svn commit: r339410 - stable/10/sys/kern

2018-10-17 Thread Jamie Gritton
Author: jamie Date: Wed Oct 17 16:17:56 2018 New Revision: 339410 URL: https://svnweb.freebsd.org/changeset/base/339410 Log: MFC r339211: Fix the test prohibiting jails from sharing IP addresses. It's not supposed to be legal for two jails to contain the same IP address,

svn commit: r338091 - stable/10/usr.sbin/jail

2018-08-19 Thread Jamie Gritton
Author: jamie Date: Mon Aug 20 05:32:42 2018 New Revision: 338091 URL: https://svnweb.freebsd.org/changeset/base/338091 Log: MFC r337867: Don't let clobber jailparam values when checking for modification of init-only parameters. PR: 230487 Submitted by: Jason Mader

svn commit: r337880 - stable/10/lib/libjail

2018-08-15 Thread Jamie Gritton
Author: jamie Date: Wed Aug 15 22:32:55 2018 New Revision: 337880 URL: https://svnweb.freebsd.org/changeset/base/337880 Log: Load filesystem modules associated with allow.mount permissions. PR: 192092 Modified: stable/10/lib/libjail/jail.c Modified:

svn commit: r337876 - stable/10/lib/libjail

2018-08-15 Thread Jamie Gritton
Author: jamie Date: Wed Aug 15 21:38:44 2018 New Revision: 337876 URL: https://svnweb.freebsd.org/changeset/base/337876 Log: MFC r331332: If a jail parameter isn't found, try loading a related kernel module. PR: 192092 Modified: stable/10/lib/libjail/jail.c Directory

svn commit: r336039 - in stable/10: lib/libugidfw sbin/ipfw usr.bin/cpuset usr.bin/sockstat

2018-07-06 Thread Jamie Gritton
Author: jamie Date: Fri Jul 6 19:10:07 2018 New Revision: 336039 URL: https://svnweb.freebsd.org/changeset/base/336039 Log: MFC r335921: Allow jail names (not just IDs) to be specified for: cpuset(1), ipfw(8), sockstat(1), ugidfw(8) These are the last of the jail-aware userland

svn commit: r325783 - stable/10/sys/kern

2017-11-13 Thread Jamie Gritton
Author: jamie Date: Mon Nov 13 23:21:17 2017 New Revision: 325783 URL: https://svnweb.freebsd.org/changeset/base/325783 Log: MFC r297935: Separate POSIX sem/shm objects in jails, by prepending the jail's path name to the object's "path". While the objects don't have real path

svn commit: r316193 - stable/10/usr.sbin/jail

2017-03-29 Thread Jamie Gritton
Author: jamie Date: Thu Mar 30 01:37:37 2017 New Revision: 316193 URL: https://svnweb.freebsd.org/changeset/base/316193 Log: MFC r316022,r316023: Fix hexadecimal escape codes in jail.conf(5). PR: 218154 Submitted by: Masahiro Konishi Modified:

svn commit: r302959 - stable/10/etc/rc.d

2016-07-17 Thread Jamie Gritton
Author: jamie Date: Sun Jul 17 14:16:21 2016 New Revision: 302959 URL: https://svnweb.freebsd.org/changeset/base/302959 Log: MFC r302857: Start jails non-parallel if jail_parallel_start is NO. This was true for an explicitly specified jail list; now it's also true for all jails.

svn commit: r301910 - stable/10/sys/kern

2016-06-14 Thread Jamie Gritton
Author: jamie Date: Wed Jun 15 01:59:55 2016 New Revision: 301910 URL: https://svnweb.freebsd.org/changeset/base/301910 Log: MFC r301764: Fix a vnode leak when giving a child jail a too-long path when debug.disablefullpath=1. Modified: stable/10/sys/kern/kern_jail.c Directory

