2015-05-06 14:54:47 +05:30
|
|
|
.Dd May 6, 2014
|
2014-09-30 15:06:08 +05:30
|
|
|
.Dt XBPS-UCHROOT 8
|
2014-04-18 13:15:25 +05:30
|
|
|
.Sh NAME
|
|
|
|
.Nm xbps-uchroot
|
|
|
|
.Nd XBPS utility to chroot and bind mount with linux namespaces
|
|
|
|
.Sh SYNOPSYS
|
|
|
|
.Nm xbps-uchroot
|
|
|
|
.Op OPTIONS
|
|
|
|
.Ar CHROOTDIR
|
|
|
|
.Ar COMMAND
|
|
|
|
.Op ARGS
|
|
|
|
.Sh DESCRIPTION
|
|
|
|
The
|
|
|
|
.Nm
|
|
|
|
utility allows users to chroot and bind mount required pseudo-filesystems
|
|
|
|
(/dev, /proc and /sys) in the target
|
|
|
|
.Ar CHROOTDIR
|
|
|
|
to execute
|
|
|
|
.Ar COMMAND .
|
|
|
|
The
|
|
|
|
.Nm
|
|
|
|
utility uses by default Linux namespaces to isolate IPC, PIDs and mounts to
|
|
|
|
the calling process. If running in a OpenVZ container, these namespace features
|
|
|
|
are simply disabled.
|
|
|
|
.Sh OPTIONS
|
|
|
|
.Bl -tag -width -x
|
2015-05-06 14:54:47 +05:30
|
|
|
.It Fl b Ar src:dest
|
|
|
|
Bind mounts
|
|
|
|
.Ar src
|
|
|
|
into
|
|
|
|
.Ar CHROOTDIR/dest .
|
|
|
|
This option may be specified multiple times.
|
|
|
|
Please note that both
|
|
|
|
.Ar src
|
|
|
|
and
|
|
|
|
.Ar dest
|
|
|
|
must be absolute paths and must exist.
|
2015-03-26 07:45:17 +05:30
|
|
|
.It Fl O
|
2015-04-27 21:20:46 +05:30
|
|
|
Setups a temporary directory and then creates an overlay layer (via overlayfs)
|
|
|
|
with the lowerdir set to CHROOTDIR. Useful to create a temporary tree that does not
|
|
|
|
preserve changes in CHROOTDIR.
|
2015-04-21 00:14:42 +05:30
|
|
|
.It Fl o Ar opts
|
|
|
|
Arguments passed to the tmpfs mount, if the
|
|
|
|
.Fl O
|
2015-04-27 21:20:46 +05:30
|
|
|
and
|
|
|
|
.Fl t
|
|
|
|
options are specified.
|
2015-04-21 00:14:42 +05:30
|
|
|
This expects the same arguments that are accepted as options in tmpfs, as explained in
|
|
|
|
.Xr mount 8 .
|
2015-04-27 21:20:46 +05:30
|
|
|
.It Fl t
|
|
|
|
This makes the temporary directory to be mounted in tmpfs, so that everything is stored
|
|
|
|
in RAM. Note that this is only useful if used with the
|
|
|
|
.Fl O
|
|
|
|
option (overlayfs).
|
2014-08-23 12:50:07 +05:30
|
|
|
.El
|
2014-04-18 13:15:25 +05:30
|
|
|
.Sh SECURITY
|
|
|
|
The
|
|
|
|
.Nm
|
|
|
|
executable must be setgid to function properly and shall only be executable by a specific
|
|
|
|
group to avoid security issues (4750).
|
|
|
|
.Sh NOTES
|
|
|
|
The
|
|
|
|
.Nm
|
|
|
|
utility uses Linux specific features (namespaces) and it's not meant to be portable to
|
2014-08-23 12:50:07 +05:30
|
|
|
other Operating Systems. The following kernel options must be enabled:
|
|
|
|
.Pp
|
2014-09-30 15:06:08 +05:30
|
|
|
.Bl -tag -width CONFIG_NAMESPACES -compact -offset indent
|
2014-08-23 12:50:07 +05:30
|
|
|
.It Sy CONFIG_NAMESPACES
|
|
|
|
.It Sy CONFIG_IPC_NS
|
|
|
|
.It Sy CONFIG_PID_NS
|
2015-03-26 07:45:17 +05:30
|
|
|
.It Sy CONFIG_UTS_NS
|
|
|
|
.It Sy CONFIG_OVERLAY_FS
|
2014-08-23 12:50:07 +05:30
|
|
|
.El
|
2014-04-18 13:15:25 +05:30
|
|
|
.Sh SEE ALSO
|
2014-12-09 16:11:35 +05:30
|
|
|
.Xr xbps.d 5 ,
|
2014-04-18 13:15:25 +05:30
|
|
|
.Xr xbps-checkvers 8 ,
|
|
|
|
.Xr xbps-create 8 ,
|
|
|
|
.Xr xbps-dgraph 8 ,
|
|
|
|
.Xr xbps-install 8 ,
|
|
|
|
.Xr xbps-pkgdb 8 ,
|
|
|
|
.Xr xbps-query 8 ,
|
|
|
|
.Xr xbps-reconfigure 8 ,
|
|
|
|
.Xr xbps-rindex 8
|
|
|
|
.Sh AUTHORS
|
|
|
|
.An Juan Romero Pardines <xtraeme@gmail.com>
|
|
|
|
.Sh BUGS
|
|
|
|
Probably, but I try to make this not happen. Use it under your own
|
|
|
|
responsability and enjoy your life.
|
|
|
|
.Pp
|
|
|
|
Report bugs in https://github.com/voidlinux/xbps/issues
|