> Edward Pilatowicz wrote:
> >
> > i'm not asking about the X11 behavior wrt zones, i'm asking about the
> > cross-zone domain sockets behavior.
> >
> > has cross-zone UNIX domain traffic always been disallowed since zones
> > were introduced? if not, when was that restriction added?
> >
>
> The restriction was part of the initial zones project integration.
Since other forms of IPC export from the global zone exists
(viz. doors), what's the compelling reason to not allow
IPC of Unix domain? That is why should this only be
allowed for labeled systems?
It seems to me there is little policy difference between
a door rendezvous and a Unix domain socket rendezvous
being exported from the GZ to another zone.
Has anyone checked with the Zones and networking project
teams?
IMO, the restriction should just be removed (the less TX specific
code the better ;-).
Gary..
