From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Date: Fri, 26 Nov 2021 14:15:52 +0300 From: "Anton V. Boyarshinov" To: Anton Farygin Message-ID: <20211126141552.6e2d70f6@tower> In-Reply-To: <4b13a414-40a5-b6f8-1f00-b7dd83b1a0fa@basealt.ru> References: <20211118143605.742f6370@tower> <968d4deff1e5e3e49e33f0d661dfc40d772576de.camel@altlinux.org> <20211126113314.519e76d7@tower> <20211126134036.7a326d6f@tower> <603d5fd2-372a-f654-c0bf-a742d59fcb8c@basealt.ru> <20211126135330.553a7a58@tower> <4b13a414-40a5-b6f8-1f00-b7dd83b1a0fa@basealt.ru> Organization: ALT Linux X-Mailer: Claws Mail 3.18.0 (GTK+ 2.24.33; x86_64-alt-linux-gnu) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable Cc: ALT Linux Team development discussions Subject: Re: [devel] kernel.userns_restrict X-BeenThere: devel@lists.altlinux.org X-Mailman-Version: 2.1.12 Precedence: list Reply-To: ALT Linux Team development discussions List-Id: ALT Linux Team development discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 26 Nov 2021 11:15:53 -0000 Archived-At: List-Archive: List-Post: =D0=92 Fri, 26 Nov 2021 13:57:50 +0300 Anton Farygin =D0=BF=D0=B8=D1=88=D0=B5=D1=82: > On 26.11.2021 13:53, Anton V. Boyarshinov wrote: > > =D0=92 Fri, 26 Nov 2021 13:46:46 +0300 > > Anton Farygin =D0=BF=D0=B8=D1=88=D0=B5=D1=82: > > =20 > >> On 26.11.2021 13:40, Anton V. Boyarshinov wrote: =20 > >>>>>> =D0=92 =D0=BA=D0=B0=D0=BA=D0=BE=D0=BC un-def =D1=8D=D1=82=D0=BE = =D0=B1=D1=8B=D0=BB=D0=BE "=D0=B8=D1=81=D0=BF=D1=80=D0=B0=D0=B2=D0=BB=D0=B5= =D0=BD=D0=BE"? =20 > >>>>> =D0=B2 5.14.18-alt1 > >>>>> > >>>>> =20 > >>>> =D0=9C=D0=BD=D0=B5 =D0=BF=D1=80=D0=B8=D1=88=D0=BB=D0=BE=D1=81=D1=8C = =D0=BE=D1=81=D1=82=D0=B0=D1=82=D1=8C=D1=81=D1=8F =D0=BD=D0=B0 5.14.17 =D0= =BF=D0=BE=D1=81=D0=BA=D0=BE=D0=BB=D1=8C=D0=BA=D1=83 =D0=B8 chrome, =D0=B8 f= irefox =D0=BD=D0=B0 > >>>> "=D0=BF=D0=BE=D1=84=D0=B8=D0=BA=D1=81=D0=B5=D0=BD=D0=BD=D0=BE=D0=BC"= 21-=D0=BE=D0=BC =D1=81=D1=82=D0=B0=D0=BB=D0=B8 =D1=81=D1=8A=D0=B5=D0=B4=D0= =B0=D1=82=D1=8C =D0=B2=D1=81=D0=B5 =D1=80=D0=B5=D1=81=D1=83=D1=80=D1=81=D1= =8B =D0=BC=D0=BE=D0=B5=D0=B3=D0=BE AMD A10 =D0=BF=D1=80=D0=B8 > >>>> =D0=BF=D1=80=D0=BE=D1=81=D0=BC=D0=BE=D1=82=D1=80=D0=B5 =D0=B2=D0=B8= =D0=B4=D0=B5=D0=BE. =D0=9E=D1=82 =D1=87=D0=B5=D0=B3=D0=BE =D0=B1=D1=8B =D1= =8D=D1=82=D0=BE? =D0=9C=D0=BE=D0=B6=D0=B5=D1=82 =D1=83 =D0=B2=D1=81=D0=B5= =D1=85 =D0=BF=D1=80=D0=BE=D1=86=D0=B5=D1=81=D1=81=D0=BE=D1=80=D1=8B =D0=BF= =D0=BE=D0=BC=D0=BE=D1=89=D0=BD=D0=B5=D0=B5? =20 > >>> =D0=90 =D0=B5=D1=81=D0=BB=D0=B8 =D0=BF=D0=B5=D1=80=D0=B5=D0=BA=D0=BB= =D1=8E=D1=87=D0=B8=D1=82=D1=8C kernel.userns_restrict =D0=B2 0, =D0=BF=D1= =80=D0=BE=D0=B1=D0=BB=D0=B5=D0=BC=D0=B0 =D0=BF=D1=80=D0=BE=D0=B4=D0=BE=D0= =BB=D0=B6=D0=B0=D0=B5=D1=82 > >>> =D0=B2=D0=BE=D1=81=D0=BF=D1=80=D0=BE=D0=B8=D0=B7=D0=B2=D0=BE=D0=B4=D0= =B8=D1=82=D1=8C=D1=81=D1=8F? =20 > >> =D0=94=D0=BB=D1=8F chromium =D0=B2=D0=BE=D1=82 =D1=82=D1=83=D1=82 =D0= =B5=D1=81=D1=82=D1=8C =D0=BD=D0=B5=D0=BA=D0=BE=D1=82=D0=BE=D1=80=D1=8B=D0= =B5 =D0=BF=D0=BE=D0=B4=D1=80=D0=BE=D0=B1=D0=BD=D0=BE=D1=81=D1=82=D0=B8: > >> > >> https://github.com/puppeteer/puppeteer/blob/main/docs/troubleshooting.