Loading...

XML

Word

Printable

Type: Feature Request
Resolution: Unresolved
Priority: Undefined
Fix Version/s: None
Affects Version/s: None
Component/s: Node
Labels:
- node
- rfe-accepted-to-approved-unresolve

Blocked:
False
Blocked Reason:
None
Ready:
False
Color Status:
Not Selected
PX Impact Score:
PX Priority Data:
PX Review Complete:

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

User namespaces isolate security-related identifiers and attributes, in particular, user IDs and group IDs, the root directory, keys, and capabilities. A process's user and group IDs can be different inside and outside a user namespace. In particular, a process can have a normal unprivileged user ID outside a user namespace while at the same time having a user ID of 0 inside the namespace; in other words, the process has full privileges for operations inside the user namespace, but is unprivileged for operations outside the namespace.

https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/127-user-namespaces/README.md#ga

is depended on by

OCPNODE-3024 Add ProcMount option GA in 4.19

In Progress

relates to

OCPSTRAT-207 TP in 4.17 : Support User Namespaces in pods

Closed

links to

Support for user namespaces in OpenShift Container Platform 4

Assignee:: Gaurav Singh

Reporter:: Gaurav Singh

Votes:: 2 Vote for this issue

Watchers:: 39 Start watching this issue

Created:: 2022/09/27 5:21 PM

Updated:: 2025/03/07 4:36 PM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates