Capitalize Uid as UID and Gid as GID.

eiffel-fl · eiffel-fl · commit 83a06957ef1b · 2023-07-20T13:19:46.000+02:00
Signed-off-by: Francis Laniel &lt;flaniel@linux.microsoft.com&gt;
diff --git a/libcontainer/README.md b/libcontainer/README.md
@@ -184,14 +184,14 @@ config := &configs.Config{
 			Flags:       defaultMountFlags | unix.MS_RDONLY,
 		},
 	},
-	UidMappings: []configs.IDMap{
+	UIDMappings: []configs.IDMap{
 		{
 			ContainerID: 0,
 			HostID: 1000,
 			Size: 65536,
 		},
 	},
-	GidMappings: []configs.IDMap{
+	GIDMappings: []configs.IDMap{
 		{
 			ContainerID: 0,
 			HostID: 1000,
diff --git a/libcontainer/configs/config.go b/libcontainer/configs/config.go
@@ -159,11 +159,11 @@ type Config struct {
 	// More information about kernel oom score calculation here: https://lwn.net/Articles/317814/
 	OomScoreAdj *int `json:"oom_score_adj,omitempty"`
 
-	// UidMappings is an array of User ID mappings for User Namespaces
-	UidMappings []IDMap `json:"uid_mappings"`
+	// UIDMappings is an array of User ID mappings for User Namespaces
+	UIDMappings []IDMap `json:"uid_mappings"`
 
-	// GidMappings is an array of Group ID mappings for User Namespaces
-	GidMappings []IDMap `json:"gid_mappings"`
+	// GIDMappings is an array of Group ID mappings for User Namespaces
+	GIDMappings []IDMap `json:"gid_mappings"`
 
 	// MaskPaths specifies paths within the container's rootfs to mask over with a bind
 	// mount pointing to /dev/null as to prevent reads of the file.
diff --git a/libcontainer/configs/config_linux.go b/libcontainer/configs/config_linux.go
@@ -13,10 +13,10 @@ var (
 // different when user namespaces are enabled.
 func (c Config) HostUID(containerId int) (int, error) {
 	if c.Namespaces.Contains(NEWUSER) {
-		if c.UidMappings == nil {
+		if len(c.UIDMappings) == 0 {
 			return -1, errNoUIDMap
 		}
-		id, found := c.hostIDFromMapping(containerId, c.UidMappings)
+		id, found := c.hostIDFromMapping(containerId, c.UIDMappings)
 		if !found {
 			return -1, errNoUserMap
 		}
@@ -36,10 +36,10 @@ func (c Config) HostRootUID() (int, error) {
 // different when user namespaces are enabled.
 func (c Config) HostGID(containerId int) (int, error) {
 	if c.Namespaces.Contains(NEWUSER) {
-		if c.GidMappings == nil {
+		if len(c.GIDMappings) == 0 {
 			return -1, errNoGIDMap
 		}
-		id, found := c.hostIDFromMapping(containerId, c.GidMappings)
+		id, found := c.hostIDFromMapping(containerId, c.GIDMappings)
 		if !found {
 			return -1, errNoGroupMap
 		}
diff --git a/libcontainer/configs/config_linux_test.go b/libcontainer/configs/config_linux_test.go
@@ -34,7 +34,7 @@ func TestHostRootUIDNoUSERNS(t *testing.T) {
 func TestHostRootUIDWithUSERNS(t *testing.T) {
 	config := &Config{
 		Namespaces: Namespaces{{Type: NEWUSER}},
-		UidMappings: []IDMap{
+		UIDMappings: []IDMap{
 			{
 				ContainerID: 0,
 				HostID:      1000,
@@ -67,7 +67,7 @@ func TestHostRootGIDNoUSERNS(t *testing.T) {
 func TestHostRootGIDWithUSERNS(t *testing.T) {
 	config := &Config{
 		Namespaces: Namespaces{{Type: NEWUSER}},
-		GidMappings: []IDMap{
+		GIDMappings: []IDMap{
 			{
 				ContainerID: 0,
 				HostID:      1000,
diff --git a/libcontainer/configs/validate/rootless.go b/libcontainer/configs/validate/rootless.go
@@ -42,10 +42,10 @@ func rootlessEUIDMappings(config *configs.Config) error {
 		return errors.New("rootless container requires user namespaces")
 	}
 
