git.proxmox.com Git - mirror_lxc.git/commit

author	Serge Hallyn <shallyn@cisco.com>
	Thu, 8 Feb 2018 19:04:23 +0000 (13:04 -0600)
committer	Serge Hallyn <shallyn@cisco.com>
	Thu, 8 Feb 2018 19:06:52 +0000 (13:06 -0600)
commit	e0010464c71ddd81eb36f2532618945d0afe924c
tree	98510d6bbad932427776098752613e8bbbae0726	tree
parent	477aa378e9050ed5d7de22b6ff05a83f38824036	commit \| diff

Restore most cases of am_guest_unpriv

The only cases where we really need to be privileged with respect
to the host is when we are trying to mknod, and in some cases
to do with a physical network device. This patch leaves the
detection of the network device cases as a TODO.

This should fix the currently broken case of starting a privileged
container with at least one veth nic, nested inside an unprivileged
container.

Cc: Tycho Andersen <tycho@tycho.ws>
Signed-off-by: Serge Hallyn <shallyn@cisco.com>

src/lxc/lxccontainer.c		diff \| blob \| blame \| history
src/lxc/network.c		diff \| blob \| blame \| history
src/lxc/start.c		diff \| blob \| blame \| history
src/lxc/storage/aufs.c		diff \| blob \| blame \| history
src/lxc/storage/btrfs.c		diff \| blob \| blame \| history
src/lxc/storage/overlay.c		diff \| blob \| blame \| history
src/lxc/storage/storage.c		diff \| blob \| blame \| history