On Mon, Jul 14, 2025 at 03:05:56AM -0400, Prabhakar Pujeri wrote: > Mount propagation operations in unprivileged user namespaces can > bypass isolation. Add a pr_warn_once warning in mount(2) and > mount_setattr(2) when MS_SHARED, MS_SLAVE, or MS_UNBINDABLE > propagation flags are used without CAP_SYS_ADMIN. Document the warning > in sharedsubtree.rst with an explanation why it is emitted and how to > avoid it. > --- This doesn't make sense at all. So no, we're not going to take this. Rejected-by: Christian Brauner <brauner@xxxxxxxxxx>
