Re: [ckrm-tech] [PATCH 0/2] resource control file system - aka containers on top of nsproxy!

From: Eric W. Biederman
Date: Thu Mar 08 2007 - 01:34:26 EST

Next message: Jan Engelhardt: "[PATCH] chaostables"
Previous message: Kyungmin Park: "MMC: Fix typo in mmc highspeed"
Next in thread: Paul Menage: "Re: [ckrm-tech] [PATCH 0/2] resource control file system - aka containers on top of nsproxy!"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Sam Vilain <sam@xxxxxxxxxx> writes:

> And do we bother changing IPC namespaces or let that one slide?

ipc namespaces works (if you worry about tiny details like we put
the resource limits for the sysv ipc objects inside the namespace).

Probably the most instructive example of this is that you can you
map a sysv ipc shared memory segment with shmat and then switch to
another sysvipc namespace you still have access by reads and writes
to that shared memory segment but you cannot manipulate it because it
doesn't have a name.

Either that or look at the output of ipcs, before and after an unshare.

SYSVIPC really doesn't have it's own (very weird) set of global names
and that is essentially all the ipc namespace deals with.

I think you have the sysvipc namespace confused with something else
though (like signal sending).

Eric
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Jan Engelhardt: "[PATCH] chaostables"
Previous message: Kyungmin Park: "MMC: Fix typo in mmc highspeed"
Next in thread: Paul Menage: "Re: [ckrm-tech] [PATCH 0/2] resource control file system - aka containers on top of nsproxy!"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]