From owner-freebsd-stable@freebsd.org  Tue Dec 13 15:55:33 2016
Return-Path: <owner-freebsd-stable@freebsd.org>
Delivered-To: freebsd-stable@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id A6434C753CD
 for <freebsd-stable@mailman.ysv.freebsd.org>;
 Tue, 13 Dec 2016 15:55:33 +0000 (UTC)
 (envelope-from Mark.Martinec+freebsd@ijs.si)
Received: from mail.ijs.si (mail.ijs.si [IPv6:2001:1470:ff80::25])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id 62569149C;
 Tue, 13 Dec 2016 15:55:33 +0000 (UTC)
 (envelope-from Mark.Martinec+freebsd@ijs.si)
Received: from amavis-ori.ijs.si (localhost [IPv6:::1])
 (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
 (No client certificate requested)
 by mail.ijs.si (Postfix) with ESMTPS id 3tdPS34dkKzfC;
 Tue, 13 Dec 2016 16:55:31 +0100 (CET)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ijs.si; h=
 user-agent:message-id:references:in-reply-to:organization
 :subject:subject:from:from:date:date:content-transfer-encoding
 :content-type:content-type:mime-version:received:received
 :received:received; s=jakla4; t=1481644527; x=1484236528; bh=gOk
 dkXKSzatfGFll4l7DfBWPHPQhG38aD6R6yYhHifA=; b=U+OfaJrs3ZH3zNr3r40
 4DzOnG2/C+dXsTrQOQ3kdg5zNEa1tgP0W+AC7gusqmJJSjnAeaGddvOnIsUboqDd
 OkAkMm7agFM7tISZJnuzicYlUbOGprjis1QKmlTDr9gyGiqUiLN8G4BtkmvqDz9+
 lbX4yuyoMcpjkUsAT7ZF0MUY=
X-Virus-Scanned: amavisd-new at ijs.si
Received: from mail.ijs.si ([IPv6:::1])
 by amavis-ori.ijs.si (mail.ijs.si [IPv6:::1]) (amavisd-new, port 10026)
 with LMTP id xTHgr4QN7J5l; Tue, 13 Dec 2016 16:55:27 +0100 (CET)
Received: from mildred.ijs.si (mailbox.ijs.si [IPv6:2001:1470:ff80::143:1])
 by mail.ijs.si (Postfix) with ESMTP id 3tdPRz1cJ9zf9;
 Tue, 13 Dec 2016 16:55:27 +0100 (CET)
Received: from nabiralnik.ijs.si (nabiralnik.ijs.si
 [IPv6:2001:1470:ff80::80:16])
 by mildred.ijs.si (Postfix) with ESMTP id 3tdPRz0Nf7zPY;
 Tue, 13 Dec 2016 16:55:27 +0100 (CET)
Received: from neli.ijs.si (2001:1470:ff80:88:21c:c0ff:feb1:8c91)
 by webmail.ijs.si
 with HTTP (HTTP/1.1 POST); Tue, 13 Dec 2016 16:55:27 +0100
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII;
 format=flowed
Content-Transfer-Encoding: 7bit
Date: Tue, 13 Dec 2016 16:55:27 +0100
From: Mark Martinec <Mark.Martinec+freebsd@ijs.si>
To: freebsd-stable@freebsd.org
Cc: Alan Somers <asomers@freebsd.org>, Christian Schwarz <me@cschwarz.com>
Subject: Re: Is System V IPC namespace still shared across jails?
Organization: Jozef Stefan Institute
In-Reply-To: <CAOtMX2h0p5TW4jEGFp_MbajpNSZzYjAsyFPLAdzyHd+ojwYXjw@mail.gmail.com>
References: <bd0104e960902c42acef95555c0fc37f@ijs.si>
 <20161212193817.hjax5jo5leb7ryjr@csarch.Speedport_W_724V_01011603_00_008>
 <9b85246e8cf5dfb34ddbbaaec528a4a7@ijs.si>
 <CAOtMX2h0p5TW4jEGFp_MbajpNSZzYjAsyFPLAdzyHd+ojwYXjw@mail.gmail.com>
Message-ID: <241a7e18a78fe4d8aac6db3da166be88@ijs.si>
X-Sender: Mark.Martinec+freebsd@ijs.si
User-Agent: Roundcube Webmail/1.2.3
X-BeenThere: freebsd-stable@freebsd.org
X-Mailman-Version: 2.1.23
Precedence: list
List-Id: Production branch of FreeBSD source code <freebsd-stable.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-stable>, 
 <mailto:freebsd-stable-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-stable/>
List-Post: <mailto:freebsd-stable@freebsd.org>
List-Help: <mailto:freebsd-stable-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-stable>,
 <mailto:freebsd-stable-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 13 Dec 2016 15:55:33 -0000

2016-12-13 16:29, Alan Somers wrote:
> I've already added support for sysvmsg, sysvsem, and sysvshm to
> iocage.  They all default to "new", which means you won't have to do
> anything special in your jail config to make postgres work.  You can
> find the patch below.  The only reason it hasn't been merged is
> because it can't (yet) be made to work correctly on the develop branch
> of iocage.  But it works fine on the master branch.
> 
> https://github.com/iocage/iocage/pull/370
> 
> -Alan

Superb, appreciated!

   Mark



> On Tue, Dec 13, 2016 at 8:08 AM, Mark Martinec
> <Mark.Martinec+freebsd@ijs.si> wrote:
>> 2016-12-12 20:38, Christian Schwarz wrote:
>>> 
>>> With the new jail parameters, new namespaces for SysV IPC are 
>>> possible
>>> on FreeBSD 11.
>>> 
>>> For those ezjail users, add something like this to the jail's config
>>> after creating it using 'ezjail-admin create':
>>> 
>>> export jail_postgres_parameters="sysvmsg=new sysvsem=new sysvshm=new"
>>> 
>>> Cheers,
>>>   Christian
>> 
>> 
>> Thank you, this is it!
>> I missed it in the JAIL(8) man page, and is not mentioned in release 
>> notes.
>> 
>> Now if only the iocage would recognized the sysvmsg, sysvsem, and 
>> sysvshm
>> options:
>> 
>> # iocage set sysvmsg='new' xxx
>>   ERROR: Unsupported property: sysvmsg!
>> 
>> I guess I should file a bug report.
>>   Mark