[ostree] ostbuild: Ensure user chroot mounts are not shared

From: Colin Walters <walters src gnome org>
To: commits-list gnome org
Cc:
Subject: [ostree] ostbuild: Ensure user chroot mounts are not shared
Date: Tue, 6 Dec 2011 17:21:02 +0000 (UTC)

commit 0fb40b201f89bd62e485a3956bf3ba8c263b090c
Author: Colin Walters <walters verbum org>
Date:   Tue Dec 6 12:18:17 2011 -0500

    ostbuild: Ensure user chroot mounts are not shared
    
    It's possible that the root filesystem mount is global; we need
    to undo that in order to be sure that our "private" bind mounts
    really are private.

 src/ostbuild/ostbuild-user-chroot.c |    3 +++
 1 files changed, 3 insertions(+), 0 deletions(-)
---
diff --git a/src/ostbuild/ostbuild-user-chroot.c b/src/ostbuild/ostbuild-user-chroot.c
index 8026748..c0ed1a2 100644
--- a/src/ostbuild/ostbuild-user-chroot.c
+++ b/src/ostbuild/ostbuild-user-chroot.c
@@ -98,6 +98,9 @@ main (int      argc,
   if (unshare (CLONE_NEWNS) < 0)
     fatal_errno ("unshare (CLONE_NEWNS)");
 
+  if (mount ("/", "/", "none", MS_PRIVATE, NULL) < 0)
+    fatal_errno ("mount(/, MS_PRIVATE)");
+
   initialize_chroot (chroot_dir);
 
   if (chroot (chroot_dir) < 0)

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]