mirror of
https://github.com/systemd/systemd
synced 2024-10-01 13:55:20 +00:00
parent
a1952a5c79
commit
1ea9151e6c
|
@ -26,7 +26,7 @@ void *bpf_rdonly_cast(void *, __u32) __ksym;
|
|||
* by their inode number in nsfs) that restricts creation of inodes (which would inherit the callers UID/GID)
|
||||
* or changing of ownership (similar).
|
||||
*
|
||||
* This hooks into the varius path-based LSM entrypoints that control inode creation as well as chmod(), and
|
||||
* This hooks into the various path-based LSM entrypoints that control inode creation as well as chmod(), and
|
||||
* then looks up the calling process' user namespace in a global map of namespaces, which points us to
|
||||
* another map that is simply a list of allowed mnt_ids. */
|
||||
|
||||
|
|
Loading…
Reference in a new issue