moby/pkg/idtools
Phil Estes c18e7f3a04 Change subordinate range-owning user to be a system user
Change user/group creation to use flags to adduser/useradd to enforce it
being a system user. Use system user defaults that auto-create a
matching group. These changes allow us to remove all group creation
code, and in doing so we also removed the code that finds available uid,
gid integers and use post-creation query to gather the system-generated
uid and gid.

The only added complexity is that today distros don't auto-create
subordinate ID ranges for a new ID if it is a system ID, so we now need
to handle finding a free range and then calling the `usermod` tool to
add the ranges for that ID. Note that this requires the distro supports
the `-v` and `-w` flags on `usermod` for subordinate ID range additions.

Docker-DCO-1.1-Signed-off-by: Phil Estes <estesp@linux.vnet.ibm.com> (github: estesp)
2016-03-16 18:44:10 -04:00
..
idtools.go Change subordinate range-owning user to be a system user 2016-03-16 18:44:10 -04:00
idtools_unix.go Correct build-time directory creation with user namespaced daemon 2015-10-20 08:59:48 -04:00
idtools_unix_test.go pkg: idtools: fix subid files parsing 2016-02-26 15:42:05 +01:00
idtools_windows.go Correct build-time directory creation with user namespaced daemon 2015-10-20 08:59:48 -04:00
usergroupadd_linux.go Change subordinate range-owning user to be a system user 2016-03-16 18:44:10 -04:00
usergroupadd_unsupported.go Correct build-time directory creation with user namespaced daemon 2015-10-20 08:59:48 -04:00