Date: Tue, 15 Oct 2019 11:35:35 +0100 From: "Luis P. Mendes" <luislupe@gmx.com> To: MJ <mafsys1234@gmail.com> Cc: freebsd-questions@freebsd.org Subject: Re: [questions] Re: mysql socket disappears when restarting related jail with nullfs mount point Message-ID: <20191015103535.GB31036@leao.home> In-Reply-To: <a4f7de0d-5356-395c-bd7a-74438fecad88@gmail.com> References: <20191010144257.GA14181@leao.home> <a4f7de0d-5356-395c-bd7a-74438fecad88@gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
(The answer to the group as the original answer was only for MJ)
On 20191011 15:26:37 +1100, MJ wrote:
>What's your security.jail.param.securelevel set to? Likely to be 0?
Just to add that in both files:
/usr/local/etc/qjail.local/mariadb
and
/usr/local/etc/qjail.local/webjail
placed the value 3 in securelevel parameter:
securelevel=3D"3"
When starting the webjail, the socket of the related mariadb jail is
still
removed.
>In fact, what's your security.jail settings in both jails? Any obvious di=
screpancies?
All 61 parameters are identical, no diff between them.
>
>
>On 11/10/2019 1:42 am, Luis P. Mendes wrote:
>>I'm running FreeBSD 11.3-RELEASE-p3 on a VPS.
>>The jail manager is qjail, version 5.4.
>>
>>The server has two jails: a database `mariadb` and a web `webjail`.
>>Access to the database is done only through a unix socket to be null
>>mounted at the latter jail.
>>
>>When started, 'service mysql-server start' on the `mariadb` jail
>>places the socket at /var/run/mysql/mysql.sock
>>
>>When started, the `webjail` should mount that socket in its own
>>/var/run/mysql directory.
>>
>>This is the line of the corresponding
>>/usr/local/etc/qjail.fstab/webjail file:
>>/usr/jails/mariadb/var/run/mysql=C2=A0 /usr/jails/webjail/var/run/mysql
>>nullfs=C2=A0 rw=C2=A0 0=C2=A0 0
>>
>>
>>What happens is that everytime that the `webjail` is started (the
>>first time or when restarted), the socket at `mariadb`'s
>>/var/run/mysql/mysql.sock
>>is deleted somehow.
>>Although this happens, the mysqld_safe and mysqld daemons keep
>>running.
>>
>>As a note, when `webjail` is stopped, nothing happens to the socket at
>>the jail of the mariadb database server.
>>
>>If the `mariadb` jail is started after `webjail`, the socket is
>>correctly mounted at the latter /var/run/mysql directory.
>>
>>
>>Using qjail's archive and restore commands, I copied these two jails
>>to another FreeBSD 11.3-RELEASE virtual machine, at my own computer,
>>and the strange behavior still happens.
>>
>>There are no rc.d scripts made by me.
>>
>>The contents of the config file for the `webjail` are:
>>/usr/local/etc/qjail.config/webjail
>>
>>webjail { host.hostname=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 =3D=C2=A0 "w=
ebjail";
>>path=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=
=C2=A0=C2=A0=C2=A0=C2=A0 =3D=C2=A0 "/usr/jails/webjail";
>>mount.fstab=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 =3D=C2=A0 "/=
usr/local/etc/qjail.fstab/webjail";
>>exec.consolelog=C2=A0=C2=A0=C2=A0=C2=A0 =3D=C2=A0 "/var/log/qjail.webjai=
l.console.log";
>>mount.devfs;
>>ip4.addr=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=
=A0 =3D=C2=A0 127.0.0.85;
>>interface=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 =
=3D=C2=A0 "lo1";
>>devfs_ruleset=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 =3D=C2=A0 "4";
>>exec.start=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 =3D=C2=
=A0 "/bin/sh /etc/rc";
>>exec.stop=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 =
=3D=C2=A0 "/bin/sh /etc/rc.shutdown";
>>
>>
>>What's wrong with this?
>>Why starting a jail deletes a socket in another jail?
>>
>>
>>
>>
>>--
>>
>>
>>Lu=C3=ADs Mendes
>>_______________________________________________
>>freebsd-questions@freebsd.org mailing list
>>https://lists.freebsd.org/mailman/listinfo/freebsd-questions
>>To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.=
org"
=2D-
Luis Mendes
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20191015103535.GB31036>