Re: do_change_type(): refuse to operate on unmounted/not ours mounts

From: Tycho Andersen
Date: Wed Aug 13 2025 - 15:12:11 EST

Next message: Christian Loehle: "Re: [PATCH v1 1/3] cpuidle: governors: menu: Avoid selecting states with too much latency"
Previous message: Nishanth Menon: "[PATCH 1/2] dt-bindings: display: bridge: it66121: Add compatible string for IT66122"
In reply to: Al Viro: "Re: do_change_type(): refuse to operate on unmounted/not ours mounts"
Next in thread: Al Viro: "Re: do_change_type(): refuse to operate on unmounted/not ours mounts"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Aug 13, 2025 at 07:56:01PM +0100, Al Viro wrote:
> @@ -3347,18 +3360,11 @@ static int do_set_group(struct path *from_path, struct path *to_path)
>
> namespace_lock();
>
> - err = -EINVAL;
> - /* To and From must be mounted */
> - if (!is_mounted(&from->mnt))
> - goto out;
> - if (!is_mounted(&to->mnt))
> - goto out;
> -
> - err = -EPERM;
> - /* We should be allowed to modify mount namespaces of both mounts */
> - if (!ns_capable(from->mnt_ns->user_ns, CAP_SYS_ADMIN))
> + err = may_change_propagation(from);
> + if (err)
> goto out;
> - if (!ns_capable(to->mnt_ns->user_ns, CAP_SYS_ADMIN))
> + err = may_change_propagation(from);

Just driving by, but I guess you mean "to" here.

Tycho

Next message: Christian Loehle: "Re: [PATCH v1 1/3] cpuidle: governors: menu: Avoid selecting states with too much latency"
Previous message: Nishanth Menon: "[PATCH 1/2] dt-bindings: display: bridge: it66121: Add compatible string for IT66122"
In reply to: Al Viro: "Re: do_change_type(): refuse to operate on unmounted/not ours mounts"
Next in thread: Al Viro: "Re: do_change_type(): refuse to operate on unmounted/not ours mounts"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]