OpenVZ Forum: Devel » [patch 0/8] mount ownership and unprivileged mount syscall (v4)

Home » Mailing lists » Devel » [patch 0/8] mount ownership and unprivileged mount syscall (v4)

Show: Today's Messages :: Show Polls :: Message Navigator
E-mail to friend

Re: [patch 8/8] allow unprivileged fuse mounts [message #18434 is a reply to message #18414]

Sat, 21 April 2007 14:18

ebiederm
Messages: 1354
Registered: February 2006

Senior Member

Miklos Szeredi <miklos@szeredi.hu> writes:

> From: Miklos Szeredi <mszeredi@suse.cz>
>
> Use FS_SAFE for "fuse" fs type, but not for "fuseblk".
>
> FUSE was designed from the beginning to be safe for unprivileged
> users.  This has also been verified in practice over many years.  In
> addition unprivileged mounts require the parent mount to be owned by
> the user, which is more strict than the current userspace policy.
>
> This will enable future installations to remove the suid-root
> fusermount utility.
>
> Don't require the "user_id=" and "group_id=" options for unprivileged
> mounts, but if they are present, verify them for sanity.
>
> Disallow the "allow_other" option for unprivileged mounts.
>
> Signed-off-by: Miklos Szeredi <mszeredi@suse.cz>
> ---
>
> Index: linux/fs/fuse/inode.c
> ===================================================================
> --- linux.orig/fs/fuse/inode.c	2007-04-20 11:55:01.000000000 +0200
> +++ linux/fs/fuse/inode.c	2007-04-20 11:55:14.000000000 +0200
> @@ -311,6 +311,19 @@ static int parse_fuse_opt(char *opt, str
>  	d->max_read = ~0;
>  	d->blksize = 512;
>  
> +	/*
> +	 * For unprivileged mounts use current uid/gid.  Still allow
> +	 * "user_id" and "group_id" options for compatibility, but
> +	 * only if they match these values.
> +	 */
> +	if (!capable(CAP_SYS_ADMIN)) {
> +		d->user_id = current->uid;
> +		d->user_id_present = 1;
> +		d->group_id = current->gid;
> +		d->group_id_present = 1;
> +
> +	}

CAP_SETUID is the appropriate capability...

This is not a dimension we have not fully explored.
What is the problem with a user controlled mount having different
uid and gid values.

Yes they map into different users but how is this a problem.
The only problem that I can recall is the historic chown problem
where you could give files to other users and mess up their quotas.

Or is the problem other users writing to this user controlled
filesystem?

Eric
_______________________________________________
Containers mailing list
Containers@lists.linux-foundation.org
https://lists.linux-foundation.org/mailman/listinfo/containers

Report message to a moderator

[Message index]

