From owner-freebsd-jail@FreeBSD.ORG Mon Apr 21 03:05:11 2008 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id B04BF106566B for ; Mon, 21 Apr 2008 03:05:11 +0000 (UTC) (envelope-from 000.fbsd@quip.cz) Received: from elsa.codelab.cz (elsa.codelab.cz [91.103.162.4]) by mx1.freebsd.org (Postfix) with ESMTP id 654338FC12 for ; Mon, 21 Apr 2008 03:05:11 +0000 (UTC) (envelope-from 000.fbsd@quip.cz) Received: from localhost (localhost.codelab.cz [127.0.0.1]) by elsa.codelab.cz (Postfix) with ESMTP id 9EAA719E023; Mon, 21 Apr 2008 05:05:09 +0200 (CEST) Received: from [192.168.1.2] (r5bb235.net.upc.cz [86.49.61.235]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by elsa.codelab.cz (Postfix) with ESMTPSA id DECC919E019; Mon, 21 Apr 2008 05:05:06 +0200 (CEST) Message-ID: <480C0474.9040806@quip.cz> Date: Mon, 21 Apr 2008 05:05:24 +0200 From: Miroslav Lachman <000.fbsd@quip.cz> User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.7.12) Gecko/20050915 X-Accept-Language: cz, cs, en, en-us MIME-Version: 1.0 To: Jeffrey Smith , freebsd-jail@freebsd.org References: <1208720979.2082.13.camel@mrwizard.futurecis.com> <480BD79C.1010903@quip.cz> <1208736224.2082.16.camel@mrwizard.futurecis.com> In-Reply-To: <1208736224.2082.16.camel@mrwizard.futurecis.com> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Cc: Subject: Re: freebsd-update on jails X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 21 Apr 2008 03:05:11 -0000 Jeffrey Smith wrote: > On Mon, 2008-04-21 at 01:54 +0200, Miroslav Lachman wrote: > >>Jeffrey Smith wrote: >> >> >>> I previously posted a howto to use zfs to manage jails. The first >>>update through freebsd-update has been released. Testing this I get >>> >>>(in jail) >>>ldap1#freebsd-update install >>>Installing updates...chflags: ///usr/lib/libssh.a: Operation not >>>supported >>> >>>After this error I enabled chflags in sysctl on the host system >>>#sysctl security.jail.chflags_allowed=1 >>> >>>This did not not work in fixing the issue >>>after reading the freebsd-update man page I thought this should be >>>possible >>> >>>#freebsd-update -b /jails/ldap1/ -d /jails/ldap1/var/db/freebsd-update/ >>>\ install >>>Installing updates...chflags: /jails/ldap1///usr/lib/libssh.a: Operation >>>not supported >>> >>>But I still get that same error. Does anyone have any idea what would >>>keep this from working? If there is a way to update the host and all >>>subsequent jails vi the host that would be great, as i would prefer not >>>to allow chflags from within the jails. >> >>Can you tell me your FreeBSD version? >>I am convinced that I did freebsd-update inside Jail on FreeBSD 6.2, but >>I am not 100% sure and did not test it on FreeBSD 7. >>Are you trying update (minor security updates) or upgrade to newer >>release version? Maybe I was in luck, that my update routine did not >>change any chflagged files. >> >>Miroslav Lachman > > > FreeBSD xxxxx.yyyyyyy.com 7.0-RELEASE FreeBSD 7.0-RELEASE #0: Sun > Feb 24 10:35:36 UTC 2008 > root@driscoll.cse.buffalo.edu:/usr/obj/usr/src/sys/GENERIC amd64 Hmmm... can you show your `mount` output? Do you have jails on NFS exported fs, or plain ufs? As a quick & dirty hack, you can try sysinstall batch: sysinstall _ftpPath=ftp://ftp.FreeBSD.org/pub/FreeBSD/ nonInteractive=yes mediaSetFTP releaseName=7.0-RELEASE dists=base distSetCustom installRoot=/jails/ldap1/ installCommit or better tuned sysinstall command to not install new base, but do binary upgrade. [add function "installUpgrade" in to sysinstall command] (I did not tried this way, so let me know if it works for you) Miroslav Lachman