git.ipfire.org Git - thirdparty/haproxy.git/commit

]> git.ipfire.org Git - thirdparty/haproxy.git/commit

projects / thirdparty / haproxy.git / commit

author	Maxime Henrion <mhenrion@haproxy.com>
	Mon, 1 Jun 2026 14:49:02 +0000 (10:49 -0400)
committer	Willy Tarreau <w@1wt.eu>
	Tue, 2 Jun 2026 15:36:33 +0000 (17:36 +0200)
commit	c24db7c76a2c930a78eabde10f3889b2fab574a1
tree	fbfa40d4fc93df7eeed4f527dca0d2e76fd8dd5e	tree \| snapshot
parent	99936889540a62aad41a80e1f57b478b271ed899	commit \| diff

BUG/MINOR: startup: unbreak chroot with CAP_SYS_CHROOT

The use of the unshare() mechanism to get the ability to chroot as an
unprivileged user produced a warning on some configurations where the
haproxy process has the CAP_SYS_CHROOT capability. We now only attempt
to use it when a previous chroot() call failed because of insufficient
privileges.

This should fix GitHub issue #3395. No backport needed.

src/haproxy.c

diff | blob | blame | history

Mirror of https://github.com/haproxy/haproxy.git

RSS Atom