		[patch 0/8] mount ownership and unprivileged mount syscall (v4) By: Miklos Szeredi on Fri, 20 April 2007 10:25
		[patch 1/8] add user mounts to the kernel By: Miklos Szeredi on Fri, 20 April 2007 10:25
		Re: [patch 1/8] add user mounts to the kernel By: akpm on Sat, 21 April 2007 07:55
		Re: [patch 1/8] add user mounts to the kernel By: Miklos Szeredi on Sat, 21 April 2007 08:06
		Re: [patch 1/8] add user mounts to the kernel By: ebiederm on Sat, 21 April 2007 13:14
		Re: [patch 1/8] add user mounts to the kernel By: Miklos Szeredi on Sun, 22 April 2007 07:02
		Re: [patch 1/8] add user mounts to the kernel By: ebiederm on Sun, 22 April 2007 07:43
		Re: [patch 1/8] add user mounts to the kernel By: Miklos Szeredi on Sun, 22 April 2007 08:05
		Re: [patch 1/8] add user mounts to the kernel By: Miklos Szeredi on Sun, 22 April 2007 16:22
		[patch 2/8] allow unprivileged umount By: Miklos Szeredi on Fri, 20 April 2007 10:25
		Re: [patch 2/8] allow unprivileged umount By: akpm on Sat, 21 April 2007 07:55
		Re: [patch 2/8] allow unprivileged umount By: hpa on Sat, 21 April 2007 08:01
		Re: [patch 2/8] allow unprivileged umount By: Miklos Szeredi on Sat, 21 April 2007 08:09
		Re: [patch 2/8] allow unprivileged umount By: akpm on Sat, 21 April 2007 08:36
		Re: [patch 2/8] allow unprivileged umount By: ebiederm on Sat, 21 April 2007 12:53
		Re: [patch 2/8] allow unprivileged umount By: Miklos Szeredi on Sun, 22 April 2007 06:47
		Re: [patch 2/8] allow unprivileged umount By: ebiederm on Sat, 21 April 2007 13:29
		Re: [patch 2/8] allow unprivileged umount By: Miklos Szeredi on Sun, 22 April 2007 07:05
		Re: [patch 2/8] allow unprivileged umount By: ebiederm on Sun, 22 April 2007 07:09
		Re: [patch 2/8] allow unprivileged umount By: Miklos Szeredi on Sun, 22 April 2007 07:32
		[patch 3/8] account user mounts By: Miklos Szeredi on Fri, 20 April 2007 10:25
		Re: [patch 3/8] account user mounts By: akpm on Sat, 21 April 2007 07:55
		Re: [patch 3/8] account user mounts By: ebiederm on Sat, 21 April 2007 13:37
		Re: [patch 3/8] account user mounts By: Miklos Szeredi on Sun, 22 April 2007 07:10
		Re: [patch 3/8] account user mounts By: ebiederm on Sun, 22 April 2007 07:49
		Re: [patch 3/8] account user mounts By: Miklos Szeredi on Sun, 22 April 2007 08:08
		[patch 4/8] propagate error values from clone_mnt By: Miklos Szeredi on Fri, 20 April 2007 10:25
		Re: [patch 4/8] propagate error values from clone_mnt By: ebiederm on Sat, 21 April 2007 13:40
		[patch 5/8] allow unprivileged bind mounts By: Miklos Szeredi on Fri, 20 April 2007 10:25
		Re: [patch 5/8] allow unprivileged bind mounts By: ebiederm on Sat, 21 April 2007 14:00
		Re: [patch 5/8] allow unprivileged bind mounts By: Miklos Szeredi on Sun, 22 April 2007 07:19
		[patch 6/8] put declaration of put_filesystem() in fs.h By: Miklos Szeredi on Fri, 20 April 2007 10:25
		[patch 7/8] allow unprivileged mounts By: Miklos Szeredi on Fri, 20 April 2007 10:25
		Re: [patch 7/8] allow unprivileged mounts By: akpm on Sat, 21 April 2007 07:55
		Re: [patch 7/8] allow unprivileged mounts By: ebiederm on Sat, 21 April 2007 14:10
		Re: [patch 7/8] allow unprivileged mounts By: Jan Engelhardt on Sat, 21 April 2007 15:43
		Re: [patch 7/8] allow unprivileged mounts By: Miklos Szeredi on Sat, 21 April 2007 08:13
		Re: [patch 7/8] allow unprivileged mounts By: Miklos Szeredi on Sat, 21 April 2007 08:23
		Re: [patch 7/8] allow unprivileged mounts By: Shaya Potter on Sun, 22 April 2007 00:46
		Re: [patch 7/8] allow unprivileged mounts By: Andi Kleen on Sat, 21 April 2007 22:06
		Re: [patch 7/8] allow unprivileged mounts By: ebiederm on Sat, 21 April 2007 16:57
		Re: [patch 7/8] allow unprivileged mounts By: Jan Engelhardt on Sat, 21 April 2007 17:10
		Re: [patch 7/8] allow unprivileged mounts By: ebiederm on Sat, 21 April 2007 21:00
		Re: [patch 7/8] allow unprivileged mounts By: Miklos Szeredi on Sun, 22 April 2007 08:19
		Re: [patch 7/8] allow unprivileged mounts By: ebiederm on Sat, 21 April 2007 21:33
		[patch 8/8] allow unprivileged fuse mounts By: Miklos Szeredi on Fri, 20 April 2007 10:25
		Re: [patch 8/8] allow unprivileged fuse mounts By: akpm on Sat, 21 April 2007 07:55
		Re: [patch 8/8] allow unprivileged fuse mounts By: Miklos Szeredi on Sat, 21 April 2007 08:16
		Re: [patch 8/8] allow unprivileged fuse mounts By: ebiederm on Sat, 21 April 2007 14:18
		Re: [patch 8/8] allow unprivileged fuse mounts By: Miklos Szeredi on Sun, 22 April 2007 07:22
		Re: [patch 0/8] mount ownership and unprivileged mount syscall (v4) By: ebiederm on Wed, 25 April 2007 01:04
		Re: [patch 0/8] mount ownership and unprivileged mount syscall (v4) By: Karel Zak on Wed, 25 April 2007 00:04
		Re: [patch 0/8] mount ownership and unprivileged mount syscall (v4) By: Miklos Szeredi on Wed, 25 April 2007 07:18
		Re: [patch 0/8] mount ownership and unprivileged mount syscall (v4) By: Karel Zak on Wed, 25 April 2007 09:23

Previous Topic:	[PATCH] cfq: get rid of cfqq hash
Next Topic:	[PATCH] cfq: get rid of cfqq hash

Goto Forum:

-=] Back to Top [=-

[ Syndicate this forum (XML) ] [

] [

]

Current Time: Tue Jul 16 12:57:51 GMT 2024

Total time taken to generate the page: 0.02955 seconds