Date: Wed, 27 Sep 2023 13:00:13 +0200 From: Guido Falsi <madpilot@FreeBSD.org> To: Alexander Leidinger <Alexander@Leidinger.net>, Charlie Li <vishwin@freebsd.org> Cc: Kurt Jaeger <pi@freebsd.org>, "freebsd-ports@FreeBSD.org" <freebsd-ports@freebsd.org>, pizzamig@freebsd.org, rust@freebsd.org Subject: Re: sccache(-overlay) to speed up rust builds in poudriere Message-ID: <345d28f3-9391-4330-bd5c-b0ac72a0866f@FreeBSD.org> In-Reply-To: <99e008c3-4047-4fb6-92df-d0a16a637efb@FreeBSD.org> References: <ZRGiDj-esOAc9K_Z@lordcow.org> <SI2PR01MB50362BF55FD9A3A7395450A2FAC3A@SI2PR01MB5036.apcprd01.prod.exchangelabs.com> <2e1786f2-1aae-7199-5a3e-5d8c9cdbedbf@FreeBSD.org> <d5f5c7cfb550ab7b4b7421528846a9d8@Leidinger.net> <ZRLJRuki6D2Np0JY@fc.opsec.eu> <3fc3bf626fa452be730bcc96d2c10508@Leidinger.net> <e76aa02f-1cfa-d71d-7a63-fef9de23c619@freebsd.org> <3997509d72dcdbd9075274bee41cf255@Leidinger.net> <99e008c3-4047-4fb6-92df-d0a16a637efb@FreeBSD.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On 27/09/23 12:57, Guido Falsi wrote: > On 27/09/23 12:54, Alexander Leidinger wrote: >> Am 2023-09-27 10:56, schrieb Charlie Li: >> >>> In poudriere, apart from the fetch phase, network access is not >>> allowed by default so spawning a server that listens on an IP that >>> does not necessarily exist that clients, individual compiler >>> invocations, talk to isn't tenable. At the very least, one would need >>> to architect and implement Unix domain socket support there, which >>> they are happy to consider. >> >> How is poudriere preventing network access outside the fetch phase? > > two (undocumented) guesses: > > - removing interfaces (including lo0) > - no routing > > The only way to know for sure is reading the source code. > https://github.com/freebsd/poudriere/blob/97404baad0c41f1007f971c4a19c89b7c594d89f/src/share/poudriere/common.sh#L691C59-L692C32 This looks like the relevant line of code, one has obviously to check all the involved variables definitions. This is a good starting point for this kind of research though. -- Guido Falsi <madpilot@FreeBSD.org>
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?345d28f3-9391-4330-bd5c-b0ac72a0866f>