Re: [lxc-devel] [systemd-devel] [PATCH] netns: unix: only allow to find out unix socket in same net namespace

On Mon, 2013-08-26 at 09:06 +0800, Gao feng wrote: > On 08/26/2013 02:16 AM, James Bottomley wrote: > > On Sun, 2013-08-25 at 19:37 +0200, Kay Sievers wrote: > >> On Sun, Aug 25, 2013 at 7:16 PM, James Bottomley > >> wrote: > >>> On Wed, 2013-08-21 at 11:51 +0200, Kay Sievers wrote: > On Wed,

Re: [lxc-devel] [systemd-devel] [PATCH] netns: unix: only allow to find out unix socket in same net namespace

On Wed, 2013-08-21 at 11:51 +0200, Kay Sievers wrote: > On Wed, Aug 21, 2013 at 9:22 AM, Gao feng wrote: > > On 08/21/2013 03:06 PM, Eric W. Biederman wrote: > > >> I suspect libvirt should simply not share /run or any other normally > >> writable directory with the host. Sharing /run /var/run o

Re: [lxc-devel] [systemd-devel] [PATCH] netns: unix: only allow to find out unix socket in same net namespace

On Sun, 2013-08-25 at 19:37 +0200, Kay Sievers wrote: > On Sun, Aug 25, 2013 at 7:16 PM, James Bottomley > wrote: > > On Wed, 2013-08-21 at 11:51 +0200, Kay Sievers wrote: > >> On Wed, Aug 21, 2013 at 9:22 AM, Gao feng wrote: > >> > On 08/21/2013 03:06 PM, Eric W. Biederman wrote: > >> > >> >> I

Re: [lxc-devel] [systemd-devel] [PATCH] netns: unix: only allow to find out unix socket in same net namespace

On Mon, 2013-08-26 at 11:35 +0800, Gao feng wrote: > On 08/26/2013 11:19 AM, James Bottomley wrote: > > Yes, we are discussing this problem in this whole thread. I wasn't really watching that bit, since the problem looks solved to me. I was just reacting against the unfortunate notion that a conta

Re: [lxc-devel] [systemd-devel] [PATCH] netns: unix: only allow to find out unix socket in same net namespace

Quoting Gao feng (gaof...@cn.fujitsu.com): > On 08/26/2013 11:19 AM, James Bottomley wrote: > > On Mon, 2013-08-26 at 09:06 +0800, Gao feng wrote: > >> On 08/26/2013 02:16 AM, James Bottomley wrote: > >>> On Sun, 2013-08-25 at 19:37 +0200, Kay Sievers wrote: > On Sun, Aug 25, 2013 at 7:16 PM,

Re: [lxc-devel] [systemd-devel] [PATCH] netns: unix: only allow to find out unix socket in same net namespace

On Sun, Aug 25, 2013 at 7:16 PM, James Bottomley wrote: > On Wed, 2013-08-21 at 11:51 +0200, Kay Sievers wrote: >> On Wed, Aug 21, 2013 at 9:22 AM, Gao feng wrote: >> > On 08/21/2013 03:06 PM, Eric W. Biederman wrote: >> >> >> I suspect libvirt should simply not share /run or any other normally >

[lxc-devel] versioning the container monitor api

Hi, One of the issues we want addressed for lxc 1.0 is versioning. There are a few pieces to that: 1. liblxc itself should be properly versioned 2. the hook exports should probably versioned so that consumers of say the lua hooks know what they are dealing with

Re: [lxc-devel] versioning the container monitor api

Hi Serge, > I start a container running a crucial mail server. I upgrade > lxc. The new lxc has changed the format of messages for the > commands api. Now I do 'lxc-list', which queries the running > monitor to check its init pid with LXC_CMD_GET_INIT_PID. The > c

Re: [lxc-devel] versioning the container monitor api

I like it, thanks :) -serge Quoting Christian Seiler (christ...@iwakd.de): > Hi Serge, > > > I start a container running a crucial mail server. I upgrade > > lxc. The new lxc has changed the format of messages for the > > commands api. Now I do 'lxc-list', which queries the runnin