Add creation of basejail (jail based on template, system in readonly, nullfs binded)

2023-08-06 11:15:49 +02:00
parent 56926f7200
commit a3dd0a7aa2
3 changed files with 140 additions and 37 deletions
--- a/cmd/utils.go
+++ b/cmd/utils.go
@ -790,9 +790,20 @@ func doZfsDatasetExist(dataset string) (bool, error) {
 	return true, nil
 }

-// Create ZFS dataset. mountpoint can be "none", then the dataset won't be mounted
+/* Create ZFS dataset
+ * mountpoint can be "none", then the dataset won't be mounted
+ * mountpoint can be "", then it will be inherited
+ * compression can be "", then it wil be inherited
+ */
 func zfsCreateDataset(dataset, mountpoint, compression string) error {
-	cmd := fmt.Sprintf("zfs create -o mountpoint=%s -o compression=%s %s", mountpoint, compression, dataset)
+	cmd := "zfs create"
+	if len(mountpoint) > 0 {
+		cmd = fmt.Sprintf("%s -o mountpoint=%s", cmd, mountpoint)
+	}
+	if len(compression) > 0 {
+		cmd = fmt.Sprintf("%s -o compression=%s", cmd, compression)
+	}
+	cmd = fmt.Sprintf("%s %s", cmd, dataset)
 	out, err := executeCommand(cmd)
 	if err != nil {
 		return errors.New(fmt.Sprintf("%v; command returned \"%s\"", err, out))
@ -821,6 +832,11 @@ func zfsDestroy(dataset string) error {
 	return nil
 }

+/*****************************************************************************
+ *
+ * Filesystem operations
+ *
+ *****************************************************************************/
 /* Copy file */
 func copyFile(src, dst string) error {
 	srcfinfo, err := os.Stat(src)
@ -845,6 +861,11 @@ func copyFile(src, dst string) error {
 	return err
 }

+// Get permissions of file or folder
+func getPermissions(path string) (os.FileInfo, error) {
+	return os.Stat(path)
+}
+
 /*****************************************************************************
 *
 * rc.conf management