Re: [patch 5/9] unprivileged mounts: allow unprivileged bind mounts

From: Miklos Szeredi
Date: Tue Jan 08 2008 - 14:10:34 EST

Next message: Ondrej Zary: "Re: [linux-kernel] Re: [PATCH] x86: provide a DMI based port 0x80 I/O delay override."
Previous message: Arjan van de Ven: "Re: Top 10 kernel oopses for the week ending January 5th, 2008"
In reply to: Dave Hansen: "Re: [patch 5/9] unprivileged mounts: allow unprivileged bind mounts"
Next in thread: Dave Hansen: "Re: [patch 5/9] unprivileged mounts: allow unprivileged bind mounts"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> On Tue, 2008-01-08 at 12:35 +0100, Miklos Szeredi wrote:
> > +static int reserve_user_mount(void)
> > +{
> > + int err = 0;
> > +
> > + spin_lock(&vfsmount_lock);
> > + if (nr_user_mounts >= max_user_mounts && !capable(CAP_SYS_ADMIN))
> > + err = -EPERM;
> > + else
> > + nr_user_mounts++;
> > + spin_unlock(&vfsmount_lock);
> > + return err;
> > +}
>
> Would -ENOSPC or -ENOMEM be a more descriptive error here?

The logic behind EPERM, is that this failure is only for unprivileged
callers. ENOMEM is too specifically about OOM. It could be changed
to ENOSPC, ENFILE, EMFILE, or it could remain EPERM. What do others
think?

Miklos
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Ondrej Zary: "Re: [linux-kernel] Re: [PATCH] x86: provide a DMI based port 0x80 I/O delay override."
Previous message: Arjan van de Ven: "Re: Top 10 kernel oopses for the week ending January 5th, 2008"
In reply to: Dave Hansen: "Re: [patch 5/9] unprivileged mounts: allow unprivileged bind mounts"
Next in thread: Dave Hansen: "Re: [patch 5/9] unprivileged mounts: allow unprivileged bind mounts"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]