From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1751252AbWGLLMh (ORCPT ); Wed, 12 Jul 2006 07:12:37 -0400 Received: (majordomo@vger.kernel.org) by vger.kernel.org id S1751254AbWGLLMh (ORCPT ); Wed, 12 Jul 2006 07:12:37 -0400 Received: from mailhub.sw.ru ([195.214.233.200]:59423 "EHLO relay.sw.ru") by vger.kernel.org with ESMTP id S1751252AbWGLLMg (ORCPT ); Wed, 12 Jul 2006 07:12:36 -0400 Message-ID: <44B4D8CD.5090701@sw.ru> Date: Wed, 12 Jul 2006 15:11:09 +0400 From: Kirill Korotaev User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7.13) Gecko/20060417 X-Accept-Language: en-us, en, ru MIME-Version: 1.0 To: "Eric W. Biederman" CC: Cedric Le Goater , linux-kernel@vger.kernel.org, Andrew Morton , Kirill Korotaev , Andrey Savochkin , Herbert Poetzl , Sam Vilain , "Serge E. Hallyn" , Dave Hansen Subject: Re: [PATCH -mm 0/7] execns syscall and user namespace References: <20060711075051.382004000@localhost.localdomain> In-Reply-To: Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Sender: linux-kernel-owner@vger.kernel.org X-Mailing-List: linux-kernel@vger.kernel.org > I haven't had a chance to do a thorough review yet but why is > this needed? > > What can be left shared by switching to a new namespace and then > execing an executable? > > Is it not possible to ensure what you are trying to ensure with > a good user space executable? I agree with Eric. In OpenVZ we don't do exec(), because executable itself ensures correct environment. Do we need to overcomplicate kernel in this regard? Thanks, Kirill