[Bug 262180] jail escaping via jail-friendly nullfs

In reply to: bugzilla-noreply_a_freebsd.org: "[Bug 262180] jail escaping via jal-friendly nullfs"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Tue, 25 Jul 2023 09:27:19 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=262180

crest@rlwinm.de changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |crest@rlwinm.de

--- Comment #2 from crest@rlwinm.de ---
Where in your sequence of of commands did you attach to the jail? It's the jail
that's locking in processes not the nullfs. Outside of the jail you're expected
to be able to leave the nullfs with `cd ..`. Or did I miss-understand and the
nullfs mount from inside the jail is able to expose a path from beneath the
jail under the jail root directory despite the (n)mount performed inside the
jail? If this is the case just ignoring it with a the release is EoL is a cheap
cop out and we have to define what's the expected semantics for nullfs mounting
at different enforce_statfs levels.

-- 
You are receiving this mail because:
You are the assignee for the bug.