Re: Unprivileged filesystem mounts

(off-list ancestor, not in this archive)
Re: CVE-2025-21830: landlock: Handle weird files · Mickaël Salaün <mic@digikod.net> · 2025-03-10
Re: CVE-2025-21830: landlock: Handle weird files · Kent Overstreet <kent.overstreet@linux.dev> · 2025-03-10
Re: CVE-2025-21830: landlock: Handle weird files · Greg Kroah-Hartman <gregkh@linuxfoundation.org> · 2025-03-10
Re: CVE-2025-21830: landlock: Handle weird files · Dave Chinner <david@fromorbit.com> · 2025-03-10
Re: CVE-2025-21830: landlock: Handle weird files · Kent Overstreet <kent.overstreet@linux.dev> · 2025-03-11
Re: CVE-2025-21830: landlock: Handle weird files · Dave Chinner <david@fromorbit.com> · 2025-03-11
Re: CVE-2025-21830: landlock: Handle weird files · Kent Overstreet <kent.overstreet@linux.dev> · 2025-03-11
Unprivileged filesystem mounts · Demi Marie Obenour <hidden> · 2025-03-11
Re: Unprivileged filesystem mounts · Dave Chinner <david@fromorbit.com> · 2025-03-11
Re: Unprivileged filesystem mounts · Christian Brauner <brauner@kernel.org> · 2025-03-11
Re: Unprivileged filesystem mounts · Al Viro <viro@zeniv.linux.org.uk> · 2025-03-11
Re: Unprivileged filesystem mounts · Kent Overstreet <kent.overstreet@linux.dev> · 2025-03-11
Re: Unprivileged filesystem mounts · Eric Biggers <ebiggers@kernel.org> · 2025-03-11
Re: Unprivileged filesystem mounts · Demi Marie Obenour <hidden> · 2025-03-11
Re: Unprivileged filesystem mounts · Dave Chinner <david@fromorbit.com> · 2025-03-18
Re: Unprivileged filesystem mounts · Demi Marie Obenour <hidden> · 2025-03-19
Re: Unprivileged filesystem mounts · "Theodore Ts'o" <tytso@mit.edu> · 2025-03-19
Re: Unprivileged filesystem mounts · Demi Marie Obenour <hidden> · 2025-03-19
Re: Unprivileged filesystem mounts · "Theodore Ts'o" <tytso@mit.edu> · 2025-03-19
Re: Unprivileged filesystem mounts · "Theodore Ts'o" <tytso@mit.edu> · 2025-03-18
Re: Unprivileged filesystem mounts · Demi Marie Obenour <hidden> · 2025-03-19
Re: Unprivileged filesystem mounts · "Theodore Ts'o" <tytso@mit.edu> · 2025-03-19
Re: Unprivileged filesystem mounts · Demi Marie Obenour <hidden> · 2025-03-20
Re: Unprivileged filesystem mounts · "Theodore Ts'o" <tytso@mit.edu> · 2025-03-20
Re: CVE-2025-21830: landlock: Handle weird files · Greg Kroah-Hartman <gregkh@linuxfoundation.org> · 2025-03-11

From: Al Viro <viro@zeniv.linux.org.uk>
Date: 2025-03-11 17:36:04
Also in: linux-bcachefs, linux-fsdevel

On Tue, Mar 11, 2025 at 12:01:48PM +0100, Christian Brauner wrote:

The case where arbitrary devices stuck into a laptop (e.g., USB sticks)
are mounted isn't solved by making a filesystem mountable unprivileged.
The mounted device cannot show up in the global mount namespace
somewhere since the user doesn't own the initial mount+user namespace.
So it's pointless. In other words, there's filesystem level checks and
mount namespace based checks. Circumventing that restriction means that
any user can just mount the device at any location in the global mount
namespace and therefore simply overmount other stuff.

Note that "untrusted contents" is not the worst thing you can run into -
it can be content changing behind your back.  I seriously doubt that
anyone fuzzes for that kind of crap (and no, it's not an invitation to
start).  I seriously doubt that there's any local filesystem that would
be resilent to that...

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help