On 10/8/2004 1:08 AM, David Mosberger wrote:

> Unfortunately, that thread ran out in a rather unhelpful manner, as
> far as I can see.  Rusty seemed to agree that the performance-hit of
> doing it all in user-level was unacceptably high, but I didn't see any
> actual numbers.  There was a suggestion to decouple the altroot from
> the personality which makes some sense, but nobody actually did
> anything about it?
> 

I'd really like this issue to be resolved one way or the other. I'm not sure I've heard a convincing argument on why my original patch(which adds a new exec domain unconditionally) should not be applied.

I'm fine with the attached patch to set the altroot via a system call as well.

	-Arun