svn commit: r301909 - stable/10/sys/kern

2016-06-14 Thread Jamie Gritton
Author: jamie Date: Wed Jun 15 01:58:54 2016 New Revision: 301909 URL: https://svnweb.freebsd.org/changeset/base/301909 Log: MFC r301760: Re-order some jail parameter reading to prevent a vnode leak. Modified: stable/10/sys/kern/kern_jail.c Directory Properties: stable/10/ (props

svn commit: r301907 - stable/10/sys/kern

2016-06-14 Thread Jamie Gritton
Author: jamie Date: Wed Jun 15 01:56:20 2016 New Revision: 301907 URL: https://svnweb.freebsd.org/changeset/base/301907 Log: MFC r301745: Make sure the OSD methods for jail set and remove can't run concurrently, by holding allprison_lock exclusively (even if only for a moment before

svn commit: r301906 - stable/10/sys/kern

2016-06-14 Thread Jamie Gritton
Author: jamie Date: Wed Jun 15 01:54:17 2016 New Revision: 301906 URL: https://svnweb.freebsd.org/changeset/base/301906 Log: MFC r301737: Remove a comment that was part of copied code, and is misleading in the new location. Modified: stable/10/sys/kern/sysv_msg.c Directory

svn commit: r301905 - in stable/10: lib/libc/sys sys/kern

2016-06-14 Thread Jamie Gritton
Author: jamie Date: Wed Jun 15 01:49:01 2016 New Revision: 301905 URL: https://svnweb.freebsd.org/changeset/base/301905 Log: MFC r300983: Mark jail(2), and the sysctls that it (and only it) uses as deprecated. jail(8) has long used jail_set(2), and those sysctl only cause confusion.

svn commit: r298889 - stable/10/usr.sbin/jail

2016-05-01 Thread Jamie Gritton
Author: jamie Date: Sun May 1 16:49:32 2016 New Revision: 298889 URL: https://svnweb.freebsd.org/changeset/base/298889 Log: MFC r29: typo Submitted by: Jimmy Olgeni Modified: stable/10/usr.sbin/jail/jail.8 Directory Properties: stable/10/ (props changed) Modified:

svn commit: r298852 - in stable/10: etc/defaults etc/rc.d share/man/man5

2016-04-30 Thread Jamie Gritton
Author: jamie Date: Sat Apr 30 15:06:18 2016 New Revision: 298852 URL: https://svnweb.freebsd.org/changeset/base/298852 Log: MFC r295471: Add new rc.conf parameter "jail_reverse_stop" When a user defines "jail_list" in rc.conf the jails are started in the order defined.

svn commit: r298835 - in stable/10: sys/kern usr.sbin/jail

2016-04-29 Thread Jamie Gritton
Author: jamie Date: Sat Apr 30 04:02:32 2016 New Revision: 298835 URL: https://svnweb.freebsd.org/changeset/base/298835 Log: MFC r298584: Note the existence of module-specific jail paramters, starting with the linux.* parameters when linux emulation is loaded. MFC r298585:

svn commit: r298834 - in stable/10: share/man/man9 sys/kern sys/sys

2016-04-29 Thread Jamie Gritton
Author: jamie Date: Sat Apr 30 04:01:22 2016 New Revision: 298834 URL: https://svnweb.freebsd.org/changeset/base/298834 Log: MFC r297367: Move the various per-type arrays of OSD data into a single structure array. MFC r297422: Add osd_reserve() and osd_set_reserved(), which

svn commit: r298833 - in stable/10/sys: kern sys

2016-04-29 Thread Jamie Gritton
Author: jamie Date: Sat Apr 30 03:19:07 2016 New Revision: 298833 URL: https://svnweb.freebsd.org/changeset/base/298833 Log: MFC r298565: Add a new jail OSD method, PR_METHOD_REMOVE. It's called when a jail is removed from the user perspective, i.e. when the last pr_uref goes away,

svn commit: r298832 - in stable/10/sys: kern sys

2016-04-29 Thread Jamie Gritton
Author: jamie Date: Sat Apr 30 03:05:36 2016 New Revision: 298832 URL: https://svnweb.freebsd.org/changeset/base/298832 Log: MFC r298564: Remove the PR_REMOVE flag, which was meant as a temporary marker for a jail that might be seen mid-removal. It hasn't been doing the right

