Quoting Jamie Gritton <ja...@freebsd.org> (from Wed, 29 Apr 2009
21:14:16 +0000 (UTC)):
Author: jamie
Date: Wed Apr 29 21:14:15 2009
New Revision: 191673
URL: http://svn.freebsd.org/changeset/base/191673
Log:
Introduce the extensible jail framework, using the same "name=value"
interface as nmount(2). Three new system calls are added:
* jail_set, to create jails and change the parameters of existing jails.
This replaces jail(2).
* jail_get, to read the parameters of existing jails. This replaces the
security.jail.list sysctl.
* jail_remove to kill off a jail's processes and remove the jail.
Most jail parameters may now be changed after creation, and jails may be
set to exist without any attached processes. The current jail(2) system
call still exists, though it is now a stub to jail_set(2).
Does this mean it is theoretically possible now to add/remove IP
addresses to/from a running jail? If yes, are you going to implement
the corresponding ifconfig feature? I would expect this in ifconfig,
as on Solaris ifconfig is able to do this with zones, I haven't looked
if the jail utility is able to do it.
Bye,
Alexander.
--
In these matters the only certainty is that there is nothing certain.
-- Pliny the Elder
http://www.Leidinger.net Alexander @ Leidinger.net: PGP ID = B0063FE7
http://www.FreeBSD.org netchild @ FreeBSD.org : PGP ID = 72077137
_______________________________________________
svn-src-all@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/svn-src-all
To unsubscribe, send any mail to "svn-src-all-unsubscr...@freebsd.org"
