![`/proc/[pid]/uid_map` (`/proc/[pid]/gid_map`) のユーザー(グループ) ID マッピングは `[pid]` プロセスにのみ適用されますか、それとも名前空間全体にグローバルに適用されますか?](data:image/jpg;base64,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)
この記事を読んだ後は、()で設定された親名前空間へのユーザー(グループ)IDのマッピングが、名前空間のすべてのプロセスに適用されるのか、それともそのプロセスにのみ適用されるのかman user_namespacesわかりません。/proc/[pid]/uid_map/proc/[pid]/gid_map[pid]
マッピングがすべてのプロセスに適用される場合、これは一度だけ書き込むことができるため、どのプロセスが上記のファイルの1つに最初に書き込まれるかについてのいくつかの競合条件です。
マッピングがプロセスにのみ適用される場合は、UIDを親名前空間の他のユーザーIDにマッピングできることが奇妙だと[pid]思います。0
誰かがこれを説明できますか?
man user_namespaces:
...
User and group ID mappings: uid_map and gid_map
When a user namespace is created, it starts out without a mapping of user IDs (group IDs) to the parent user namespace. The /proc/[pid]/uid_map and /proc/[pid]/gid_map files (available since
Linux 3.5) expose the mappings for user and group IDs inside the user namespace for the process pid. These files can be read to view the mappings in a user namespace and written to (once) to
define the mappings.
...
ベストアンサー1
マンページには次の内容があります。
新しいユーザー名前空間を作成した後の
uid_mapファイル一つ 名前空間のプロセスは次に書くことができます。一度新しいユーザー名前空間でユーザーIDマッピングを定義します。ユーザーの名前空間のファイルに何度も書き込もうとしたときにエラーがuid_map発生しましたEPERM。ファイルにも同様の規則が適用されますgid_map。
行間に少しの読み取りが必要ですが、ユーザーの名前空間内のすべてのプロセスが同じユーザーとグループのマッピングを共有するという事実と一致します。
これは少し競合があることを意味しますが、権限要件は、敵対的なプロセスがユーザーの名前空間を奪うのに十分な権限を持っている場合はとにかく敗北することを意味します。競合は、EPERM新しいユーザー名前空間へのマッピングが確立されると予想されるプロセス(新しいユーザー名前空間から再起動)を処理することによって、すべての意図と目的に応じて軽減されます。