Need for SysV IPC to be confined to jail instances
Gabor Tjong A Hung
g.v.tjongahung at gmail.com
Sat Nov 24 03:37:12 PST 2007
Dear all,
I have come to understand that postgresql needs sys v ipc. I haven't
tried to figure out why exactly, but I'm sure they have good reasons.
As I came to understand, if you enable jail_sysvipc_allow in rc.conf I
am defeating the purpose of a jail.
So basically I if you want pgsql in a jail you're wanting something
which is impossible on FreeBSD.
I got a suggestion that it might be possible to have sys v ipc
confined to a jail instance and perhaps let it work like a telephone
number.
Every jail gets localized IPC numbers, and systemwide they just become
jailid + localized ipc number.
I was wondering if this is at all possible and if so how I would go
about submitting a PR for this.
Kind Regards,
Gabor
More information about the freebsd-hackers
mailing list