User Details
- User Since
- Aug 3 2014, 10:29 PM (406 w, 5 d)
Mon, May 16
Fri, May 13
Wow, that has been there for an embarrassingly long time!
Mar 28 2022
Mar 26 2022
Mar 12 2022
Mar 2 2022
Feb 27 2022
Feb 24 2022
Dec 19 2021
Dec 16 2021
Dec 15 2021
Dec 14 2021
I take it this is for what we're seeing in Bug 260335.
Dec 9 2021
Nov 11 2021
This presupposes that a jail that isn't marked to persist isn't going to stick around for some other reason. A jail could be started for example to start a long-running daemon, or to be a parent of other jails. Automatically going away when its task is done is a feature of such a jail.
Oct 7 2021
Sep 29 2021
Sep 4 2021
Jul 27 2021
I'm not thrilled at the redundant call to vfs_flagopt(), which shouldn't be necessary because kern_jail_set has already looked for allow.novmm and set the permission bit accordingly. But by the time vmmdev_prison_set() is called, the old value of the permission bit is forgotten. So you're left with
Jun 24 2021
Jun 18 2021
Apr 12 2021
Apr 11 2021
Apr 9 2021
Apr 8 2021
Yeah, I'd been meaning to get around to that ;-).
Apr 4 2021
Mar 14 2021
This would work well with jexec -l, which is already somewhat like su -l but misses the parts you mention. In fact, I would recommend making clean (-l) the deciding factor instead of pwd (-u/U). And I don't see a reason why the same directory change shouldn't be done regardless of whether it's for a command or a shell.
Mar 12 2021
Mar 4 2021
Looks good - nothing to add.
Feb 27 2021
Feb 26 2021
Might PRIV_SCHED_CPUSET be sufficient for this? If a process has the ability to explicitly expand the current cpu list, it makes sense for it to be able to implicitly do so when attaching to a jail.
All previous work has been committed now (not without hiccups). This is the final-ish patch that only handles the main intent of the project.
Feb 25 2021
Sorry I took so long - I confused your note that it should be reverted with a note that it *had been* reverted.
Feb 23 2021
Feb 22 2021
Feb 21 2021
Feb 20 2021
Updated for cc7b73065302 and d4380c0cdd05.
Updated for cc7b73065302 and d4380c0cdd05.
Updated for cc7b73065302 and d4380c0cdd05.
Updated for cc7b73065302 and d4380c0cdd05.
Updated for cc7b73065302 and d4380c0cdd05.
Updated for cc7b73065302 and d4380c0cdd05.
Feb 19 2021
Feb 16 2021
Feb 8 2021
Fix up prison_deref_kill, which had some typos in which prison it was acting on. Also move prisons off of their parent's child lists along with the loop instead of all at the end.