diff options
author | Eric W. Biederman <ebiederm@xmission.com> | 2013-01-26 01:37:44 +0100 |
---|---|---|
committer | Eric W. Biederman <ebiederm@xmission.com> | 2013-01-27 07:22:38 +0100 |
commit | b3c6761d9b5cc82deea7416d11c2118f6380e99c (patch) | |
tree | 1b87793fb6b27d5c298b02809800180b8ba0b449 /fs | |
parent | userns: Allow the userns root to mount of devpts (diff) | |
download | linux-b3c6761d9b5cc82deea7416d11c2118f6380e99c.tar.xz linux-b3c6761d9b5cc82deea7416d11c2118f6380e99c.zip |
userns: Allow the userns root to mount ramfs.
There is no backing store to ramfs and file creation
rules are the same as for any other filesystem so
it is semantically safe to allow unprivileged users
to mount it.
The memory control group successfully limits how much
memory ramfs can consume on any system that cares about
a user namespace root using ramfs to exhaust memory
the memory control group can be deployed.
Signed-off-by: "Eric W. Biederman" <ebiederm@xmission.com>
Diffstat (limited to 'fs')
-rw-r--r-- | fs/ramfs/inode.c | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/fs/ramfs/inode.c b/fs/ramfs/inode.c index eab8c09d3801..c24f1e10b946 100644 --- a/fs/ramfs/inode.c +++ b/fs/ramfs/inode.c @@ -260,6 +260,7 @@ static struct file_system_type ramfs_fs_type = { .name = "ramfs", .mount = ramfs_mount, .kill_sb = ramfs_kill_sb, + .fs_flags = FS_USERNS_MOUNT, }; static struct file_system_type rootfs_fs_type = { .name = "rootfs", |