svn commit: r298729 - stable/10/usr.sbin/jail

2016-04-27 Thread Jamie Gritton
Author: jamie Date: Thu Apr 28 01:40:47 2016 New Revision: 298729 URL: https://svnweb.freebsd.org/changeset/base/298729 Log: MFC r298562: Make jail(8) interpret escape codes in fstab the same as getfsent(3). PR: 208663 Modified: stable/10/usr.sbin/jail/command.c

svn commit: r298728 - stable/10/etc/rc.d

2016-04-27 Thread Jamie Gritton
Author: jamie Date: Thu Apr 28 01:31:07 2016 New Revision: 298728 URL: https://svnweb.freebsd.org/changeset/base/298728 Log: MFC r298516: Don't remove the /var/run/jail_name.id file if a jail fails to start. This messes up ezjail (and possibly others), when attempting to start a

svn commit: r294964 - stable/10/etc/rc.d

2016-01-27 Thread Jamie Gritton
Author: jamie Date: Thu Jan 28 00:41:07 2016 New Revision: 294964 URL: https://svnweb.freebsd.org/changeset/base/294964 Log: MFC r294749: Allow the (old rc-style) exec_afterstart jail parameters to start numbering at 0, like exec_prestart and the others do. Make param0 optional,

svn commit: r292967 - stable/10/etc/rc.d

2015-12-30 Thread Jamie Gritton
Author: jamie Date: Thu Dec 31 01:24:16 2015 New Revision: 292967 URL: https://svnweb.freebsd.org/changeset/base/292967 Log: MFC r292759: Let old-style (shell-based) jail configuration handle jail names that contain characters not allowed in a shell variable (such as "-"). These

svn commit: r292968 - stable/10/etc/rc.d

2015-12-30 Thread Jamie Gritton
Author: jamie Date: Thu Dec 31 01:26:43 2015 New Revision: 292968 URL: https://svnweb.freebsd.org/changeset/base/292968 Log: MFC r287220: Fix a conversion error in rc.d/jail Modified: stable/10/etc/rc.d/jail Directory Properties: stable/10/ (props changed) Modified:

svn commit: r287269 - in stable/10/bin/pkill: . tests

2015-08-28 Thread Jamie Gritton
Author: jamie Date: Sat Aug 29 02:41:59 2015 New Revision: 287269 URL: https://svnweb.freebsd.org/changeset/base/287269 Log: MFC r287012: Make pkill/pgrep -j ARG take jname, not just jid. PR: 201588 Submitted by: Daniel Shahaf danielsh at apache.org Modified:

svn commit: r286064 - stable/10/usr.sbin/jexec

2015-07-29 Thread Jamie Gritton
Author: jamie Date: Thu Jul 30 04:53:53 2015 New Revision: 286064 URL: https://svnweb.freebsd.org/changeset/base/286064 Log: MFC r285420: Run a shell in the jail when no command is specified. Add a new flag, -l, for a clean environment, same as jail(8) exec.clean. Change the

svn commit: r279348 - stable/10/usr.sbin/jls

2015-02-26 Thread Jamie Gritton
Author: jamie Date: Fri Feb 27 02:53:44 2015 New Revision: 279348 URL: https://svnweb.freebsd.org/changeset/base/279348 Log: MFC r279083: Fix the logic for skipping parameters (with -s) that have jailsys parents (such as host.hostname); these were being skipped all the time. That

svn commit: r277985 - in stable/10: sys/fs/fdescfs sys/kern sys/sys usr.sbin/jail

2015-01-31 Thread Jamie Gritton
Author: jamie Date: Sat Jan 31 17:35:53 2015 New Revision: 277985 URL: https://svnweb.freebsd.org/changeset/base/277985 Log: MFC r277855: Add allow.mount.fdescfs jail flag. PR: 192951 Submitted by: ru...@verweg.com Modified: stable/10/sys/fs/fdescfs/fdesc_vfsops.c