[libvirt] LXC: capset fails with userns

Stephan Sachse ste.sachse at gmail.com
Wed Feb 26 13:54:56 UTC 2014


for me there is no valid reason why a container is not allowed to set
file capabilities.

and here is the patch (send to Eric W. Biederman <ebiederm at xmission.com>)

works for me

-- 
Software is like sex, it's better when it's free!
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0001-capability-allow-setxattr-within-userns.patch
Type: text/x-patch
Size: 1730 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/libvir-list/attachments/20140226/fd9c7084/attachment-0001.bin>


More information about the libvir-list mailing list