Loading...

XML

Word

Printable

Type: Feature Request
Resolution: Unresolved
Priority: Undefined
Fix Version/s: None
Affects Version/s: None
Component/s: Node
Labels:
- node
- rfe-accepted-to-approved-unresolve

Target Version:
None
Activity Type:
Product / Portfolio Work
Status Summary:
None
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Products:
None
Hierarchy Progress Bar:
None

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

PX Review Complete:
PX Impact Score:
PX Impact Range:
None
PX Priority Data:
PX Technical Impact:
None
PX Technical Impact Notes:
None
PX Scheduling Request:
None

User namespaces isolate security-related identifiers and attributes, in particular, user IDs and group IDs, the root directory, keys, and capabilities. A process's user and group IDs can be different inside and outside a user namespace. In particular, a process can have a normal unprivileged user ID outside a user namespace while at the same time having a user ID of 0 inside the namespace; in other words, the process has full privileges for operations inside the user namespace, but is unprivileged for operations outside the namespace.

https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/127-user-namespaces/README.md#ga

is depended on by

OCPNODE-3024 Add ProcMount option GA in 4.20

Release Pending

relates to

OCPSTRAT-207 TP in 4.17 : Support User Namespaces in pods

Closed

links to

Support for user namespaces in OpenShift Container Platform 4

Assignee:: Gaurav Singh

Reporter:: Gaurav Singh

Need Info From:: None

Votes:: 3 Vote for this issue

Watchers:: 43 Start watching this issue

Created:: 2022/09/27 5:21 PM

Updated:: 2025/10/10 7:49 PM

Target start:: None

Target end:: None

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates