system/freebsd-src
system/freebsd-src
1
0
Fork 0
mirror of https://github.com/freebsd/freebsd-src synced 2024-09-23 02:04:46 +00:00
Code Issues Packages Projects Releases Wiki Activity

Allow a jail to be started with a specific route fib.

Browse source 
Reviewed by:	secteam (simon)
Reviewed by:	brooks, bz
This commit is contained in:
Andrew Thompson 2008-09-16 20:18:25 +00:00
parent 4d423c805b
commit 51e1463035
Notes: svn2git 2020-12-20 02:59:44 +00:00 
svn path=/head/; revision=183100
3 changed files with 15 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
etc/defaults/rc.conf
View file

@ -621,6 +621,7 @@ jail_sysvipc_allow="NO" # Allow SystemV IPC use from within a jail
#jail_example_hostname="default.domain.com" # Jail's hostname #jail_example_hostname="default.domain.com" # Jail's hostname
#jail_example_ip="192.168.0.10" # Jail's IP number #jail_example_ip="192.168.0.10" # Jail's IP number
#jail_example_interface="" # Interface to create the IP alias on #jail_example_interface="" # Interface to create the IP alias on
#jail_example_fib="0" # routing table for setfib(1)
#jail_example_exec_start="/bin/sh /etc/rc" # command to execute in jail for starting #jail_example_exec_start="/bin/sh /etc/rc" # command to execute in jail for starting
#jail_example_exec_afterstart0="/bin/sh command" # command to execute after the one for #jail_example_exec_afterstart0="/bin/sh command" # command to execute after the one for
# starting the jail. More than one can be # starting the jail. More than one can be

9
etc/rc.d/jail
View file

@ -83,6 +83,7 @@ init_variables()
[ -z "${_flags}" ] && _flags="-l -U root" [ -z "${_flags}" ] && _flags="-l -U root"
eval _consolelog=\"\${jail_${_j}_consolelog:-${jail_consolelog}}\" eval _consolelog=\"\${jail_${_j}_consolelog:-${jail_consolelog}}\"
[ -z "${_consolelog}" ] && _consolelog="/var/log/jail_${_j}_console.log" [ -z "${_consolelog}" ] && _consolelog="/var/log/jail_${_j}_console.log"
eval _fib=\"\${jail_${_j}_fib:-${jail_fib}}\"
# Debugging aid # Debugging aid
# #
@ -93,6 +94,7 @@ init_variables()
debug "$_j hostname: $_hostname" debug "$_j hostname: $_hostname"
debug "$_j ip: $_ip" debug "$_j ip: $_ip"
debug "$_j interface: $_interface" debug "$_j interface: $_interface"
debug "$_j fib: $_fib"
debug "$_j root: $_rootdir" debug "$_j root: $_rootdir"
debug "$_j devdir: $_devdir" debug "$_j devdir: $_devdir"
debug "$_j fdescdir: $_fdescdir" debug "$_j fdescdir: $_fdescdir"
@ -297,6 +299,11 @@ jail_start()
if [ -n "${_interface}" ]; then if [ -n "${_interface}" ]; then
ifconfig ${_interface} alias ${_ip} netmask 255.255.255.255 ifconfig ${_interface} alias ${_ip} netmask 255.255.255.255
fi fi
if [ -n "${_fib}" ]; then
_setfib="setfib -F '${_fib}'"
else
_setfib=""
fi
if checkyesno _mount; then if checkyesno _mount; then
info "Mounting fstab for jail ${_jail} (${_fstab})" info "Mounting fstab for jail ${_jail} (${_fstab})"
if [ ! -f "${_fstab}" ]; then if [ ! -f "${_fstab}" ]; then
@ -350,7 +357,7 @@ jail_start()
fi fi
fi fi
_tmp_jail=${_tmp_dir}/jail.$$ _tmp_jail=${_tmp_dir}/jail.$$
eval jail ${_flags} -i ${_rootdir} ${_hostname} \ eval ${_setfib} jail ${_flags} -i ${_rootdir} ${_hostname} \
${_ip} ${_exec_start} > ${_tmp_jail} 2>&1 ${_ip} ${_exec_start} > ${_tmp_jail} 2>&1
if [ "$?" -eq 0 ] ; then if [ "$?" -eq 0 ] ; then

7
share/man/man5/rc.conf.5
View file

@ -24,7 +24,7 @@
.\" .\"
.\" $FreeBSD$ .\" $FreeBSD$
.\" .\"
.Dd June 21, 2008 .Dd September 16, 2008
.Dt RC.CONF 5 .Dt RC.CONF 5
.Os .Os
.Sh NAME .Sh NAME
@ -3450,6 +3450,11 @@ These are flags to pass to
Unset by default. Unset by default.
When set, sets the interface to use when setting IP address alias. When set, sets the interface to use when setting IP address alias.
Note that the alias is created at jail startup and removed at jail shutdown. Note that the alias is created at jail startup and removed at jail shutdown.
.It Va jail_ Ns Ao Ar jname Ac Ns Va _fib
.Pq Vt str
Unset by default.
When set, the jail is started with the specified routing table via
.Xr setfib 1 .
.It Va jail_ Ns Ao Ar jname Ac Ns Va _fstab .It Va jail_ Ns Ao Ar jname Ac Ns Va _fstab
.Pq Vt str .Pq Vt str
Set to Set to