From: Davidlohr Bueso <dbueso@suse.de>
To: Christian Brauner <christian.brauner@ubuntu.com>
Cc: CGEL <cgel.zte@gmail.com>,
jamorris@linux.microsoft.com, keescook@chromium.org,
ktkhai@virtuozzo.com, legion@kernel.org,
linux-kernel@vger.kernel.org, ran.xiaokai@zte.com.cn,
varad.gautam@suse.com
Subject: Re: [PATCH V2] ipc: add set_ownership() and permissions() callbacks for posix mqueue sysctl
Date: Mon, 13 Sep 2021 12:42:15 -0700 [thread overview]
Message-ID: <c74f33bde7d03d71343cc9251b298ff4@suse.de> (raw)
In-Reply-To: <20210913144047.4v5jquhyysnnlfvh@wittgenstein>
On 2021-09-13 07:40, Christian Brauner wrote:
> On Fri, Aug 27, 2021 at 03:12:06AM -0700, CGEL wrote:
>> From: Ran Xiaokai <ran.xiaokai@zte.com.cn>
>>
>> When a non-root user process creates a user namespace and ipc
>> namespace
>> with command "unshare -Ur -i", and map the root user inside
>> the user namesapce to the global owner of user namespace.
>> The newly created user namespace OWNS the ipc namespace,
>> So the root user inside the user namespace should have full access
>> rights to the ipc namespace resources and should be writable to
>> the ipc mqueue sysctls.
>>
>> v2:
>> - update commit msg.
>> - fix the coding style issue.
>> Signed-off-by: Ran Xiaokai <ran.xiaokai@zte.com.cn>
>> ---
>
> David,
>
> are you happy with this too? If so I'd pick this up.
LGTM:
Acked-by: Davidlohr Bueso <dbueso@suse.de>
next prev parent reply other threads:[~2021-09-13 19:42 UTC|newest]
Thread overview: 19+ messages / expand[flat|nested] mbox.gz Atom feed top
2021-07-29 3:06 [PATCH] ipc: add set_ownership() and permissions() callbacks for posix mqueue sysctl cgel.zte
2021-07-29 14:53 ` Christian Brauner
2021-08-03 10:31 ` CGEL
2021-08-03 14:01 ` Christian Brauner
2021-08-11 15:51 ` CGEL
2021-08-23 3:29 ` [PATCH] tests: add mqueue sysctl tests for user namespace Ran Xiaokai
2021-08-23 15:26 ` Davidlohr Bueso
2021-08-24 12:05 ` Christian Brauner
2021-08-27 9:50 ` [PATCH V2] " CGEL
2021-08-27 10:12 ` [PATCH V2] ipc: add set_ownership() and permissions() callbacks for posix mqueue sysctl CGEL
2021-09-13 14:40 ` Christian Brauner
2021-09-13 19:42 ` Davidlohr Bueso [this message]
2021-09-16 1:49 ` CGEL
2021-10-04 10:53 ` Christian Brauner
2021-12-01 7:14 ` CGEL
2021-12-01 12:53 ` Christian Brauner
2022-04-06 7:59 ` cgel.zte
2021-07-30 15:09 ` [PATCH] " Davidlohr Bueso
2021-08-03 10:34 ` CGEL
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=c74f33bde7d03d71343cc9251b298ff4@suse.de \
--to=dbueso@suse.de \
--cc=cgel.zte@gmail.com \
--cc=christian.brauner@ubuntu.com \
--cc=jamorris@linux.microsoft.com \
--cc=keescook@chromium.org \
--cc=ktkhai@virtuozzo.com \
--cc=legion@kernel.org \
--cc=linux-kernel@vger.kernel.org \
--cc=ran.xiaokai@zte.com.cn \
--cc=varad.gautam@suse.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.