-	if len(config.UidMappings) == 0 {
+	if len(config.UIDMappings) == 0 {
 		return errors.New("rootless containers requires at least one UID mapping")
 	}
-	if len(config.GidMappings) == 0 {
+	if len(config.GIDMappings) == 0 {
 		return errors.New("rootless containers requires at least one GID mapping")
 	}
 	return nil
@@ -68,7 +68,7 @@ func rootlessEUIDMount(config *configs.Config) error {
 					// Ignore unknown mount options.
 					continue
 				}
-				if !hasIDMapping(uid, config.UidMappings) {
+				if !hasIDMapping(uid, config.UIDMappings) {
 					return errors.New("cannot specify uid= mount options for unmapped uid in rootless containers")
 				}
 			}
@@ -79,7 +79,7 @@ func rootlessEUIDMount(config *configs.Config) error {
 					// Ignore unknown mount options.
 					continue
 				}
-				if !hasIDMapping(gid, config.GidMappings) {
+				if !hasIDMapping(gid, config.GIDMappings) {
 					return errors.New("cannot specify gid= mount options for unmapped gid in rootless containers")
 				}
 			}
diff --git a/libcontainer/configs/validate/rootless_test.go b/libcontainer/configs/validate/rootless_test.go
@@ -16,14 +16,14 @@ func rootlessEUIDConfig() *configs.Config {
 				{Type: configs.NEWUSER},
 			},
 		),
-		UidMappings: []configs.IDMap{
+		UIDMappings: []configs.IDMap{
 			{
 				HostID:      1337,
 				ContainerID: 0,
 				Size:        1,
 			},
 		},
-		GidMappings: []configs.IDMap{
+		GIDMappings: []configs.IDMap{
 			{
 				HostID:      7331,
 				ContainerID: 0,
@@ -52,15 +52,15 @@ func TestValidateRootlessEUIDUserns(t *testing.T) {
 
 func TestValidateRootlessEUIDMappingUid(t *testing.T) {
 	config := rootlessEUIDConfig()
-	config.UidMappings = nil
+	config.UIDMappings = nil
 	if err := Validate(config); err == nil {
 		t.Errorf("Expected error to occur if no uid mappings provided")
 	}
 }
 
 func TestValidateNonZeroEUIDMappingGid(t *testing.T) {
 	config := rootlessEUIDConfig()
-	config.GidMappings = nil
+	config.GIDMappings = nil
 	if err := Validate(config); err == nil {
 		t.Errorf("Expected error to occur if no gid mappings provided")
 	}
@@ -93,13 +93,13 @@ func TestValidateRootlessEUIDMountUid(t *testing.T) {
 	}
 
 	config.Mounts[0].Data = "uid=2"
-	config.UidMappings[0].Size = 10
+	config.UIDMappings[0].Size = 10
 	if err := Validate(config); err != nil {
 		t.Errorf("Expected error to not occur when setting uid=2 in mount options and UidMapping[0].size is 10")
 	}
 
 	config.Mounts[0].Data = "uid=20"
-	config.UidMappings[0].Size = 10
+	config.UIDMappings[0].Size = 10
 	if err := Validate(config); err == nil {
 		t.Errorf("Expected error to occur when setting uid=20 in mount options and UidMapping[0].size is 10")
 	}
@@ -130,21 +130,21 @@ func TestValidateRootlessEUIDMountGid(t *testing.T) {
 	}
 
 	config.Mounts[0].Data = "gid=5"
-	config.GidMappings[0].Size = 10
+	config.GIDMappings[0].Size = 10
 	if err := Validate(config); err != nil {
 		t.Errorf("Expected error to not occur when setting gid=5 in mount options and GidMapping[0].size is 10")
 	}
 
 	config.Mounts[0].Data = "gid=11"
-	config.GidMappings[0].Size = 10
+	config.GIDMappings[0].Size = 10
 	if err := Validate(config); err == nil {
 		t.Errorf("Expected error to occur when setting gid=11 in mount options and GidMapping[0].size is 10")
 	}
 }
 
