On Thursday 04 August 2016 08:29 AM, Eric W. Biederman wrote: > Hari Bathini <hbathini@xxxxxxxxxxxxxxxxxx> writes: > >> This RFC patch set supports filtering container specific events >> when perf tool is executed inside a container. The patches apply >> cleanly on v4.7.0-rc7 >> >> Changes from v1: >> 1/3. Revived earlier approach[1] with cgroup namespace instead >> of pid namespace >> 2/3. New patch that adds instance support for uprobe events in >> tracefs filesystem >> 3/3. New patch that adds "newinstance" mount option for tracefs >> filesystem > "newinstace" ick no. > > I see no justification anywhere why the perf cgroup is not enough for > this. perf cgroup is not enough for uprobes, because even with perf cgroups a user within a container can still list/delete uprobes registered in other containers. Regards, Aravinda > > Eric > -- Regards, Aravinda _______________________________________________ Containers mailing list Containers@xxxxxxxxxxxxxxxxxxxxxxxxxx https://lists.linuxfoundation.org/mailman/listinfo/containers
