linux/fs/pnode.h, branch v3.9 Mirror of https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/ https://git.shady.money/linux/atom?h=v3.9 2013-03-27T14:50:05Z vfs: Carefully propogate mounts across user namespaces 2013-03-27T14:50:05Z Eric W. Biederman ebiederm@xmission.com 2013-03-22T11:08:05Z urn:sha1:132c94e31b8bca8ea921f9f96a57d684fa4ae0a9 As a matter of policy MNT_READONLY should not be changable if the original mounter had more privileges than creator of the mount namespace. Add the flag CL_UNPRIVILEGED to note when we are copying a mount from a mount namespace that requires more privileges to a mount namespace that requires fewer privileges. When the CL_UNPRIVILEGED flag is set cause clone_mnt to set MNT_NO_REMOUNT if any of the mnt flags that should never be changed are set. This protects both mount propagation and the initial creation of a less privileged mount namespace. Cc: stable@vger.kernel.org Acked-by: Serge Hallyn <serge.hallyn@canonical.com> Reported-by: Andy Lutomirski <luto@amacapital.net> Signed-off-by: "Eric W. Biederman" <ebiederm@xmission.com> vfs: Only support slave subtrees across different user namespaces 2012-11-19T13:59:20Z Eric W. Biederman ebiederm@xmission.com 2012-07-31T20:13:04Z urn:sha1:7a472ef4be8387bc05a42e16309b02c8ca943a40 Sharing mount subtress with mount namespaces created by unprivileged users allows unprivileged mounts created by unprivileged users to propagate to mount namespaces controlled by privileged users. Prevent nasty consequences by changing shared subtrees to slave subtress when an unprivileged users creates a new mount namespace. Acked-by: Serge Hallyn <serge.hallyn@canonical.com> Signed-off-by: "Eric W. Biederman" <ebiederm@xmission.com> vfs: switch pnode.h macros to struct mount * 2012-01-04T03:57:11Z Al Viro viro@zeniv.linux.org.uk 2011-11-25T06:05:37Z urn:sha1:fc7be130c7e91cf693d4bc2d9b11f08a5a4893d0 Signed-off-by: Al Viro <viro@zeniv.linux.org.uk> vfs: spread struct mount - remaining argument of mnt_set_mountpoint() 2012-01-04T03:57:07Z Al Viro viro@zeniv.linux.org.uk 2011-11-25T05:01:17Z urn:sha1:14cf1fa8f54353d9caf6174c1e4280c8c4dcfd7a Signed-off-by: Al Viro <viro@zeniv.linux.org.uk> vfs: spread struct mount - propagate_mnt() 2012-01-04T03:57:07Z Al Viro viro@zeniv.linux.org.uk 2011-11-25T04:59:29Z urn:sha1:a8d56d8e4fa0cb9a023834363f8d79415d277a1d Signed-off-by: Al Viro <viro@zeniv.linux.org.uk> vfs: spread struct mount - get_dominating_id / do_make_slave 2012-01-04T03:57:06Z Al Viro viro@zeniv.linux.org.uk 2011-11-25T04:35:54Z urn:sha1:6fc7871fed915914ef441efbe0f9a7c3d0f3bff1 next pile of horrors, similar to mnt_parent one; this time it's mnt_master. Signed-off-by: Al Viro <viro@zeniv.linux.org.uk> vfs: spread struct mount - work with counters 2012-01-04T03:57:05Z Al Viro viro@zeniv.linux.org.uk 2011-11-25T03:37:54Z urn:sha1:83adc7532229f1909cf37c429780f02f06fe05ee Signed-off-by: Al Viro <viro@zeniv.linux.org.uk> vfs: spread struct mount - is_path_reachable 2012-01-04T03:57:04Z Al Viro viro@zeniv.linux.org.uk 2011-11-25T03:00:28Z urn:sha1:643822b41e5e0f133438883b0be574cdaf168a2a Signed-off-by: Al Viro <viro@zeniv.linux.org.uk> vfs: spread struct mount - do_umount/propagate_mount_busy 2012-01-04T03:57:03Z Al Viro viro@zeniv.linux.org.uk 2011-11-25T02:35:16Z urn:sha1:1ab597386205f8dc757cf8750465502aeae65154 Signed-off-by: Al Viro <viro@zeniv.linux.org.uk> vfs: spread struct mount mnt_set_mountpoint child argument 2012-01-04T03:57:03Z Al Viro viro@zeniv.linux.org.uk 2011-11-25T02:28:22Z urn:sha1:44d964d609c7c11b330a3d1caf30767fa13c7be3 Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>