 func BenchmarkRootlessEUIDMount(b *testing.B) {
 	config := rootlessEUIDConfig()
-	config.GidMappings[0].Size = 10
+	config.GIDMappings[0].Size = 10
 	config.Mounts = []*configs.Mount{
 		{
 			Source:      "devpts",
diff --git a/libcontainer/configs/validate/validator.go b/libcontainer/configs/validate/validator.go
@@ -95,7 +95,7 @@ func namespaces(config *configs.Config) error {
 			return errors.New("USER namespaces aren't enabled in the kernel")
 		}
 	} else {
-		if config.UidMappings != nil || config.GidMappings != nil {
+		if config.UIDMappings != nil || config.GIDMappings != nil {
 			return errors.New("User namespace mappings specified, but USER namespace isn't enabled in the config")
 		}
 	}
@@ -264,13 +264,13 @@ func checkIDMapMounts(config *configs.Config, m *configs.Mount) error {
 	if config.RootlessEUID {
 		return fmt.Errorf("gidMappings/uidMappings is not supported when runc is being launched with EUID != 0, needs CAP_SYS_ADMIN on the runc parent's user namespace")
 	}
-	if len(config.UidMappings) == 0 || len(config.GidMappings) == 0 {
+	if len(config.UIDMappings) == 0 || len(config.GIDMappings) == 0 {
 		return fmt.Errorf("not yet supported to use gidMappings/uidMappings in a mount without also using a user namespace")
 	}
-	if !sameMapping(config.UidMappings, m.UIDMappings) {
+	if !sameMapping(config.UIDMappings, m.UIDMappings) {
 		return fmt.Errorf("not yet supported for the mount uidMappings to be different than user namespace uidMapping")
 	}
-	if !sameMapping(config.GidMappings, m.GIDMappings) {
+	if !sameMapping(config.GIDMappings, m.GIDMappings) {
 		return fmt.Errorf("not yet supported for the mount gidMappings to be different than user namespace gidMapping")
 	}
 	if !filepath.IsAbs(m.Source) {
diff --git a/libcontainer/configs/validate/validator_test.go b/libcontainer/configs/validate/validator_test.go
@@ -192,7 +192,7 @@ func TestValidateUsernamespaceWithoutUserNS(t *testing.T) {
 	uidMap := configs.IDMap{ContainerID: 123}
 	config := &configs.Config{
 		Rootfs:      "/var",
-		UidMappings: []configs.IDMap{uidMap},
+		UIDMappings: []configs.IDMap{uidMap},
 	}
 
