diff options
author | Karel Zak | 2017-08-22 11:22:26 +0200 |
---|---|---|
committer | Karel Zak | 2017-08-22 11:22:26 +0200 |
commit | 3f30dedd56a68ee625bcd82c13f4745d03cbbeb9 (patch) | |
tree | a42f9efb7e084bd1347ff9171f6dc128749b4afa | |
parent | Merge branch 'master' of https://github.com/pali/util-linux (diff) | |
download | kernel-qcow2-util-linux-3f30dedd56a68ee625bcd82c13f4745d03cbbeb9.tar.gz kernel-qcow2-util-linux-3f30dedd56a68ee625bcd82c13f4745d03cbbeb9.tar.xz kernel-qcow2-util-linux-3f30dedd56a68ee625bcd82c13f4745d03cbbeb9.zip |
docs: add CAP_SYS_ADMIN to TODO
Signed-off-by: Karel Zak <kzak@redhat.com>
-rw-r--r-- | Documentation/TODO | 9 |
1 files changed, 9 insertions, 0 deletions
diff --git a/Documentation/TODO b/Documentation/TODO index 012a000fc..968002e75 100644 --- a/Documentation/TODO +++ b/Documentation/TODO @@ -85,6 +85,15 @@ bash completion libmount (mount/umount) ----------------------- + - support CAP_SYS_ADMIN; for mount(2) syscall the CAP_SYS_ADMIN is good + enough. Unfortunately, mount(8) does more things like check for filesystem + type (but it's usually done by udev, so root perms are unnecessary), create + loop devices, write to /run/mount/utab or /etc/mtab, etc. + + It would be nice to improve libmount to check for CAP_SYS_ADMIN if suid not + set and allow to use it for simple tasks where no another operation is + necessary. + - allow to execute mount(2) in another namespace, something like: mount --namespace=/proc/$n/ns/mnt /dev/sda2 /bar see https://bugzilla.redhat.com/show_bug.cgi?id=1199554 for more details. |