projects / platform / upstream / systemd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 3aca832) | patch
machined: refuse bind mounts on containers that have user namespaces applied
authorLennart Poettering <lennart@poettering.net>
Thu, 16 Feb 2017 12:59:13 +0000 (13:59 +0100)
committerLennart Poettering <lennart@poettering.net>
Fri, 17 Feb 2017 09:22:28 +0000 (10:22 +0100)
commit7f43928ba6258c66296614dd46ff7600e0e47b5f
tree43390bfd9bfbe26059f252789950a8456615d67btree | snapshot
parent3aca8326bda2c6e8d8ddd99ef5cab63cc7a9af1ccommit | diff
machined: refuse bind mounts on containers that have user namespaces applied

As the kernel won't map the UIDs this is simply not safe, and hence we
should generate a clean error and refuse it.

We can restore this feature later should a "shiftfs" become available in
the kernel.
man/machinectl.xml diff | blob | history
src/machine/machine-dbus.c diff | blob | history
Domain: System / System Framework;