Re: Jailed sysvipc implementation.

• Previous message: Dmitry Sivachenko: "Re: Jailed sysvipc implementation."
• In reply to: Dmitry Sivachenko: "Re: Jailed sysvipc implementation."
• Next in thread: Dmitry Sivachenko: "Re: Jailed sysvipc implementation."
• Reply: Dmitry Sivachenko: "Re: Jailed sysvipc implementation."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Wed, 25 Jun 2003 17:02:21 +0200
To: Dmitry Sivachenko <demon@freebsd.org>

On Wed, Jun 25, 2003 at 06:52:33PM +0400, Dmitry Sivachenko wrote:
+> > But you got still *one* memory zones for every jail and main host.
+>
+> Yes, that is exactly what I want.
+> This is similar to separate IP stack for each jail: this is more powerful
+> solution, but more expensive (uses more kernel memory).

But note that my implementation allocates memory "on demand".
If IPC syscall will not be used inside of jail memory will not be allocated.
If think also that this will be trivial to add value to jail struct
that will thell if we want separate IPC memory zones for this jail or not.

+> Jail is not a true virtual machine.
+> Let's keep it a *light* virtual machine replacement, with single IP stack,
+> one memory zones for all jails and host, etc.

I think it should be and it isn't now because of implementaion problems.
Am I wrong? Poul? Robert?

-- 
Pawel Jakub Dawidek                       pawel@dawidek.net
UNIX Systems Programmer/Administrator     http://garage.freebsd.pl
Am I Evil? Yes, I Am!                     http://cerber.sourceforge.net

• application/pgp-signature attachment: stored

• Previous message: Dmitry Sivachenko: "Re: Jailed sysvipc implementation."
• In reply to: Dmitry Sivachenko: "Re: Jailed sysvipc implementation."
• Next in thread: Dmitry Sivachenko: "Re: Jailed sysvipc implementation."
• Reply: Dmitry Sivachenko: "Re: Jailed sysvipc implementation."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

• Re: Jailed sysvipc implementation.
  ... +>>> Some time ago I've implemented private memory zones for IPC mechism.
  ... +>>> Every jail and main host got its own memory for IPC operations. ...
  But you got still *one* memory zones for every jail and main host. ... (freebsd-arch)
• Re: carp+pfsync+freevrrpd+jail
  ... no traffic appears on master host - that means that the local carp ... host
  will answer the request. ... In case service IP is local it just dealing with jail. ...
  If only master carp answering packets then packet, coming from internal vlan200 comes to host:
  ... (freebsd-stable)
• Re: problems with jail
  ... Active Internet connections (including servers) ... Unfortunately I still cant
  connect to anything outside of the jail, ... SSHing into jail does not work, into host
  does. ... a separate sshd listening on the jail port 22. ... (freebsd-questions)
• Re: started playing with jails
  ... Files in a jail are in fact just files on the host, so you could certainly do that.
  ... But as in many things (and especially when talking about backups), "best" is
  framed by local conditions, practices and requirements. ... There's nothing much special about
  backing up jail files though, so do what you normally do. ... Greg Barniskis, Computer
  Systems Integrator ... (freebsd-questions)
• jail question -- why can a user programatically see more than one IP address inside a jail?
  ... Some software (some C based, some java) for various reasons, like ...
  Inside the jail they return more than just the jails IP address. ... Host name and
  IP and ethernet address information ... (freebsd-questions)