Date: Thu, 24 Oct 2024 20:46:27 +0000 From: Shawn Webb <shawn.webb@hardenedbsd.org> To: Alan Somers <asomers@freebsd.org> Cc: current@freebsd.org Subject: Re: ZFS sharenfs broken Message-ID: <rr66yze7toan2r3b4pgy4ocbz4pmvubvyw7dezigkoufkb5iz4@jxjnlufotzg2> In-Reply-To: <CAOtMX2hSgVA1buzTna%2BciLW-ewA%2B2Sa%2B9ZHuphOCW%2BT8iRqV4Q@mail.gmail.com> References: <finblit5mng4o6fujnf2vfiotq74xj3par5kz6vrcflg4viwud@s54qavuv5c3h> <CAOtMX2hSgVA1buzTna%2BciLW-ewA%2B2Sa%2B9ZHuphOCW%2BT8iRqV4Q@mail.gmail.com>
index | next in thread | previous in thread | raw e-mail
[-- Attachment #1 --] That gave me enough of a hint to go on. It does look like it was an issue with how I originally specified the options. For posterity's sake, here's how I fixed it: zfs set sharenfs='-ro -alldirs -network 172.16.1.0 -mask 255.255.255.0' rpool/data/build/pub (Applied the same sharenfs settings with the other datasets.) All is well now. Thanks a bunch, Alan! I really appreciate the help. :-) -- Shawn Webb Cofounder / Security Engineer HardenedBSD Tor-ified Signal: +1 303-901-1600 / shawn_webb_opsec.50 https://git.hardenedbsd.org/hardenedbsd/pubkeys/-/raw/master/Shawn_Webb/03A4CBEBB82EA5A67D9F3853FF2E67A277F8E1FA.pub.asc On Thu, Oct 24, 2024 at 02:36:47PM UTC, Alan Somers wrote: > I think that's just an exports(5) syntax error. I don't think "=" > should follow "-ro". Try this instead: > > zfs set sharenfs='-ro -alldirs 172.16.1.0/24' rpool/data/build/pub > > On Thu, Oct 24, 2024 at 2:26 PM Shawn Webb <shawn.webb@hardenedbsd.org> wrote: > > > > Hey all, > > > > I'm exposing some ZFS datasets using the `zfs set sharenfs` option. > > However, this causes mountd to complain: > > > > ==== BEGIN mountd LOG ==== > > Oct 24 20:19:59 hbsd-os-build-01 mountd[89840]: bad exports list line '/data/build/pub/current -ro' > > Oct 24 20:20:07 hbsd-os-build-01 mountd[14071]: = after op: ro > > Oct 24 20:20:07 hbsd-os-build-01 mountd[14071]: bad exports list line '/data/build/pub -ro' > > Oct 24 20:20:07 hbsd-os-build-01 mountd[14071]: = after op: ro > > Oct 24 20:20:07 hbsd-os-build-01 mountd[14071]: bad exports list line '/data/build/pub/13-stable -ro' > > Oct 24 20:20:07 hbsd-os-build-01 mountd[14071]: = after op: ro > > Oct 24 20:20:07 hbsd-os-build-01 mountd[14071]: bad exports list line '/data/build/pub/cross-dso-cfi -ro' > > Oct 24 20:20:07 hbsd-os-build-01 mountd[14071]: = after op: ro > > ==== END mountd LOG ==== > > > > The command I ran for those datasets: > > > > zfs set sharenfs='ro=172.16.1.0/24,-alldirs' rpool/data/build/pub > > > > (Replace that last argument with the other datasets. The same exact > > command was used, just with the dataset changed.) > > > > The /etc/zfs/exports file contains: > > > > ==== BEGIN exports ==== > > # !!! DO NOT EDIT THIS FILE MANUALLY !!! > > > > /data/build/pub -ro=172.16.1.0/24 -alldirs > > /data/build/pub/13-stable -ro=172.16.1.0/24 -alldirs > > /data/build/pub/cross-dso-cfi -ro=172.16.1.0/24 -alldirs > > /data/build/pub/current -ro=172.16.1.0/24 -alldirs > > ==== END exports === > > > > I'm a bit unsure of what to do here. I'm not sure if the issue lies in > > ZFS or mountd or something else entirely. > > > > `uname -a` shows: > > > > FreeBSD hbsd-os-build-01 15.0-CURRENT-HBSD FreeBSD 15.0-CURRENT-HBSD #0 hardened/current/master-n194236-a8e5e4e37b03: Thu Oct 24 19:49:31 UTC 2024 root@hbsd-os-build-01:/usr/obj/usr/src/amd64.amd64/sys/HARDENEDBSD amd64 > > > > Thanks, > > > > -- > > Shawn Webb > > Cofounder / Security Engineer > > HardenedBSD > > > > Tor-ified Signal: +1 303-901-1600 / shawn_webb_opsec.50 > > https://git.hardenedbsd.org/hardenedbsd/pubkeys/-/raw/master/Shawn_Webb/03A4CBEBB82EA5A67D9F3853FF2E67A277F8E1FA.pub.asc [-- Attachment #2 --] -----BEGIN PGP SIGNATURE----- iQIzBAABCAAdFiEEA6TL67gupaZ9nzhT/y5nonf44foFAmcash0ACgkQ/y5nonf4 4fp7rA/6A/PTCOIpZqG9f3oSLxv3i4clea4EJaAfLViunybm8q0cLRCfVLkSskpj VdLAuvglG1Nq9QCmQZ8CHWm9kfXFcT+F3VuqlG3C4CDjpeaniMCwpkku81xSpn26 hgX5jruXtisQhp/uwufgjlrUQDwbFQS4WqYUJsDrPAEChdb2mehrumLN5mf22C1k jq3pxIAYpKHzkpB31uZVblbA8XnKIMDgW4ENN/ijqqhEBPEOFpYEdRLsxaPAVOp0 O37iZ/jUJyYmACaCQ/wQJvpsnl4lxyV0l4CaVc7jM6LE8mz9LtDdRiiGCctvaePO 7ofqjFSUs52im5sHN4ysY3qHEeX5kiv6KP4VnWTHbQSwiHvTm42/FetrMAJvxX3K RrxPPWXxMF6q/tIcu2B+J/7TJ8/JvFCb825Dq/fHW34ra+32bQ/wkxD2tcYVLB04 /wqdmtTXWB7QFhMIjTLbQRQcEmM1lO+Kz/7A45GojrfKHnOoYI076p4WtRa3EcEy MQTDdRWS5yGP5AJjiSsHhpkeZ6T0+3h8LsxcKoJs8xn6bypvneERoBWU+4e1GSRu akBu+z/ePUCK28qhsZBfHOXhIWDol9mrtHzHLIv2P3oXJBEc1QE+R6X9xQHr9mor BFsNC5ODzea+705ZTBgjiIx0DmkRKrU5qLTPpjUcY+hv8VR9b4c= =5+T/ -----END PGP SIGNATURE-----home | help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?rr66yze7toan2r3b4pgy4ocbz4pmvubvyw7dezigkoufkb5iz4>