SH> But so should check whether h->len_len < sysctl_wmem_max before SH> doing the capable check? Remember that any check for capable() SH> will set PF_SUPERPRIV on the task, so it's better to not call it SH> if it wasn't definately needed. Okay, sure. -- Dan Smith IBM Linux Technology Center email: danms@xxxxxxxxxx _______________________________________________ Containers mailing list Containers@xxxxxxxxxxxxxxxxxxxxxxxxxx https://lists.linux-foundation.org/mailman/listinfo/containers
