jail: mount /lib/config into netifd jail

aparcar · dangowrt · commit cd7a4e5f8b8e · 2026-03-24T23:48:23.000Z
The DHCP and DHCPv6 protocol scripts in netifd source
/lib/config/uci.sh during initialization. Without /lib/config/uci.sh
bind-mounted into the jail, the netifd instance running inside
a container's network namespace fails to start the DHCP client:

  ./dhcp.sh: .: line 8: can't open '/lib/config/uci.sh'
  ./dhcpv6.sh: .: line 5: can't open '/lib/config/uci.sh'

Add /lib/config/uci.sh to the jail netifd mount list alongside the
existing /lib/functions and /lib/functions.sh entries.

Signed-off-by: Paul Spooren &lt;mail@aparcar.org&gt;
Signed-off-by: Daniel Golle &lt;daniel@makrotopia.org&gt;
diff --git a/jail/netifd.c b/jail/netifd.c
@@ -266,6 +266,7 @@ static void run_netifd(struct uloop_timeout *t)
 	blobmsg_add_string(&req, "/bin/kill", "0");
 	blobmsg_add_string(&req, "/bin/ubus", "0");
 	blobmsg_add_string(&req, "/etc/hotplug.d", "0");
+	blobmsg_add_string(&req, "/lib/config/uci.sh", "0");
 	blobmsg_add_string(&req, "/lib/functions", "0");
 	blobmsg_add_string(&req, "/lib/functions.sh", "0");
 	blobmsg_add_string(&req, "/lib/netifd", "0");
