From mboxrd@z Thu Jan 1 00:00:00 1970 Authentication-Results: passt.top; dmarc=pass (p=quarantine dis=none) header.from=redhat.com Authentication-Results: passt.top; dkim=pass (1024-bit key; unprotected) header.d=redhat.com header.i=@redhat.com header.a=rsa-sha256 header.s=mimecast20190719 header.b=AMme/yGt; dkim-atps=neutral Received: from us-smtp-delivery-124.mimecast.com (us-smtp-delivery-124.mimecast.com [170.10.133.124]) by passt.top (Postfix) with ESMTPS id B4B615A0280 for ; Mon, 07 Jul 2025 12:57:02 +0200 (CEST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhat.com; s=mimecast20190719; t=1751885821; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=mufr9wN7dgdVTgCl6+tQLEYpS6OdbcqG+NNZKKFYBx4=; b=AMme/yGtTmiBYcyWiQKSHCqGvdcbz0+6KdP+tem266o9A4/kA6YrsnSqpTA/wasA/McjPN H8sR6wQLYPiWdy8yAs2fq6vIdLRwXqdinkCYm1w652HViVVXW7Ekwv4KxUuaQtRhoPjGNL +BDCsjU8RzBc86xRDaYoR6jdxPuPudY= Received: from mail-wm1-f71.google.com (mail-wm1-f71.google.com [209.85.128.71]) by relay.mimecast.com with ESMTP with STARTTLS (version=TLSv1.3, cipher=TLS_AES_256_GCM_SHA384) id us-mta-102-3FWjx4rZPSaodL1qz57EvA-1; Mon, 07 Jul 2025 06:57:00 -0400 X-MC-Unique: 3FWjx4rZPSaodL1qz57EvA-1 X-Mimecast-MFC-AGG-ID: 3FWjx4rZPSaodL1qz57EvA_1751885819 Received: by mail-wm1-f71.google.com with SMTP id 5b1f17b1804b1-4535ee06160so25726575e9.3 for ; Mon, 07 Jul 2025 03:57:00 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1751885818; x=1752490618; h=content-transfer-encoding:mime-version:organization:references :in-reply-to:message-id:subject:cc:to:from:date:x-gm-message-state :from:to:cc:subject:date:message-id:reply-to; bh=mufr9wN7dgdVTgCl6+tQLEYpS6OdbcqG+NNZKKFYBx4=; b=rCloNI2yUamoXk9lD98U/Dr5LhGGX5Q2vSXDFT+H/Bw+bC/x8N48cdrSrgXbyM0wgZ E17/xFW7PkufsKb9aBoQtVh+YCt2F+kfD6zaBzYwLLGwNQX50RVPg2hSayB10sb0x9Uu y4ikql63Wgv2YwUKVxqDt8KpHxiMDmsB8FHd5exjrVakLAftZcv9xyyqYIl1o/qMo5kl DUOCoTK2y0NhjSUmCLnZNj9gIMa9cuQ4cFwoZlWurdklOOMwzvPClPj8n97Ya+ZYY8wJ NdvHasvTABmmkbHgpjxtVc6QIvJ6+AZPioYRK2j6bdc9N0UA0P0aaEdi5FJdzwXBHU1X ZmVQ== X-Gm-Message-State: AOJu0Yy3xLMyX4ZInvjxdwly3vtlvLXPd3TbIU0rWezdzczBmU1/67K3 WT2o/bS5cJAVyoKpPM529OsVX4BM0rSDJhj6v1WomjolzfYxfbbFxrWEfCtwjjihm6rYTsumQcV h/GkU9nKM6NI1oPDdYSolk9sI4j7ILRRL8+sOv3KR7ndt/IgXO6nRqKf6+xK4des= X-Gm-Gg: ASbGncvY5kr6jzpbG/bnKaDxeLaIXP8PYor1T3q/8TfNzKNTBCa/Y743zxHLOAvN58G coE3kk829LOpNAoFONjVw+WZwXf1Xfb3D9ams7/SnYkxf1u+fkynidf5gKKkGZClPUaMwv/Hbvt alaj6tcXbhoaEQ6p3fph0tDNqHfVe3qYjZsmBdztUVXPTmNt/jlj9vYecoqwY64hbYMNu5NdowC oateaL8VjXDq13Xwu6I0h7ej/jmC7p6e3hK94CvyFuzpuz8bnoADZ5yciE1cpM2CIesQHzWSIbN T9+g8rxSTRC4g3lDt3CRl3t88Ptr7vTwLw== X-Received: by 2002:a05:600c:870d:b0:453:b44:eb69 with SMTP id 5b1f17b1804b1-454b308d0damr120685875e9.13.1751885818033; Mon, 