Quoting Eric W. Biederman (ebiederm@xxxxxxxxxxxx):
Hi,
> +static bool verify_range(struct passwd *pw, struct map_range *range)
> +{
> + /* An empty range is invalid */
> + if (range->count == 0)
> + return false;
> +
> + /* Test /etc/subuid */
> + if (have_sub_uids(pw->pw_name, range->lower, range->count))
> + return true;
I think the have_sub_uids() test should be skipped if we started
out as root. Is there a reason not to do that?
-serge
_______________________________________________
Containers mailing list
Containers@xxxxxxxxxxxxxxxxxxxxxxxxxx
https://lists.linuxfoundation.org/mailman/listinfo/containers
