On 26/03/2015 19:47, Kevin Darbyshire-Bryant wrote: > On 26/03/2015 18:39, John Crispin wrote: >> >> On 26/03/2015 19:17, Dirk Neukirchen wrote: >>> procd: add jail support 45010 >>> >>> leads to build errors on some? arches >>> >>> On omap I get: >>> /jail/seccomp-bpf.h:72:3: error: #w$ >>> # warning "Platform does not support seccomp filter yet" >>> >>> which fails the build completely (-Werror issue) >>> >>> I think there are some issues with other arch/detection when building >>> libseccomp >>> especially for PowerPC arch: >>> - >>> http://buildbot.openwrt.org:8010/broken_packages/mpc85xx/libseccomp/compile.txt >>> - http://buildbot.openwrt.org:8010/broken_packages/mpc83xx/ >>> >>> because I think atm there is no powerpc support: >>> I looked in: https://github.com/seccomp/libseccomp/tree/master/src >>> _______________________________________________ >>> openwrt-devel mailing list >>> openwrt-devel@lists.openwrt.org >>> https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel >>> >> >> fix coming up, just started a ppc build to verify >> _______________________________________________ >> openwrt-devel mailing list >> openwrt-devel@lists.openwrt.org >> https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel > > Hi John, > > Earlier today I was working on some dnsmasq changes. When I pulled the > latest updates I was surprised by the (new to me) 'jail' related > updates. Is there any documentation that I may be able to read to > understand how I can update my latest changes and retain compatibility?
upcoming, i'll write some docs tomorrow > I was more than surprised to find dnsmasq running as root :-) I'm should not be will have a look at that > guessing this is some sort of 'sandboxing'/chroot/virtual filesystem > type arrangement but I'm guessing. yes using namespaces and a staged readonly fs and with seccomp, more features like cgroups etc coming up. > > Many thanks, > > Kevin > > > > _______________________________________________ > openwrt-devel mailing list > openwrt-devel@lists.openwrt.org > https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel > _______________________________________________ openwrt-devel mailing list openwrt-devel@lists.openwrt.org https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel
