Use jexec in order to support base jails #278
Conversation
mekanix
force-pushed
the
feature/jexec
branch
from
b3dd54d
to
25ea617
Compare
There was a problem hiding this comment.
Hmm, what is meant by 'support base jails' ?
I mean if there is some problem in 'cbsd jexec' implementation it might be better to fix it there, in upstream.
Because the /usr/sbin/jexec does not take into account:
a) FreeBSD or Linux jail
b) RCTL/NICE settings for jail
c) (it is very important) FIB for jail
all these things are taken into account by 'cbsd jexec'
|
@mekanix can you write how to use puppet provider?. Most likely there is quite a lot of dubbing with 'cbsd forms' and puppet-based templates/images, just want to compare |
|
I started work on support jail.conf. As it's only the beginning, I can probably do better job with jexec. The idea is to have multiple backends where jail.conf (base jail) and cbsd are currently supported. My guess is that in the future I will need wrapper for jexec that will do the right thing based on the backend. My plan for puppet and other provisioners is to test them with both backends and see what's the fallout and fix it. I know shell and ansible are working right now, next to test is salt as I use it @ work and then move on to others. |
|
@mekanix As for Puppet, i will try to make a demo how it works for me. I tried to describe it in detail here, but I don't think anyone understands ;-) So I need a real demo. I think this is one of the things that is done right and very {use,power}ful ;-) |
No description provided.