FreeBSD-11 - EZJail - Sharing binary packages across jails

Valeri Galtsev galtsev at kicp.uchicago.edu
Wed Jan 18 17:01:25 UTC 2017 

On Wed, January 18, 2017 9:27 am, James B. Byrne via freebsd-questions wrote:
> I am attempting to discover if it is possible to add a binary package
> to the base system and have that shared by all of the jails hosted
> thereon.

This would grossly depend on how you create jails. If you do it "by the
book", namely, if the base system in nullfs read-only mounted in jails,
then you will have no handle on that via pkg, as all places pkg in all
jails use are imminently rw, that is outside of read-only mounted base.
The only logical way out is to "fiddle with the base", by adding your
custom binaries/libraries/... to base, these, however, will be outside of
where pkg can manage stuff. I'm sure, someone will advise to not mix
anything into base system (which is my feeling too).

My experience, though, is restricted to 10.3 and lover, and to jails built
"by the book".

> However, I can find no clear discussion of this either in
> the man pages or on the EZJail project site.  Nor is there much
> discussion in the FreeBSD Handbook or elsewhere respecting this
> particular subject.
>
> I have empirically determined that simply installing a package on the
> host does not expose it to the jails.  However, it seems to me that
> this must somehow be possible.

No, ideally it should not be. If you build jails "by the book" they have
their own base system (read-only inside jails), and their own read-write
portion individual for each jail. And that is done on purpose. "No one in
jail should be exercising rights and freedoms of free ones" ;-)

Valeri

>
> Is there a reference which discusses this in some detail or has anyone
> here a short précis they can share on how this is done?
>
>
> --
> ***          e-Mail is NOT a SECURE channel          ***
>         Do NOT transmit sensitive data via e-Mail
>  Do NOT open attachments nor follow links sent by e-Mail
>
> James B. Byrne                mailto:ByrneJB at Harte-Lyne.ca
> Harte & Lyne Limited          http://www.harte-lyne.ca
> 9 Brockley Drive              vox: +1 905 561 1241
> Hamilton, Ontario             fax: +1 905 561 0757
> Canada  L8E 3C3
>
> _______________________________________________
> freebsd-questions at freebsd.org mailing list
> https://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to
> "freebsd-questions-unsubscribe at freebsd.org"
>


++++++++++++++++++++++++++++++++++++++++
Valeri Galtsev
Sr System Administrator
Department of Astronomy and Astrophysics
Kavli Institute for Cosmological Physics
University of Chicago
Phone: 773-702-4247
++++++++++++++++++++++++++++++++++++++++

More information about the freebsd-questions mailing list