 	err := Validate(config)
@@ -405,8 +405,8 @@ func TestValidateIDMapMounts(t *testing.T) {
 			name:  "idmap mount without bind opt specified",
 			isErr: true,
 			config: &configs.Config{
-				UidMappings: mapping,
-				GidMappings: mapping,
+				UIDMappings: mapping,
+				GIDMappings: mapping,
 				Mounts: []*configs.Mount{
 					{
 						Source:      "/abs/path/",
@@ -422,8 +422,8 @@ func TestValidateIDMapMounts(t *testing.T) {
 			isErr: true,
 			config: &configs.Config{
 				RootlessEUID: true,
-				UidMappings:  mapping,
-				GidMappings:  mapping,
+				UIDMappings:  mapping,
+				GIDMappings:  mapping,
 				Mounts: []*configs.Mount{
 					{
 						Source:      "/abs/path/",
@@ -454,8 +454,8 @@ func TestValidateIDMapMounts(t *testing.T) {
 			name:  "idmap mounts with different userns and mount mappings",
 			isErr: true,
 			config: &configs.Config{
-				UidMappings: mapping,
-				GidMappings: mapping,
+				UIDMappings: mapping,
+				GIDMappings: mapping,
 				Mounts: []*configs.Mount{
 					{
 						Source:      "/abs/path/",
@@ -477,8 +477,8 @@ func TestValidateIDMapMounts(t *testing.T) {
 			name:  "idmap mounts with different userns and mount mappings",
 			isErr: true,
 			config: &configs.Config{
-				UidMappings: mapping,
-				GidMappings: mapping,
+				UIDMappings: mapping,
+				GIDMappings: mapping,
 				Mounts: []*configs.Mount{
 					{
 						Source:      "/abs/path/",
@@ -500,8 +500,8 @@ func TestValidateIDMapMounts(t *testing.T) {
 			name:  "idmap mounts without abs source path",
 			isErr: true,
 			config: &configs.Config{
-				UidMappings: mapping,
-				GidMappings: mapping,
+				UIDMappings: mapping,
+				GIDMappings: mapping,
 				Mounts: []*configs.Mount{
 					{
 						Source:      "./rel/path/",
@@ -517,8 +517,8 @@ func TestValidateIDMapMounts(t *testing.T) {
 			name:  "idmap mounts without abs dest path",
 			isErr: true,
 			config: &configs.Config{
-				UidMappings: mapping,
-				GidMappings: mapping,
+				UIDMappings: mapping,
+				GIDMappings: mapping,
 				Mounts: []*configs.Mount{
 					{
 						Source:      "/abs/path/",
@@ -534,8 +534,8 @@ func TestValidateIDMapMounts(t *testing.T) {
 		{
 			name: "simple idmap mount",
 			config: &configs.Config{
-				UidMappings: mapping,
-				GidMappings: mapping,
+				UIDMappings: mapping,
+				GIDMappings: mapping,
 				Mounts: []*configs.Mount{
 					{
 						Source:      "/another-abs/path/",
@@ -550,8 +550,8 @@ func TestValidateIDMapMounts(t *testing.T) {
 		{
 			name: "idmap mount with more flags",
 			config: &configs.Config{
-				UidMappings: mapping,
-				GidMappings: mapping,
+				UIDMappings: mapping,
+				GIDMappings: mapping,
 				Mounts: []*configs.Mount{
 					{
 						Source:      "/another-abs/path/",
diff --git a/libcontainer/container_linux.go b/libcontainer/container_linux.go
@@ -2219,7 +2219,7 @@ func (c *Container) bootstrapData(cloneFlags uintptr, nsMaps map[configs.Namespa
 	_, joinExistingUser := nsMaps[configs.NEWUSER]
 	if !joinExistingUser {
 		// write uid mappings
-		if len(c.config.UidMappings) > 0 {
+		if len(c.config.UIDMappings) > 0 {
 			if c.config.RootlessEUID {
 				// We resolve the paths for new{u,g}idmap from
 				// the context of runc to avoid doing a path
@@ -2231,7 +2231,7 @@ func (c *Container) bootstrapData(cloneFlags uintptr, nsMaps map[configs.Namespa
 					})
 				}
 			}
-			b, err := encodeIDMapping(c.config.UidMappings)
+			b, err := encodeIDMapping(c.config.UIDMappings)
 			if err != nil {
 				return nil, err
 			}
@@ -2242,8 +2242,8 @@ func (c *Container) bootstrapData(cloneFlags uintptr, nsMaps map[configs.Namespa
 		}
 
 		// write gid mappings
-		if len(c.config.GidMappings) > 0 {
-			b, err := encodeIDMapping(c.config.GidMappings)
+		if len(c.config.GIDMappings) > 0 {
+			b, err := encodeIDMapping(c.config.GIDMappings)
 			if err != nil {
 				return nil, err
 			}
@@ -2356,5 +2356,5 @@ func requiresRootOrMappingTool(c *configs.Config) bool {
 	gidMap := []configs.IDMap{
 		{ContainerID: 0, HostID: os.Getegid(), Size: 1},
 	}
-	return !reflect.DeepEqual(c.GidMappings, gidMap)
+	return !reflect.DeepEqual(c.GIDMappings, gidMap)
 }
diff --git a/libcontainer/integration/exec_test.go b/libcontainer/integration/exec_test.go
@@ -1774,8 +1774,8 @@ func TestBindMountAndUser(t *testing.T) {
 	})
 
 	// Set HostID to 1000 to avoid DAC_OVERRIDE bypassing the purpose of this test.
-	config.UidMappings[0].HostID = 1000
-	config.GidMappings[0].HostID = 1000
+	config.UIDMappings[0].HostID = 1000
+	config.GIDMappings[0].HostID = 1000
 
