From owner-freebsd-jail@FreeBSD.ORG Mon Apr 21 00:13:23 2008 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C34201065672 for ; Mon, 21 Apr 2008 00:13:23 +0000 (UTC) (envelope-from 000.fbsd@quip.cz) Received: from elsa.codelab.cz (elsa.codelab.cz [91.103.162.4]) by mx1.freebsd.org (Postfix) with ESMTP id 7CA0A8FC1C for ; Mon, 21 Apr 2008 00:13:23 +0000 (UTC) (envelope-from 000.fbsd@quip.cz) Received: from localhost (localhost.codelab.cz [127.0.0.1]) by elsa.codelab.cz (Postfix) with ESMTP id BFDE419E023; Mon, 21 Apr 2008 01:53:49 +0200 (CEST) Received: from [192.168.1.2] (r5bb235.net.upc.cz [86.49.61.235]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by elsa.codelab.cz (Postfix) with ESMTPSA id 5D86619E019; Mon, 21 Apr 2008 01:53:47 +0200 (CEST) Message-ID: <480BD79C.1010903@quip.cz> Date: Mon, 21 Apr 2008 01:54:04 +0200 From: Miroslav Lachman <000.fbsd@quip.cz> User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.7.12) Gecko/20050915 X-Accept-Language: cz, cs, en, en-us MIME-Version: 1.0 To: Jeffrey Smith References: <1208720979.2082.13.camel@mrwizard.futurecis.com> In-Reply-To: <1208720979.2082.13.camel@mrwizard.futurecis.com> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-jail@freebsd.org Subject: Re: freebsd-update on jails X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 21 Apr 2008 00:13:23 -0000 Jeffrey Smith wrote: > I previously posted a howto to use zfs to manage jails. The first > update through freebsd-update has been released. Testing this I get > > (in jail) > ldap1#freebsd-update install > Installing updates...chflags: ///usr/lib/libssh.a: Operation not > supported > > After this error I enabled chflags in sysctl on the host system > #sysctl security.jail.chflags_allowed=1 > > This did not not work in fixing the issue > after reading the freebsd-update man page I thought this should be > possible > > #freebsd-update -b /jails/ldap1/ -d /jails/ldap1/var/db/freebsd-update/ > \ install > Installing updates...chflags: /jails/ldap1///usr/lib/libssh.a: Operation > not supported > > But I still get that same error. Does anyone have any idea what would > keep this from working? If there is a way to update the host and all > subsequent jails vi the host that would be great, as i would prefer not > to allow chflags from within the jails. Can you tell me your FreeBSD version? I am convinced that I did freebsd-update inside Jail on FreeBSD 6.2, but I am not 100% sure and did not test it on FreeBSD 7. Are you trying update (minor security updates) or upgrade to newer release version? Maybe I was in luck, that my update routine did not change any chflagged files. Miroslav Lachman