fuse: Allow fully unprivileged mounts

Submitted by Eric W. Biederman on May 29, 2018, 2:04 p.m.

Details

Message ID 87tvqqo8w1.fsf_-_@xmission.com
State New
Series "fuse: Ensure posix acls are translated outside of init_user_ns"
Headers show

Commit Message

Eric W. Biederman May 29, 2018, 2:04 p.m.
Now that the fuse and the vfs work is complete.  Allow the fuse filesystem
to be mounted by the root user in a user namespace.

Signed-off-by: "Eric W. Biederman" <ebiederm@xmission.com>
---
 fs/fuse/inode.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

Patch hide | download patch | download mbox

diff --git a/fs/fuse/inode.c b/fs/fuse/inode.c
index 22c76cf8c2e3..48baa26993f3 100644
--- a/fs/fuse/inode.c
+++ b/fs/fuse/inode.c
@@ -1222,7 +1222,7 @@  static void fuse_kill_sb_anon(struct super_block *sb)
 static struct file_system_type fuse_fs_type = {
 	.owner		= THIS_MODULE,
 	.name		= "fuse",
-	.fs_flags	= FS_HAS_SUBTYPE,
+	.fs_flags	= FS_HAS_SUBTYPE | FS_USERNS_MOUNT,
 	.mount		= fuse_mount,
 	.kill_sb	= fuse_kill_sb_anon,
 };

Comments

Miklos Szeredi May 31, 2018, 2:45 p.m.
On Tue, May 29, 2018 at 4:04 PM, Eric W. Biederman
<ebiederm@xmission.com> wrote:
>
> Now that the fuse and the vfs work is complete.  Allow the fuse filesystem
> to be mounted by the root user in a user namespace.

Thanks, pushed to for-next branch of the fuse tree toghether with the xattr fix.

Miklos