git.ipfire.org Git - thirdparty/linux.git/commit

author	Alexey Gladkov <legion@kernel.org>
	Mon, 27 Apr 2026 08:26:07 +0000 (10:26 +0200)
committer	Christian Brauner <brauner@kernel.org>
	Mon, 11 May 2026 21:13:02 +0000 (23:13 +0200)
commit	05dab768fc2dc7eb9b827201bb39bb5be54bce49
tree	dc739e81c696361e93b6bb3a1d90aeb8a59d3286	tree \| snapshot
parent	1991a8f6932124d880e847885da20a98948b6fed	commit \| diff

proc: handle subset=pid separately in userns visibility checks

When procfs is mounted with subset=pid, only the dynamic process-related
part of the filesystem remains visible. That part cannot be hidden by
overmounts, so checking whether an existing procfs mount is fully
visible does not make sense for this mode.

At the same time, a subset=pid procfs mount must not be used as evidence
that a later procfs mount would not reveal additional information. It
provides a restricted view of procfs, not the full filesystem view.

Mark subset=pid procfs instances as restricted variants. Ignore
restricted variants when looking for an already-visible mount, and allow
new restricted variants without consulting mnt_already_visible().

Signed-off-by: Alexey Gladkov <legion@kernel.org>
Link: https://patch.msgid.link/4d5e760c3d534dd2e05578d119cc408450053a98.1777278334.git.legion@kernel.org
Reviewed-by: Aleksa Sarai <aleksa@amutable.com>
Signed-off-by: Christian Brauner <brauner@kernel.org>

fs/namespace.c		diff \| blob \| blame \| history
fs/proc/root.c		diff \| blob \| blame \| history
include/linux/fs/super_types.h		diff \| blob \| blame \| history