Received: by 2002:ac0:a594:0:0:0:0:0 with SMTP id m20-v6csp2936954imm; Thu, 24 May 2018 19:25:56 -0700 (PDT) X-Google-Smtp-Source: AB8JxZow3q63qPam+q/baeM8FJn3lM9JLuUB+G5hYsrGYG4RZDZ7Ea3iqCEv8A3lknowPIiEcLMU X-Received: by 2002:a17:902:3381:: with SMTP id b1-v6mr577695plc.248.1527215156303; Thu, 24 May 2018 19:25:56 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1527215156; cv=none; d=google.com; s=arc-20160816; b=iFv4908DkqslGXubze/y0mLuGXGaz9/vCtNCp60/O0rYN1Rfsg6vCqt7O4YjWHVzvV YwYZXMC+XOW6JnEKbQZaEWLHnO06MtPl11K4QzrkHGyQKZVcxEvx8itKEqTyGlonSeTo lfno/t8e3MFUl2KSEla7TrxQC0aclZ03g/a+acXSGfd3Cv6nwBiYhyqKoAKSU6dYxxqh CTFeOAZs34opwlfeG6zq9oeHjX+nGxVFYsJr2e1CVUTZM4C+omHPjrMT52RPe0ks1naB u546W/yj/vv86isFDIjOSG9IyBRPC3B7FNJHalyJ3Fi9zc+uVWjNMyl3XanankrxqqkQ mezw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:in-reply-to:content-disposition :mime-version:references:message-id:subject:cc:to:from:date :arc-authentication-results; bh=7/oqmesHevWbzRdFyz7sCjX6EVBpVs9AYV989dUEtuQ=; b=zkwoj44V6eeLzTyByZwQApahMrosGfMNumeKrPTmF1SJvkYhJa9zAMMt28fCbq4F69 U793npMAjsZW3iSjrcqDaYsVgUA2zUHA7x+zjxuWmJJTX7zncFzdhwQzKFpG54m4uGGI a1il95S/sOM0Yb99gqDSBRVpnRocQi/K4D6IYR3HkSnRqnTG6ZwboT8WxohdQvhDOjxO YR5Uf7ik+4c8d/eGfibySTK4UXT/cwLNw3VJgQH7qN/lqdfQZdexb6pwdsqpKmFlNBaC SGAfyYYdDPR0oERLvkKYbI2sL2joa3Eaz9hon+y16X43K9VKqdk1ownGvbX18HmDeOnr B5uA== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id c7-v6si21568993plo.47.2018.05.24.19.25.41; Thu, 24 May 2018 19:25:56 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S971033AbeEXP6N (ORCPT + 99 others); Thu, 24 May 2018 11:58:13 -0400 Received: from mx2.mailbox.org ([80.241.60.215]:29084 "EHLO mx2.mailbox.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S971002AbeEXP6K (ORCPT ); Thu, 24 May 2018 11:58:10 -0400 Received: from smtp1.mailbox.org (smtp1.mailbox.org [80.241.60.240]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mx2.mailbox.org (Postfix) with ESMTPS id B89674229C; Thu, 24 May 2018 17:58:08 +0200 (CEST) X-Virus-Scanned: amavisd-new at heinlein-support.de Received: from smtp1.mailbox.org ([80.241.60.240]) by spamfilter02.heinlein-hosting.de (spamfilter02.heinlein-hosting.de [80.241.56.116]) (amavisd-new, port 10030) with ESMTP id wHe-VI6_eWR7; Thu, 24 May 2018 17:58:05 +0200 (CEST) Date: Thu, 24 May 2018 17:58:03 +0200 From: Christian Brauner To: "Eric W. Biederman" Cc: Linux Containers , linux-kernel@vger.kernel.org, Seth Forshee , linux-fsdevel@vger.kernel.org Subject: Re: [REVIEW][PATCH 4/6] fs: Allow superblock owner to access do_remount_sb() Message-ID: <20180524155803.GB19932@mailbox.org> References: <87o9h6554f.fsf@xmission.com> <20180523232538.4880-4-ebiederm@xmission.com> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline In-Reply-To: <20180523232538.4880-4-ebiederm@xmission.com> Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Wed, May 23, 2018 at 06:25:36PM -0500, Eric W. Biederman wrote: > Superblock level remounts are currently restricted to global > CAP_SYS_ADMIN, as is the path for changing the root mount to > read only on umount. Loosen both of these permission checks to > also allow CAP_SYS_ADMIN in any namespace which is privileged > towards the userns which originally mounted the filesystem. Acked-by: Christian Brauner > > Signed-off-by: Seth Forshee > Acked-by: "Eric W. Biederman" > Acked-by: Serge Hallyn Note, I just talked to Serge. This should be Acked-by: Serge Hallyn > Signed-off-by: Eric W. Biederman > --- > fs/namespace.c | 4 ++-- > 1 file changed, 2 insertions(+), 2 deletions(-) > > diff --git a/fs/namespace.c b/fs/namespace.c > index 5f75969adff1..8ddd14806799 100644 > --- a/fs/namespace.c > +++ b/fs/namespace.c > @@ -1590,7 +1590,7 @@ static int do_umount(struct mount *mnt, int flags) > * Special case for "unmounting" root ... > * we just try to remount it readonly. > */ > - if (!capable(CAP_SYS_ADMIN)) > + if (!ns_capable(sb->s_user_ns, CAP_SYS_ADMIN)) > return -EPERM; > down_write(&sb->s_umount); > if (!sb_rdonly(sb)) > @@ -2333,7 +2333,7 @@ static int do_remount(struct path *path, int ms_flags, int sb_flags, > down_write(&sb->s_umount); > if (ms_flags & MS_BIND) > err = change_mount_flags(path->mnt, ms_flags); > - else if (!capable(CAP_SYS_ADMIN)) > + else if (!ns_capable(sb->s_user_ns, CAP_SYS_ADMIN)) > err = -EPERM; > else > err = do_remount_sb(sb, sb_flags, data, 0); > -- > 2.14.1 > > _______________________________________________ > Containers mailing list > Containers@lists.linux-foundation.org > https://lists.linuxfoundation.org/mailman/listinfo/containers