Post Syndicated from original https://lwn.net/Articles/837566/rss

Almost every filesystem (excepting relics like VFAT) implements the concept
of the owner and group of each file; the higher levels of the operating
system then use that information to control access to those files. For
decades, it has usually sufficed to track a single owner and group for each
file, but there is an increasing number of use cases wanting to make that
ownership relative to the environment any given process is running in.
Developers have been working for a few years to find solutions to this
problem; the latest attempt is the ID-mapped
mounts patch set from Christian Brauner.