nsfs: tighten permission checks for handle opening

Even privileged services should not necessarily be able to see other privileged service's namespaces so they can't leak information to each other. Use may_see_all_namespaces() helper that centralizes this policy until the nstree adapts. Link: https://patch.msgid.link/20260226-work-visibility-fixes-v1-2-d2c2853313bd@kernel.org Fixes: 5222470b2fbb ("nsfs: support file handles") Reviewed-by: Jeff Layton <jlayton@kernel.org> Cc: stable@kernel.org # v6.18+ Signed-off-by: Christian Brauner <brauner@kernel.org>
author: Christian Brauner <brauner@kernel.org> 2026-02-26 14:50:10 +0100
committer: Christian Brauner <brauner@kernel.org> 2026-02-27 22:00:11 +0100
commit: d2324a9317f00013facb0ba00b00440e19d2af5e (patch)
tree: f4be79d9f7824576062e4ecc512e0e96382cc849 /fs
parent: e6b899f08066e744f89df16ceb782e06868bd148 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/fs/nsfs.c b/fs/nsfs.c
index be36c10c38cf..c215878d55e8 100644
--- a/fs/nsfs.c
+++ b/fs/nsfs.c
@@ -627,7 +627,7 @@ static struct dentry *nsfs_fh_to_dentry(struct super_block *sb, struct fid *fh,
 		return ERR_PTR(-EOPNOTSUPP);
 	}
 
-	if (owning_ns && !ns_capable(owning_ns, CAP_SYS_ADMIN)) {
+	if (owning_ns && !may_see_all_namespaces()) {
 		ns->ops->put(ns);
 		return ERR_PTR(-EPERM);
 	}
author	Christian Brauner <brauner@kernel.org>	2026-02-26 14:50:10 +0100
committer	Christian Brauner <brauner@kernel.org>	2026-02-27 22:00:11 +0100
commit	d2324a9317f00013facb0ba00b00440e19d2af5e (patch)
tree	f4be79d9f7824576062e4ecc512e0e96382cc849 /fs
parent	e6b899f08066e744f89df16ceb782e06868bd148 (diff)