From mboxrd@z Thu Jan  1 00:00:00 1970
From: Andrew Lunn <andrew@lunn.ch>
Subject: Re: AF_UNIX sockets crossing namespace based boundaries
Date: Wed, 2 Jan 2019 15:05:14 +0100
Message-ID: <20190102140514.GH22737@lunn.ch>
References: <CAK989ycHNM-rSK9OSvkmhK1jg1Q0bVu4BZE3DQuGown6=MzzFA@mail.gmail.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Cc: netdev@vger.kernel.org, David Ahern <dsa@cumulusnetworks.com>,
        Nicolas Dichtel <nicolas.dichtel@6wind.com>,
        Roopa Prabhu <roopa@cumulusnetworks.com>
To: Donald Sharp <sharpd@cumulusnetworks.com>
Return-path: <netdev-owner@vger.kernel.org>
Received: from vps0.lunn.ch ([185.16.172.187]:60330 "EHLO vps0.lunn.ch"
        rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP
        id S1727038AbfABOFQ (ORCPT <rfc822;netdev@vger.kernel.org>);
        Wed, 2 Jan 2019 09:05:16 -0500
Content-Disposition: inline
In-Reply-To: <CAK989ycHNM-rSK9OSvkmhK1jg1Q0bVu4BZE3DQuGown6=MzzFA@mail.gmail.com>
Sender: netdev-owner@vger.kernel.org
List-ID: <netdev.vger.kernel.org>

On Tue, Jan 01, 2019 at 07:46:07PM -0500, Donald Sharp wrote:
> I have created multiple namespaces:
> 
> sharpd@robot /v/l/frr> ip netns list
> two (id: 2)
> one (id: 1)
> EVA (id: 0)
> 
> And am running a process in namespace two that creates a named socket
> `/var/log/frr/run/zserv.api`:

Hi Donald

Just to be sure...

Are you creating only a network name space, and not a filesystem mount
namespace?

I've successfully run hundred of FRR daemons in namespaces on Linux
for simulation work, but i always use both a network namespace and
mount namespace. /var/log/frr/run/zserv.api is clearly a filesystem
path, so you need to separate these at the filesystem level.

       Andrew