Date: Wed, 10 Feb 2016 14:13:50 -0600 From: Mark Felder <feld@FreeBSD.org> To: Matteo Riondato <matteo@FreeBSD.org>, Ronald Klop <ronald-lists@klop.ws> Cc: svn-src-head@freebsd.org, svn-src-all@freebsd.org, src-committers@freebsd.org Subject: Re: svn commit: r295471 - in head/etc: defaults rc.d Message-ID: <1455135230.94915.517674594.46214C39@webmail.messagingengine.com> In-Reply-To: <0CAF4F00-7711-4F0F-8487-0B17381940F2@FreeBSD.org> References: <201602101613.u1AGDx0I003885@repo.freebsd.org> <op.ycmm2qq8kndu52@53555a16.cm-6-6b.dynamic.ziggo.nl> <0CAF4F00-7711-4F0F-8487-0B17381940F2@FreeBSD.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Feb 10, 2016, at 11:28, Matteo Riondato wrote: >=20 > > On Feb 10, 2016, at 12:04 PM, Ronald Klop <ronald-lists@klop.ws> wrote: > >=20 > > On Wed, 10 Feb 2016 17:13:59 +0100, Mark Felder <feld@freebsd.org> wrot= e: > >=20 > >> Author: feld (ports committer) > >> Date: Wed Feb 10 16:13:59 2016 > >> New Revision: 295471 > >> URL: https://svnweb.freebsd.org/changeset/base/295471 > >>=20 > >> Log: > >> Add new rc.conf parameter "jail_reverse_stop" > >> When a user defines "jail_list" in rc.conf the jails are started in the > >> order defined. Currently the jails are not are stopped in reverse ord= er > >> which may break dependencies between jails/services and prevent a cle= an > >> shutdown. The new parameter "jail_reverse_stop" will shutdown jails in > >> "jail_list" in reverse order when set to "YES". > >> Please note that this does not affect manual invocation of the jail rc > >> script. If a user runs the command > >> # service jail stop jail1 jail2 jail3 > >> the jails will be stopped in exactly the order specified regardless of > >> jail_reverse_stop being defined in rc.conf. > >> PR: 196152 > >=20 > > Good feature. I know POLA is always very important in FreeBSD developme= nt, but having this setting on by default seems very reasonable to me. >=20 > +1, perhaps with a note in UPDATING and, when MFC=E2=80=99ed, having the = default > to off. >=20 I also agree it's probably fine to be enabled by default in CURRENT, but the last thing I wanted to do was throw an unexpected wrench into the next cluster refresh and make Pete even more Evil. --=20 Mark Felder ports-secteam member feld@FreeBSD.org
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1455135230.94915.517674594.46214C39>