From owner-freebsd-rc@FreeBSD.ORG Sat Oct 13 21:58:31 2007 Return-Path: Delivered-To: freebsd-rc@FreeBSD.Org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 0147E16A418 for ; Sat, 13 Oct 2007 21:58:31 +0000 (UTC) (envelope-from tataz@tataz.chchile.org) Received: from smtp5-g19.free.fr (smtp5-g19.free.fr [212.27.42.35]) by mx1.freebsd.org (Postfix) with ESMTP id 83D3913C46B for ; Sat, 13 Oct 2007 21:58:30 +0000 (UTC) (envelope-from tataz@tataz.chchile.org) Received: from smtp5-g19.free.fr (localhost.localdomain [127.0.0.1]) by smtp5-g19.free.fr (Postfix) with ESMTP id CBA2A3F6159; Sat, 13 Oct 2007 23:58:28 +0200 (CEST) Received: from tatooine.tataz.chchile.org (tataz.chchile.org [82.233.239.98]) by smtp5-g19.free.fr (Postfix) with ESMTP id AF5043F6170; Sat, 13 Oct 2007 23:58:28 +0200 (CEST) Received: from obiwan.tataz.chchile.org (unknown [192.168.1.25]) by tatooine.tataz.chchile.org (Postfix) with ESMTP id CA1FA9B497; Sat, 13 Oct 2007 21:58:24 +0000 (UTC) Received: by obiwan.tataz.chchile.org (Postfix, from userid 1000) id BDC7F405B; Sat, 13 Oct 2007 23:58:24 +0200 (CEST) Date: Sat, 13 Oct 2007 23:58:24 +0200 From: Jeremie Le Hen To: Mike Makonnen Message-ID: <20071013215824.GL28841@obiwan.tataz.chchile.org> References: <20070917152229.48842405B@obiwan.tataz.chchile.org> <20071010194000.GA7260@terra.mike.lan> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="XOIedfhf+7KOe/yw" Content-Disposition: inline In-Reply-To: <20071010194000.GA7260@terra.mike.lan> User-Agent: Mutt/1.5.15 (2007-04-06) X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: freebsd-rc@FreeBSD.Org, jeremie@le-hen.org, bug-followup@FreeBSD.org Subject: Re: conf/116416: [patch] per-jail rc.conf(5) style configuration file in /etc/jail/ X-BeenThere: freebsd-rc@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion related to /etc/rc.d design and implementation." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 13 Oct 2007 21:58:31 -0000 --XOIedfhf+7KOe/yw Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Hi Mike, Thanks for taking care of this. On Wed, Oct 10, 2007 at 10:40:00PM +0300, Mike Makonnen wrote: > I like this patch, especially the second revision. I think people who > run a very large number of jails will appreciate it. However, I'd like > to see a few changes made: > > 1. Rename /etc/jail to /etc/jail.d > 2. The jails_confdir knob should be sourced from /etc/defaults/rc.conf > so the sysadmin can change it if necessary. > 3. Instead of simply populating jail_list from the directory if it's > empty I'd like to see it cascade through the following logic: > If jail_enable=no > do nothing (current behaviour) > else if jail_enable=yes > process jails defined in jail_list (current behaviour) > else if jail_enable=auto > if jail_list is NOT empty > process ONLY the jails listed in it > else > automatically populate jail_list from /etc/jail.d/ > > This will give maximum flexibility and choice to the sysadmin. > Your patch is essentially the same, however I would like to see the > behaviour controlled by the jail_enable knob than have the script > determine for itselft what it's going to do. For example, your patch, > as it currently stands, would break a setup where the sysadmin had > enabled jails but intentionally left jail_list empty in order *not* to > start any jails. I've included all your requests in the attached patch. If this is not the valid way to attach a file to a PR followup, please let me know. I will be able to document this tomorrow. $jail_confdir should certainly be documented in rc.conf(5), but I'm not sure where to explain the content of /etc/jail.d/. Regards, -- Jeremie Le Hen < jeremie at le-hen dot org >< ttz at chchile dot org > --XOIedfhf+7KOe/yw--