mount_nullfs: /var/run/log: must be either a file or directory

Reply: Jonathan Vasquez : "Re: mount_nullfs: /var/run/log: must be either a file or directory"
Reply: Doug Rabson : "Re: mount_nullfs: /var/run/log: must be either a file or directory"
In reply to: {{ref.name}}: "{{ref.subject}}"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: Mina_Galić <freebsd_at_igalic.co>
Date: Fri, 07 Jul 2023 12:10:44 UTC

Hi folks,

"recently", we added support for null-mounting single files:

https://freshbsd.org/freebsd/src/commit/521fbb722c33663cf00a83bca70ad7cb790687b3

This code restricts the mountable … thing to:

	if ((lowerrootvp->v_type != VDIR && lowerrootvp->v_type != VREG) || …


As the author of the abandoned https://reviews.freebsd.org/D27411
which attempted to add facility to syslog's rc to provide (selected)
jails with a log socket, it was pointed out to me that this is a big
security risk: https://reviews.freebsd.org/D27411#882100

so I was wondering if null mounts are the same kind of security
hazard, or if not allowing sockets is just the oversight of a
first approximation of this patch?

Kind regards,
Mina Galić

Try PkgBase: https://alpha.pkgbase.live/