From owner-svn-src-head@FreeBSD.ORG Fri Dec 5 16:00:53 2008 Return-Path: Delivered-To: svn-src-head@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id AD3C61065672; Fri, 5 Dec 2008 16:00:53 +0000 (UTC) (envelope-from jamie@gritton.org) Received: from gritton.org (gritton.org [161.58.222.4]) by mx1.freebsd.org (Postfix) with ESMTP id 6E5558FC16; Fri, 5 Dec 2008 16:00:53 +0000 (UTC) (envelope-from jamie@gritton.org) Received: from glorfindel.gritton.org (c-76-27-80-223.hsd1.ut.comcast.net [76.27.80.223]) (authenticated bits=0) by gritton.org (8.13.6.20060614/8.13.6) with ESMTP id mB5FQdbt093563; Fri, 5 Dec 2008 08:26:40 -0700 (MST) Message-ID: <4939482F.4040404@gritton.org> Date: Fri, 05 Dec 2008 08:26:39 -0700 From: James Gritton User-Agent: Thunderbird 2.0.0.9 (X11/20080228) MIME-Version: 1.0 To: "Bjoern A. Zeeb" References: <200811291432.mATEWE2a053742@svn.freebsd.org> <86skp3yje2.fsf@ds4.des.no> <20081204184332.C80401@maildrop.int.zabbadoz.net> In-Reply-To: <20081204184332.C80401@maildrop.int.zabbadoz.net> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit X-Virus-Scanned: ClamAV version 0.93, clamav-milter version 0.93 on gritton.org X-Virus-Status: Clean Cc: svn-src-head@freebsd.org, =?ISO-8859-1?Q?Dag-Erling_Sm=F8rgrav?= , svn-src-all@freebsd.org, src-committers@freebsd.org Subject: Re: svn commit: r185435 - in head: lib/libc/sys lib/libkvm share/man/man4 sys/compat/freebsd32 sys/kern sys/net sys/netinet sys/netinet6 sys/security/mac_bsdextended sys/sys usr.bin/cpuset usr.sbin/jai... X-BeenThere: svn-src-head@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: SVN commit messages for the src tree for head/-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 05 Dec 2008 16:00:53 -0000 Bjoern A. Zeeb wrote: > On Thu, 4 Dec 2008, Dag-Erling Smørgrav wrote: >> "Bjoern A. Zeeb" writes: >>> Jails can have an unrestricted (no duplicate protection, etc.) name >>> in addition to the hostname. The jail name cannot be changed from >>> within a jail and is considered to be used for management purposes >>> or as audit-token in the future. >> >> Is there a specific reason why we allow duplicates? > > Yes, so that people have a choice. > > You would have to take into account "DYING" jails with possibly > duplicate names anyway. > > And it's a purely administrative name (cannot be changed from within > the jail) so it's up to the administrator to have 2 "Customer Webserver" > jails or a "Customer Webserver Tin" and a "Customer Webserver Box". > > BTW. in case people wonder how to set it (atm.) from rc.conf, you > can use jail__flags. My new (upcoming) jail framework patches also support names, but without allowing duplicates. This is necessary because jails can be looked up in the kernel by name as well as by ID. I handle the special case of "dying" jails, allowing a new jail to duplicate the name of one on the the way out. As far as people having a choice, I don't see any more reason to offer the choice of duplicate jail names than I do in offering duplicate login names. It just doesn't make sense in the context of what purpose I expect a name to serve. - Jamie