[PATCH 4/7] allow killing tasks in your own or child userns
Serge E. Hallyn
serge at hallyn.com
Mon Jan 10 20:32:14 PST 2011
Quoting Oren Laadan (orenl at cs.columbia.edu):
> > If permission is granted based on userids and the capability
> > isn't needed, then we don't want to needlessly set PF_SUPERPRIV.
> A bit off-topic: does this means that c/r needs to save and
> restore this process flag ?
It should, yeah. (Until we decide to nuke the flag)
More information about the Containers