diff options
Diffstat (limited to 'include/linux')
| -rw-r--r-- | include/linux/capability.h | 1 | ||||
| -rw-r--r-- | include/linux/fs.h | 1 | ||||
| -rw-r--r-- | include/linux/kobject_ns.h | 2 | ||||
| -rw-r--r-- | include/linux/mount.h | 1 | ||||
| -rw-r--r-- | include/linux/user_namespace.h | 4 |
5 files changed, 4 insertions, 5 deletions
diff --git a/include/linux/capability.h b/include/linux/capability.h index d9a4f7f40f32..a6ee1f9a5018 100644 --- a/include/linux/capability.h +++ b/include/linux/capability.h | |||
| @@ -210,7 +210,6 @@ extern bool has_ns_capability_noaudit(struct task_struct *t, | |||
| 210 | struct user_namespace *ns, int cap); | 210 | struct user_namespace *ns, int cap); |
| 211 | extern bool capable(int cap); | 211 | extern bool capable(int cap); |
| 212 | extern bool ns_capable(struct user_namespace *ns, int cap); | 212 | extern bool ns_capable(struct user_namespace *ns, int cap); |
| 213 | extern bool nsown_capable(int cap); | ||
| 214 | extern bool inode_capable(const struct inode *inode, int cap); | 213 | extern bool inode_capable(const struct inode *inode, int cap); |
| 215 | extern bool file_ns_capable(const struct file *file, struct user_namespace *ns, int cap); | 214 | extern bool file_ns_capable(const struct file *file, struct user_namespace *ns, int cap); |
| 216 | 215 | ||
diff --git a/include/linux/fs.h b/include/linux/fs.h index 3b4cd8296e41..529d8711baba 100644 --- a/include/linux/fs.h +++ b/include/linux/fs.h | |||
| @@ -1900,6 +1900,7 @@ extern int vfs_ustat(dev_t, struct kstatfs *); | |||
| 1900 | extern int freeze_super(struct super_block *super); | 1900 | extern int freeze_super(struct super_block *super); |
| 1901 | extern int thaw_super(struct super_block *super); | 1901 | extern int thaw_super(struct super_block *super); |
| 1902 | extern bool our_mnt(struct vfsmount *mnt); | 1902 | extern bool our_mnt(struct vfsmount *mnt); |
| 1903 | extern bool fs_fully_visible(struct file_system_type *); | ||
| 1903 | 1904 | ||
| 1904 | extern int current_umask(void); | 1905 | extern int current_umask(void); |
| 1905 | 1906 | ||
diff --git a/include/linux/kobject_ns.h b/include/linux/kobject_ns.h index f66b065a8b5f..df32d2508290 100644 --- a/include/linux/kobject_ns.h +++ b/include/linux/kobject_ns.h | |||
| @@ -39,6 +39,7 @@ enum kobj_ns_type { | |||
| 39 | */ | 39 | */ |
| 40 | struct kobj_ns_type_operations { | 40 | struct kobj_ns_type_operations { |
| 41 | enum kobj_ns_type type; | 41 | enum kobj_ns_type type; |
| 42 | bool (*current_may_mount)(void); | ||
| 42 | void *(*grab_current_ns)(void); | 43 | void *(*grab_current_ns)(void); |
| 43 | const void *(*netlink_ns)(struct sock *sk); | 44 | const void *(*netlink_ns)(struct sock *sk); |
| 44 | const void *(*initial_ns)(void); | 45 | const void *(*initial_ns)(void); |
| @@ -50,6 +51,7 @@ int kobj_ns_type_registered(enum kobj_ns_type type); | |||
| 50 | const struct kobj_ns_type_operations *kobj_child_ns_ops(struct kobject *parent); | 51 | const struct kobj_ns_type_operations *kobj_child_ns_ops(struct kobject *parent); |
| 51 | const struct kobj_ns_type_operations *kobj_ns_ops(struct kobject *kobj); | 52 | const struct kobj_ns_type_operations *kobj_ns_ops(struct kobject *kobj); |
| 52 | 53 | ||
| 54 | bool kobj_ns_current_may_mount(enum kobj_ns_type type); | ||
| 53 | void *kobj_ns_grab_current(enum kobj_ns_type type); | 55 | void *kobj_ns_grab_current(enum kobj_ns_type type); |
| 54 | const void *kobj_ns_netlink(enum kobj_ns_type type, struct sock *sk); | 56 | const void *kobj_ns_netlink(enum kobj_ns_type type, struct sock *sk); |
| 55 | const void *kobj_ns_initial(enum kobj_ns_type type); | 57 | const void *kobj_ns_initial(enum kobj_ns_type type); |
diff --git a/include/linux/mount.h b/include/linux/mount.h index 73005f9957ea..38cd98f112a0 100644 --- a/include/linux/mount.h +++ b/include/linux/mount.h | |||
| @@ -48,6 +48,7 @@ struct mnt_namespace; | |||
| 48 | #define MNT_INTERNAL 0x4000 | 48 | #define MNT_INTERNAL 0x4000 |
| 49 | 49 | ||
| 50 | #define MNT_LOCK_READONLY 0x400000 | 50 | #define MNT_LOCK_READONLY 0x400000 |
| 51 | #define MNT_LOCKED 0x800000 | ||
| 51 | 52 | ||
| 52 | struct vfsmount { | 53 | struct vfsmount { |
| 53 | struct dentry *mnt_root; /* root of the mounted tree */ | 54 | struct dentry *mnt_root; /* root of the mounted tree */ |
diff --git a/include/linux/user_namespace.h b/include/linux/user_namespace.h index 14105c26a836..4db29859464f 100644 --- a/include/linux/user_namespace.h +++ b/include/linux/user_namespace.h | |||
| @@ -27,8 +27,6 @@ struct user_namespace { | |||
| 27 | kuid_t owner; | 27 | kuid_t owner; |
| 28 | kgid_t group; | 28 | kgid_t group; |
| 29 | unsigned int proc_inum; | 29 | unsigned int proc_inum; |
| 30 | bool may_mount_sysfs; | ||
| 31 | bool may_mount_proc; | ||
| 32 | }; | 30 | }; |
| 33 | 31 | ||
| 34 | extern struct user_namespace init_user_ns; | 32 | extern struct user_namespace init_user_ns; |
| @@ -85,6 +83,4 @@ static inline void put_user_ns(struct user_namespace *ns) | |||
| 85 | 83 | ||
| 86 | #endif | 84 | #endif |
| 87 | 85 | ||
| 88 | void update_mnt_policy(struct user_namespace *userns); | ||
| 89 | |||
| 90 | #endif /* _LINUX_USER_H */ | 86 | #endif /* _LINUX_USER_H */ |