From 26548d87173806c0eb2ff9c177e52cdb990b7b43 Mon Sep 17 00:00:00 2001
From: Liang Ding <DL88250@gmail.com>
Date: Tue, 8 Aug 2017 21:00:49 +0800
Subject: [PATCH] :art: Run client program using 'runner' user in docker
 container

---
 output/namespace_linux.go | 13 +++++--------
 1 file changed, 5 insertions(+), 8 deletions(-)

diff --git a/output/namespace_linux.go b/output/namespace_linux.go
index dc3c800..62360c2 100644
--- a/output/namespace_linux.go
+++ b/output/namespace_linux.go
@@ -20,16 +20,13 @@ import (
 )
 
 func SetNamespace(cmd *exec.Cmd) {
-	// XXX: keep move with Go 1.4 and later's
-
 	cmd.SysProcAttr = &syscall.SysProcAttr{}
-	//cmd.SysProcAttr.Cloneflags = syscall.CLONE_NEWUSER | syscall.CLONE_NEWNS | syscall.CLONE_NEWUTS | syscall.CLONE_NEWPID | syscall.CLONE_NEWIPC | syscall.CLONE_NEWNET
-	cmd.SysProcAttr.Cloneflags = syscall.CLONE_NEWUSER /*| syscall.CLONE_NEWNS*/ | syscall.CLONE_NEWUTS | syscall.CLONE_NEWPID | syscall.CLONE_NEWIPC /*| syscall.CLONE_NEWNET*/
+	// cmd.SysProcAttr.Cloneflags = syscall.CLONE_NEWUSER /*| syscall.CLONE_NEWNS*/ | syscall.CLONE_NEWUTS | syscall.CLONE_NEWPID | syscall.CLONE_NEWIPC /*| syscall.CLONE_NEWNET*/
 	cmd.SysProcAttr.Credential = &syscall.Credential{
-		Uid: 0,
-		Gid: 0,
+		Uid: 1001,
+		Gid: 1001,
 	}
 
-	cmd.SysProcAttr.UidMappings = []syscall.SysProcIDMap{{ContainerID: 0, HostID: 1001, Size: 1}}
-	cmd.SysProcAttr.GidMappings = []syscall.SysProcIDMap{{ContainerID: 0, HostID: 1001, Size: 1}}
+	// cmd.SysProcAttr.UidMappings = []syscall.SysProcIDMap{{ContainerID: 0, HostID: 1001, Size: 1}}
+	// cmd.SysProcAttr.GidMappings = []syscall.SysProcIDMap{{ContainerID: 0, HostID: 1001, Size: 1}}
 }