When zfs dataset has jailed=on property, it won't be mounted with

'zfs mount -a' from the main system - this is by design, as mountpoint may be set to dangerous value. This all means, that such file system has to be mounted from within a jail. To make it easier, reorganize rc.d/zfs script so it can be used from within a jail.
svn path=/head/; revision=168956
2007-04-22 20:55:08 +00:00 · 2007-04-22 20:55:08 +00:00 · 4d739c23fd · 2020-12-20 02:59:44 +00:00
commit 4d739c23fd
parent 26ae2b86b6
1 changed files with 34 additions and 3 deletions
--- a/etc/rc.d/zfs
+++ b/etc/rc.d/zfs
@ -5,7 +5,6 @@

 # PROVIDE: zfs
 # REQUIRE: mountcritlocal
-# KEYWORD: nojail

 . /etc/rc.subr

@ -15,7 +14,14 @@ start_cmd="zfs_start"
 stop_cmd="zfs_stop"
 required_modules="zfs"

-zfs_start()
+zfs_start_jail()
+{
+	if [ `$SYSCTL_N security.jail.mount_allowed` -eq 1 ]; then
+		zfs mount -a
+	fi
+}
+
+zfs_start_main()
 {
 	zfs volinit
 	zfs mount -a
@ -34,7 +40,23 @@ zfs_start()
 	done
 }

-zfs_stop()
+zfs_start()
+{
+	if [ `$SYSCTL_N security.jail.jailed` -eq 1 ]; then
+		zfs_start_jail
+	else
+		zfs_start_main
+	fi
+}
+
+zfs_stop_jail()
+{
+	if [ `$SYSCTL_N security.jail.mount_allowed` -eq 1 ]; then
+		zfs unmount -a
+	fi
+}
+
+zfs_stop_main()
 {
 	# Disable swap on ZVOLs with property org.freebsd:swap=on.
 	zfs list -H -o org.freebsd:swap,name -t volume | \
@ -50,5 +72,14 @@ zfs_stop()
 	zfs volfini
 }

+zfs_stop()
+{
+	if [ `$SYSCTL_N security.jail.jailed` -eq 1 ]; then
+		zfs_stop_jail
+	else
+		zfs_stop_main
+	fi
+}
+
 load_rc_config $name
 run_rc_command "$1"