Akihiro Suda f103de57ec main: support rootless mode in userns ... Running rootless containers in userns is useful for mounting filesystems (e.g. overlay) with mapped euid 0, but without actual root privilege. Usage: (Note that `unshare --mount` requires `--map-root-user`) user$ mkdir lower upper work rootfs user$ curl http://dl-cdn.alpinelinux.org/alpine/v3.7/releases/x86_64/alpine-minirootfs-3.7.0-x86_64.tar.gz | tar Cxz ./lower || ( true; echo "mknod errors were ignored" ) user$ unshare --mount --map-root-user mappedroot# runc spec --rootless mappedroot# sed -i 's/"readonly": true/"readonly": false/g' config.json mappedroot# mount -t overlay -o lowerdir=./lower,upperdir=./upper,workdir=./work overlayfs ./rootfs mappedroot# runc run foo Signed-off-by: Akihiro Suda <suda.akihiro@lab.ntt.co.jp>		2018-05-10 12:16:43 +09:00
..
linux.go	main: support rootless mode in userns	2018-05-10 12:16:43 +09:00
linux_test.go	libcontainer: add parser for /etc/sub{u,g}id and /proc/PID/{u,g}id_map	2018-05-10 12:16:43 +09:00
proc.go	libcontainer/system/proc: Add Stat_t.State	2017-06-20 16:26:55 -07:00
proc_test.go	libcontainer/system/proc: Add Stat_t.State	2017-06-20 16:26:55 -07:00
syscall_linux_32.go	libcontainer: merge common syscall implementations	2017-10-16 11:11:18 +02:00
syscall_linux_64.go	libcontainer: merge common syscall implementations	2017-10-16 11:11:18 +02:00
sysconfig.go	libcontainer: drop FreeBSD support	2017-11-24 14:51:05 +01:00
sysconfig_notcgo.go	Move libcontainer into subdirectory	2015-06-21 19:29:15 -07:00
unsupported.go	main: support rootless mode in userns	2018-05-10 12:16:43 +09:00
xattrs_linux.go	Use symlink xattr functions from x/sys/unix	2017-05-31 13:50:34 +02:00