Am 2023-09-27 12:57, schrieb Guido Falsi:
On 27/09/23 12:54, Alexander Leidinger wrote:Am 2023-09-27 10:56, schrieb Charlie Li:In poudriere, apart from the fetch phase, network access is not allowed by default so spawning a server that listens on an IP that does not necessarily exist that clients, individual compiler invocations, talk to isn't tenable. At the very least, one would need to architect and implement Unix domain socket support there, which they are happy to consider.How is poudriere preventing network access outside the fetch phase?two (undocumented) guesses: - removing interfaces (including lo0)
Then the sccache cache directory shouldn't contain files in my test.
- no routing
Then the localhost connection still works and sccache should work (which would match my empirical test results).
Bye, Alexander. -- http://www.Leidinger.net alexan...@leidinger.net: PGP 0x8F31830F9F2772BF http://www.FreeBSD.org netch...@freebsd.org : PGP 0x8F31830F9F2772BF
signature.asc
Description: OpenPGP digital signature
