From owner-freebsd-pkg@freebsd.org Sat Oct 14 14:04:38 2017 Return-Path: Delivered-To: freebsd-pkg@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 78B2FE485D8 for ; Sat, 14 Oct 2017 14:04:38 +0000 (UTC) (envelope-from xavier@shellguardians.com) Received: from mail-wm0-x230.google.com (mail-wm0-x230.google.com [IPv6:2a00:1450:400c:c09::230]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 134D771732 for ; Sat, 14 Oct 2017 14:04:37 +0000 (UTC) (envelope-from xavier@shellguardians.com) Received: by mail-wm0-x230.google.com with SMTP id k4so26341799wmc.1 for ; Sat, 14 Oct 2017 07:04:37 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=shellguardians-com.20150623.gappssmtp.com; s=20150623; h=date:from:to:cc:subject:message-id:references:mime-version :content-disposition:content-transfer-encoding:in-reply-to :user-agent; bh=Y3KnvsfhQcy2bBlNbYTbKgna76FSu6IiW6b8uy9juvY=; b=S6sr7zCjiH8osKVv5laiupyZS6U8gN++oXVtLNcTK1GczsNeZflktbuOjgo0lhTs8H DGdZJz8t0l9snJFYJWAAEb/OGNPlVPm/VYGtRCoi6WZpMkW39aDKYnirsBEZg3ZW3vOd EKViiKywt3Qkh5QXLnLg+FzhOZylJ+y6CKy6ty8N+6CowZLYFgI2LM0SSKwdoyc42J6T 7I8vEjmUrN2E5z7EAOxMooOek4hLqm7cBhtIS1ggAw1KY806qDqPwg5FbWN49YccDzZ8 BmrVbBelFjPkfkd4eujux+/EYSsktghGB4pBQBVSjSfh4+r8SnTOe96Hr3r31hYkS6lU dQ8Q== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:date:from:to:cc:subject:message-id:references :mime-version:content-disposition:content-transfer-encoding :in-reply-to:user-agent; bh=Y3KnvsfhQcy2bBlNbYTbKgna76FSu6IiW6b8uy9juvY=; b=cAWkxDuvDzt0NAv+JxECebkSkUuecCh6PP6fQ77CYPHNaLJUpY1nvV0UP+lUdIdVMC t4dwAblBFdAyL82YUMN8TqL0DYYIoRs8mmWH31sD2uvzW9f0eWSVDUzMPP6ww+pmjBeo 9BqzC1hdJXMG1MOD4pwkOzjEP6NeeMfoIFTdNNtp2DOdOW7hrsDQ2hvSTBf51SyLyO9s 67FMLJLbxMR0XaDberD+PXj0JKAjACDSL4FvDSpFZCSfyja38nVS6qKju8HPR+BOKtum CH2CZUDZG/pQo32J5iMR02tdpr58egXcT0jR49tYtWBwS9g0EoQM8aFDn6Bw6XdN2aGI md4w== X-Gm-Message-State: AMCzsaXR2/jE+7CC+f0HY/TIKCJ2B43vH2wpaUocVML/1bmsVynij9S+ m83ecBwUz5BmQ/oMPG9l3n42+Sa8RvQ= X-Google-Smtp-Source: ABhQp+QrsLceC3Z7MUdsutkoAN0Xzftj3HoQSHnlqfyK+NLwMWOL2Jb9lqTQdU0+u5ELLJOYxhWniA== X-Received: by 10.28.142.3 with SMTP id q3mr3446359wmd.46.1507989875373; Sat, 14 Oct 2017 07:04:35 -0700 (PDT) Received: from mutt.skynet.ct (ppp-188-174-166-236.dynamic.mnet-online.de. [188.174.166.236]) by smtp.gmail.com with ESMTPSA id 38sm2269001wrl.76.2017.10.14.07.04.34 (version=TLS1_2 cipher=ECDHE-RSA-CHACHA20-POLY1305 bits=256/256); Sat, 14 Oct 2017 07:04:34 -0700 (PDT) Date: Sat, 14 Oct 2017 16:04:33 +0200 From: Xavier Garcia To: markham breitbach Cc: freebsd-pkg@FreeBSD.org Subject: Re: poudriere in a jail Message-ID: <20171014140433.xyhcjd5niwuv4isf@mutt.skynet.ct> References: <2cc3949f-7807-f0d7-49dd-0887fe2b2222@ssimicro.com> MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: <2cc3949f-7807-f0d7-49dd-0887fe2b2222@ssimicro.com> User-Agent: NeoMutt/20170609 (1.8.3) X-BeenThere: freebsd-pkg@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: Binary package management and package tools discussion List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 14 Oct 2017 14:04:38 -0000 Hi, We are succesfully running Poudriere inside jails but some extra parameters are needed (the ones below plus the defaults in ezjail) and we are not using the linux support (NOLINUX=yes) children.max=32 allow.mount allow.mount.tmpfs allow.mount.devfs allow.mount.procfs allow.mount.zfs allow.mount.nullfs allow.raw_sockets allow.socket_af allow.sysvipc allow.chflags enforce_statfs=1 ip6=inherit ip4=inherit Notice that Poudriere