Re: [PATCH 1/2] kernel: show current values of user namespace counters

2016-08-16 Thread Andrei Vagin
On Tue, Aug 16, 2016 at 03:05:29PM -0500, Serge E. Hallyn wrote: > Quoting Kees Cook (keesc...@chromium.org): > > On Mon, Aug 15, 2016 at 1:10 PM, Andrei Vagin wrote: > > > Recently Eric added user namespace counters. User namespace counters is > > > a feature that allows to

Re: [PATCH 1/2] kernel: show current values of user namespace counters

2016-08-16 Thread Andrei Vagin
On Tue, Aug 16, 2016 at 03:05:29PM -0500, Serge E. Hallyn wrote: > Quoting Kees Cook (keesc...@chromium.org): > > On Mon, Aug 15, 2016 at 1:10 PM, Andrei Vagin wrote: > > > Recently Eric added user namespace counters. User namespace counters is > > > a feature that allows to limit the number of

Re: [PATCH 1/2] kernel: show current values of user namespace counters

2016-08-16 Thread Kees Cook
On Mon, Aug 15, 2016 at 1:10 PM, Andrei Vagin wrote: > Recently Eric added user namespace counters. User namespace counters is > a feature that allows to limit the number of various kernel objects a > user can create. These limits are set via /proc/sys/user/ sysctls on a > per

Re: [PATCH 1/2] kernel: show current values of user namespace counters

2016-08-16 Thread Kees Cook
On Mon, Aug 15, 2016 at 1:10 PM, Andrei Vagin wrote: > Recently Eric added user namespace counters. User namespace counters is > a feature that allows to limit the number of various kernel objects a > user can create. These limits are set via /proc/sys/user/ sysctls on a > per user namespace

Re: [PATCH 1/2] kernel: show current values of user namespace counters

2016-08-16 Thread Serge E. Hallyn
Quoting Kees Cook (keesc...@chromium.org): > On Mon, Aug 15, 2016 at 1:10 PM, Andrei Vagin wrote: > > Recently Eric added user namespace counters. User namespace counters is > > a feature that allows to limit the number of various kernel objects a > > user can create. These

Re: [PATCH 1/2] kernel: show current values of user namespace counters

2016-08-16 Thread Serge E. Hallyn
Quoting Kees Cook (keesc...@chromium.org): > On Mon, Aug 15, 2016 at 1:10 PM, Andrei Vagin wrote: > > Recently Eric added user namespace counters. User namespace counters is > > a feature that allows to limit the number of various kernel objects a > > user can create. These limits are set via