There are additional nits regarding jail(8) that chroot(8) does not have the same limitations. Setting/unsetting the immutable flag on something like /sbin/init, for example, comes to mind. Glen On Tue, Apr 24, 2018 at 11:49:46AM +0100, krad wrote:> wouldn't it just be easier to do this in a jail, and then all of these > little bits would be taken care of? > > On 24 April 2018 at 01:48, O'Connor, Daniel <darius at dons.net.au> wrote: > > > > > > > > On 24 Apr 2018, at 08:14, Glen Barber <gjb at FreeBSD.org> wrote: > > > I think you might not have the devfs mount in the image. With the paths > > > provided above, I think this should fix it: > > > > > > # mount -t devfs devfs /mnt/dev > > > > I wonder if it's worth doing a basic sanity check that /dev/null and > > /dev/zero look like device nodes. > > > > I've made this mistake too and it produces some very confusing error > > messages :( > > > > -- > > Daniel O'Connor > > "The nice thing about standards is that there > > are so many of them to choose from." > > -- Andrew Tanenbaum > > GPG Fingerprint - 5596 B766 97C0 0E94 4347 295E E593 DC20 7B3F CE8C > > > > _______________________________________________ > > freebsd-stable at freebsd.org mailing list > > https://lists.freebsd.org/mailman/listinfo/freebsd-stable > > To unsubscribe, send any mail to "freebsd-stable-unsubscribe at freebsd.org" > >-------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 833 bytes Desc: not available URL: <http://lists.freebsd.org/pipermail/freebsd-stable/attachments/20180424/e2682870/attachment.sig>
On 2018-04-24 09:24 AM, Glen Barber wrote:> There are additional nits regarding jail(8) that chroot(8) does not have > the same limitations. Setting/unsetting the immutable flag on something > like /sbin/init, for example, comes to mind.Try allow.chflags in your jail.conf. M.> Glen > > On Tue, Apr 24, 2018 at 11:49:46AM +0100, krad wrote: >> wouldn't it just be easier to do this in a jail, and then all of these >> little bits would be taken care of? >> >> On 24 April 2018 at 01:48, O'Connor, Daniel <darius at dons.net.au> wrote: >> >>> >>> >>>> On 24 Apr 2018, at 08:14, Glen Barber <gjb at FreeBSD.org> wrote: >>>> I think you might not have the devfs mount in the image. With the paths >>>> provided above, I think this should fix it: >>>> >>>> # mount -t devfs devfs /mnt/dev >>> >>> I wonder if it's worth doing a basic sanity check that /dev/null and >>> /dev/zero look like device nodes. >>> >>> I've made this mistake too and it produces some very confusing error >>> messages :( >>> >>> -- >>> Daniel O'Connor >>> "The nice thing about standards is that there >>> are so many of them to choose from." >>> -- Andrew Tanenbaum >>> GPG Fingerprint - 5596 B766 97C0 0E94 4347 295E E593 DC20 7B3F CE8C >>> >>> _______________________________________________ >>> freebsd-stable at freebsd.org mailing list >>> https://lists.freebsd.org/mailman/listinfo/freebsd-stable >>> To unsubscribe, send any mail to "freebsd-stable-unsubscribe at freebsd.org" >>>