Search String: Display: Description: Sort:

Results:

References: [ +subject:/^(?:^\s*(re|sv|fwd|fw)[\[\]\d]*[:>-]+\s*)*\[PATCH\]\s+ipvs\:\s+allow\s+netlink\s+configuration\s+from\s+non\-initial\s+user\s+namespace\s*$/: 3 ]

Total 3 documents matching your query.

1. Re: [PATCH] ipvs: allow netlink configuration from non-initial user namespace (score: 1)
Author: Michael Weiß <michael.weiss@xxxxxxxxxxxxxxxxxxx>
Date: Fri, 8 Mar 2024 12:17:35 +0100
Oh yes your right that I have missed. I think non-global per-netns sysctls should be save to be allowed for unprivileged roots. sysfs can only be mounted rw in a new private netns. Just unsharing the
/html/lvs-devel/2024-03/msg00003.html (16,433 bytes)

2. Re: [PATCH] ipvs: allow netlink configuration from non-initial user namespace (score: 1)
Author: Julian Anastasov <ja@xxxxxx>
Date: Fri, 8 Mar 2024 09:55:24 +0200 (EET)
Hello, I planned such change but as followup patchset to other work which converts many structures to be per-netns. There is a RFC v2 patchset for reference: https://archive.linuxvirtualserver.org/ht
/html/lvs-devel/2024-03/msg00002.html (14,384 bytes)

3. [PATCH] ipvs: allow netlink configuration from non-initial user namespace (score: 1)
Author: Michael Weiß <michael.weiss@xxxxxxxxxxxxxxxxxxx>
Date: Thu, 7 Mar 2024 21:31:06 +0100
Configuring ipvs in a non-initial user namespace using the genl netlink interface, e.g., by 'ipvsadm' is currently resulting in an '-EPERM'. This is due to the use of GENL_ADMIN_PERM flag in 'ip_vs_c
/html/lvs-devel/2024-03/msg00001.html (16,147 bytes)


This search system is powered by Namazu