devfs.rules: Correctly unhide pf in vnet jails
ClosedPublic
Actions

Authored by zlei on Nov 3 2021, 10:02 AM.

Details

Reviewers

kp
bz

Group Reviewers

network

Commits

rGeaab06d53dfa: devfs.rules: Correctly unhide pf in vnet jails
rG7acd322ebe20: devfs.rules: Correctly unhide pf in vnet jails

Summary

The revision D26537 introduced a new devfs rule devfsrules_jail_vnet. It includes rule devfsrules_jail which include other rules. Unfortunately devfs could not recursively parse the action include and thus devfsrules_jail_vnet will expose all nodes.

Obtained from: Gijs Peskens <gijs@peskens.net>
PR: 255660

Test Plan

service devfs restart
mount -t devfs devfs /tmp/dev
devfs -m /tmp/dev rule -s 5 applyset

and manually verify mount point.

Diff Detail

Repository

rG FreeBSD src repository

Lint

Lint Skipped

Unit

Tests Skipped

Event Timeline

zlei created this revision.Nov 3 2021, 10:02 AM

Herald added a subscriber: imp. · View Herald TranscriptNov 3 2021, 10:02 AM

zlei requested review of this revision.Nov 3 2021, 10:02 AM

kp accepted this revision as: kp.Nov 3 2021, 12:49 PM

This revision is now accepted and ready to land.Nov 3 2021, 12:49 PM

Closed by commit rG7acd322ebe20: devfs.rules: Correctly unhide pf in vnet jails (authored by zlei, committed by kp). · Explain WhyNov 3 2021, 12:50 PM

This revision was automatically updated to reflect the committed changes.

kp added a commit: rG7acd322ebe20: devfs.rules: Correctly unhide pf in vnet jails.

kp added a commit: rGeaab06d53dfa: devfs.rules: Correctly unhide pf in vnet jails.Nov 24 2021, 4:59 PM

Revision Contents
Changeset List

Path

Size

sbin/

devfs/

devfs.rules

3 lines

Diff 97912

View Options

devfs.rules: Correctly unhide pf in vnet jailsClosedPublicActions