### www

doas zfs create -o quota=40G -o canmount=noauto -o mountpoint=/zjails/www/data zroot/zjails/www_data

doas zfs umount /zjails/www

doas zfs rename zroot/zjails/www zroot/zjails/www.old

doas zfs create -o quota=5G -o mountpoint=/zjails/www zroot/zjails/www

doas chown -R dsx /zjails/www

sjail /zjails/www init

vim -o /zjails/www/usr/local/etc/pkg/repos/sjail*.conf

sjail /zjails/www chroot /usr/sbin/syslogd

sjail /zjails/www pkg install mohawk hitch

doas jail -c www

doas zfs set canmount=noauto zroot/zjails/www.old


### jail.conf

...
$jails_conf = "/etc/rc.conf.d/jails";
$jails_data = "zroot/zjails/${name}_data";
...

www {
        # zfs create -o quota=5G -o mountpoint=/zjails/www zroot/zjails/www
        # zfs create -o quota=40G -o canmount=noauto -o mountpoint=/zjails/www/data zroot/zjails/www_data
        ip4 = inherit;
        ip6 = inherit;
        exec.prestart += "install -o root -g wheel -m 644 /etc/resolv.conf $path/etc/";
        exec.prestart += "install -o root -g wheel -m 444 $jails_conf/$name/*.conf $path/etc/";
        exec.prestart += "install -o root -g wheel -m 444 $jails_conf/bsdsx.fr.key $path/etc/hitch.pem";
        exec.prestart += "cat $jails_conf/fullchain.cer $jails_conf/dhparam.conf >> $path/etc/hitch.pem";
        exec.prestart += "chown -R 813 $path/var/cache/hitch";
        exec.prestart += "zfs mount $jails_data";
        exec.prestart += "install -d -o root -g wheel -m 444 $path/data/empty";
        exec.prestart += "printf '%s/var/log/syslog  root:wheel  640  15  *  @T00  -  %s/var/run/syslog.pid\n' $path $path > /usr/local/etc/newsyslog.conf.d/$name.conf";
        exec.start += "/usr/local/sbin/mohawk -c /etc/mohawk.conf";
        exec.start += "/usr/local/sbin/hitch --config=/etc/hitch.conf";
        exec.poststop += "rm -f /usr/local/etc/newsyslog.conf.d/$name.conf";
        exec.release += "zfs umount $jails_data";
}