[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-Id: <20140424.164820.1543648508330465096.davem@davemloft.net>
Date: Thu, 24 Apr 2014 16:48:20 -0400 (EDT)
From: David Miller <davem@...emloft.net>
To: vgoyal@...hat.com
Cc: luto@...capital.net, tj@...nel.org, dwalsh@...hat.com,
linux-kernel@...r.kernel.org, lpoetter@...hat.com,
ssorce@...hat.com, cgroups@...r.kernel.org, kay@...hat.com,
netdev@...r.kernel.org
Subject: Re: [PATCH 2/2] net: Implement SO_PASSCGROUP to enable passing
cgroup path
From: Vivek Goyal <vgoyal@...hat.com>
Date: Thu, 24 Apr 2014 16:34:27 -0400
> By open() time you mean at socket() time or at connect() time?
I mean at all of the places at which init_peercred() occurs.
> You also mentioned that you want SO_PEERCGROUP and SO_PASSCGROUP as
> pairs like SO_PEERCRED and SO_PASSCRED. But to me, SO_PEERCRED and
> SO_PASSCRED are not *exact* pairs and are little different in their
> semantics. SO_PEERCRED gives us client creds at connect() time
> while SO_PASSCRED client's real creds at sendmsg() time. SO_PASSCRED
> does not store client's credential's at connect() time for datagram
> sockets.
Then you haven't been following the discussion.
The client's credentials at sendmsg()/write() time are "DO NOT CARE".
You cannot even guarentee the semantics in the logging example if
you ask for these "client identity at sendmsg() time" semantics.
What if the event occured when the client was in cgroup1, and the
log message goes out after it has been moved into cgroup2?
That is just proof that this whole idea is fundamentally flawed.
You guys need to come up with something else to achieve your goals,
this isn't it.
--
To unsubscribe from this list: send the line "unsubscribe netdev" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists