diff options
Diffstat (limited to 'kernel')
| -rw-r--r-- | kernel/nsproxy.c | 5 | ||||
| -rw-r--r-- | kernel/user.c | 8 | ||||
| -rw-r--r-- | kernel/utsname.c | 4 |
3 files changed, 15 insertions, 2 deletions
diff --git a/kernel/nsproxy.c b/kernel/nsproxy.c index f74e6c00e26d..034dc2ed13ac 100644 --- a/kernel/nsproxy.c +++ b/kernel/nsproxy.c | |||
| @@ -74,6 +74,11 @@ static struct nsproxy *create_new_namespaces(unsigned long flags, | |||
| 74 | err = PTR_ERR(new_nsp->uts_ns); | 74 | err = PTR_ERR(new_nsp->uts_ns); |
| 75 | goto out_uts; | 75 | goto out_uts; |
| 76 | } | 76 | } |
| 77 | if (new_nsp->uts_ns != tsk->nsproxy->uts_ns) { | ||
| 78 | put_user_ns(new_nsp->uts_ns->user_ns); | ||
| 79 | new_nsp->uts_ns->user_ns = task_cred_xxx(tsk, user)->user_ns; | ||
| 80 | get_user_ns(new_nsp->uts_ns->user_ns); | ||
| 81 | } | ||
| 77 | 82 | ||
| 78 | new_nsp->ipc_ns = copy_ipcs(flags, tsk->nsproxy->ipc_ns); | 83 | new_nsp->ipc_ns = copy_ipcs(flags, tsk->nsproxy->ipc_ns); |
| 79 | if (IS_ERR(new_nsp->ipc_ns)) { | 84 | if (IS_ERR(new_nsp->ipc_ns)) { |
diff --git a/kernel/user.c b/kernel/user.c index 5c598ca781df..9e03e9c1df8d 100644 --- a/kernel/user.c +++ b/kernel/user.c | |||
| @@ -17,9 +17,13 @@ | |||
| 17 | #include <linux/module.h> | 17 | #include <linux/module.h> |
| 18 | #include <linux/user_namespace.h> | 18 | #include <linux/user_namespace.h> |
| 19 | 19 | ||
| 20 | /* | ||
| 21 | * userns count is 1 for root user, 1 for init_uts_ns, | ||
| 22 | * and 1 for... ? | ||
| 23 | */ | ||
| 20 | struct user_namespace init_user_ns = { | 24 | struct user_namespace init_user_ns = { |
| 21 | .kref = { | 25 | .kref = { |
| 22 | .refcount = ATOMIC_INIT(2), | 26 | .refcount = ATOMIC_INIT(3), |
| 23 | }, | 27 | }, |
| 24 | .creator = &root_user, | 28 | .creator = &root_user, |
| 25 | }; | 29 | }; |
| @@ -47,7 +51,7 @@ static struct kmem_cache *uid_cachep; | |||
| 47 | */ | 51 | */ |
| 48 | static DEFINE_SPINLOCK(uidhash_lock); | 52 | static DEFINE_SPINLOCK(uidhash_lock); |
| 49 | 53 | ||
| 50 | /* root_user.__count is 2, 1 for init task cred, 1 for init_user_ns->creator */ | 54 | /* root_user.__count is 2, 1 for init task cred, 1 for init_user_ns->user_ns */ |
| 51 | struct user_struct root_user = { | 55 | struct user_struct root_user = { |
| 52 | .__count = ATOMIC_INIT(2), | 56 | .__count = ATOMIC_INIT(2), |
| 53 | .processes = ATOMIC_INIT(1), | 57 | .processes = ATOMIC_INIT(1), |
diff --git a/kernel/utsname.c b/kernel/utsname.c index 8a82b4b8ea52..a7b3a8d1ad24 100644 --- a/kernel/utsname.c +++ b/kernel/utsname.c | |||
| @@ -14,6 +14,7 @@ | |||
| 14 | #include <linux/utsname.h> | 14 | #include <linux/utsname.h> |
| 15 | #include <linux/err.h> | 15 | #include <linux/err.h> |
| 16 | #include <linux/slab.h> | 16 | #include <linux/slab.h> |
| 17 | #include <linux/user_namespace.h> | ||
| 17 | 18 | ||
| 18 | static struct uts_namespace *create_uts_ns(void) | 19 | static struct uts_namespace *create_uts_ns(void) |
| 19 | { | 20 | { |
| @@ -40,6 +41,8 @@ static struct uts_namespace *clone_uts_ns(struct uts_namespace *old_ns) | |||
| 40 | 41 | ||
| 41 | down_read(&uts_sem); | 42 | down_read(&uts_sem); |
| 42 | memcpy(&ns->name, &old_ns->name, sizeof(ns->name)); | 43 | memcpy(&ns->name, &old_ns->name, sizeof(ns->name)); |
| 44 | ns->user_ns = old_ns->user_ns; | ||
| 45 | get_user_ns(ns->user_ns); | ||
| 43 | up_read(&uts_sem); | 46 | up_read(&uts_sem); |
| 44 | return ns; | 47 | return ns; |
| 45 | } | 48 | } |
| @@ -71,5 +74,6 @@ void free_uts_ns(struct kref *kref) | |||
| 71 | struct uts_namespace *ns; | 74 | struct uts_namespace *ns; |
| 72 | 75 | ||
| 73 | ns = container_of(kref, struct uts_namespace, kref); | 76 | ns = container_of(kref, struct uts_namespace, kref); |
| 77 | put_user_ns(ns->user_ns); | ||
| 74 | kfree(ns); | 78 | kfree(ns); |
| 75 | } | 79 | } |