From: Enrico Scholz (enrico.scholz_at_sigma-chemnitz.de)
Date: Wed 08 Oct 2003 - 13:14:54 BST
jack_at_solucorp.qc.ca (Jacques Gelinas) writes:
> The system call has been changed completly. You can
> select several security context (up to 16). And root in
> a security context is allowed to shuffle in the security
> contexts already assigned.
Wouldn't be hierarchical vservers a better and more general
* add parent_ctx field to 'struct context_info'
* check if current-ctx is a parent-ctx when trying to enter an
existing context (go back the parent_ctx fields)
* remove the supervisor-ctx-1 concept; every ctx can see the
processes of its child-contexts
* contexts can be removed only when they do not have children