-
Pavel Emelyanov authored
We link files to each other at restore time to restore unlinked paths. Kernel has strange secutiry restrictions about linkat we use. If the fsuid of the caller doesn't equals the uid of the file and the file is not "safe" one, then only global CAP_CHOWN will be allowed to link(). This brings problems in user namespaces -- uns root is not allowed to linkat any file, unlike global root. Fortunately, we can change the fsuid temporarily and still linkat the file we want. Hopefully this hack will go away some day soon, when the kernel will have saner checks for linkat capabilities. Signed-off-by:
Pavel Emelyanov <xemul@parallels.com> Acked-by:
Andrew Vagin <avagin@parallels.com>
9a392dff
| Name |
Last commit
|
Last update |
|---|---|---|
| .. | ||
| app-emu | ||
| bers | ||
| crit | ||
| ext-links | ||
| fault-injection | ||
| jenkins | ||
| libcriu | ||
| mem-snap | ||
| mounts | ||
| pipes | ||
| rpc | ||
| security | ||
| tcp | ||
| unix-callback | ||
| zdtm | ||
| .gitignore | ||
| Makefile | ||
| Makefile.zdtm | ||
| app-emu.sh | ||
| env.sh | ||
| functions.sh | ||
| maps.py | ||
| post-dump.sh | ||
| zdtm.sh | ||
| zdtm_ct.c | ||
| zdtm_mount_cgroups |