Re: [PATCH] devpts: Add ptmx_uid and ptmx_gid options
- From: Alexander Larsson <alexl redhat com>
- To: James Bottomley <James Bottomley HansenPartnership com>
- Cc: gnome-os-list gnome org, Linux Containers <containers lists linux-foundation org>, "linux-kernel vger kernel org" <linux-kernel vger kernel org>, Andy Lutomirski <luto amacapital net>, mclasen redhat com, "Eric W. Biederman" <ebiederm xmission com>, Linux FS Devel <linux-fsdevel vger kernel org>
- Subject: Re: [PATCH] devpts: Add ptmx_uid and ptmx_gid options
- Date: Tue, 31 Mar 2015 15:11:11 +0200
On tis, 2015-03-31 at 16:07 +0300, James Bottomley wrote:
On Tue, 2015-03-31 at 09:57 +0200, Alexander Larsson wrote:
On fre, 2015-03-27 at 10:03 +0100, James Bottomley
On Fri, Feb 20, 2015 at 5:04 PM, Andy Lutomirski <luto amacapital net> wrote:
It's currently impossible to mount devpts in a user namespace that
has no root user, since ptmx can't be created.
This is where I stopped reading because it's not true ... because it is
possible, you just do it from the host as real root.
The point is being able to set up a container as a user, not requiring
the setup to be run as root at all. In my case container is a desktop
application which will be started by the user, and will run as the user.
There is no root involved in the call chain at all.
I don't really like that use case: Most container setups are under the
control of an orchestration system (like LXC, OpenVZ or even Docker).
Well, I'm doing something different from a server side orchestration
framework. I'm doing sandboxed desktop apps.
--
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
Alexander Larsson Red Hat, Inc
alexl redhat com alexander larsson gmail com
He's an underprivileged sweet-toothed master criminal in a wheelchair.
She's a psychotic out-of-work opera singer with the power to see death.
They fight crime!
[
Date Prev][
Date Next] [
Thread Prev][
Thread Next]
[
Thread Index]
[
Date Index]
[
Author Index]
