From owner-freebsd-arch@FreeBSD.ORG Wed Jun 25 06:51:12 2003 Return-Path: Delivered-To: freebsd-arch@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2CCF037B401 for ; Wed, 25 Jun 2003 06:51:12 -0700 (PDT) Received: from demos.su (mx.demos.su [194.87.0.32]) by mx1.FreeBSD.org (Postfix) with ESMTP id 289B543FE0 for ; Wed, 25 Jun 2003 06:51:10 -0700 (PDT) (envelope-from mitya@fling-wing.demos.su) Received: from [194.87.5.69] (HELO fling-wing.demos.su) by demos.su (CommuniGate Pro SMTP 4.1b7/D) with ESMTP-TLS id 78031086; Wed, 25 Jun 2003 17:51:08 +0400 Received: from fling-wing.demos.su (localhost [127.0.0.1]) by fling-wing.demos.su (8.12.9/8.12.6) with ESMTP id h5PDp75R021556; Wed, 25 Jun 2003 17:51:07 +0400 (MSD) (envelope-from mitya@fling-wing.demos.su) Received: (from mitya@localhost) by fling-wing.demos.su (8.12.9/8.12.6/Submit) id h5PDp7qk021555; Wed, 25 Jun 2003 17:51:07 +0400 (MSD) Date: Wed, 25 Jun 2003 17:51:06 +0400 From: Dmitry Sivachenko To: Pawel Jakub Dawidek Message-ID: <20030625135106.GA19868@fling-wing.demos.su> References: <20030624164602.GW7587@garage.freebsd.pl> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="qMm9M+Fa2AknHoGS" Content-Disposition: inline In-Reply-To: <20030624164602.GW7587@garage.freebsd.pl> WWW-Home-Page: http://mitya.pp.ru/ X-PGP-Key: http://mitya.pp.ru/mitya.asc User-Agent: Mutt/1.5.4i cc: freebsd-arch@freebsd.org Subject: Re: Jailed sysvipc implementation. X-BeenThere: freebsd-arch@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Discussion related to FreeBSD architecture List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 25 Jun 2003 13:51:12 -0000 --qMm9M+Fa2AknHoGS Content-Type: text/plain; charset=koi8-r Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Tue, Jun 24, 2003 at 06:46:02PM +0200, Pawel Jakub Dawidek wrote: > Hello. >=20 > Some time ago I've implemented private memory zones for IPC mechism. > Every jail and main host got its own memory for IPC operations. > It was implemented for FreeBSD 4.x. Avaliable at: >=20 > http://garage.freebsd.pl/privipc.tbz > http://garage.freebsd.pl/privipc.README I think it would be better to add checks to disallow the use of IPC=20 primitives created in one jail from another. Thus we will avoid allocating separate segments of kernel memory for each jail. It could be trivially achieved by adding another field to struct ipc_perm, but Robert Watson said he knows another way of doing this without breaking ABI (if I understood him right). --qMm9M+Fa2AknHoGS Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (FreeBSD) iD8DBQE++ajKEZSZYxPV34ARAniHAKCkNLYNkLMuWU+n/Sby90GP1KnbQwCggzHx /95lgkqTkgDcO2l/GXBmEx0= =R/Ho -----END PGP SIGNATURE----- --qMm9M+Fa2AknHoGS--