Print this page
PSARC 2008/766 native zones p2v
6667924 physical to virtual utility for native zones
| Split |
Close |
| Expand all |
| Collapse all |
--- old/usr/src/lib/brand/native/zone/config.xml
+++ new/usr/src/lib/brand/native/zone/config.xml
1 1 <?xml version="1.0"?>
2 2
3 3 <!--
4 4 CDDL HEADER START
5 5
6 6 The contents of this file are subject to the terms of the
7 7 Common Development and Distribution License (the "License").
8 8 You may not use this file except in compliance with the License.
9 9
10 10 You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
11 11 or http://www.opensolaris.org/os/licensing.
12 12 See the License for the specific language governing permissions
|
↓ open down ↓ |
12 lines elided |
↑ open up ↑ |
13 13 and limitations under the License.
14 14
15 15 When distributing Covered Code, include this CDDL HEADER in each
16 16 file and include the License file at usr/src/OPENSOLARIS.LICENSE.
17 17 If applicable, add the following below this CDDL HEADER, with the
18 18 fields enclosed by brackets "[]" replaced with your own identifying
19 19 information: Portions Copyright [yyyy] [name of copyright owner]
20 20
21 21 CDDL HEADER END
22 22
23 - Copyright 2008 Sun Microsystems, Inc. All rights reserved.
23 + Copyright 2009 Sun Microsystems, Inc. All rights reserved.
24 24 Use is subject to license terms.
25 25
26 26 DO NOT EDIT THIS FILE.
27 27 -->
28 28
29 29 <!DOCTYPE brand PUBLIC "-//Sun Microsystems Inc//DTD Brands//EN"
30 30 "file:///usr/share/lib/xml/dtd/brand.dtd.1">
31 31
32 32 <brand name="native">
33 33 <modname></modname>
34 34
35 35 <initname>/sbin/init</initname>
36 36 <login_cmd>/usr/bin/login -z %Z -f %u</login_cmd>
37 37 <user_cmd>/usr/bin/getent passwd %u</user_cmd>
38 38
39 39 <install>/usr/lib/brand/native/sw_support install %z %R</install>
40 + <installopts>a:b:d:psuv</installopts>
40 41 <verify_cfg></verify_cfg>
41 42 <verify_adm></verify_adm>
42 43 <postclone>/usr/lib/brand/native/sw_support postclone %z %R</postclone>
43 44 <attach>/usr/lib/brand/native/sw_support attach %z %R</attach>
44 45 <detach>/usr/lib/brand/native/sw_support detach %z %R</detach>
45 46 <presnap>/usr/lib/brand/native/sw_support presnap %z %R</presnap>
46 47 <postsnap>/usr/lib/brand/native/sw_support postsnap %z %R</postsnap>
47 48 <validatesnap>/usr/lib/brand/native/sw_support validatesnap %z %R</validatesnap>
48 49
49 50 <privilege set="default" name="contract_event" />
50 51 <privilege set="default" name="contract_identity" />
51 52 <privilege set="default" name="contract_observer" />
52 53 <privilege set="default" name="file_chown" />
53 54 <privilege set="default" name="file_chown_self" />
54 55 <privilege set="default" name="file_dac_execute" />
55 56 <privilege set="default" name="file_dac_read" />
56 57 <privilege set="default" name="file_dac_search" />
57 58 <privilege set="default" name="file_dac_write" />
58 59 <privilege set="default" name="file_owner" />
59 60 <privilege set="default" name="file_setid" />
60 61 <privilege set="default" name="ipc_dac_read" />
61 62 <privilege set="default" name="ipc_dac_write" />
62 63 <privilege set="default" name="ipc_owner" />
63 64 <privilege set="default" name="net_bindmlp" />
64 65 <privilege set="default" name="net_icmpaccess" />
65 66 <privilege set="default" name="net_mac_aware" />
66 67 <privilege set="default" name="net_observability" />
67 68 <privilege set="default" name="net_privaddr" />
68 69 <privilege set="default" name="net_rawaccess" ip-type="exclusive" />
69 70 <privilege set="default" name="proc_chroot" />
70 71 <privilege set="default" name="sys_audit" />
71 72 <privilege set="default" name="proc_audit" />
72 73 <privilege set="default" name="proc_lock_memory" />
73 74 <privilege set="default" name="proc_owner" />
74 75 <privilege set="default" name="proc_setid" />
75 76 <privilege set="default" name="proc_taskid" />
76 77 <privilege set="default" name="sys_acct" />
77 78 <privilege set="default" name="sys_admin" />
78 79 <privilege set="default" name="sys_ip_config" ip-type="exclusive" />
79 80 <privilege set="default" name="sys_mount" />
80 81 <privilege set="default" name="sys_nfs" />
81 82 <privilege set="default" name="sys_resource" />
82 83
83 84 <privilege set="prohibited" name="dtrace_kernel" />
84 85 <privilege set="prohibited" name="proc_zone" />
85 86 <privilege set="prohibited" name="sys_config" />
86 87 <privilege set="prohibited" name="sys_devices" />
87 88 <privilege set="prohibited" name="sys_ip_config" ip-type="shared" />
88 89 <privilege set="prohibited" name="sys_linkdir" />
89 90 <privilege set="prohibited" name="sys_net_config" />
90 91 <privilege set="prohibited" name="sys_res_config" />
91 92 <privilege set="prohibited" name="sys_suser_compat" />
92 93 <privilege set="prohibited" name="xvm_control" />
93 94 <privilege set="prohibited" name="virt_manage" />
94 95
95 96 <privilege set="required" name="proc_exec" />
96 97 <privilege set="required" name="proc_fork" />
97 98 <privilege set="required" name="sys_ip_config" ip-type="exclusive" />
98 99 <privilege set="required" name="sys_mount" />
99 100 </brand>
|
↓ open down ↓ |
50 lines elided |
↑ open up ↑ |
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX