Re: [RFC][v8][PATCH 0/10] Implement clone3() system call

From: Sukadev Bhattiprolu
Date: Fri Oct 23 2009 - 15:20:16 EST

Next message: Oren Laadan: "Re: [RFC][v8][PATCH 0/10] Implement clone3() system call"
Previous message: Tony Lindgren: "Re: [PATCH 05/10] omap1: Fix DSP public peripherals support forams-delta"
In reply to: Eric W. Biederman: "Re: [RFC][v8][PATCH 0/10] Implement clone3() system call"
Next in thread: Sukadev Bhattiprolu: "Re: [RFC][v8][PATCH 0/10] Implement clone3() system call"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Eric W. Biederman [ebiederm@xxxxxxxxxxxx] wrote:
| > Anyway, is RESERVED_PIDS meant for initial kernel-threads/daemons - if so
| > would it be ok enforce it only in init_pid_ns ?
|
| It is mean for initial user space daemons, things that start on boot.
|
| I don't know how much the protection matters at this date, but we have it.

Well, since it is not security or other critical restriction, can we allow
set_pidmap() a free hand - even in init-pid-ns ? It could prevent a simple
subtree C/R of one of the early daemons for debug for instance.

Sukadev
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Oren Laadan: "Re: [RFC][v8][PATCH 0/10] Implement clone3() system call"
Previous message: Tony Lindgren: "Re: [PATCH 05/10] omap1: Fix DSP public peripherals support forams-delta"
In reply to: Eric W. Biederman: "Re: [RFC][v8][PATCH 0/10] Implement clone3() system call"
Next in thread: Sukadev Bhattiprolu: "Re: [RFC][v8][PATCH 0/10] Implement clone3() system call"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]