[REVIEW][PATCH] vfs: Lock in place mounts from more privileged users
Serge E. Hallyn
serge at hallyn.com
Wed Jul 24 12:49:33 UTC 2013
Quoting Eric W. Biederman (ebiederm at xmission.com):
>
> Serge does this patch break lxc? I think all should be well but I want
> to make certain there is not some hidden case where this fundamentaly
> breaks some functionality.
I haven't yet tried. I'll build and test a kernel today. I'm pretty
sure all the child's mounts are done after clone, so I *think* the worst
case will be that the unmounting of put_old after pivot_root() will
be noisy. Will let you know.
-serge
More information about the Containers
mailing list