From owner-freebsd-arch@FreeBSD.ORG Wed Jun 7 13:32:21 2006 Return-Path: X-Original-To: freebsd-arch@freebsd.org Delivered-To: freebsd-arch@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5054616BC4D; Wed, 7 Jun 2006 12:45:19 +0000 (UTC) (envelope-from jhb@freebsd.org) Received: from server.baldwin.cx (66-23-211-162.clients.speedfactory.net [66.23.211.162]) by mx1.FreeBSD.org (Postfix) with ESMTP id C7C0543D53; Wed, 7 Jun 2006 12:45:17 +0000 (GMT) (envelope-from jhb@freebsd.org) Received: from localhost.corp.yahoo.com (john@localhost [127.0.0.1]) (authenticated bits=0) by server.baldwin.cx (8.13.4/8.13.4) with ESMTP id k57CjAbV068753; Wed, 7 Jun 2006 08:45:13 -0400 (EDT) (envelope-from jhb@freebsd.org) From: John Baldwin To: freebsd-arch@freebsd.org Date: Wed, 7 Jun 2006 08:19:03 -0400 User-Agent: KMail/1.9.1 References: <1149610678.4074.42.camel@berloga.shadowland> <448633F2.7030902@elischer.org> <20060607095824.W53690@fledge.watson.org> In-Reply-To: <20060607095824.W53690@fledge.watson.org> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200606070819.04301.jhb@freebsd.org> X-Greylist: Sender succeeded SMTP AUTH authentication, not delayed by milter-greylist-2.0.2 (server.baldwin.cx [127.0.0.1]); Wed, 07 Jun 2006 08:45:13 -0400 (EDT) X-Virus-Scanned: ClamAV 0.87.1/1517/Tue Jun 6 20:05:07 2006 on server.baldwin.cx X-Virus-Status: Clean X-Spam-Status: No, score=-4.4 required=4.2 tests=ALL_TRUSTED,BAYES_00 autolearn=ham version=3.1.0 X-Spam-Checker-Version: SpamAssassin 3.1.0 (2005-09-13) on server.baldwin.cx Cc: Alex Lyashkov , Robert Watson , Julian Elischer Subject: Re: jail extensions X-BeenThere: freebsd-arch@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Discussion related to FreeBSD architecture List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 07 Jun 2006 13:32:29 -0000 On Wednesday 07 June 2006 04:59, Robert Watson wrote: > > On Wed, 7 Jun 2006, Julian Elischer wrote: > > >> I'd like to clarify Alex's point a bit: he wants to know his work is > >> acceptable by the project and could be merged. It's obvious it's almost > >> impossible to maintain that outside of the tree. > >> > > I'd like to see him merge his project with Marco's . If so then I'd be more > > than happy to see this stuff come in once it reaches a certain level of > > maturity. > > > > Marco and I have been going over some possible macros that could be used to > > help with a lot of this and if the macros were used then some of the changes > > could come in quite early as they would compile out to NOPs for anyone not > > using the changes. ( and provide an easy target for removal if it eventually > > doesn't complete). > > FYI, Marko was at the FreeBSD developer summit at BSDCan, and has expressed > the intent of updating his patches to 6.x/HEAD, so I think there's definitely > room for collaboration here. What did you think about Alex's idea of a 'prison0' to for all "non-jailed" processes so that lots of things can move into 'struct prison' and not require as much special casing (though then there would be a different set of special cases I guess as prison0 would be the only prison that could create child prisons, etc.?) -- John Baldwin