fs: relax permissions for listmount()

It is sufficient to have capabilities in the owning user namespace of the mount namespace to list all mounts regardless of whether they are reachable or not. Link: https://lore.kernel.org/r/8adc0d3f4f7495faacc6a7c63095961f7f1637c7.1719243756.git.josef@toxicpanda.comSigned-off-by: Christian Brauner <brauner@kernel.org>

fs: relax permissions for listmount()
It is sufficient to have capabilities in the owning user namespace of the mount namespace to list all mounts regardless of whether they are reachable or not. Link: https://lore.kernel.org/r/8adc0d3f4f7495faacc6a7c63095961f7f1637c7.1719243756.git.josef@toxicpanda.comSigned-off-by: Christian Brauner <brauner@kernel.org>
dd7cb142 · Christian Brauner · d04bccd8 · dd7cb142
Commit dd7cb142 authored Jun 24, 2024 by Christian Brauner
Hide whitespace changes
Inline Side-by-side

Showing with 1 addition and 1 deletion

fs/namespace.c fs/namespace.c +1 -1

No files found.
--- a/fs/namespace.c
+++ b/fs/namespace.c
@@ -5104,7 +5104,7 @@ static ssize_t do_listmount(u64 mnt_parent_id, u64 last_mnt_id, u64 *mnt_ids,
 	 * mounts to show users.
 	 */
 	if (!is_path_reachable(real_mount(orig.mnt), orig.dentry, &root) &&
-	    !ns_capable_noaudit(&init_user_ns, CAP_SYS_ADMIN))
+	    !ns_capable_noaudit(ns->user_ns, CAP_SYS_ADMIN))
 		return -EPERM;
 	ret = security_sb_statfs(orig.dentry);