OpenVZ Forum: Devel » [PATCH 0/4] Devices accessibility control group (v2)

Home » Mailing lists » Devel » [PATCH 0/4] Devices accessibility control group (v2)

Show: Today's Messages :: Show Polls :: Message Navigator
E-mail to friend

Re: [PATCH 0/4] Devices accessibility control group (v2) [message #26070 is a reply to message #26035]

Tue, 15 January 2008 08:22

Pavel Emelianov
Messages: 1149
Registered: September 2006

Senior Member

sukadev@us.ibm.com wrote:
> | > I started playing with this and noticed that even if I try to
> | > enable read access to device [c, 1:3] it also grants access
> | > to device [c, 1:5]. 
> | 
> | Hm... I can't reproduce this:
> | 
> | # /bin/echo 'c 1:3 r-' > /cnt/dev/0/devices.permissions
> | # /bin/echo -n $$ > /cnt/dev/0/tasks
> | # cat /cnt/dev/0/devices.permissions 
> | c 1:3 r-
> | # hexdump /dev/null 
> | # hexdump /dev/zero 
> | hexdump: /dev/zero: No such device or address
> | hexdump: /dev/zero: Bad file descriptor
> | 
> | Maybe you have played with devs cgroups before getting this?
> | Can you show what's the contents of the devices.permissions file
> | in your case?
> 
> Here is the repro again. I even tried after a reboot. Basically,
> granting access to /dev/null is also granting access to /dev/zero.
> 
> 	# cat devices.permissions
> 	# hexdump /dev/zero
> 	hexdump: /dev/zero: No such device or address
> 	hexdump: /dev/zero: Bad file descriptor
> 	# hexdump /dev/null
> 	hexdump: /dev/null: No such device or address
> 	hexdump: /dev/null: Bad file descriptor
> 	# echo 'c 1:3 r-' > devices.permissions
> 	# hexdump /dev/null
> 	# hexdump /dev/zero
> 	0000000 0000 0000 0000 0000 0000 0000 0000 0000
> 	*
> 	^C
> 	# cat tasks
> 	3279
> 	22266
> 	# ps
> 	  PID TTY          TIME CMD
> 	 3279 pts/0    00:00:00 bash
> 	22267 pts/0    00:00:00 ps
> 

This all looks completely incomprehensible :( 

Here's my test:
# mount -t cgroup none /cnt/dev/ -o devices
# mkdir /cnt/dev/0
# /bin/echo -n $$ > /cnt/dev/0/tasks 
# cat /cnt/dev/0/devices.permissions 
# hexdump /dev/zero 
hexdump: /dev/zero: No such device or address
hexdump: /dev/zero: Bad file descriptor
# hexdump /dev/null 
hexdump: /dev/null: No such device or address
hexdump: /dev/null: Bad file descriptor
# echo 'c 1:3 r-' > /cnt/dev/0/devices.permissions
# cat /cnt/dev/0/devices.permissions 
c 1:3 r-
# hexdump /dev/null 
# hexdump /dev/zero 
hexdump: /dev/zero: No such device or address
hexdump: /dev/zero: Bad file descriptor


Sukadev, could you please try to track the problem as you
seem to be the only person who's experiencing problems
with that.

Thanks,
Pavel
_______________________________________________
Containers mailing list
Containers@lists.linux-foundation.org
https://lists.linux-foundation.org/mailman/listinfo/containers

Report message to a moderator

[Message index]

		[PATCH 0/4] Devices accessibility control group (v2) By: Pavel Emelianov on Tue, 08 January 2008 09:02
		[PATCH 1/4] Some changes in the kobject mapper By: Pavel Emelianov on Tue, 08 January 2008 09:06
		Re: [PATCH 1/4] Some changes in the kobject mapper By: Daniel Hokka Zakrisso on Tue, 08 January 2008 18:36
		Re: [PATCH 1/4] Some changes in the kobject mapper By: Dave Hansen on Tue, 08 January 2008 19:17
		[PATCH 2/4] The character devices layer changes By: Pavel Emelianov on Tue, 08 January 2008 09:12
		Re: [PATCH 2/4] The character devices layer changes By: serue on Mon, 14 January 2008 17:03
		Re: [PATCH 2/4] The character devices layer changes By: Pavel Emelianov on Tue, 15 January 2008 08:05
		Re: [PATCH 2/4] The character devices layer changes By: serue on Tue, 15 January 2008 14:54
		[PATCH 3/4] The block devices layer changes By: Pavel Emelianov on Tue, 08 January 2008 09:15
		[PATCH 4/4] The control group itself By: Pavel Emelianov on Tue, 08 January 2008 09:18
		Re: [PATCH 4/4] The control group itself By: serue on Mon, 14 January 2008 17:40
		Re: [PATCH 4/4] The control group itself By: Pavel Emelianov on Tue, 15 January 2008 07:53
		Re: [PATCH 4/4] The control group itself By: serue on Tue, 15 January 2008 14:44
		Re: [PATCH 4/4] The control group itself By: Paul Menage on Tue, 15 January 2008 16:13
		Re: [PATCH 4/4] The control group itself By: serue on Tue, 15 January 2008 17:49
		Re: [PATCH 4/4] The control group itself By: Paul Menage on Tue, 15 January 2008 17:54
		Re: [PATCH 4/4] The control group itself By: serue on Tue, 15 January 2008 18:17
		Re: [PATCH 4/4] The control group itself By: Paul Menage on Mon, 14 January 2008 21:54
		Re: [PATCH 4/4] The control group itself By: Pavel Emelianov on Tue, 15 January 2008 07:58
		Re: [PATCH 0/4] Devices accessibility control group (v2) By: Sukadev Bhattiprolu on Sat, 12 January 2008 21:20
		Re: [PATCH 0/4] Devices accessibility control group (v2) By: Pavel Emelianov on Mon, 14 January 2008 07:52
		Re: [PATCH 0/4] Devices accessibility control group (v2) By: Sukadev Bhattiprolu on Mon, 14 January 2008 17:42
		Re: [PATCH 0/4] Devices accessibility control group (v2) By: Pavel Emelianov on Tue, 15 January 2008 08:22
		Re: [PATCH 0/4] Devices accessibility control group (v2) By: Sukadev Bhattiprolu on Thu, 17 January 2008 06:26
		Re: [PATCH 0/4] Devices accessibility control group (v2) By: Pavel Emelianov on Mon, 21 January 2008 08:31
		Re: [PATCH 0/4] Devices accessibility control group (v2) By: Paul Menage on Mon, 14 January 2008 21:18
		Re: [PATCH 0/4] Devices accessibility control group (v2) By: Pavel Emelianov on Tue, 15 January 2008 08:06

Previous Topic:	[PATCH 0/3 net-2.6.25] call FIB rule->action in the correct namespace
Next Topic:	A consideration on memory controller.

Goto Forum:

-=] Back to Top [=-

[ Syndicate this forum (XML) ] [

] [

]

Current Time: Sat Aug 30 22:48:08 GMT 2025

Total time taken to generate the page: 0.08018 seconds