Re: [PATCH net] bpf, inode: disallow userns mounts

From: Daniel Borkmann Date: Sun, 22 May 2016 23:16:18 +0200 > Follow-up to commit e27f4a942a0e ("bpf: Use mount_nodev not mount_ns > to mount the bpf filesystem"), which removes the FS_USERNS_MOUNT flag. > > The original idea was to have a per mountns instance instead of a

[PATCH net] bpf, inode: disallow userns mounts

Follow-up to commit e27f4a942a0e ("bpf: Use mount_nodev not mount_ns to mount the bpf filesystem"), which removes the FS_USERNS_MOUNT flag. The original idea was to have a per mountns instance instead of a single global fs instance, but that didn't work out and we had to switch to mount_nodev()