[Devel] [PATCH rh7] proc: Use ve_capable() in oom_score_adj_write()
Vladimir Davydov
vdavydov at virtuozzo.com
Tue Oct 20 07:32:30 PDT 2015
On Tue, Oct 20, 2015 at 05:21:17PM +0300, Kirill Tkhai wrote:
> Priviliged processes inside VE should be able
> to configure /proc/$PID/oom_score_adj. But they can't
> since we use user_ns, and they do not have CAP_SYS_RESOURCE
> in init_user_ns.
>
> Use ve_capable() instead.
>
> https://jira.sw.ru/browse/PSBM-40359
>
> Signed-off-by: Kirill Tkhai <ktkhai at odin.com>
Reviewed-by: Vladimir Davydov <vdavydov at virtuozzo.com>
More information about the Devel
mailing list