[RFC][PATCH] Fix cap_capable to only allow owners in the parent user namespace to have caps.

Andy Lutomirski luto at amacapital.net
Fri Dec 14 18:47:13 UTC 2012


On Fri, Dec 14, 2012 at 10:43 AM, Linus Torvalds
<torvalds at linux-foundation.org> wrote:
> On Fri, Dec 14, 2012 at 10:12 AM, Eric W. Biederman
> <ebiederm at xmission.com> wrote:
>>
>> That said Serge I think I have lost track of the point of your question.
>
> .. and I'm a bit unsure what I should do about this all. Including
> pulling the pull request that actually can make this all matter.
>
> Hmm? Any consensus?

I think that, if Eric submits a newer version that renames the loop
variable for added comprehensibility, I'm okay with it.

Changing the semantics to a more expansive version like Serge was
talking about later on wouldn't break anything.  But I don't think
there's any reason to change it.

--Andy


More information about the Containers mailing list