 	// Set the owner of rootfs to the effective IDs in the host to avoid errors
 	// while creating the folders to perform the mounts.
diff --git a/libcontainer/integration/template_test.go b/libcontainer/integration/template_test.go
@@ -193,8 +193,8 @@ func newTemplateConfig(t *testing.T, p *tParam) *configs.Config {
 	}
 
 	if p.userns {
-		config.UidMappings = []configs.IDMap{{HostID: 0, ContainerID: 0, Size: 1000}}
-		config.GidMappings = []configs.IDMap{{HostID: 0, ContainerID: 0, Size: 1000}}
+		config.UIDMappings = []configs.IDMap{{HostID: 0, ContainerID: 0, Size: 1000}}
+		config.GIDMappings = []configs.IDMap{{HostID: 0, ContainerID: 0, Size: 1000}}
 		config.Namespaces = append(config.Namespaces, configs.Namespace{Type: configs.NEWUSER})
 	} else {
 		config.Mounts = append(config.Mounts, &configs.Mount{
diff --git a/libcontainer/specconv/spec_linux.go b/libcontainer/specconv/spec_linux.go
@@ -945,8 +945,8 @@ next:
 
 func setupUserNamespace(spec *specs.Spec, config *configs.Config) error {
 	if spec.Linux != nil {
-		config.UidMappings = toConfigIDMap(spec.Linux.UIDMappings)
-		config.GidMappings = toConfigIDMap(spec.Linux.GIDMappings)
+		config.UIDMappings = toConfigIDMap(spec.Linux.UIDMappings)
+		config.GIDMappings = toConfigIDMap(spec.Linux.GIDMappings)
 	}
 	rootUID, err := config.HostRootUID()
 	if err != nil {

