[knem-devel] namespace support

Dave Love dave.love at manchester.ac.uk
Thu Sep 5 18:22:35 CEST 2019


Brice Goglin <Brice.Goglin at inria.fr> writes:

> It looks like we're good:
>
> * if one process does unshare(CLONE_NEWUSER), it becomes "nobody" in
> that namespace but it can still communicate with my original processes
> outside of that namespace (belonging to bgoglin)
>
> * if the original process does setuid(65534) to effectively become
> "nobody" too, communication with the other "nobody" fails with EPERM.
>
> Brice

Bien!  <https://github.com/hpc/charliecloud/issues/132>


More information about the knem-devel mailing list