diff options
| author | Lennart Poettering <lennart@poettering.net> | 2015-07-09 14:46:20 -0300 |
|---|---|---|
| committer | Sven Eden <yamakuzure@gmx.net> | 2017-03-14 10:06:04 +0100 |
| commit | ffc442ae487303626321ac0e3a5023d4c4a0944f (patch) | |
| tree | f5ed099a7cd149318de9b641bddf71d3fbbb0c1b /src/login/pam_elogind.sym | |
| parent | ab76853a4ca68ec371c971dfe2cc68f19fe07659 (diff) | |
nss-mymachines: map userns users of containers to real user names
Given a container "foo", that maps user id $UID to container user, using
user namespaces, this NSS module extenstion will now map the $UID to a
name "vu-foo-$TUID" for the translated UID $UID.
Similar, userns groups are mapped to "vg-foo-$TGID" for translated GIDs
of $GID.
This simple change should make userns users more discoverable. Also,
given that many tools like "adduser" check NSS before allocating a UID,
should lower the chance of UID range conflicts between tools.
Diffstat (limited to 'src/login/pam_elogind.sym')
| -rw-r--r-- | src/login/pam_elogind.sym | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/src/login/pam_elogind.sym b/src/login/pam_elogind.sym index 23ff75f68..8f3aed665 100644 --- a/src/login/pam_elogind.sym +++ b/src/login/pam_elogind.sym @@ -11,5 +11,9 @@ global: pam_sm_close_session; pam_sm_open_session; + _nss_mymachines_getpwnam_r; + _nss_mymachines_getpwuid_r; + _nss_mymachines_getgrnam_r; + _nss_mymachines_getgrgid_r; local: *; }; |