Kir, Please review the following patchset. The main difference from last version is that we support running with userns disabled even if it is present. This effectively means that containers that were already created and owned by root will keep working. It is also possible to explicitly disable it at container creation by setting local_uid to 0.
There are also some bugfixes and changes according to the review you provided. Running a container works, and "vzctl enter" works as well. Most pressing, is the fact that although this patchset finally implements --ipadd (now all infrastructure is in place). Glauber Costa (9): host uid and gid parameters adjust fs_create parameter pass parameters to open user namespace support for upstream containers add user mismatch test allow local uid and gid to be specified at container creation modify tar extraction to account for user namespace automatically add bridge venet0 when needed allow for distro-specific fix ups at creation time. etc/dists/redhat.conf | 1 + etc/dists/scripts/fixups.sh | 43 +++++++ etc/vz.conf.in | 4 + include/dist.h | 2 + include/env.h | 10 +- include/res.h | 8 ++ include/types.h | 1 + include/vzctl_param.h | 3 + man/vzctl.8.in | 16 +++ scripts/vps-create.in | 14 +++ scripts/vps-functions.in | 7 ++ src/lib/Makefile.am | 3 + src/lib/chown_preload.c | 93 ++++++++++++++ src/lib/config.c | 21 ++++ src/lib/create.c | 37 ++++-- src/lib/dist.c | 10 +- src/lib/env.c | 33 +++-- src/lib/exec.c | 2 +- src/lib/hooks_ct.c | 293 ++++++++++++++++++++++++++++++++++++++++++-- src/lib/hooks_vz.c | 2 +- src/vzctl-actions.c | 4 +- src/vzctl.c | 1 + vzctl.spec | 2 +- 23 files changed, 577 insertions(+), 33 deletions(-) create mode 100755 etc/dists/scripts/fixups.sh create mode 100644 src/lib/chown_preload.c -- 1.7.11.7 _______________________________________________ Devel mailing list Devel@openvz.org https://lists.openvz.org/mailman/listinfo/devel