Bastien Nocera <hadess@xxxxxxxxxx> writes: > BPF list, first CC: here, I hope the commit messages are clear enough to > understand the purpose of the patchset. If not, your comments would be > greatly appreciated so I can make the commit messages self-explanatory. > > Eric, what would be the right identifier to use for a specific user > namespace that userspace could find out? I know the PIDs of the > bubblewrap processes that created those user namespaces, would those be > good enough? A namespace file descriptor would work. AKA The result of opening /proc/<pid>/ns/user. I assume you are asking so that you can filter the set of file descriptors to revoked not by user but by user namespace. Eric > Changes since v2: > - Changed the internal API to pass a struct usb_device > - Fixed potential busy loop in user-space when revoking access to a > device > > Bastien Nocera (2): > USB: core: add a way to revoke access to open USB devices > usb: Implement usb_revoke() BPF function > > drivers/usb/core/devio.c | 79 ++++++++++++++++++++++++++++++++++++++-- > drivers/usb/core/usb.c | 51 ++++++++++++++++++++++++++ > drivers/usb/core/usb.h | 2 + > 3 files changed, 128 insertions(+), 4 deletions(-)
