Skip to content

Commit cd7a4e5

Browse files
aparcardangowrt
authored andcommitted
jail: mount /lib/config into netifd jail
The DHCP and DHCPv6 protocol scripts in netifd source /lib/config/uci.sh during initialization. Without /lib/config/uci.sh bind-mounted into the jail, the netifd instance running inside a container's network namespace fails to start the DHCP client: ./dhcp.sh: .: line 8: can't open '/lib/config/uci.sh' ./dhcpv6.sh: .: line 5: can't open '/lib/config/uci.sh' Add /lib/config/uci.sh to the jail netifd mount list alongside the existing /lib/functions and /lib/functions.sh entries. Signed-off-by: Paul Spooren <mail@aparcar.org> Signed-off-by: Daniel Golle <daniel@makrotopia.org>
1 parent 58eb263 commit cd7a4e5

1 file changed

Lines changed: 1 addition & 0 deletions

File tree

jail/netifd.c

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -266,6 +266,7 @@ static void run_netifd(struct uloop_timeout *t)
266266
blobmsg_add_string(&req, "/bin/kill", "0");
267267
blobmsg_add_string(&req, "/bin/ubus", "0");
268268
blobmsg_add_string(&req, "/etc/hotplug.d", "0");
269+
blobmsg_add_string(&req, "/lib/config/uci.sh", "0");
269270
blobmsg_add_string(&req, "/lib/functions", "0");
270271
blobmsg_add_string(&req, "/lib/functions.sh", "0");
271272
blobmsg_add_string(&req, "/lib/netifd", "0");

0 commit comments

Comments
 (0)