svn commit: r279361 - in head: sys/kern sys/sys usr.sbin/jail
Ian Lepore
ian at freebsd.org
Sat Feb 28 16:34:01 UTC 2015
On Sat, 2015-02-28 at 18:03 +0300, Dmitry Morozovsky wrote:
> Ian,
>
> On Fri, 27 Feb 2015, Ian Lepore wrote:
>
> > Author: ian
> > Date: Fri Feb 27 16:28:55 2015
> > New Revision: 279361
> > URL: https://svnweb.freebsd.org/changeset/base/279361
> >
> > Log:
> > Allow the kern.osrelease and kern.osreldate sysctl values to be set in a
> > jail's creation parameters. This allows the kernel version to be reliably
> > spoofed within the jail whether examined directly with sysctl or
> > indirectly with the uname -r and -K options.
> >
> > The values can only be set at jail creation time, to eliminate the need
> > for any locking when accessing the values via sysctl.
> >
> > The overridden values are inherited by nested jails (unless the config for
> > the nested jails also overrides the values).
> >
> > There is no sanity or range checking, other than disallowing an empty
> > release string or a zero release date, by design. The system
> > administrator is trusted to set sane values. Setting values that are
> > newer than the actual running kernel will likely cause compatibility
> > problems.
> >
> > Differential Revision: https://reviews.freebsd.org/D1948
> > Relnotes: yes
>
> Thanks, very useful feature. Just one question: no MFC planned?
>
> [diff snipped]
>
> --
> Sincerely,
> D.Marck [DM5020, MCK-RIPE, DM3-RIPN]
> [ FreeBSD committer: marck at FreeBSD.org ]
> ------------------------------------------------------------------------
> *** Dmitry Morozovsky --- D.Marck --- Wild Woozle --- marck at rinet.ru ***
> ------------------------------------------------------------------------
I will definitely mfc (we need this on 10-stable at $work), but I hate
being spammed and/or nagged by robots so I don't use MFC: tags.
-- ian
More information about the svn-src-all
mailing list