I'm really confused what problem that is trying to be solved, here, but it **feels** really, really wrong. Why do we need to store all of this state on a per-file basis, instead of some kind of per-file system or per-container data structure? And how many of these security.foo@uid=bar xattrs do you expect there to be? How many "foo", and how many "bar"? Maybe I missed the full write up, in which case please send me a link to the full writeup --- ideally in the form of a design doc that explains the problem statement, gives some examples of how it's going to be used, what were the other alternatives that were considered, and why they were rejected, etc. Thanks, - Ted _______________________________________________ Containers mailing list Containers@xxxxxxxxxxxxxxxxxxxxxxxxxx https://lists.linuxfoundation.org/mailman/listinfo/containers
