new_idmap_permitted

Name:new_idmap_permitted

Proto:static bool new_idmap_permitted(const struct file *file, struct user_namespace *ns, int cap_setid, struct uid_gid_map *new_map)

Type:bool

Parameter:

Type	Parameter	Name
const struct file *	file
struct user_namespace *	ns
int	cap_setid
struct uid_gid_map *	new_map

1088

1092

If 64 bytes -- 1 cache line == 1 && count == 1 && uid_eq(owner, effective UID of the task ) Then

1094

id = lower_first

1095

If cap_setid == Allows forged pids on socket credentials passing. Then

1096

uid = make_kuid - Map a user-namespace uid pair into a kuid

1097

If uid_eq(uid, effective UID of the task ) Then Return true

1099

Else if cap_setid == Allows forged gids on socket credentials passing. Then

1100

gid = make_kgid - Map a user-namespace gid pair into a kgid

1101

If Not (flags & USERNS_SETGROUPS_ALLOWED) && gid_eq(gid, effective GID of the task ) Then Return true

1108

If Not cap_valid(cap_setid) Then Return true

1115

If ns_capable(parent, cap_setid) && le_ns_capable - Determine if the file's opener had a capability in effect*@file: The file we want to check*@ns: The usernamespace we want the capability in*@cap: The capability to be tested for* Return true if task that opened the file had a capability in Then Return true

1119

Return false

**Caller**
Name	Describe
map_write

Source code conversion tool public plug-in interface	X
Support c/c++/esqlc/java Oracle/Informix/Mysql Plug-in can realize: logical Report Code generation and batch code conversion