Original file line number	Diff line number	Diff line change
`@@ -42,10 +42,10 @@ func rootlessEUIDMappings(config *configs.Config) error {`
`42`	`42`	`return errors.New("rootless container requires user namespaces")`
`43`	`43`	`}`
`44`	`44`
`45`		`- if len(config.UidMappings) == 0 {`
	`45`	`+ if len(config.UIDMappings) == 0 {`
`46`	`46`	`return errors.New("rootless containers requires at least one UID mapping")`
`47`	`47`	`}`
`48`		`- if len(config.GidMappings) == 0 {`
	`48`	`+ if len(config.GIDMappings) == 0 {`
`49`	`49`	`return errors.New("rootless containers requires at least one GID mapping")`
`50`	`50`	`}`
`51`	`51`	`return nil`
`@@ -68,7 +68,7 @@ func rootlessEUIDMount(config *configs.Config) error {`
`68`	`68`	`// Ignore unknown mount options.`
`69`	`69`	`continue`
`70`	`70`	`}`
`71`		`- if !hasIDMapping(uid, config.UidMappings) {`
	`71`	`+ if !hasIDMapping(uid, config.UIDMappings) {`
`72`	`72`	`return errors.New("cannot specify uid= mount options for unmapped uid in rootless containers")`
`73`	`73`	`}`
`74`	`74`	`}`
`@@ -79,7 +79,7 @@ func rootlessEUIDMount(config *configs.Config) error {`
`79`	`79`	`// Ignore unknown mount options.`
`80`	`80`	`continue`
`81`	`81`	`}`
`82`		`- if !hasIDMapping(gid, config.GidMappings) {`
	`82`	`+ if !hasIDMapping(gid, config.GIDMappings) {`
`83`	`83`	`return errors.New("cannot specify gid= mount options for unmapped gid in rootless containers")`
`84`	`84`	`}`
`85`	`85`	`}`
Original file line number	Diff line number	Diff line change
`@@ -16,14 +16,14 @@ func rootlessEUIDConfig() *configs.Config {`
`16`	`16`	`{Type: configs.NEWUSER},`
`17`	`17`	`},`
`18`	`18`	`),`
`19`		`- UidMappings: []configs.IDMap{`
	`19`	`+ UIDMappings: []configs.IDMap{`
`20`	`20`	`{`
`21`	`21`	`HostID: 1337,`
`22`	`22`	`ContainerID: 0,`
`23`	`23`	`Size: 1,`
`24`	`24`	`},`
`25`	`25`	`},`
`26`		`- GidMappings: []configs.IDMap{`
	`26`	`+ GIDMappings: []configs.IDMap{`
`27`	`27`	`{`
`28`	`28`	`HostID: 7331,`
`29`	`29`	`ContainerID: 0,`
`@@ -52,15 +52,15 @@ func TestValidateRootlessEUIDUserns(t *testing.T) {`
`52`	`52`
`53`	`53`	`func TestValidateRootlessEUIDMappingUid(t *testing.T) {`
`54`	`54`	`config := rootlessEUIDConfig()`
`55`		`- config.UidMappings = nil`
	`55`	`+ config.UIDMappings = nil`
`56`	`56`	`if err := Validate(config); err == nil {`
`57`	`57`	`t.Errorf("Expected error to occur if no uid mappings provided")`
`58`	`58`	`}`
`59`	`59`	`}`
`60`	`60`
`61`	`61`	`func TestValidateNonZeroEUIDMappingGid(t *testing.T) {`
`62`	`62`	`config := rootlessEUIDConfig()`
`63`		`- config.GidMappings = nil`
	`63`	`+ config.GIDMappings = nil`
`64`	`64`	`if err := Validate(config); err == nil {`
`65`	`65`	`t.Errorf("Expected error to occur if no gid mappings provided")`
`66`	`66`	`}`
`@@ -93,13 +93,13 @@ func TestValidateRootlessEUIDMountUid(t *testing.T) {`
`93`	`93`	`}`
`94`	`94`
`95`	`95`	`config.Mounts[0].Data = "uid=2"`
`96`		`- config.UidMappings[0].Size = 10`
	`96`	`+ config.UIDMappings[0].Size = 10`
`97`	`97`	`if err := Validate(config); err != nil {`
`98`	`98`	`t.Errorf("Expected error to not occur when setting uid=2 in mount options and UidMapping[0].size is 10")`
`99`	`99`	`}`
`100`	`100`
`101`	`101`	`config.Mounts[0].Data = "uid=20"`
`102`		`- config.UidMappings[0].Size = 10`
	`102`	`+ config.UIDMappings[0].Size = 10`
`103`	`103`	`if err := Validate(config); err == nil {`
`104`	`104`	`t.Errorf("Expected error to occur when setting uid=20 in mount options and UidMapping[0].size is 10")`
`105`	`105`	`}`
`@@ -130,21 +130,21 @@ func TestValidateRootlessEUIDMountGid(t *testing.T) {`
`130`	`130`	`}`
`131`	`131`
`132`	`132`	`config.Mounts[0].Data = "gid=5"`
`133`		`- config.GidMappings[0].Size = 10`
	`133`	`+ config.GIDMappings[0].Size = 10`
`134`	`134`	`if err := Validate(config); err != nil {`
`135`	`135`	`t.Errorf("Expected error to not occur when setting gid=5 in mount options and GidMapping[0].size is 10")`
`136`	`136`	`}`
`137`	`137`
`138`	`138`	`config.Mounts[0].Data = "gid=11"`
`139`		`- config.GidMappings[0].Size = 10`
