From owner-freebsd-ports@FreeBSD.ORG Fri Oct 11 17:10:31 2013 Return-Path: Delivered-To: freebsd-ports@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTP id 35900237; Fri, 11 Oct 2013 17:10:31 +0000 (UTC) (envelope-from yerenkow@gmail.com) Received: from mail-vb0-x231.google.com (mail-vb0-x231.google.com [IPv6:2607:f8b0:400c:c02::231]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id D604E2494; Fri, 11 Oct 2013 17:10:30 +0000 (UTC) Received: by mail-vb0-f49.google.com with SMTP id w16so2906119vbb.8 for ; Fri, 11 Oct 2013 10:10:29 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=4Z4abT2d4xnK3t6PuwYjUvrxyzu0AgmAYod79By+lo4=; b=idbshTdJsq4CWJ+OT+7B88d6JeWmV/WcRZWCpSisHF9DgwmRw3DXKgEVM8dPT63Czb YEUyGKiBQueXkCPnTUmkTpAg0ADbfT0RBHsPPaw9fkcsKW1S3g0DOvSkae9iQNXbV/p7 Tt2Obur2cAzffreQBWgzHflT/rQI0C9jt+JVAydmkvxBwLxUAINTBMUZmrD9bgYPyOkg 8VBlJ/Z+uSqg2eUZcVHlwHBUnd+/lx3wjXiqMHMZlxxQ1gOQXW9UtlpiXdtL/kKzzJVV EjoqRtXI10YPh+CB1me5xTkyynrvYGxShqRv7qG1dRKEhDjkm75t/5qnsxIL9E7dDUcc o8ZA== MIME-Version: 1.0 X-Received: by 10.220.86.69 with SMTP id r5mr5348507vcl.9.1381511429875; Fri, 11 Oct 2013 10:10:29 -0700 (PDT) Received: by 10.52.27.201 with HTTP; Fri, 11 Oct 2013 10:10:29 -0700 (PDT) In-Reply-To: <1381510700.37006.YahooMailNeo@web142806.mail.bf1.yahoo.com> References: <1381473199.36649.YahooMailNeo@web142801.mail.bf1.yahoo.com> <5257DDA8.5080202@FreeBSD.org> <1381510700.37006.YahooMailNeo@web142806.mail.bf1.yahoo.com> Date: Fri, 11 Oct 2013 20:10:29 +0300 Message-ID: Subject: Re: poudriere and networking From: Alexander Yerenkow To: Kimo Rosenbaum Content-Type: text/plain; charset=ISO-8859-1 X-Content-Filtered-By: Mailman/MimeDel 2.1.14 Cc: "freebsd-ports@freebsd.org" , Bryan Drewery X-BeenThere: freebsd-ports@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: Porting software to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 11 Oct 2013 17:10:31 -0000 I'd suggest to you anyway investigate what are downloaded, and why; If it's some static files - you could try to add them to distfiles, and replace places where they are trying download from web to file; e.g. find somewhere http://site/your.file and try to replace it with file://$DISTFILES/your.file 2013/10/11 Kimo Rosenbaum > I don't quite agree with that being the default but I understand. The > patch works as intended. Thanks! > > > Thanks > Kimo > > > > ----- Original Message ----- > > From: Bryan Drewery > > To: Kimo Rosenbaum ; "freebsd-ports@freebsd.org" < > freebsd-ports@freebsd.org> > > Cc: > > Sent: Friday, October 11, 2013 4:14 AM > > Subject: Re: poudriere and networking > > > > On 10/11/2013 1:33 AM, Kimo Rosenbaum wrote: > >> Hello, > >> > >> I'm running poudriere-devel-3.0.99.20130927 on 9.1-RELEASE. I'm > > trying to build a private port which requires downloading files after the > > extract target. However, it seems as though networking isn't available > after > > post-fetch. I do have RESOLV_CONF set in poudriere.conf and cat'ing > > /etc/resolv.conf in post-patch shows the correct contents. The build is > able to > > run the fetch but once past post-fetch I can't do any DNS lookups nor > ping > > anything external. The host itself can do those things. Also when I > enter the > > jail via jexec I can perform those things. > >> > >> Any ideas? > >> > >> Thanks > >> Kimo > > > > This is done for security. During build, the code running is untrusted. > > We don't want it to reach out and scan/infect your network during a > build. > > > > I do understand you're building a private port though. I would add a > > flag to override this per port, but I worry some porter would put it in > > their FreeBSD port where it does not belong. > > > > You can apply a patch like this to your > > /usr/local/share/poudriere/common.sh to work around the issue: > > > >> --- src/share/poudriere/common.sh > >> +++ src/share/poudriere/common.sh > >> @@ -1402,14 +1402,10 @@ > >> fi > >> return 1 > >> fi > >> fi > >> > >> - if [ "${phase}" = "checksum" ]; > > then > >> - jstop > >> - jstart 0 > > > >> - fi > >> print_phase_footer > >> > >> if [ "${phase}" = "checksum" ]; > > then > >> mkdir -p ${mnt}/portdistfiles > >> echo "DISTDIR=/portdistfiles" >> > > ${mnt}/etc/make.conf > > > > > > -- > > Regards, > > Bryan Drewery > > > _______________________________________________ > freebsd-ports@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-ports > To unsubscribe, send any mail to "freebsd-ports-unsubscribe@freebsd.org" > -- Regards, Alexander Yerenkow