From d4b4f3b9c356938de6140ccea20d502d207b18a7 Mon Sep 17 00:00:00 2001
From: Rick Macklem <rmacklem@FreeBSD.org>
Date: Sat, 17 Dec 2022 13:54:33 -0800
Subject: [PATCH] jail.8: Update the man page for allow.nfsd

Commit bba7a2e89602 added "allow.nfsd" to optionally allow
mountd/nfsd to be run inside a vnet prison when the kernel
is built with "options VNET_NFSD".

This patch updates the man page for this change.

This is a content change.

Reviewed by:	jamie, bcr (manpages)
MFC after:	4 months
Differential Revision:	https://reviews.freebsd.org/D37665
---
 usr.sbin/jail/jail.8 | 15 ++++++++++++++-
 1 file changed, 14 insertions(+), 1 deletion(-)

diff --git a/usr.sbin/jail/jail.8 b/usr.sbin/jail/jail.8
index c1eee3226593..c9d929b89d4a 100644
--- a/usr.sbin/jail/jail.8
+++ b/usr.sbin/jail/jail.8
@@ -25,7 +25,7 @@
 .\"
 .\" $FreeBSD$
 .\"
-.Dd July 18, 2022
+.Dd December 11, 2022
 .Dt JAIL 8
 .Os
 .Sh NAME
@@ -584,6 +584,19 @@ or
 memory subject to
 .Va security.bsd.unprivileged_mlock
 and resource limits.
+.It Va allow.nfsd
+The
+.Xr mountd 8
+and
+.Xr nfsd 8
+daemons are permitted to run inside a vnet-enabled jail.
+The kernel must have been compiled with the
+.Sy VNET_NFSD option
+and
+.Sy NFSD option
+as well as the
+.Sy VIMAGE option
+for this to be available.
 .It Va allow.reserved_ports
 The jail root may bind to ports lower than 1024.
 .It Va allow.unprivileged_proc_debug