[lxc-devel] [lxc/lxc] 642d1c: lxc-start-ephemeral: Set tmpfs mode to 0755
GitHub
noreply at github.com
Mon Feb 24 14:52:14 UTC 2014
Branch: refs/heads/master
Home: https://github.com/lxc/lxc
Commit: 642d1ccd9852b0adb797d33d1550cf6307cae674
https://github.com/lxc/lxc/commit/642d1ccd9852b0adb797d33d1550cf6307cae674
Author: Stéphane Graber <stgraber at ubuntu.com>
Date: 2014-02-24 (Mon, 24 Feb 2014)
Changed paths:
M src/lxc/lxc-start-ephemeral.in
Log Message:
-----------
lxc-start-ephemeral: Set tmpfs mode to 0755
The tmpfs was mounted with its default mode (1777) which was then picked
up by overlayfs/aufs as the target's mode.
This led to a world writable / in ephemeral containers.
I have confirmed that this issue doesn't impact lxc-clone.
Signed-off-by: Stéphane Graber <stgraber at ubuntu.com>
Acked-by: Serge E. Hallyn <serge.hallyn at ubuntu.com>
More information about the lxc-devel
mailing list