Re: [RFC, PATCH] pagemap: do not leak physical addresses to non-privileged userspace

From: Dave Hansen
Date: Mon Mar 09 2015 - 22:36:23 EST

On 03/09/2015 05:19 PM, Andy Lutomirski wrote:
> per-pidns like this is no good. You shouldn't be able to create a
> non-paranoid pidns if your parent is paranoid.

That sounds like a reasonable addition that shouldn't be hard to add.

> Also, at some point we need actual per-ns controls. This mount option
> stuff is hideous.


per-pidns == bad
per-ns == good

If the pid namespace is the wrong place, which namespace is the right place?

To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at
Please read the FAQ at