summaryrefslogtreecommitdiff
path: root/libpod
diff options
context:
space:
mode:
authorGiuseppe Scrivano <gscrivan@redhat.com>2018-11-30 11:31:56 +0100
committerGiuseppe Scrivano <gscrivan@redhat.com>2018-11-30 22:45:55 +0100
commit2dfb7c02b16471c23ef8d0c8b0ede686560e4d2c (patch)
tree889d71b07a843caf4bdf86f7d8847289c9456c0f /libpod
parent1d2e1eece5ccb62c731e4d84d451a6b544c3389a (diff)
downloadpodman-2dfb7c02b16471c23ef8d0c8b0ede686560e4d2c.tar.gz
podman-2dfb7c02b16471c23ef8d0c8b0ede686560e4d2c.tar.bz2
podman-2dfb7c02b16471c23ef8d0c8b0ede686560e4d2c.zip
Dockerfile, .cirrus.yml: update runc commit
we need to inherit this change from runc. commit 869add33186caff4a22e3e11a7472a2d48d77889: rootless: fix running with /proc/self/setgroups set to deny This is a regression from 06f789cf26774dd64cb2a9cc0b3c6a6ff832733b when the user namespace was configured without a privileged helper. To allow a single mapping in an user namespace, it is necessary to set /proc/self/setgroups to "deny". For a simple reproducer, the user namespace can be created with "unshare -r". Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
Diffstat (limited to 'libpod')
0 files changed, 0 insertions, 0 deletions