On Tue, Apr 21, 2020 at 02:17:22PM +0200, Oleg Nesterov wrote: > On 04/21, Christian Brauner wrote: > > > > process B setnses into > > <pidnsC> which is a sibling pid namespace, > > please see pidns_install(), it verifies that > > * Only allow entering the current active pid namespace > * or a child of the current active pid namespace. I forgot about that. Though, don't we have the same problem in: static void do_notify_parent_cldstop(struct task_struct *tsk, bool for_ptracer, int why) at least for the for_ptrace is false case? Christian _______________________________________________ Containers mailing list Containers@xxxxxxxxxxxxxxxxxxxxxxxxxx https://lists.linuxfoundation.org/mailman/listinfo/containers
