patchset to enable user namespaces
Eric W. Biederman
ebiederm at xmission.com
Wed Sep 25 07:51:36 UTC 2013
Serge Hallyn <serge.hallyn at ubuntu.com> writes:
> Hi,
>
> The final patches needed to resolve conflicts between XFS and user
> namespaces are in 3.12. I've backported them to saucy at
>
> http://kernel.ubuntu.com/git?p=serge/ubuntu-saucy.git;a=summary # m.sep23.xfs2
>
> This has 7 patches cherrypicked from Linus' tree, one patch by
> myself to add a sysctl, default off, to enable unprivileged use
> of CLONE_NEWUSER, and a packaging patch to set CONFIG_USER_NS=y.
You can kill about half your sysctl patch if you don't allocate
a binary number and don't update sysctl_binary.c. Extending the sysctl
binary interface is something that we stopped doing about 5 years ago,
and it is wrong to extend it for new sysctls.
The rest looks like a straight forward backport of the simple xfs userns
patches.
Eric
More information about the kernel-team
mailing list