Eric W. Biederman wrote: > Pavel Emelyanov <xemul@xxxxxxxxxxxxx> writes: > >>>> Yet another set of per-namespace IDs along with CLONE_NEWXXX ones? >>>> I currently have a way to create all namespaces we have with one >>>> syscall. Why don't we have an ability to enter them all with one syscall? >>> The CLONE_NEWXXX series of bits has been an royal pain to work with, >>> and it appears to be unnecessary complications for no gain. >> That's the answer for the "Yet another set..." question. >> How about the "Why don't we have..." one? > > I am not certain which question you are asking: > > Why don't we have an ability to enter all namespaces with one syscall > invocation? That's how I understood the question, and I, too, wonder why not ? By the way, an alternative to using bitmap is to change the prototype of setns() to accept an array of FD's: int setns(int *fds, int nfds); So the process will atomically enter all the namespaces as specified by the FDs. Oren. > > Why don't we have a syscall that allows us to enter every namespace? > > Eric > > _______________________________________________ > Containers mailing list > Containers@xxxxxxxxxxxxxxxxxxxxxxxxxx > https://lists.linux-foundation.org/mailman/listinfo/containers > _______________________________________________ Containers mailing list Containers@xxxxxxxxxxxxxxxxxxxxxxxxxx https://lists.linux-foundation.org/mailman/listinfo/containers
