Re: [PATCH] userns/capability: Add user namespace capability

From: Richard Weinberger
Date: Sat Oct 17 2015 - 16:17:47 EST

Next message: Rasmus Villemoes: "[PATCH] mm/maccess.c: actually return -EFAULT from strncpy_from_unsafe"
Previous message: Paul McQuade: "[PATCH] net: wireless: rt2x00: Fixed Spacing issues"
In reply to: Tobias Markus: "[PATCH] userns/capability: Add user namespace capability"
Next in thread: Tobias Markus: "Re: [PATCH] userns/capability: Add user namespace capability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sat, Oct 17, 2015 at 5:58 PM, Tobias Markus <tobias@xxxxxxxxx> wrote:
> One question remains though: Does this break userspace executables that
> expect being able to create user namespaces without priviledge? Since
> creating user namespaces without CAP_SYS_ADMIN was not possible before
> Linux 3.8, programs should already expect a potential EPERM upon calling
> clone. Since creating a user namespace without CAP_SYS_USER_NS would
> also cause EPERM, we should be on the safe side.

In case of doubt, yes it will break existing software.
Hiding user namespaces behind CAP_SYS_USER_NS will not magically
make them secure.

--
Thanks,
//richard
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Rasmus Villemoes: "[PATCH] mm/maccess.c: actually return -EFAULT from strncpy_from_unsafe"
Previous message: Paul McQuade: "[PATCH] net: wireless: rt2x00: Fixed Spacing issues"
In reply to: Tobias Markus: "[PATCH] userns/capability: Add user namespace capability"
Next in thread: Tobias Markus: "Re: [PATCH] userns/capability: Add user namespace capability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]