Date: Tue, 05 Sep 2017 15:15:37 +0200 From: Alexander Leidinger <Alexander@leidinger.net> To: Giulio Ferro <auryn@zirakzigil.org> Cc: freebsd-hackers@freebsd.org Subject: Re: devd in jail Message-ID: <20170905151537.Horde.10cHNOX1OVri7mGaUcDeX1l@webmail.leidinger.net> In-Reply-To: <4a1a99a5-35ea-19c9-7ac8-77875ac6f71f@zirakzigil.org> References: <e03a6040-1322-c82c-0e96-49c474188d5c@zirakzigil.org> <CAOtMX2g7PR9S7v%2BrUXwBeQUPDFfJy2zZwAvg7q5ze99jDF4hmA@mail.gmail.com> <20170810225439.Horde.1s8Qi_dlNtxgEigsNKbdrer@webmail.leidinger.net> <4a1a99a5-35ea-19c9-7ac8-77875ac6f71f@zirakzigil.org>
next in thread | previous in thread | raw e-mail | index | archive | help
This message is in MIME format and has been PGP signed. --=_j_T_Z2cPYedhdhN3hOXO19- Content-Type: text/plain; charset=utf-8; format=flowed; DelSp=Yes Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Quoting Giulio Ferro <auryn@zirakzigil.org> (from Mon, 4 Sep 2017=20=20 08:51:10=20+0200): > On 10/08/2017 22:54, Alexander Leidinger wrote: >> >> Quoting Alan Somers <asomers@freebsd.org> (from Wed, 9 Aug 2017 >>> Unfortunately, you're not going to be able to run devd(8) in the jail. >>> /dev/devctl can be opened by only one reader at a time, and that >>> reader is always devd(8). /dev/devctl2 is actually a completely >>> different device with a totally different interface. Apologies for >>> the confusing names. But you may not need to run a totally separate >>> instance of devd. The X server is probably trying to open either >>> /var/run/devd.pipe or /var/run/devd.seqpacket.pipe. ktrace would tell >>> you which. If you can bridge those sockets into the jail, then X >>> would probably run. >> >> Apart from using an explicit config of devices instead of HAL /=20=20 >>=20devd, if this is a X server connecting to a graphics card (instead=20= =20 >>=20of just a remote accessible framebuffer), the X-in-a-jail patches=20= =20 >>=20are needed, as the X server needs access to /dev/(k)mem and /dev/io=20= =20 >>=20(and /dev/drm). >> > > Hi Alexander, > > as I said, I don't actually need to connect to any device, as this=20=20 >=20Xorg server in the jail only uses xrdp as backend. In this case you don't need my patches at all... I hope (my=20=20 understanding=20is that the X server needs this kind of access to access=20= =20 hardware).=20And to answer your question in another mail, yes, the diff=20= =20 is=20for current, not for 11.x. It's been a while since I looked last at the devd/hald <-> X11=20=20 interaction,=20but back then it was only needed to auto-detect=20=20 mouse/keyboard/...,=20so I wonder why xrdp needs it. Anyway, have a look=20= =20 to=20configure the config with static devices instead of devd/hald (see=20= =20 https://forums.freebsd.org/threads/7956/). Bye, Alexander. --=20 http://www.Leidinger.net Alexander@Leidinger.net: PGP 0x8F31830F9F2772BF http://www.FreeBSD.org netchild@FreeBSD.org : PGP 0x8F31830F9F2772BF --=_j_T_Z2cPYedhdhN3hOXO19- Content-Type: application/pgp-signature Content-Description: Digitale PGP-Signatur Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAABAgAGBQJZrqN5AAoJEKrxQhqFIICEOf8QAIIwMkXO3f+Kx+KA2BY82DWH Be9lGNBKe+4keDmm5PAZE+OeyDvSlEsnYKhBZbjZPQNQ2Ta4N8uQRQ1xu39NODA7 0FiGhOaovijpXkdlzwlQvbLKCYJBfGK7YedkIugNUL1ZHLu0Pek6cIef/TakI3oP JoWJpKnnrYxtV7omf/7V84DjG89a9M8YAUbYhiqImDkDu2Mb74OcZwV6jP+q5GZd kDjeDItXkdyndq3GCGogGr3qqQ24+Wb0BxsXSpn9ccL7NXUC1rL1gtfwDk4JapIy 87aZN3VowQto60ARj7s3I8FRJ/Nn4Mb23GbYnnEhx1PyYaeeuxlryV+sUAkblDAy 7X7GjCGhXdGlkuPAeTSYswZ+MMbwLGFLWAf1txUCpRA2jjCPmId+Aaojndy59/JJ TQ4nWV+slLiIv4MilAxQeTX8tAHpfmYoCtDugiAkyBqPFOMUBfDDO1Cuh5Ebhyup GOmo6RqkX6yNGD6cEkJUqix+QKGUmnLhqLb8TH/djL8j6Gdwx8VyyugXSHmMWoBm 3uFSfy6T3WjeL0s4FGsl8EZGB6zFYQjDYAbvKyoH38l5rwgF/4VLeBXFX2MQT5jF ocZ84VuzIEhcyTRszEyRzjLHTVZuHNoU1v3oKmp4sn6qLSuzyIN01kU8Hz3Ob/T/ ed/dAhOLmAar5OCHu72x =rBe0 -----END PGP SIGNATURE----- --=_j_T_Z2cPYedhdhN3hOXO19---
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20170905151537.Horde.10cHNOX1OVri7mGaUcDeX1l>