Re: [patch 5/9] unprivileged mounts: allow unprivileged bind mounts

Quoting Miklos Szeredi ([EMAIL PROTECTED]): > From: Miklos Szeredi <[EMAIL PROTECTED]> > > Allow bind mounts to unprivileged users if the following conditions are met: > > - mountpoint is not a symlink > - parent mount is owned by the user > - the number of user mounts is below the maximum

Re: [patch 5/9] unprivileged mounts: allow unprivileged bind mounts

Quoting Miklos Szeredi ([EMAIL PROTECTED]): From: Miklos Szeredi [EMAIL PROTECTED] Allow bind mounts to unprivileged users if the following conditions are met: - mountpoint is not a symlink - parent mount is owned by the user - the number of user mounts is below the maximum

Re: [patch 5/9] unprivileged mounts: allow unprivileged bind mounts

Quoting Miklos Szeredi ([EMAIL PROTECTED]): > From: Miklos Szeredi <[EMAIL PROTECTED]> > > Allow bind mounts to unprivileged users if the following conditions are met: > > - mountpoint is not a symlink > - parent mount is owned by the user > - the number of user mounts is below the maximum

Re: [patch 5/9] unprivileged mounts: allow unprivileged bind mounts

> case EMFILE: > error ("mount table full"); break; OK, we could go with EMFILE, but the message should be changed to something like "maximum unprivileged mount count exceeded". Miklos -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message

Re: [patch 5/9] unprivileged mounts: allow unprivileged bind mounts

On Wed, Jan 09, 2008 at 01:45:09PM +0100, Jan Engelhardt wrote: > > On Jan 8 2008 20:08, Miklos Szeredi wrote: > >> On Tue, 2008-01-08 at 12:35 +0100, Miklos Szeredi wrote: > >> > +static int reserve_user_mount(void) > >> > +{ > >> > + int err = 0; > >> > + > >> > + spin_lock(_lock);

Re: [patch 5/9] unprivileged mounts: allow unprivileged bind mounts

On Jan 8 2008 20:08, Miklos Szeredi wrote: >> On Tue, 2008-01-08 at 12:35 +0100, Miklos Szeredi wrote: >> > +static int reserve_user_mount(void) >> > +{ >> > + int err = 0; >> > + >> > + spin_lock(_lock); >> > + if (nr_user_mounts >= max_user_mounts && !capable(CAP_SYS_ADMIN))

Re: [patch 5/9] unprivileged mounts: allow unprivileged bind mounts

On Jan 8 2008 20:08, Miklos Szeredi wrote: On Tue, 2008-01-08 at 12:35 +0100, Miklos Szeredi wrote: +static int reserve_user_mount(void) +{ + int err = 0; + + spin_lock(vfsmount_lock); + if (nr_user_mounts = max_user_mounts !capable(CAP_SYS_ADMIN)) +

Re: [patch 5/9] unprivileged mounts: allow unprivileged bind mounts

On Wed, Jan 09, 2008 at 01:45:09PM +0100, Jan Engelhardt wrote: On Jan 8 2008 20:08, Miklos Szeredi wrote: On Tue, 2008-01-08 at 12:35 +0100, Miklos Szeredi wrote: +static int reserve_user_mount(void) +{ + int err = 0; + + spin_lock(vfsmount_lock); + if

Re: [patch 5/9] unprivileged mounts: allow unprivileged bind mounts

case EMFILE: error (mount table full); break; OK, we could go with EMFILE, but the message should be changed to something like maximum unprivileged mount count exceeded. Miklos -- To unsubscribe from this list: send the line unsubscribe linux-kernel in the body of a message to [EMAIL

Re: [patch 5/9] unprivileged mounts: allow unprivileged bind mounts

Quoting Miklos Szeredi ([EMAIL PROTECTED]): From: Miklos Szeredi [EMAIL PROTECTED] Allow bind mounts to unprivileged users if the following conditions are met: - mountpoint is not a symlink - parent mount is owned by the user - the number of user mounts is below the maximum

Re: [patch 5/9] unprivileged mounts: allow unprivileged bind mounts

On Tue, 8 Jan 2008, Miklos Szeredi wrote: > > On Tue, 2008-01-08 at 12:35 +0100, Miklos Szeredi wrote: > > > +static int reserve_user_mount(void) > > > +{ > > > + int err = 0; > > > + > > > + spin_lock(_lock); > > > + if (nr_user_mounts >= max_user_mounts &&

Re: [patch 5/9] unprivileged mounts: allow unprivileged bind mounts

> > @@ -510,10 +533,16 @@ static struct vfsmount *clone_mnt(struct > > int flag) > > { > > struct super_block *sb = old->mnt_sb; > > - struct vfsmount *mnt = alloc_vfsmnt(old->mnt_devname); > > + struct vfsmount *mnt; > > > > + if

