Date: Thu, 01 Dec 2022 10:29:25 +0100 From: Alexander Leidinger <Alexander@leidinger.net> To: Alan Somers <asomers@freebsd.org> Cc: Rick Macklem <rick.macklem@gmail.com>, Peter Eriksson <pen@lysator.liu.se>, FreeBSD CURRENT <freebsd-current@freebsd.org>, "Bjoern A. Zeeb" <bz@freebsd.org> Subject: Re: RFC: nfsd in a vnet jail Message-ID: <20221201102925.Horde.uAC-87YyIRDDnqJTmvsFwNm@webmail.leidinger.net> In-Reply-To: <CAOtMX2jtCJgUpwbW7QUxDRYhXVXAyj8LqPYcuT=F-Dz4kS4J-Q@mail.gmail.com> References: <CAM5tNy7CQaBTRWG0m0aN6T0xG2L2zSQJGa%2BatGaH%2BmW%2BwEpdyQ@mail.gmail.com> <CAOtMX2hxeeNMxxdpma8NJ7ms60eRfuCWoFi7FixdSe83=qibkA@mail.gmail.com> <82103A1E-9D39-47B0-9520-205583C8B680@lysator.liu.se> <CAM5tNy71UAOkCQb9upc_OxhM-y5rp9jMKbKTJr619JFCGsfRkg@mail.gmail.com> <CAOtMX2jtCJgUpwbW7QUxDRYhXVXAyj8LqPYcuT=F-Dz4kS4J-Q@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
This message is in MIME format and has been PGP signed. --=_8zfjp1O9e-Bcwxy_G1BIpfD Content-Type: text/plain; charset=utf-8; format=flowed; DelSp=Yes Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Quoting Alan Somers <asomers@freebsd.org> (from Tue, 29 Nov 2022=20=20 17:28:10=20-0700): > On Tue, Nov 29, 2022 at 5:21 PM Rick Macklem <rick.macklem@gmail.com> wro= te: >> So, what do others think of enforcing the requirement that each jail >> have its own file systems for this? > > I think that's a totally reasonable requirement. Especially so for > ZFS users, who already create a filesystem per jail for other reasons. While I agree that it is a reasonable requirement, just a note that we=20= =20 can=20not assume that every existing jail resides on its own file=20=20 system.=20The base system jail infrastructure doesn't check this, and=20=20 the=20ezjail port doesn't either. The iocage port does it. Is there a way to detect this inside a jail and error out in nfsd/mountd? Bye, Alexander. --=20 http://www.Leidinger.net=20Alexander@Leidinger.net: PGP 0x8F31830F9F2772BF http://www.FreeBSD.org netchild@FreeBSD.org : PGP 0x8F31830F9F2772BF --=_8zfjp1O9e-Bcwxy_G1BIpfD Content-Type: application/pgp-signature Content-Description: Digitale PGP-Signatur Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIzBAABCAAdFiEER9UlYXp1PSd08nWXEg2wmwP42IYFAmOIc/QACgkQEg2wmwP4 2IYQnA/5Ab+S8XIx+I74YC57YsrTU6knAzoblmXm7IhLYqBM6Hw4+CHPS4b3X/2I tNkddQpd8vXBofiydmNxa96VGibzfY8NvkgCJ5zLAJKxmST+llSd/BiIdsWC7FbP jpv34aqNXyzv5WNJyoWWkuXYKXx7OzS9T+bZhXPmaLYAkEM4fVKSJDbNqsQN9/4x bDjCSBjaHdeyfXsmxH5HgOdstK+bCp3W+HGirsCfLRryFfZmmnOtXFpSJYk907Pv z0NlKDMg7P/vATlM4vyvmauNMSZCE7KYER5Mj4Q7PYX/m6RnesOU497mK32nnhSk XE9IwopgWy6TAdkI+Nu9sdJowQnsjyWWIcD4fKJYEwLARhi0DOcn1oW2p8Bs+Z96 vSKwRKQV39oiYVumQMvXL7xaaMUPFfh80pT/dEHb0be4c9p7SSFxFmrbdBjjKtNX +kJhjZQL+YOaEmLbH2zv/fS7MZVNNmTOR8pyOCBa0WvvLl5zbDm5o506ypzcVN5j M+zncNsrArR8jLIT4asUywr4v6xKo0ZNSwr9Bcvpxa+38TgMM4jZpdxfqKnsDUbq evyvrve7Sttouawb5VaOGEY8pzNfxERabhZUV8njco9Lu/X16CL3crnpWr76JlSf hZCFXAlbo3C9ilV49kTdMy3Ok1ValyIAtPrGY/OBJf/7XS+yIJA= =E6Uc -----END PGP SIGNATURE----- --=_8zfjp1O9e-Bcwxy_G1BIpfD--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20221201102925.Horde.uAC-87YyIRDDnqJTmvsFwNm>