needs access to the ipv4 and ipv6 loopback interfaces, for the compilation stage (one jail with public IP for fetching packages and another jail with loopback for the compilation). If another jail is already making use of them, you can create aliases in the loopback interfaces and then override the values in Poudriere.conf with LOIP6 and LOIP4. You may also have trouble if you don't limit the number of parallel jobs (PARALLEL_JOBS=4) in Poudriere because there is a limit in how many jails the parent jail can create. It will try to create $num_cpus jails. Kind regards, Xavier Garcia On Wed, Oct 11, 2017 at 10:57:11AM -0600, markham breitbach wrote: > I am trying to run poudriere in a jail, but when I try to run a build it > just gives me a whole lot of this and dies without. > > ``` > # poudriere bulk -f /usr/local/etc/poudriere.d/pkglist.txt -j 10amd64 > [00:00:00] ====>> Creating the reference jail...chflags: > /poo/data/.m/10amd64-default/ref/rescue/expr: Read-only file system > chflags: /poo/data/.m/10amd64-default/ref/rescue/clri: Read-only file system > chflags: /poo/data/.m/10amd64-default/ref/rescue/vi: Read-only file system > ... snip ... > [00:00:51] ====>> Cleaning up > [00:00:51] ====>> Unmounting file systems > chflags: /poo/data/.m/10amd64-default/ref/rescue/expr: Read-only file system > chflags: /poo/data/.m/10amd64-default/ref/rescue/clri: Read-only file system > ... snip ... > ``` > > I have used the same configuration outside of the jail and it works fine. > >  My jail has the following configuration: > > ``` devfs_ruleset=0 nodying enforce_statfs=0 host=new ip4=new > ip6=disable jid=77 linux=new name=bob_ssimicro_com osreldate=1003000 > osrelease=10.3-RELEASE-p11 parent=0 path=/usr/jails/bob.ssimicro.com > nopersist securelevel=-1 allow.chflags allow.mount allow.mount.devfs > allow.mount.fdescfs allow.mount.linprocfs allow.mount.linsysfs > allow.mount.nullfs allow.mount.procfs allow.mount.tmpfs allow.mount.zfs > allow.noquotas allow.noraw_sockets allow.noset_hostname > allow.nosocket_af allow.nosysvipc children.cur=0 children.max=10 > cpuset.id=4 host.domainname="" host.hostid=0 host.hostname=bob > host.hostuuid=00000000-0000-0000-0000-000000000000 > ip4.addr=xx.xx.xx.xx,127.0.0.1 ip4.saddrsel ip6.addr= ip6.saddrsel > linux.osname=Linux linux.osrelease=2.6.32 linux.oss_version=198144 > ``` > > I am not using ZFS.  Here is my poudriere.conf > > ``` > #ZPOOL=tank > NO_ZFS=yes > # ZROOTFS=/poudriere > FREEBSD_HOST=ftp://ftp.freebsd.org > BASEFS=/poo > POUDRIERE_DATA=${BASEFS}/data > USE_PORTLINT=no > USE_TMPFS=yes > DISTFILES_CACHE=/usr/ports/distfiles > CHECK_CHANGED_OPTIONS=verbose > CHECK_CHANGED_DEPS=yes > PKG_REPO_SIGNING_KEY=/usr/local/etc/ssl/keys/repo.key > ``` > > Some other useful information: > > ``` > # uname -a > FreeBSD bob.ssimicro.com 10.3-RELEASE-p11 FreeBSD 10.3-RELEASE-p11 #0: > Mon Oct 24 18:49:24 UTC 2016     > root@amd64-builder.daemonology.net:/usr/obj/usr/src/sys/GENERIC  amd64 > # poudriere version > 3.1.19 > ``` > > I would really like to have this working inside a jail.  Any suggestions > are greatly appreciated. > > Thanks, > -Markham > > > _______________________________________________ > freebsd-pkg@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-pkg > To unsubscribe, send any mail to "freebsd-pkg-unsubscribe@freebsd.org" -- http://www.shellguardians.com/ http://www.twitter.com/shellguardians http://keybase.io/shellguardians pgp key ID: 0xD94E70A1 http://pgp.mit.edu/