Re: [patch 5/9] unprivileged mounts: allow unprivileged bind mounts

On Tue, 2008-01-08 at 20:08 +0100, Miklos Szeredi wrote: > > The logic behind EPERM, is that this failure is only for unprivileged > callers. ENOMEM is too specifically about OOM. It could be changed > to ENOSPC, ENFILE, EMFILE, or it could remain EPERM. What do others > think? Since you're

Re: [patch 5/9] unprivileged mounts: allow unprivileged bind mounts

> On Tue, 2008-01-08 at 12:35 +0100, Miklos Szeredi wrote: > > +static int reserve_user_mount(void) > > +{ > > + int err = 0; > > + > > + spin_lock(_lock); > > + if (nr_user_mounts >= max_user_mounts && !capable(CAP_SYS_ADMIN)) > > + err = -EPERM; > > + else >

Re: [patch 5/9] unprivileged mounts: allow unprivileged bind mounts

On Tue, 2008-01-08 at 12:35 +0100, Miklos Szeredi wrote: > @@ -510,10 +533,16 @@ static struct vfsmount *clone_mnt(struct > int flag) > { > struct super_block *sb = old->mnt_sb; > - struct vfsmount *mnt = alloc_vfsmnt(old->mnt_devname); > +

Re: [patch 5/9] unprivileged mounts: allow unprivileged bind mounts

On Tue, 2008-01-08 at 12:35 +0100, Miklos Szeredi wrote: > +static int reserve_user_mount(void) > +{ > + int err = 0; > + > + spin_lock(_lock); > + if (nr_user_mounts >= max_user_mounts && !capable(CAP_SYS_ADMIN)) > + err = -EPERM; > + else > +

[patch 5/9] unprivileged mounts: allow unprivileged bind mounts

From: Miklos Szeredi <[EMAIL PROTECTED]> Allow bind mounts to unprivileged users if the following conditions are met: - mountpoint is not a symlink - parent mount is owned by the user - the number of user mounts is below the maximum Unprivileged mounts imply MS_SETUSER, and will also have

[patch 5/9] unprivileged mounts: allow unprivileged bind mounts

From: Miklos Szeredi [EMAIL PROTECTED] Allow bind mounts to unprivileged users if the following conditions are met: - mountpoint is not a symlink - parent mount is owned by the user - the number of user mounts is below the maximum Unprivileged mounts imply MS_SETUSER, and will also have

Re: [patch 5/9] unprivileged mounts: allow unprivileged bind mounts

On Tue, 2008-01-08 at 12:35 +0100, Miklos Szeredi wrote: +static int reserve_user_mount(void) +{ + int err = 0; + + spin_lock(vfsmount_lock); + if (nr_user_mounts = max_user_mounts !capable(CAP_SYS_ADMIN)) + err = -EPERM; + else +

Re: [patch 5/9] unprivileged mounts: allow unprivileged bind mounts

On Tue, 2008-01-08 at 12:35 +0100, Miklos Szeredi wrote: @@ -510,10 +533,16 @@ static struct vfsmount *clone_mnt(struct int flag) { struct super_block *sb = old-mnt_sb; - struct vfsmount *mnt = alloc_vfsmnt(old-mnt_devname); +

Re: [patch 5/9] unprivileged mounts: allow unprivileged bind mounts

@@ -510,10 +533,16 @@ static struct vfsmount *clone_mnt(struct int flag) { struct super_block *sb = old-mnt_sb; - struct vfsmount *mnt = alloc_vfsmnt(old-mnt_devname); + struct vfsmount *mnt; + if (flag

Re: [patch 5/9] unprivileged mounts: allow unprivileged bind mounts

On Tue, 2008-01-08 at 20:08 +0100, Miklos Szeredi wrote: The logic behind EPERM, is that this failure is only for unprivileged callers. ENOMEM is too specifically about OOM. It could be changed to ENOSPC, ENFILE, EMFILE, or it could remain EPERM. What do others think? Since you're

Re: [patch 5/9] unprivileged mounts: allow unprivileged bind mounts

On Tue, 2008-01-08 at 12:35 +0100, Miklos Szeredi wrote: +static int reserve_user_mount(void) +{ + int err = 0; + + spin_lock(vfsmount_lock); + if (nr_user_mounts = max_user_mounts !capable(CAP_SYS_ADMIN)) + err = -EPERM; + else +

Re: [patch 5/9] unprivileged mounts: allow unprivileged bind mounts

On Tue, 8 Jan 2008, Miklos Szeredi wrote: On Tue, 2008-01-08 at 12:35 +0100, Miklos Szeredi wrote: +static int reserve_user_mount(void) +{ + int err = 0; + + spin_lock(vfsmount_lock); + if (nr_user_mounts = max_user_mounts !capable(CAP_SYS_ADMIN)) +