From owner-freebsd-arch@FreeBSD.ORG Thu Jun 8 18:10:56 2006 Return-Path: X-Original-To: freebsd-arch@freebsd.org Delivered-To: freebsd-arch@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 19F2216FE77; Thu, 8 Jun 2006 17:11:44 +0000 (UTC) (envelope-from shadow@psoft.net) Received: from mail.sevcity.net (ns.sevcity.net [193.47.166.213]) by mx1.FreeBSD.org (Postfix) with ESMTP id 568C343D49; Thu, 8 Jun 2006 17:11:34 +0000 (GMT) (envelope-from shadow@psoft.net) Received: from mail.sevcity.net (service.sevcity [127.0.0.1]) by mail.sevcity.net (Postfix) with ESMTP id 3885117000F; Thu, 8 Jun 2006 20:13:02 +0300 (EEST) Received: from berloga.shadowland (umka.sevcity.net [193.47.166.138]) by mail.sevcity.net (Postfix) with ESMTP id C04F6170007; Thu, 8 Jun 2006 20:13:01 +0300 (EEST) Received: from berloga.shadowland (berloga.shadowland [127.0.0.1]) by berloga.shadowland (8.12.11.20060308/8.12.11) with ESMTP id k58HBc0t024118; Thu, 8 Jun 2006 20:11:38 +0300 Received: (from root@localhost) by berloga.shadowland (8.12.11.20060308/8.12.11/Submit) id k58HBbTE024116; Thu, 8 Jun 2006 20:11:37 +0300 From: Alex Lyashkov To: Julian Elischer In-Reply-To: <1149757290.3222.44.camel@berloga.shadowland> References: <1149610678.4074.42.camel@berloga.shadowland> <448633F2.7030902@elischer.org> <20060607095824.W53690@fledge.watson.org> <200606070819.04301.jhb@freebsd.org> <4486E41B.4000003@elischer.org> <1149692184.3224.208.camel@berloga.shadowland> <4486EBBD.3090404@elischer.org> <1149757290.3222.44.camel@berloga.shadowland> Content-Type: text/plain Content-Transfer-Encoding: 7bit Organization: Positive Software Message-Id: <1149786697.3222.91.camel@berloga.shadowland> Mime-Version: 1.0 X-Mailer: Ximian Evolution 1.4.5 (1.4.5-17) Date: Thu, 08 Jun 2006 20:11:37 +0300 X-Virus-Scanned: ClamAV using ClamSMTP Cc: Robert Watson , freebsd-arch@freebsd.org Subject: Re: jail extensions X-BeenThere: freebsd-arch@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Discussion related to FreeBSD architecture List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 08 Jun 2006 18:10:59 -0000 > 2) at MOD_LOAD case run loop for each prisons and init private data for > this module at all contexts. At this way module always 'exist' at all > contexts. > and disable module compiling (loading) when module don`t marked jail > safe. example for this way. http://cvs.freevps.com/index.cgi/kernel/include/linux/freevps/s_context_xfrm.h?rev=1.3 http://cvs.freevps.com/index.cgi/kernel/net/ipv4/ah4.c?rev=1.3 ah4_init/ah4_fini functions. -- Alex Lyashkov