= md#setting-up-chrome-linux-sandbox =20 > > ls -l /usr/lib64/chromium/chrome-sandbox > > -rws--x--x 1 root root 15968 =D0=B8=D1=8E=D0=BB 17 14:40 /usr/lib64/chr= omium/chrome-sandbox =20 >=20 > =D0=9C=D0=BE=D0=B6=D0=B5=D1=82 =D0=BB=D0=B8 =D1=82=D0=B0=D0=BA =D0=B1=D1= =8B=D1=82=D1=8C, =D1=87=D1=82=D0=BE SUID'=D0=B0 =D0=BD=D0=B5=D0=B4=D0=BE=D1= =81=D1=82=D0=B0=D1=82=D0=BE=D1=87=D0=BD=D0=BE ? =D0=9D=D0=B0=D0=B4=D0=BE = =D0=B2=D1=81=D1=91 =D0=BE=D1=82=D0=BB=D0=B0=D0=B6=D0=B8=D0=B2=D0=B0=D1=82= =D1=8C. =D0=9A =D1=82=D0=BE=D0=BC=D1=83=20 > =D0=B6=D0=B5 =D1=83 =D0=BD=D0=B0=D1=81, =D0=BD=D0=B0=D0=BF=D1=80=D0=B8=D0= =BC=D0=B5=D1=80, execvp =D1=80=D0=B0=D0=B1=D0=BE=D1=82=D0=B0=D0=B5=D1=82 = =D0=BD=D0=B5 =D1=82=D0=B0=D0=BA, =D0=BA=D0=B0=D0=BA =D1=83 =D0=B2=D1=81=D0= =B5=D1=85 =D0=B4=D0=BB=D1=8F =D0=BF=D1=80=D0=B8=D0=BB=D0=BE=D0=B6=D0=B5=D0= =BD=D0=B8=D0=B9,=20 > =D0=B8=D0=BC=D0=B5=D1=8E=D1=89=D0=B8=D1=85 SUID. =D0=9C=D0=BE=D0=B6=D0=B5= =D1=82 =D0=B1=D1=8B=D1=82=D1=8C =D0=B5=D1=89=D1=91 =D1=87=D1=82=D0=BE-=D1= =82=D0=BE =D0=BE=D0=B3=D1=80=D0=B0=D0=BD=D0=B8=D1=87=D0=B5=D0=BD=D0=BE =D0= =BF=D0=BE =D1=81=D1=80=D0=B0=D0=B2=D0=BD=D0=B5=D0=BD=D0=B8=D1=8E =D1=81 =D0= =B4=D1=80=D1=83=D0=B3=D0=B8=D0=BC=D0=B8=20 > =D0=B4=D0=B8=D1=81=D1=82=D1=80=D0=B8=D0=B1=D1=83=D1=82=D0=B8=D0=B2=D0=B0= =D0=BC=D0=B8. =D0=A3 =D0=BC=D0=B5=D0=BD=D1=8F =D0=B2 =D0=B4=D0=B8=D1=81=D1=82=D1=80=D0=B8= =D0=B1=D1=83=D1=82=D0=B8=D0=B2=D0=BD=D0=BE=D0=BC chromium =D1=80=D0=B0=D0= =B7=D0=BD=D0=B8=D1=86=D1=8B =D0=B2 =D0=B7=D0=B0=D0=B3=D1=80=D1=83=D0=B7=D0= =BA=D0=B5 =D0=BF=D1=80=D0=BE=D1=86=D0=B5=D1=81=D1=81=D0=BE=D1=80=D0=B0 =D0= =BF=D1=80=D0=B8 =D0=BF=D1=80=D0=BE=D1=81=D0=BC=D0=BE=D1=82=D1=80=D0=B5 =D0=B2=D0=B8=D0=B4= =D0=B5=D0=BE =D0=B2 =D1=80=D0=B0=D0=B7=D0=BD=D1=8B=D1=85 =D0=BF=D0=BE=D0=BB= =D0=BE=D0=B6=D0=B5=D0=BD=D0=B8=D1=8F=D1=85 userns_restrict =D0=BD=D0=B5 =D0= =BD=D0=B0=D0=B1=D0=BB=D1=8E=D0=B4=D0=B0=D0=B5=D1=82=D1=81=D1=8F. =D0=92=D0=BE=D0=B7=D0=BC=D0=BE=D0=B6=D0=BD=D0=BE, =D0=B2 =D0=B4=D0=B0=D0=BD= =D0=BD=D0=BE=D0=BC =D1=81=D0=BB=D1=83=D1=87=D0=B0=D0=B5 =D0=B4=D0=B5=D0=BB= =D0=BE =D0=B2 =D1=87=D1=91=D0=BC-=D1=82=D0=BE =D0=B4=D1=80=D1=83=D0=B3=D0= =BE=D0=BC. =D0=A5=D0=BE=D1=82=D1=8F, =D0=BA=D0=BE=D0=BD=D0=B5=D1=87=D0=BD=D0=BE, =D0= =BC=D0=BE=D0=B6=D0=B5=D1=82 =D0=BE=D0=BA=D0=B0=D0=B7=D0=B0=D1=82=D1=8C=D1= =81=D1=8F, =D1=87=D1=82=D0=BE =D0=BF=D1=80=D0=BE=D1=86=D0=B5=D1=81=D1=81=D0= =BE=D1=80 =D0=BC=D0=BE=D1=89=D0=BD=D0=BE=D0=B2=D0=B0=D1=82 =D0=B8=D0=BB=D0= =B8 =D0=B2=D0=B8=D0=B4=D0=B5=D0=BE =D0=BD=D0=B5 =D1=82=D0=BE.