]> git.ipfire.org Git - thirdparty/systemd.git/commitdiff
projects / thirdparty / systemd.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | combined (merge: a8211e8 cadeaef)
nspawn: Drop CAP_NET_BIND_SERVICE if in userns with identity mapping (#38723)
authorDaan De Meyer <daan.j.demeyer@gmail.com>
Fri, 5 Sep 2025 07:08:44 +0000 (09:08 +0200)
committerGitHub <noreply@github.com>
Fri, 5 Sep 2025 07:08:44 +0000 (09:08 +0200)
Even if there's no uid shift, we still won't be able to bind to
privileged ports in the host network namespace, so drop the capability
regardless of whether we have a uid shift or not.


Trivial merge
Unnamed repository; edit this file 'description' to name the repository.