Date: Wed, 12 Mar 2014 07:19:47 +0400 From: Subbsd <subbsd@gmail.com> To: Tom Evans <tevans.uk@googlemail.com> Cc: "freebsd-hackers@freebsd.org" <freebsd-hackers@freebsd.org>, "freebsd-x11@freebsd.org" <freebsd-x11@freebsd.org>, Jamie Gritton <jamie@freebsd.org>, Alexander Leidinger <Alexander@leidinger.net> Subject: Re: [PATCH] Xorg in a jail Message-ID: <CAFt_eMoJ%2Bjazxga%2BsppyjtivT1gZc3=%2BV9eYAoiHe18JOHAdCQ@mail.gmail.com> In-Reply-To: <CAFHbX1JUzM%2BN9Zx=eCQdejvz1jAWcXNHepB2=5ZRuunu1gAG6g@mail.gmail.com> References: <CAFHbX1JUzM%2BN9Zx=eCQdejvz1jAWcXNHepB2=5ZRuunu1gAG6g@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Hello, maillist
On Sun, Mar 9, 2014 at 5:26 AM, Tom Evans <tevans.uk@googlemail.com> wrote:
> I'm not sure I did the jail allow parameters right, but it works for
> me - I would appreciate someone more competent taking a look! Also,
> dev_io_access should probably be renamed or using it to control access
> to /dev/mem split out from it? Also, is the style right? vim: noet
> sw=8 ts=8 is what I was using.
>
> Cheers
>
> Tom
>
> PS: I haven't tested any input devices yet with this, let me know!
I've tested this patch on FreeBSD 11 + fluxbox jail and it works perfectly.
Nvidia require in devfs.rules next rule:
--
add path 'nvidia*' unhide
--
also i had to add
--
add path sysmouse unhide
--
due to a have
--
Section "ServerFlags"
Option "AutoAddDevices" "off"
EndSection
--
in my xorg.conf for independence of hald.
Despite violation of idea of safety of jail, it is very good feature
for private purposes/X-jails.
If it never is in basic system where it is possible to look for the
last actual version of a patch?
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAFt_eMoJ%2Bjazxga%2BsppyjtivT1gZc3=%2BV9eYAoiHe18JOHAdCQ>