On 01/14/2013 06:32 PM, Serge Hallyn wrote:
> This is a first step to enabling user namespaces. When starting a
> container in a new user namespace, the child will not have the
> rights to write to the cgroup fs. (We can give it that right, but
> don't always want to have to).
>
> At the parent,
This is a first step to enabling user namespaces. When starting a
container in a new user namespace, the child will not have the
rights to write to the cgroup fs. (We can give it that right, but
don't always want to have to).
At the parent, we don't want to setup_cgroups() before the child
has s
