| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <4FC72BCD.7040403@parallels.com> Date: Thu, 31 May 2012 12:29:01 +0400 From: Glauber Costa <glommer@...allels.com> To: David Rientjes <rientjes@...gle.com> CC: Kamezawa Hiroyuki <kamezawa.hiroyu@...fujitsu.com>, KOSAKI Motohiro <kosaki.motohiro@...il.com>, Gao feng <gaofeng@...fujitsu.com>, <hannes@...xchg.org>, <mhocko@...e.cz>, <bsingharora@...il.com>, <akpm@...ux-foundation.org>, <linux-kernel@...r.kernel.org>, <cgroups@...r.kernel.org>, <linux-mm@...ck.org>, <containers@...ts.linux-foundation.org> Subject: Re: [PATCH] meminfo: show /proc/meminfo base on container's memcg On 05/31/2012 10:17 AM, David Rientjes wrote: >> > Hmm....maybe need to mount cgroup in the container (again) and get an access >> > to cgroup >> > hierarchy and find the cgroup it belongs to......if it's allowed. > An application should always know the cgroup that its attached to and be > able to read its state using the command that I gave earlier. I disagree. For simple applications, yes. For full containers, the cgroup in which it lives in is considered part of the external world. It should not have any kind of access to it. Also, tools need to work transparently. That's the same case with /proc/stat, used for top. We can't expect people to recode top to work on containerized environments. -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists