Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

configs: validate: add validation for bind-mount fsflags #3990

Merged
merged 1 commit into from
Nov 18, 2023
Merged

configs: validate: add validation for bind-mount fsflags #3990

merged 1 commit into from
Nov 18, 2023

Commits on Nov 1, 2023

  1. configs: validate: add validation for bind-mount fsflags

    Bind-mounts cannot have any filesystem-specific "data" arguments,
    because the kernel ignores the data argument for MS_BIND and
    MS_BIND|MS_REMOUNT and we cannot safely try to override the flags
    because those would affect mounts on the host (these flags affect the
    superblock).
    
    It should be noted that there are cases where the filesystem-specified
    flags will also be ignored for non-bind-mounts but those are kernel
    quirks and there's no real way for us to work around them. And users
    wouldn't get any real benefit from us adding guardrails to existing
    kernel behaviour.
    
    Signed-off-by: Aleksa Sarai <cyphar@cyphar.com>
    cyphar committed Nov 1, 2023
    Configuration menu
    Copy the full SHA
    669f4db View commit details
    Browse the repository at this point in the history