Hi Ed, On Thu, 2008-07-24 at 10:38 -0700, Edward Pilatowicz wrote: > hey sebastien, > > could you please elaborate on how these changes impact > native shared and exclusive stack zones?
Sure; These changes do not impact the current dladm administrative model from within non-global zones. > will exclusive stack zones have the sys_dl_config privilege > by default? if so, will they be able to execute all the dladm > subcommands? > > will zones without the sys_dl_config privilege be able to run > show-* dladm subcommands (sans the show-wifi subcommand)? Zones did not have sys_net_config before this change, and they won't have net_net_config nor sys_dl_config after this change. They will also not be able to execute dladm subcommands at all (including the show-* subcommands), as there is no zones-awareness at the datalink layer, and the /dev/dld control device will not be included in non-global zones for that reason. The dladm commands will not display any data from non-global zones (status-quo). That said, with this infrastructure in place a future project will be able to add zones-awareness to the kernel data-structures and the ioctls that access them, add /dev/dld to non-global zones, and thus provide a datalink management story from non-global zones. That, however, is not this case. -Seb
