RE: [PATCH v2 1/1] fs: Allow no_new_privs tasks to call chroot(2)

(off-list ancestor, not in this archive)
Re: [PATCH v2 1/1] fs: Allow no_new_privs tasks to call chroot(2) · Eric W. Biederman <hidden> · 2021-03-10
Re: [PATCH v2 1/1] fs: Allow no_new_privs tasks to call chroot(2) · Jann Horn <jannh@google.com> · 2021-03-10
Re: [PATCH v2 1/1] fs: Allow no_new_privs tasks to call chroot(2) · Mickaël Salaün <mic@digikod.net> · 2021-03-11
RE: [PATCH v2 1/1] fs: Allow no_new_privs tasks to call chroot(2) · David Laight <hidden> · 2021-03-11

From: David Laight <hidden>
Date: 2021-03-11 09:46:31
Also in: linux-fsdevel, lkml

Possibly related (same subject, not in this thread)

2021-03-10 · [PATCH v2 1/1] fs: Allow no_new_privs tasks to call chroot(2) · Mickaël Salaün <mic@digikod.net>

From: Eric W. Biederman

Sent: 10 March 2021 19:24

...

The actual classic chroot escape is.
chdir("/");
chroot("/somedir");
chdir("../../../..");

That one is easily checked.

I thought something like:
chroot("/somedir");
chdir("/somepath");

Friendly process:
mvdir("/somedir/some_path", "/bar");

was the actual escape?

	David

-
Registered Address Lakeside, Bramley Road, Mount Farm, Milton Keynes, MK1 1PT, UK
Registration No: 1397386 (Wales)

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help