]> git.baikalelectronics.ru Git - kernel.git/commit
projects / kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 519659e) | patch
proc: prevent stacking filesystems on top
authorJann Horn <jannh@google.com>
Wed, 1 Jun 2016 09:55:05 +0000 (11:55 +0200)
committerLinus Torvalds <torvalds@linux-foundation.org>
Fri, 10 Jun 2016 19:09:43 +0000 (12:09 -0700)
commit0fd306f9c2a62a1cf8ac6bd31626a467de17236f
tree06fb2c592c36590d5819972a8645daec03de8c65tree | snapshot
parent519659e0df4b8203e9ea1c3b1e34a3f50bb0bf8bcommit | diff
proc: prevent stacking filesystems on top

This prevents stacking filesystems (ecryptfs and overlayfs) from using
procfs as lower filesystem.  There is too much magic going on inside
procfs, and there is no good reason to stack stuff on top of procfs.

(For example, procfs does access checks in VFS open handlers, and
ecryptfs by design calls open handlers from a kernel thread that doesn't
drop privileges or so.)

Signed-off-by: Jann Horn <jannh@google.com>
Cc: stable@vger.kernel.org
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>
fs/proc/root.c diff | blob | history
Linux Kernel Source Tree.