Filesystem mounts in user namespaces
Filesystem mounts in user namespaces
Posted Jul 30, 2015 6:13 UTC (Thu) by butlerm (subscriber, #13312)Parent article: Filesystem mounts in user namespaces
It ought to a be a goal of every filesystem implementation for any kind of corruption to a filesystem image, whether the filesystem is mounted or not, to yield no side effects outside of the data and metadata returned to clients of that filesystem. No crashing, no hanging, no unbounded resource consumption, etc. Otherwise the entire system is at risk from much more mundane causes than a direct attack.
If those conditions are met, does it really matter if a filesystem mounted inside a user namespace is corrupt in every other way?