Project

General

Profile

Actions
Copy link

Bug #192

closed

improve redwrap user switch

Added by José Bollo 29 days ago. Updated 2 days ago.

Status:
Resolved
Priority:
Normal
Assignee:
José Bollo
Target version:
-
Start date:
12/20/2024
Due date:
% Done:

0%

Estimated time:
Hardware platform:
Other
OS Affects Version/s:
OS Fix Version/s:
Labels:

Description

Trying to reach other namespaces, need capabiliies, when run as rp-owner bwrap complains that "Unexpected capabilities but not setuid, old file caps config?" and dies.

To avoid it, it could be run as root and switch to a given user using option --uid

But redwrap doesn't exploit that feature

Actions
Copy link
 #1

Updated by José Bollo 10 days ago

the option --uid of bwrap only establishes a mapping to of the given uid to the current uid but does not changes the effective uid

so that option should not be used for the purpose of switching of user

Actions
Copy link
 #2

Updated by José Bollo 10 days ago

  • Status changed from New to In Progress
Actions
Copy link
 #3

Updated by José Bollo 2 days ago

  • Status changed from In Progress to Resolved
Actions
Copy link

Also available in: Atom PDF