lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Date: Wed, 23 Apr 2008 11:49:30 -0700 From: ebiederm@...ssion.com (Eric W. Biederman) To: "Serge E. Hallyn" <serue@...ibm.com> Cc: "H. Peter Anvin" <hpa@...or.com>, Containers <containers@...ts.osdl.org>, clg@...ibm.com, linux-kernel@...r.kernel.org, Pavel Emelyanov <xemul@...nvz.org> Subject: Re: [RFC][PATCH 0/7] Clone PTS namespace "Serge E. Hallyn" <serue@...ibm.com> writes: > Quoting Serge E. Hallyn (serue@...ibm.com): >> Quoting Eric W. Biederman (ebiederm@...ssion.com): >> > "Serge E. Hallyn" <serue@...ibm.com> writes: >> > >> >> > >> I'm hoping to be able to get back at this in the week or so as things >> > >> settle down from my move. My last patches should be in my proof of >> > >> concept network namespace tree, if they don't show up elsewhere. >> > > >> > > Is that the tree I'd get from >> > > >> > > git-fetch >> > > git://git.kernel.org/pub/scm/linux/kernel/git/ebiederm/linux-2.6-netns.git >> > > master:ebieder.master >> > >> > Yes. >> > >> > > ? So I'd add a user_ns to the struct sysfs_tag_info? >> > > >> > > If so I'll give it a whirl. >> > >> > Sounds good. My apologies I keep being almost on the verge >> > of getting someplace. >> >> Ok I've got the sysfs relevant patches ported to 2.6.25, and am looking >> at how to extend it to handle /sys/kernel/uids. You have tagging tied >> intimately to struct class. So the question is should I generalize the >> taggint to deal with kobjects instead, or create a struct class user >> and make /sys/kernel/uids a symlink to /sys/class/user/uids? > > Heh, never mind, I was thinking class was a kobject class, not a device > class :) So I'll just have to generalize tagging. Yes. You just need a way to get the tags there. At the level of sysfs it is fairly general. Getting through the kobject layer is a different story. I suspect since you are working on this and I seem to be stuck in molasses at the moment it makes sense to figure out what it will take to handle the uid namespace before pushing these patches again. Taking a quick look and having a clue what we will need to do for a theoretical device namespace is also a possibility. Eric -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists