]> granicus.if.org Git - shadow/commit
projects / shadow / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 6bf2d74) | patch
new[ug]idmap: not require CAP_SYS_ADMIN in the parent userNS
authorGiuseppe Scrivano <gscrivan@redhat.com>
Mon, 8 Oct 2018 16:18:18 +0000 (18:18 +0200)
committerGiuseppe Scrivano <gscrivan@redhat.com>
Mon, 22 Oct 2018 14:57:50 +0000 (16:57 +0200)
commit1ecca8439d5ba51712a9c62c30fb2e656fd6df49
treeae76bcb95a068f54d1bac0dd1b592dfded2155c1tree | snapshot
parent6bf2d74dfc6adf5f41a4ddab326b06a93e9746eccommit | diff
new[ug]idmap: not require CAP_SYS_ADMIN in the parent userNS

if the euid!=owner of the userns, the kernel returns EPERM when trying
to write the uidmap and there is no CAP_SYS_ADMIN in the parent
namespace.

Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
configure.ac diff | blob | history
libmisc/idmapping.c diff | blob | history
libmisc/idmapping.h diff | blob | history
src/Makefile.am diff | blob | history
src/newgidmap.c diff | blob | history
src/newuidmap.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.