Donate to e Foundation | Murena handsets with /e/OS | Own a part of Murena! Learn more

Commit 667b6094 authored by Marcos Paulo de Souza's avatar Marcos Paulo de Souza Committed by Linus Torvalds
Browse files

kernel/fork.c: add comment about usage of CLONE_FS flags and namespaces 

All other places that deals with namespaces have an explanation of why
the restriction is there.

The description added in this commit was based on commit e66eded8
("userns: Don't allow CLONE_NEWUSER | CLONE_FS").

Link: http://lkml.kernel.org/r/20171112151637.13258-1-marcos.souza.org@gmail.com


Signed-off-by: default avatarMarcos Paulo de Souza <marcos.souza.org@gmail.com>
Cc: "Eric W. Biederman" <ebiederm@xmission.com>
Signed-off-by: default avatarAndrew Morton <akpm@linux-foundation.org>
Signed-off-by: default avatarLinus Torvalds <torvalds@linux-foundation.org>
parent 9f5325aa

kernel/fork.c

+4 −0
Original line number Diff line number Diff line
@@ -1587,6 +1587,10 @@ static __latent_entropy struct task_struct *copy_process( 
	int retval;

	struct task_struct *p;



	/*

	 * Don't allow sharing the root directory with processes in a different

	 * namespace

	 */

	if ((clone_flags & (CLONE_NEWNS|CLONE_FS)) == (CLONE_NEWNS|CLONE_FS))

		return ERR_PTR(-EINVAL);