[systemd-devel] [PATCH] Do not clear parent mount flags when setting up namespaces
Topi Miettinen
toiwoton at gmail.com
Thu Jan 1 06:57:45 PST 2015
On 01/01/15 14:49, Topi Miettinen wrote:
> Copy parent directory mount flags when setting up a namespace and
> don't accidentally clear mount flags later.
The problem here is that flags noexec, nosuid and nodev are cleared, so
the mounts always have exec, suid, dev flags enabled. With the patch
applied, namespace mounts keep what parent had, for example:
# grep /etc /proc/`pidof acpid`/mounts
/dev/sdb1 /etc ext4
ro,nosuid,nodev,noatime,discard,errors=remount-ro,data=ordered 0 0
-Topi Miettinen
More information about the systemd-devel
mailing list