cvs commit: src/lib/libc/sys Makefile.inc jail.2 src/sys/kern
kern_jail.c subr_witness.c syscalls.master vfs_syscalls.c
src/sys/ia64/ia32 syscalls.master src/sys/sys jail.h
Mike Barcroft
mike at FreeBSD.org
Tue Apr 8 19:55:20 PDT 2003
mike 2003/04/08 19:55:18 PDT
FreeBSD src repository
Modified files:
lib/libc/sys Makefile.inc jail.2
sys/kern kern_jail.c subr_witness.c
syscalls.master vfs_syscalls.c
sys/ia64/ia32 syscalls.master
sys/sys jail.h
Log:
o In struct prison, add an allprison linked list of prisons (protected
by allprison_mtx), a unique prison/jail identifier field, two path
fields (pr_path for reporting and pr_root vnode instance) to store
the chroot() point of each jail.
o Add jail_attach(2) to allow a process to bind to an existing jail.
o Add change_root() to perform the chroot operation on a specified
vnode.
o Generalize change_dir() to accept a vnode, and move namei() calls
to callers of change_dir().
o Add a new sysctl (security.jail.list) which is a group of
struct xprison instances that represent a snapshot of active jails.
Reviewed by: rwatson, tjr
Revision Changes Path
1.101 +1 -0 src/lib/libc/sys/Makefile.inc
1.23 +29 -3 src/lib/libc/sys/jail.2
1.19 +1 -0 src/sys/ia64/ia32/syscalls.master
1.31 +218 -20 src/sys/kern/kern_jail.c
1.151 +1 -0 src/sys/kern/subr_witness.c
1.149 +1 -0 src/sys/kern/syscalls.master
1.312 +65 -44 src/sys/kern/vfs_syscalls.c
1.18 +20 -0 src/sys/sys/jail.h
More information about the cvs-all
mailing list