URL:
https://github.com/freeipa/freeipa/pull/2677
Author: tiran
Title: #2677: Don't configure KEYRING ccache in containers
Action: opened
PR body:
"""
Kernel keyrings are not namespaced yet. Keyrings can leak into other
containers. Therefore keyrings should not be used in containerized
environment.
Don't configure Kerberos to use KEYRING ccache backen when a container
environment is detected by systemd-detect-virt --container.
Fixes:
https://pagure.io/freeipa/issue/7807
Signed-off-by: Christian Heimes <cheimes(a)redhat.com>
"""
To pull the PR as Git branch:
git remote add ghfreeipa
https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/2677/head:pr2677
git checkout pr2677