[PATCH 4/7] allow killing tasks in your own or child userns

Serge E. Hallyn serge at hallyn.com
Mon Jan 10 20:32:14 PST 2011


Quoting Oren Laadan (orenl at cs.columbia.edu):
...
> > If permission is granted based on userids and the capability
> > isn't needed, then we don't want to needlessly set PF_SUPERPRIV.
> 
> A bit off-topic: does this means that c/r needs to save and 
> restore this process flag ?

It should, yeah.  (Until we decide to nuke the flag)

thanks,
-serge


More information about the Containers mailing list