From owner-svn-src-all@freebsd.org Wed Apr 13 23:45:12 2016 Return-Path: Delivered-To: svn-src-all@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id A20EEB0F7DB; Wed, 13 Apr 2016 23:45:12 +0000 (UTC) (envelope-from mjguzik@gmail.com) Received: from mail-wm0-x229.google.com (mail-wm0-x229.google.com [IPv6:2a00:1450:400c:c09::229]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4C8F9177D; Wed, 13 Apr 2016 23:45:12 +0000 (UTC) (envelope-from mjguzik@gmail.com) Received: by mail-wm0-x229.google.com with SMTP id u206so101985345wme.1; Wed, 13 Apr 2016 16:45:12 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=date:from:to:cc:subject:message-id:references:mime-version :content-disposition:in-reply-to:user-agent; bh=Tb5jHd1SdZHXAUZLajiOU9INa6A0xDtW11W+DPCIw9E=; b=P/BTbbRqzSB6gMNUaesutGshu/BWr9sQfvMbr7nHo+uCqZKd2qj66kx0NfEY3OglXA P1lXK5zEBm+5oSAajtQglDxqbtLf1gXZlXhd4fOOFfUNmSeiy9L/bfc7ZPvII2BbIh9z RWoX+Bf0Xx8/kZSTsjnyYoQxek68FPWMVGHzCO/Al5/S+/IZLzv3N9CfbdIETK2nA9vR ZhmLnZGfPPCQTaFjEBas3B+07JU12436Ewi/92Wkv7qr2M6sQEtbIPwYrGyO8r8Mc0tT 3Q9DRKpu19iJO6YHYWNkfujzEwQztBOIiXAXMcTvgl2yW4zO2oQKoL53mInYLSfmTQDR LDNw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:date:from:to:cc:subject:message-id:references :mime-version:content-disposition:in-reply-to:user-agent; bh=Tb5jHd1SdZHXAUZLajiOU9INa6A0xDtW11W+DPCIw9E=; b=jmXZGt2IOSo4vrUAX1nVHzF6qoreg/MzZ+bjlbrWEC17Q6dv01I9ENR6QYnFNWSQxT qVUoBtBZsQqgMSvb5nSnL+CDqSJKtjcd/hSaImRoPOwcMkqHthmE6U+Qj8ROX1HAV0mk sF5jKkyEG39YnVOFGOK57H3sXFMlBwPICGZxAVNm59/tcfn/L4zW6SSN8ZkuGxrZZeyG K9QHZcnKryghf9884uOBAl8+DmpCX+SLjs5zhOQ6PvnQP/OkDkly4i6BuhDvzG2hcHYV swFkqj/wwOWw1EQeXsHnG3M7i9FK2+Y2I5r8DEqmzFiEMb+jjRAMWIysw46fthLT2cJ+ 4JaQ== X-Gm-Message-State: AOPr4FWggoK5Wacpt6sy3YtxGYpYWD2Pq4felO/hqUvPl8ozPZULyZglvRLv63xzfOKwHA== X-Received: by 10.28.141.18 with SMTP id p18mr12703359wmd.57.1460591109676; Wed, 13 Apr 2016 16:45:09 -0700 (PDT) Received: from dft-labs.eu (n1x0n-1-pt.tunnel.tserv5.lon1.ipv6.he.net. [2001:470:1f08:1f7::2]) by smtp.gmail.com with ESMTPSA id cb2sm40963940wjc.16.2016.04.13.16.45.08 (version=TLS1_2 cipher=AES128-SHA bits=128/128); Wed, 13 Apr 2016 16:45:08 -0700 (PDT) Date: Thu, 14 Apr 2016 01:45:06 +0200 From: Mateusz Guzik To: Jamie Gritton Cc: src-committers@freebsd.org, svn-src-all@freebsd.org, svn-src-head@freebsd.org Subject: Re: svn commit: r297935 - head/sys/kern Message-ID: <20160413234506.GA20084@dft-labs.eu> References: <201604132014.u3DKEDHv078627@repo.freebsd.org> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline In-Reply-To: <201604132014.u3DKEDHv078627@repo.freebsd.org> User-Agent: Mutt/1.5.21 (2010-09-15) X-BeenThere: svn-src-all@freebsd.org X-Mailman-Version: 2.1.21 Precedence: list List-Id: "SVN commit messages for the entire src tree \(except for " user" and " projects" \)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 13 Apr 2016 23:45:12 -0000 On Wed, Apr 13, 2016 at 08:14:13PM +0000, Jamie Gritton wrote: > Author: jamie > Date: Wed Apr 13 20:14:13 2016 > New Revision: 297935 > URL: https://svnweb.freebsd.org/changeset/base/297935 > > Log: > Separate POSIX sem/shm objects in jails, by prepending the jail's path > name to the object's "path". While the objects don't have real path > names, it's a filesystem-like namespace, which allows jails to be > kept to their own space, but still allows the system / jail parent to > access a jail's IPC. > What is the reasoning behind this method? Names are not supposed to contain slashes apart from the initial one, so this cuts into the supported length. If slashes were to be permitted, this would create a possible conflict where part of the name is the same as the path of a newly created jail. The standard way would be to provide an entirely separate namespace, if requested, and keep things the same otherwise. -- Mateusz Guzik