You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@apr.apache.org by "Philip M. Gollucci" <pg...@p6m7g8.com> on 2008/04/19 02:23:04 UTC
APR, FreeBSD, and Sockets
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
In FreeBSD [4,5],6,7,8 if you build apr in a jail(8)
./configure --foo
....
checking if TCP_NODELAY setting is inherited from listening sockets...no
checking if O_NONBLOCK setting is inherited from listening sockets... no
These tests take 3-5 minutes to 'time out'
The 'dungeon master' has these systcls:
sysctl -a |grep jail
security.jail.jailed: 0
security.jail.mount_allowed: 0
security.jail.chflags_allowed: 1
security.jail.allow_raw_sockets: 0
security.jail.enforce_statfs: 2
security.jail.sysvipc_allowed: 0
security.jail.socket_unixiproute_only: 0
security.jail.set_hostname_allowed: 0
My guess is configure should detect this somehow and short circuit it?
I believe that
security.jail.allow_raw_sockets: 0
is needed to be enabled.
I'll research and maybe submit a patch if others think its worth it.
SVN servers and httpd (w/ and w/out ssl) seem to work fine in jails
based on aprs like this.....
- --
- ------------------------------------------------------------------------
Philip M. Gollucci (philip@ridecharge.com)
o:703.549.2050x206
Senior System Admin - Riderway, Inc.
http://riderway.com / http://ridecharge.com
1024D/DB9B8C1C B90B FBC3 A3A1 C71A 8E70 3F8C 75B8 8FFB DB9B 8C1C
Work like you don't need the money,
love like you'll never get hurt,
and dance like nobody's watching.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.8 (FreeBSD)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFICTtodbiP+9ubjBwRAobwAJ42130uihMvohp8pth40r6hiuiidQCgiXXt
g5E7+mH8gnKI2BpxIEbatj8=
=FHzP
-----END PGP SIGNATURE-----