07 Jul 2025 03:56:58 -0700 (PDT) X-Google-Smtp-Source: AGHT+IEc6++Egl+Uf3VDPwGpgFHXR7LAcIzCYm7iAw50LVP5uPtES9jyZ3Z59kDEbx/+GESJJbMu6g== X-Received: by 2002:a05:600c:870d:b0:453:b44:eb69 with SMTP id 5b1f17b1804b1-454b308d0damr120685465e9.13.1751885817432; Mon, 07 Jul 2025 03:56:57 -0700 (PDT) Received: from maya.myfinge.rs (ifcgrfdd.trafficplex.cloud. [2a10:fc81:a806:d6a9::1]) by smtp.gmail.com with ESMTPSA id 5b1f17b1804b1-453a85ab932sm122607075e9.0.2025.07.07.03.56.56 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Mon, 07 Jul 2025 03:56:56 -0700 (PDT) Date: Mon, 7 Jul 2025 12:56:55 +0200 From: Stefano Brivio To: Lisa Gnedt Subject: Re: Issues when using pasta with bubblewrap Message-ID: <20250707125655.40e83de2@elisabeth> In-Reply-To: <175188240057.3062894.4319502484182397394@maja> References: <671252c8-88f6-45b7-b719-b82786e84bb7@gnedt.at> <175188240057.3062894.4319502484182397394@maja> Organization: Red Hat X-Mailer: Claws Mail 4.2.0 (GTK 3.24.49; x86_64-pc-linux-gnu) MIME-Version: 1.0 X-Mimecast-Spam-Score: 0 X-Mimecast-MFC-PROC-ID: NGSI7y3VSEFLt3ghIyLwNgiaolzDCInSp1tHSQcLv_0_1751885819 X-Mimecast-Originator: redhat.com Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Message-ID-Hash: TIMDBY6LEFLD5XW6SZFFHIULBU33H4D4 X-Message-ID-Hash: TIMDBY6LEFLD5XW6SZFFHIULBU33H4D4 X-MailFrom: sbrivio@redhat.com X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header CC: passt-user@passt.top X-Mailman-Version: 3.3.8 Precedence: list List-Id: "For passt users: support, questions and answers" Archived-At: Archived-At: List-Archive: List-Archive: List-Help: List-Owner: List-Post: List-Subscribe: List-Unsubscribe: Hi Lisa, On Sun, 6 Jul 2025 19:08:46 +0200 Lisa Gnedt via user wrote: > Hi, > > On 2025-07-06 17:15, Lisa Gnedt wrote: > > It might be easier to get it correct when directly controlling all > > syscalls involved and not have to mix and match multiple tools. > > Since Linux 4.9 it seems to be possible to get the owning user namespace > > of a network namespace with the ioctl NS_GET_USERNS [3]. > > I just wrote a hacky patch as proof-of-concept of this idea. > It is working for me fine in both testcases. > However, in its current form it breaks the --userns parameter. But it should not be too hard to address this issue. > > I am not sure, what kernel version compatibility you are targeting, since the ioctl is only available since Linux 4.9. Thanks for reporting this and for the draft. I didn't look into your issue and patch yet, I plan to get to it later today, but just as a quick answer to this point: the earlier the better, not everything is reasonable, but 4.9 should be. And yes, patches for compatibility are always warmly welcome. -- Stefano