Kirill Korotaev <dev at sw.ru> writes: > yes, these patches are usable for OpenVZ AS IS, so I'm not sure > why we can't do step by step and commit. However I posted some comments on > patches... > > Eric do you have some STRONG objections (maybe I just missed it somewhere)? - We do not handle interactions between processes in different uid namespaces and still have the normal uid equality checks. - I am willing to be convinced that this is a nuclear missile the user is allowed to shoot themselves in the foot with if someone can show me how to use the current version safely. A lot of this scares me silly as when ever you touch the primary identifier in the security checks you must be very very very careful. My gut feeling is that I'm nowhere near paranoid enough and the rest of you aren't even paranoid. What I want to see is that every uid identity check becomes either a struct user comparison or a uid, uid_ns tuple comparison. Eric
