From owner-cvs-all@FreeBSD.ORG  Thu Apr 10 00:28:07 2003
Return-Path: <owner-cvs-all@FreeBSD.ORG>
Delivered-To: cvs-all@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP
	id 0DB2737B401; Thu, 10 Apr 2003 00:28:07 -0700 (PDT)
Received: from HAL9000.homeunix.com (12-233-57-131.client.attbi.com
	[12.233.57.131])	by mx1.FreeBSD.org (Postfix) with ESMTP
	id E1EF343F93; Thu, 10 Apr 2003 00:28:05 -0700 (PDT)
	(envelope-from das@FreeBSD.ORG)
Received: from HAL9000.homeunix.com (localhost [127.0.0.1])
	by HAL9000.homeunix.com (8.12.9/8.12.5) with ESMTP id h3A7S4Dt002146;
	Thu, 10 Apr 2003 00:28:04 -0700 (PDT)
	(envelope-from das@FreeBSD.ORG)
Received: (from das@localhost)
	by HAL9000.homeunix.com (8.12.9/8.12.5/Submit) id h3A7S4fg002145;
	Thu, 10 Apr 2003 00:28:04 -0700 (PDT)
	(envelope-from das@FreeBSD.ORG)
Date: Thu, 10 Apr 2003 00:28:04 -0700
From: David Schultz <das@FreeBSD.ORG>
To: Alfred Perlstein <bright@mu.org>
Message-ID: <20030410072804.GA2084@HAL9000.homeunix.com>
Mail-Followup-To: Alfred Perlstein <bright@mu.org>,
	Robert Watson <rwatson@freebsd.org>,
	Pawel Jakub Dawidek <nick@garage.freebsd.pl>,
	Mike Barcroft <mike@freebsd.org>, src-committers@freebsd.org,
	cvs-src@freebsd.org, cvs-all@freebsd.org
References: <20030409230425.GB1280@garage.freebsd.pl>
	<Pine.NEB.3.96L.1030409191320.31027B-100000@fledge.watson.org>
	<20030409233505.GH30960@elvis.mu.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20030409233505.GH30960@elvis.mu.org>
cc: Pawel Jakub Dawidek <nick@garage.freebsd.pl>
cc: src-committers@FreeBSD.ORG
cc: Robert Watson <rwatson@FreeBSD.ORG>
cc: cvs-src@FreeBSD.ORG
cc: cvs-all@FreeBSD.ORG
cc: Mike Barcroft <mike@FreeBSD.ORG>
Subject: Re: cvs commit: src/usr.bin/killall killall.1 killall.c
	src/usr.sbin Makefile src/usr.sbin/jail jail.8 jail.c
	src/usr.sbin/jexec Makefile jexec.8 jexec.c src/usr.sbin/jls
	Makefile jls.8 jls.c
X-BeenThere: cvs-all@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: CVS commit messages for the entire tree <cvs-all.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-all>,
	<mailto:cvs-all-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/cvs-all>
List-Post: <mailto:cvs-all@freebsd.org>
List-Help: <mailto:cvs-all-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-all>,
	<mailto:cvs-all-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 10 Apr 2003 07:28:07 -0000

On Wed, Apr 09, 2003, Alfred Perlstein wrote:
> * Robert Watson <rwatson@FreeBSD.org> [030409 16:24] wrote:
> > 
> > On Thu, 10 Apr 2003, Pawel Jakub Dawidek wrote:
> > > 
> > > And there can't be names spoofing. (If, ofcourse '.' is invalid char in
> > > jail name:)). 
> > 
> > Sounds reasonable to me, although a bit more trouble to parse and render
> > :-).
> 
> And what kind of path seperator is '.'?

Well *someone* has never seen TOPS 20.  ;-)

FWIW, I've implemented a similar system of hierarchical protection
boundaries before, and I wound up doing the parsing in userland
and passing an array of integers to the kernel.  (I limited the
depth to 8, which is kludgy but sufficient in practice.)  For what
I was doing race conditions were not an issue, but they might be
problematic here.