	`139`	`+ config.GIDMappings[0].Size = 10`
`140`	`140`	`if err := Validate(config); err == nil {`
`141`	`141`	`t.Errorf("Expected error to occur when setting gid=11 in mount options and GidMapping[0].size is 10")`
`142`	`142`	`}`
`143`	`143`	`}`
`144`	`144`
`145`	`145`	`func BenchmarkRootlessEUIDMount(b *testing.B) {`
`146`	`146`	`config := rootlessEUIDConfig()`
`147`		`- config.GidMappings[0].Size = 10`
	`147`	`+ config.GIDMappings[0].Size = 10`
`148`	`148`	`config.Mounts = []*configs.Mount{`
`149`	`149`	`{`
`150`	`150`	`Source: "devpts",`
Original file line number	Diff line number	Diff line change
`@@ -95,7 +95,7 @@ func namespaces(config *configs.Config) error {`
`95`	`95`	`return errors.New("USER namespaces aren't enabled in the kernel")`
`96`	`96`	`}`
`97`	`97`	`} else {`
`98`		`- if config.UidMappings != nil \|\| config.GidMappings != nil {`
	`98`	`+ if config.UIDMappings != nil \|\| config.GIDMappings != nil {`
`99`	`99`	`return errors.New("User namespace mappings specified, but USER namespace isn't enabled in the config")`
`100`	`100`	`}`
`101`	`101`	`}`
`@@ -264,13 +264,13 @@ func checkIDMapMounts(config configs.Config, m configs.Mount) error {`
`264`	`264`	`if config.RootlessEUID {`
`265`	`265`	`return fmt.Errorf("gidMappings/uidMappings is not supported when runc is being launched with EUID != 0, needs CAP_SYS_ADMIN on the runc parent's user namespace")`
`266`	`266`	`}`
`267`		`- if len(config.UidMappings) == 0 \|\| len(config.GidMappings) == 0 {`
	`267`	`+ if len(config.UIDMappings) == 0 \|\| len(config.GIDMappings) == 0 {`
`268`	`268`	`return fmt.Errorf("not yet supported to use gidMappings/uidMappings in a mount without also using a user namespace")`
`269`	`269`	`}`
`270`		`- if !sameMapping(config.UidMappings, m.UIDMappings) {`
	`270`	`+ if !sameMapping(config.UIDMappings, m.UIDMappings) {`
`271`	`271`	`return fmt.Errorf("not yet supported for the mount uidMappings to be different than user namespace uidMapping")`
`272`	`272`	`}`
`273`		`- if !sameMapping(config.GidMappings, m.GIDMappings) {`
	`273`	`+ if !sameMapping(config.GIDMappings, m.GIDMappings) {`
`274`	`274`	`return fmt.Errorf("not yet supported for the mount gidMappings to be different than user namespace gidMapping")`
`275`	`275`	`}`
`276`	`276`	`if !filepath.IsAbs(m.Source) {`
Original file line number	Diff line number	Diff line change
`@@ -2219,7 +2219,7 @@ func (c *Container) bootstrapData(cloneFlags uintptr, nsMaps map[configs.Namespa`
`2219`	`2219`	`_, joinExistingUser := nsMaps[configs.NEWUSER]`
`2220`	`2220`	`if !joinExistingUser {`
`2221`	`2221`	`// write uid mappings`
`2222`		`- if len(c.config.UidMappings) > 0 {`
	`2222`	`+ if len(c.config.UIDMappings) > 0 {`
`2223`	`2223`	`if c.config.RootlessEUID {`
`2224`	`2224`	`// We resolve the paths for new{u,g}idmap from`
`2225`	`2225`	`// the context of runc to avoid doing a path`
`@@ -2231,7 +2231,7 @@ func (c *Container) bootstrapData(cloneFlags uintptr, nsMaps map[configs.Namespa`
`2231`	`2231`	`})`
`2232`	`2232`	`}`
`2233`	`2233`	`}`
`2234`		`- b, err := encodeIDMapping(c.config.UidMappings)`
	`2234`	`+ b, err := encodeIDMapping(c.config.UIDMappings)`
`2235`	`2235`	`if err != nil {`
`2236`	`2236`	`return nil, err`
`2237`	`2237`	`}`
`@@ -2242,8 +2242,8 @@ func (c *Container) bootstrapData(cloneFlags uintptr, nsMaps map[configs.Namespa`
`2242`	`2242`	`}`
`2243`	`2243`
`2244`	`2244`	`// write gid mappings`
`2245`		`- if len(c.config.GidMappings) > 0 {`
`2246`		`- b, err := encodeIDMapping(c.config.GidMappings)`
	`2245`	`+ if len(c.config.GIDMappings) > 0 {`
	`2246`	`+ b, err := encodeIDMapping(c.config.GIDMappings)`
`2247`	`2247`	`if err != nil {`
`2248`	`2248`	`return nil, err`
`2249`	`2249`	`}`
`@@ -2356,5 +2356,5 @@ func requiresRootOrMappingTool(c *configs.Config) bool {`
`2356`	`2356`	`gidMap := []configs.IDMap{`
`2357`	`2357`	`{ContainerID: 0, HostID: os.Getegid(), Size: 1},`
`2358`	`2358`	`}`
`2359`		`- return !reflect.DeepEqual(c.GidMappings, gidMap)`
	`2359`	`+ return !reflect.DeepEqual(c.GIDMappings, gidMap)`
`2360`	`2360`	`}`