Merge tag 'irqchip-fixes-6.0-2' of git://git.kernel.org/pub/scm/linux/kernel/git/maz/arm-platforms into irq/urgent

Pull more irqchip fixes for 6.0 from Marc Zyngier: - A couple of configuration fixes for the recently merged Loongarch drivers - A fix to avoid dynamic allocation of a cpumask which was causing issues with PREEMPT_RT and the GICv3 ITS - A tightening of an error check in the stm32 exti driver Link: https://lore.kernel.org/r/20220916085158.2592518-1-maz@kernel.org
author: Borislav Petkov <bp@suse.de> 2022-09-27 15:29:33 +0200
committer: Borislav Petkov <bp@suse.de> 2022-09-27 15:29:33 +0200
commit: c0cca6a66458a0daa627774de7ca2b678a6bb3d8 (patch)
tree: a3fc9914daf2ca2fdedc7e4810302affdeb5680b /fs/namespace.c
parent: 57646d6769f13f9484ffc6869c493e25a6568073 (diff)
parent: e7ccba7728cff0e0f1299951571f209fcadcb7b1 (diff)
1 files changed, 7 insertions, 0 deletions
diff --git a/fs/namespace.c b/fs/namespace.c
index 68789f896f08..df137ba19d37 100644
--- a/fs/namespace.c
+++ b/fs/namespace.c
@@ -4238,6 +4238,13 @@ static int build_mount_idmapped(const struct mount_attr *attr, size_t usize,
 		err = -EPERM;
 		goto out_fput;
 	}
+
+	/* We're not controlling the target namespace. */
+	if (!ns_capable(mnt_userns, CAP_SYS_ADMIN)) {
+		err = -EPERM;
+		goto out_fput;
+	}
+
 	kattr->mnt_userns = get_user_ns(mnt_userns);
 
 out_fput:
author	Borislav Petkov <bp@suse.de>	2022-09-27 15:29:33 +0200
committer	Borislav Petkov <bp@suse.de>	2022-09-27 15:29:33 +0200
commit	c0cca6a66458a0daa627774de7ca2b678a6bb3d8 (patch)
tree	a3fc9914daf2ca2fdedc7e4810302affdeb5680b /fs/namespace.c
parent	57646d6769f13f9484ffc6869c493e25a6568073 (diff)
parent	e7ccba7728cff0e0f1299951571f209fcadcb7b1 (diff)