From: Michael Tremer <michael.tremer@ipfire.org>
Date: Tue, 19 Jul 2022 11:55:22 +0000 (+0000)
Subject: Revert "mount: Adjust mount flags for unprivileged users"
X-Git-Tag: 0.9.28~676
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=b077d318c11b532e210d1d0e081250a2d0c04969;p=pakfire.git

Revert "mount: Adjust mount flags for unprivileged users"

This reverts commit c92f710524a370d8e910b74d7ba062373d02d7a6.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
---

diff --git a/src/libpakfire/mount.c b/src/libpakfire/mount.c
index cd33a1f31..e671a6955 100644
--- a/src/libpakfire/mount.c
+++ b/src/libpakfire/mount.c
@@ -43,27 +43,25 @@ static const struct pakfire_mountpoint {
 	int flags;
 	const char* options;
 } mountpoints[] = {
-	{ "pakfire_proc",  "proc",          "proc",    MS_NOSUID|MS_NOEXEC|MS_NODEV, NULL, },
+	{ "pakfire_proc",  "proc",         "proc",  MS_NOSUID|MS_NOEXEC|MS_NODEV, NULL, },
 
 	// Bind mount /proc/sys as read-only with the following exceptions:
 	//  * /proc/sys/net
-	{ "/proc/sys",     "proc/sys",      "bind",    MS_BIND|MS_REC, NULL, },
-	{ "/proc/sys/net", "proc/sys/net",  "bind",    MS_BIND|MS_REC, NULL, },
-	{ "/proc/sys",     "proc/sys",      "bind",
-		MS_BIND|MS_RDONLY|MS_REMOUNT|MS_NOSUID|MS_NOEXEC|MS_NODEV, NULL, },
+	{ "/proc/sys",     "proc/sys",     "bind",  MS_BIND, NULL, },
+	{ "/proc/sys/net", "proc/sys/net", "bind",  MS_BIND, NULL, },
+	{ "/proc/sys",     "proc/sys",     "bind",  MS_BIND|MS_RDONLY|MS_REMOUNT, NULL, },
 
 	// Bind mount /sys as read-only
-	{ "/sys",          "sys",           "bind",    MS_BIND|MS_REC, NULL, },
-	{ "/sys",          "sys",           "bind",
-		MS_BIND|MS_RDONLY|MS_REMOUNT|MS_NOSUID|MS_NOEXEC|MS_NODEV, NULL, },
+	{ "/sys",          "sys",          "bind",  MS_BIND, NULL, },
+	{ "/sys",          "sys",          "bind",  MS_BIND|MS_RDONLY|MS_REMOUNT, NULL, },
 
 	// Create a new /dev
-	{ "pakfire_dev",   "dev",           "tmpfs",   MS_NOSUID|MS_NOEXEC,
+	{ "pakfire_dev",   "dev",          "tmpfs", MS_NOSUID|MS_NOEXEC,
 		"mode=755,size=4m,nr_inodes=64k", },
-	{ "/dev/pts",      "dev/pts",       "bind",    MS_BIND|MS_REC, NULL, },
+	{ "/dev/pts",      "dev/pts",      "bind",  MS_BIND, NULL, },
 
 	// Create a new /run
-	{ "pakfire_tmpfs", "run",           "tmpfs",   MS_NOSUID|MS_NOEXEC|MS_NODEV,
+	{ "pakfire_tmpfs", "run",          "tmpfs", MS_NOSUID|MS_NOEXEC|MS_NODEV,
 		"mode=755,size=4m,nr_inodes=1k", },
 
 	// The end