Giuseppe Scrivano 1ecca8439d new[ug]idmap: not require CAP_SYS_ADMIN in the parent userNS ...

if the euid!=owner of the userns, the kernel returns EPERM when trying
to write the uidmap and there is no CAP_SYS_ADMIN in the parent
namespace.

Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>

2018-10-22 16:57:50 +02:00

6.6 KiB

Raw Blame History

View Raw