Feature #1145
closedlttng-logger as a character device for containers
100%
Description
With unprivileged LXD containers, we cannot write to /proc/lttng-logger even though it is RW for everybody. The /proc root is not namespace-aware and prevents the user from a container to write in it. The /proc/<PID> and /proc/sys entries are namespace-aware, but everything else in /proc is legacy and/or read-only (with the exception sysrq-trigger which is a special case already handled).
A cleaner approach would be to expose /dev/lttng-logger. That would allow administrators to allow containers to use the feature with:
lxc config device add NAME lttng unix-char path=/dev/lttng-logger
We could probably keep the 2 approaches (/proc and /dev) in the same module.
Updated by Anonymous about 6 years ago
- Status changed from New to Resolved
- % Done changed from 0 to 100
Applied in changeset lttng-modules|4d328377868e2f8fc2027c2492c3cd53615dffdc.