Aravinda Prasad <aravinda@xxxxxxxxxxxxxxxxxx> writes: > On Thursday 04 August 2016 08:29 AM, Eric W. Biederman wrote: >> Hari Bathini <hbathini@xxxxxxxxxxxxxxxxxx> writes: >> >>> This RFC patch set supports filtering container specific events >>> when perf tool is executed inside a container. The patches apply >>> cleanly on v4.7.0-rc7 >>> >>> Changes from v1: >>> 1/3. Revived earlier approach[1] with cgroup namespace instead >>> of pid namespace >>> 2/3. New patch that adds instance support for uprobe events in >>> tracefs filesystem >>> 3/3. New patch that adds "newinstance" mount option for tracefs >>> filesystem >> "newinstace" ick no. >> >> I see no justification anywhere why the perf cgroup is not enough for >> this. > > perf cgroup is not enough for uprobes, because even with perf cgroups a > user within a container can still list/delete uprobes registered in > other containers. Just to be clear, even if there is one cgroup per container? Eric _______________________________________________ Containers mailing list Containers@xxxxxxxxxxxxxxxxxxxxxxxxxx https://lists.linuxfoundation.org/mailman/listinfo/containers
