rusty-snake

> Can't you check it using the `getppid()` syscall and `/proc//status`'s `CapEff` entry? This would race for pid (pid-reuse) and for CapEff which could have changed in the meantime.

FWIW ```console $ unshare -r --map-users=auto bwrap --dev-bind / / cat /proc/self/uid_map 0 1000 1 1 100000 65536 ```

Technically yes, but I doubt that such a feature will ever get accepted. Furthermore you can already do this by wrapping bwrap in a userns create by unshare, using `--userns`+`--userns2...

> One issue is that it is barely documented. You can grab the manpage drafts from the kernel mailing list to get a better starting point.

https://lore.kernel.org/all/[email protected]/ https://duckduckgo.com/?q=site%3Akernel.org+%22Add+manpage+for%22+move_mount&ia=web

FWIW: https://github.com/sunfishcode/linux-mount-api-documentation (@igo95862) --- Actually you can do this with the old mount api as well using `/proc/self/fd`. ```diff diff --git a/bind-mount.c b/bind-mount.c index 57b4236..d034c51 100644 --- a/bind-mount.c +++ b/bind-mount.c...

Should it just go to the home screen or close Vanadium and remove it from the list of recently used apps. TBH I don't see a reason for both. One...

```bash nsenter -m -U --preserve-credentials -t /bin/bash ```

https://github.com/containers/bubblewrap/commit/75c2d94de8a6a3f13619aecf3d5a2a5276942a88 > #### Add support for --userns and --userns2 > > This allows you to reuse an existing user namespace to set up all the > other namespaces, entering that...

I don't have an (full, working) example. But I'm questing whether you understood user namespaces and nesting of them. 1. How do you create the user namespaces you want to...