Skip site navigation (1)Skip section navigation (2) 
Date:      Sat, 20 May 2006 11:01:00 +0300
From:      Ruslan Ermilov <ru@FreeBSD.org>
To:        Xin LI <delphij@delphij.net>
Cc:        freebsd-rc <freebsd-rc@FreeBSD.org>, "Simon L. Nielsen" <simon@FreeBSD.org>
Subject:   Re: [PATCH FOR REVIEW] Implementation of skeleton jail
Message-ID:  <20060520080100.GE84766@ip.net.ua>
In-Reply-To: <1148109661.952.26.camel@spirit>
References:  <1148109661.952.26.camel@spirit>
next in thread | previous in thread | raw e-mail | index | archive | help 

[-- Attachment #1 --]
On Sat, May 20, 2006 at 03:21:00PM +0800, Xin LI wrote:
> Hi, folks,
> 
> Here is an implementation of what I call it "skeleton jail".  The idea
> is that it is more or less to be common that we do not want to actually
> copy of the base system (sometimes even other stuff) across zillions of
> jails.
> 
> The skeleton jail is an approach that makes management of such jails
> easier, by making use of mount_nullfs(8) to make read-only shadow or
> read-write shadow from the so-called "skeleton root".
> 
> For instance, by default the skeleton jail would mount the following
> directories from the skeleton root (/) to the jail:
> 
> bin          -> ${_root}/bin
> sbin         -> ${_root}/sbin
> lib          -> ${_root}/lib
> libexec      -> ${_root}/libexec
> usr/bin      -> ${_root}/usr/bin
> usr/sbin     -> ${_root}/usr/sbin
> usr/include  -> ${_root}/usr/include
> usr/lib      -> ${_root}/usr/lib
> usr/libdata  -> ${_root}/usr/libdata
> usr/libexec  -> ${_root}/usr/libexec
> usr/sbin     -> ${_root}/sbin
> usr/share    -> ${_root}/share
> 
> In order to create the environment that is suitable for the skeleton
> jail (say, create the directory hierarchy, populate the /etc/ stuff,
> etc, but not the actual installworld), I have added a new target
> "installskel" to src/Makefile which will help the work.
> 
You really don't want the new "installskel" target, instead please use
the existing "distrib-dirs" and "distribution" targets from src/Makefile.


Cheers,
-- 
Ruslan Ermilov
ru@FreeBSD.org
FreeBSD committer

[-- Attachment #2 --]
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (FreeBSD)

iD8DBQFEbsy7qRfpzJluFF4RAiN+AJ90xZkiDgESzwFQiUyVU3CRZoW6sQCdFEMl
4LjqJaHN0K+4NhRwNGyxATc=
=9roX
-----END PGP SIGNATURE-----

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060520080100.GE84766>