Date: Sun, 29 Oct 2000 11:25:39 -0800 (PST) From: Robert Watson <rwatson@FreeBSD.org> To: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: cvs commit: src/sys/kern kern_jail.c uipc_socket.c src/sys/sys jail.h Message-ID: <200010291925.LAA56985@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
rwatson 2000/10/29 11:25:39 PST
Modified files: (Branch: RELENG_4)
sys/kern kern_jail.c uipc_socket.c
sys/sys jail.h
Log:
MFC of jail fixups:
1.7 +9 -2 src/sys/kern/kern_jail.c
1.73 +10 -1 src/sys/kern/uipc_socket.c
1.9 +2 -1 src/sys/sys/jail.h
For reference:
o Modify jail to limit creation of sockets to UNIX domain sockets,
TCP/IP (v4) sockets, and routing sockets. Previously, interaction
with IPv6 was not well-defined, and might be inappropriate for some
environments. Similarly, sysctl MIB entries providing interface
information also give out only addresses from those protocol domains.
For the time being, this functionality is enabled by default, and
toggleable using the sysctl variable jail.socket_unixiproute_only.
In the future, protocol domains will be able to determine whether or
not they are ``jail aware''.
Revision Changes Path
1.6.2.1 +9 -2 src/sys/kern/kern_jail.c
1.68.2.9 +10 -1 src/sys/kern/uipc_socket.c
1.8.2.1 +2 -1 src/sys/sys/jail.h
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200010291925.LAA56985>