Re: [PATCH 2/18] cleanups and bug fix in do_loopback()

From: Miklos Szeredi
Date: Wed Nov 09 2005 - 16:15:49 EST

Next message: Zach Brown: "[PATCH 3/3] aio: make ctx ref debugging depend on DEBUG"
Previous message: Zach Brown: "[PATCH 2/3] aio: replace locking comments with assert_spin_locked()"
In reply to: Ram Pai: "Re: [PATCH 2/18] cleanups and bug fix in do_loopback()"
Next in thread: Ram Pai: "Re: [PATCH 2/18] cleanups and bug fix in do_loopback()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> Yes there is some contradiction of some sorts on this. private-ness
> means that the namespace must _not_ be accesible to processes
> in other namespace. But 'file descriptor sent between two processes in
> different namespaces' seems to break that guarantee.

So..., are we going to check namespace in every file operation? How
much do you want to bet, that it won't break any applications?

> > Also with ptrace() you can still access other process's namespace, so
> > proc_check_root() is also too strict (or ptrace() too lax).
>
> same here.

You mean, that ptrace() _is_ too lax? Adding a namespace check to
ptrace might well cause grief too.

The real question is, how private do we want the namespace to be. I
don't believe, we need to make it any more private than it currently
is.

Miklos
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Zach Brown: "[PATCH 3/3] aio: make ctx ref debugging depend on DEBUG"
Previous message: Zach Brown: "[PATCH 2/3] aio: replace locking comments with assert_spin_locked()"
In reply to: Ram Pai: "Re: [PATCH 2/18] cleanups and bug fix in do_loopback()"
Next in thread: Ram Pai: "Re: [PATCH 2/18] cleanups and bug fix in do_loopback()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]