From owner-freebsd-questions@FreeBSD.ORG  Tue Apr  6 21:43:13 2010
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id D136C1065670;
	Tue,  6 Apr 2010 21:43:13 +0000 (UTC)
	(envelope-from dan.naumov@gmail.com)
Received: from mail-bw0-f216.google.com (mail-bw0-f216.google.com
	[209.85.218.216])
	by mx1.freebsd.org (Postfix) with ESMTP id 3056F8FC23;
	Tue,  6 Apr 2010 21:43:12 +0000 (UTC)
Received: by bwz8 with SMTP id 8so342921bwz.3
	for <multiple recipients>; Tue, 06 Apr 2010 14:43:12 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma;
	h=domainkey-signature:mime-version:received:in-reply-to:references
	:date:received:message-id:subject:from:to:cc:content-type
	:content-transfer-encoding;
	bh=qK39l1quqNqKt2f/0vPEn9SLhzQZLUVmE/3BDGdhN1I=;
	b=Nu+Yem6kwNG0MvFcA1rB4YqStagNHYdPjFaOncBc07qYUQ2kc8HneqBVXxe/l3Tm85
	frwA+dBZ3A0nhq6GTzbJmFNQmTf+ZUYEsn1HKYVujqAK7CZfNrLJI/ISjHdp57/JWkHO
	TKyB+4Iv7uBstE8sxFP2q3LtFCcJZ8OodDVEo=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
	h=mime-version:in-reply-to:references:date:message-id:subject:from:to
	:cc:content-type:content-transfer-encoding;
	b=b4Uhnr0OohuB+uSv1McFNfDVkgB2wlTG0NLyZ9F11sARSFznKA7davU4e5Bz2KnmLw
	g6crkSXeKfspYpN1hDl6iO76iza+m4sQRCbe+E6hdD2vacA246eZUUKv59eZZF9Hehx2
	fGZrvfwxZ2TXPgiXJKr940DABh9WvpOtez+S0=
MIME-Version: 1.0
Received: by 10.204.116.203 with HTTP; Tue, 6 Apr 2010 14:43:10 -0700 (PDT)
In-Reply-To: <20100406213711.GA38637@orion.hsd1.pa.comcast.net>
References: <k2xcf9b1ee01004061429ub4986488ya54af1a525aa209c@mail.gmail.com>
	<20100406213711.GA38637@orion.hsd1.pa.comcast.net>
Date: Wed, 7 Apr 2010 00:43:10 +0300
Received: by 10.204.6.66 with SMTP id 2mr8164279bky.138.1270590190796; Tue, 06 
	Apr 2010 14:43:10 -0700 (PDT)
Message-ID: <p2wcf9b1ee01004061443j2009774ewe8221d4668cff9ba@mail.gmail.com>
From: Dan Naumov <dan.naumov@gmail.com>
To: Glen Barber <glen.j.barber@gmail.com>
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
Cc: freebsd-jail@freebsd.org, freebsd-questions@freebsd.org
Subject: Re: bizarre mount_nullfs issue with jails / ezjail
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 06 Apr 2010 21:43:14 -0000

On Wed, Apr 7, 2010 at 12:37 AM, Glen Barber <glen.j.barber@gmail.com> wrot=
e:
> Hi Dan,
>
> Dan Naumov wrote:
>> So, I want the basejail to only contain the world and link the ports
>> tree from the host into each individual jail when it's time to update
>> the ports inside them, but I am running into a bit of a bizarre issue:
>> I can mount_nullfs /usr/ports elsewhere on the host just fine, but it
>> doesn't work if I try to mount_nullfs it to /usr/ports inside the
>> jail:
>>
>> mount_nullfs /usr/ports/ /usr/ports2
>>
>> df -H | grep ports
>> cerberus/usr-ports =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A034G =A0 =A0241M =A0 =
=A0 34G =A0 =A0 1% =A0 =A0/usr/ports
>> cerberus/usr-ports-distfiles =A0 =A0 =A034G =A0 =A0 =A00B =A0 =A0 34G =
=A0 =A0 0%
>> /usr/ports/distfiles
>> cerberus/usr-ports-packages =A0 =A0 =A0 34G =A0 =A0 =A00B =A0 =A0 34G =
=A0 =A0 0%
>> /usr/ports/packages
>> /usr/ports =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A034G =A0 =A0241=
M =A0 =A0 34G =A0 =A0 1% =A0 =A0/usr/ports2
>>
>> mount | grep ports
>> cerberus/usr-ports on /usr/ports (zfs, local)
>> cerberus/usr-ports-distfiles on /usr/ports/distfiles (zfs, local)
>> cerberus/usr-ports-packages on /usr/ports/packages (zfs, local)
>> /usr/ports on /usr/ports2 (nullfs, local)
>>
>> mount_nullfs /usr/ports/ /usr/jails/semipublic/usr/ports
>> mount_nullfs: /basejail: No such file or directory
>>
>> What is going on here? I also note that the error actually wants a
>> /basejail on the host, which is even more bizarre:
>>
>> mount_nullfs /usr/ports/ /usr/jails/semipublic/usr/ports
>> mount_nullfs: /basejail: No such file or directory
>>
>> mkdir /basejail
>>
>> mount_nullfs /usr/ports/ /usr/jails/semipublic/usr/ports
>> mount_nullfs: /basejail/usr: No such file or directory
>>
>> Yet, this works:
>>
>> mkdir /usr/jails/semipublic/test
>> mount_nullfs /usr/ports/ /usr/jails/semipublic/test
>> umount /usr/jails/semipublic/test
>>
>> Any ideas?
>>
>>
>
> The ports directory in an ezjail is a link to /basejail/usr/ports (in the
> jail).
>
> Breaking the link (from the host) allows the mount to work successfully.
>
> orion# ll usr/ports
> lrwxr-xr-x =A01 root =A0wheel =A019 Mar =A08 18:06 usr/ports -> /basejail=
/usr/ports
> orion# unlink usr/ports
> orion# mkdir usr/ports
> orion# mount_nullfs /usr/ports usr/ports
> orion#
>
> Regards,
>
> --
> Glen Barber

Thanks for the tip.

An additional question: how come "sade" and "sysinstall" which are run
inside the jail can see (and I can only assume they can also operate
on and damage) the real underlying disks of the host?

- Sincerely
Dan Naumov