From owner-freebsd-hackers@FreeBSD.ORG Tue Feb 1 10:40:26 2005 Return-Path: Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B909D16A4CE for ; Tue, 1 Feb 2005 10:40:26 +0000 (GMT) Received: from darkness.comp.waw.pl (darkness.comp.waw.pl [195.117.238.136]) by mx1.FreeBSD.org (Postfix) with ESMTP id 431DB43D31 for ; Tue, 1 Feb 2005 10:40:26 +0000 (GMT) (envelope-from pjd@darkness.comp.waw.pl) Received: by darkness.comp.waw.pl (Postfix, from userid 1009) id B0D35AC976; Tue, 1 Feb 2005 11:40:23 +0100 (CET) Date: Tue, 1 Feb 2005 11:40:23 +0100 From: Pawel Jakub Dawidek To: Justin Hopper Message-ID: <20050201104023.GG1546@darkness.comp.waw.pl> References: <1107178792.613.22.camel@spirit> <1107241984.685.2104.camel@work.gusalmighty.com> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="j2AXaZ4YhVcLc+PQ" Content-Disposition: inline In-Reply-To: <1107241984.685.2104.camel@work.gusalmighty.com> User-Agent: Mutt/1.4.2i X-PGP-Key-URL: http://people.freebsd.org/~pjd/pjd.asc X-OS: FreeBSD 5.2.1-RC2 i386 cc: freebsd-hackers@FreeBSD.org Subject: Re: Idea about "skeleton jail" X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 01 Feb 2005 10:40:26 -0000 --j2AXaZ4YhVcLc+PQ Content-Type: text/plain; charset=iso-8859-2 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Mon, Jan 31, 2005 at 11:13:04PM -0800, Justin Hopper wrote: +> We are considering open sourcing all of our stuff, to contribute back +> what we can to the OS that allowed us to build our entire company. I'd +> really like to see what others have done to make jails more manageable, +> as it seems like there is so much that can be done but not many people +> are working on it. It seems jails have the potential to become an +> incredible way to virtually partition servers, and it would not be that +> hard to implement solid tools for managing them. We have things like +> JID-aware top and tools for automated jail builds, but it would be great +> to work with some FreeBSD heavies to finish up clean development of +> things like jail resource restrictions (CPU,MEM,#PROCS,etc) and perhaps +> a clean and universally useful way to easily configure and launch full +> jail environments. Yes, it would be useful (I mean CPU/MEM/#PROCS limits), but as I understand there are two kinds of opinions about jails. First is that it should be extended and allow to create a real virtual server and second is that it should be light-weight. +> Pawel had some really interesting ideas for jails, but it seems that +> he's too busy to work on them at the moment. Speaking of which, his +> multiple IPs patch for 5.3 is still broken, and I haven't been able to +> find what the problem is =3D( Could you describe the brokeness? I've made some fixes a week or something ago, I just created a patch against HEAD if you want to try it: http://people.freebsd.org/~pjd/patches/jail_2005020101.patch There can still be some remaining issues, but I don't have time for more detailed tests. The thing that can be useful IMHO is possibility to use reboot(8)/shutdown(8), etc. inside a jail, but... I'm unfortunately too busy with other (probably less interesting, but profitable) projects. --=20 Pawel Jakub Dawidek http://www.wheel.pl pjd@FreeBSD.org http://www.FreeBSD.org FreeBSD committer Am I Evil? Yes, I Am! --j2AXaZ4YhVcLc+PQ Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (FreeBSD) iD8DBQFB/1yXForvXbEpPzQRAu46AKDmxJ18VRArmOMDoQ0WvkkNOllewwCfUA44 CAHf/yvTNS5TDST6Zwin/rU= =vpj7 -----END PGP SIGNATURE----- --j2AXaZ4YhVcLc+PQ--