.com. [24.165.204.240]) by smtp.googlemail.com with ESMTPSA id 69sm4370517itp.11.2016.10.31.11.07.05 (version=TLS1 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Mon, 31 Oct 2016 11:07:05 -0700 (PDT) Message-ID: <58178854.2030403@gmail.com> Date: Mon, 31 Oct 2016 14:07:16 -0400 From: Ernie Luzar User-Agent: Thunderbird 2.0.0.24 (Windows/20100228) MIME-Version: 1.0 To: io7m+org.freebsd.jail@io7m.com CC: freebsd-jail@freebsd.org Subject: Re: Jail fails to unmount a directory References: <20161031170602.70b7d325@copperhead.int.arc7.info> In-Reply-To: <20161031170602.70b7d325@copperhead.int.arc7.info> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 31 Oct 2016 18:07:07 -0000 io7m+org.freebsd.jail@io7m.com wrote: > Hello. > > I have an incredibly trivial jail setup: > > /usr/jail/com.example.service0 is the root of the jail. > /usr/jail/com.example.service0/base is an empty directory. > /usr/jail/base is a directory containing binaries. > > I use the following jail configuration: > > com_example_service0 > { > exec.start = "/bin/sh"; > host.hostname = com.example.service0; > interface = em0; > ip4.addr = 127.0.0.2; > mount.fstab = /usr/jail/com.example.service0.fstab; > path = /usr/jail/com.example.service0; > } > > The /usr/jail/com.example.service0.fstab contains a single line: > > /usr/jail/base /usr/jail/com.example.service0/base nullfs ro,noauto 0 0 > > I start the jail: > > host# jail -v -f com.example.service0.conf -c com_example_service0 > com_example_service0: run command: /sbin/ifconfig em0 inet 127.0.0.2 netmask 255.255.255.255 alias > com_example_service0: run command: /sbin/mount -t nullfs -o ro,noauto /usr/jail/base /usr/jail/com.example.service0/base > com_example_service0: jail_set(JAIL_CREATE) persist name=com_example_service0 host.hostname=com.example.service0 ip4.addr=127.0.0.2 path=/usr/jail/com.example.service0 > com_example_service0: created > com_example_service0: run command in jail: /bin/sh > # exit > com_example_service0: jail_set(JAIL_UPDATE) jid=13 nopersist > host# > > The jail is gone: > > host# jls > JID IP Address Hostname Path > > However: > > host# df -h | grep service0 > # df -h > Filesystem Size Used Avail Capacity Mounted on > zroot/ROOT/default 13G 475M 13G 4% / > devfs 1.0K 1.0K 0B 100% /dev > zroot/tmp 13G 108K 13G 0% /tmp > zroot/usr/home 13G 136K 13G 0% /usr/home > zroot/usr/ports 13G 96K 13G 0% /usr/ports > zroot/usr/src 13G 96K 13G 0% /usr/src > zroot/var/audit 13G 96K 13G 0% /var/audit > zroot/var/crash 13G 96K 13G 0% /var/crash > zroot/var/log 13G 148K 13G 0% /var/log > zroot/var/mail 13G 96K 13G 0% /var/mail > zroot/var/tmp 13G 96K 13G 0% /var/tmp > zroot 13G 96K 13G 0% /zroot > zroot/jail 13G 249M 13G 2% /usr/jail > zroot/jail/com.example.service0 13G 4.0M 13G 0% /usr/jail/com.example.service0 > /usr/jail/base 13G 249M 13G 2% /usr/jail/com.example.service0/base > > .. the /usr/jail/com.example.service0/base directory was not unmounted. > > What do I need to do to get the directory to be correctly unmounted > when the jail ceases to exist? > > M The correct way to stop the jail is to issue this command from the host command line host# jail -v -f com.example.service0.conf -r com_example_service0