Open BtbN opened 3 years ago
shadow recently added support for reading subuids/gids from an nss module: https://github.com/shadow-maint/shadow/commit/8492dee6632e340dee76eee895c3e30877bebf45
Since this is an essential feature to allow our LDAP users to use rootless containers, it'd be nice to see support for this in nss-pam-ldapd.
It seems to be entirely separate from the normal libnssldap.so, instead trying to dlopen "libsubid%s.so": https://github.com/shadow-maint/shadow/blob/master/lib/nss.c#L90
The function prototypes are at https://github.com/shadow-maint/shadow/blob/master/lib/prototypes.h#L271
shadow recently added support for reading subuids/gids from an nss module: https://github.com/shadow-maint/shadow/commit/8492dee6632e340dee76eee895c3e30877bebf45
Since this is an essential feature to allow our LDAP users to use rootless containers, it'd be nice to see support for this in nss-pam-ldapd.
It seems to be entirely separate from the normal libnssldap.so, instead trying to dlopen "libsubid%s.so": https://github.com/shadow-maint/shadow/blob/master/lib/nss.c#L90
The function prototypes are at https://github.com/shadow-maint/shadow/blob/master/lib/prototypes.h#L271