[prev in list] [next in list] [prev in thread] [next in thread]
List: busybox
Subject: Re: unshare -r accidentally implies -u (UTS) instead of -U (user), and -r mapping is broken
From: Denys Vlasenko <vda.linux () googlemail ! com>
Date: 2017-11-09 15:07:31
Message-ID: CAK1hOcOTj5U_8GmF-J9Ucgn190qXjQY90MFfBvHk0tOV0fr1Zg () mail ! gmail ! com
[Download RAW message or body]
Fixed, thanks!
On Sun, Nov 5, 2017 at 11:18 AM, Urja Rannikko <urjaman@gmail.com> wrote:
> Hi,
>
> On -r being broken:
> the uid_map and gid_map for the root mapping should be
> "0 %u 1" not "%u 0 1" (i think that tries to map the outside root to
> be your user id in the namespace... nope.)
>
> Noticed these while messing about with making an unprivileged user
> namespace... Both of these cause things to fail. And the root mapping
> can only be done by the process doing the unshare (exec drops
> privileges if you're not "root", so you end up stuck as nobody/65534).
>
> --
> Urja Rannikko
> _______________________________________________
> busybox mailing list
> busybox@busybox.net
> http://lists.busybox.net/mailman/listinfo/busybox
_______________________________________________
busybox mailing list
busybox@busybox.net
http://lists.busybox.net/mailman/listinfo/busybox
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic