Hello, On Mon, May 12, 2014 at 03:10:12PM +0400, Andrey Wagin wrote: > I found the "devices.allow" file can't be opened in read-write mode on > the 3.14 kernel. I uses libcgroup, which opens devices.allow with > O_RDWR. This works fine before 3.14 and fails one 3.14. This files has Urgh... great. > write-only permissions. I have tried to create a regular file with the > same permission and kernel allows to open it with O_RDWR. > So what do you think is it a problem, which must be fixed? That's vfs skipping permission check because the opener is root. sysfs traditionally enforced the same permission check on root too. cgroup switched over to kernfs and now share the same open logic with sysfs and is now getting open failure from permission check on root opens too. I'll bring kernfs's behavior closer to regular files. Thanks. -- tejun _______________________________________________ Containers mailing list Containers@xxxxxxxxxxxxxxxxxxxxxxxxxx https://lists.linuxfoundation.org/mailman/listinfo/containers
