diff options
| author | Linus Torvalds <torvalds@linux-foundation.org> | 2014-01-17 20:29:36 -0500 |
|---|---|---|
| committer | Linus Torvalds <torvalds@linux-foundation.org> | 2014-01-17 20:29:36 -0500 |
| commit | 48ba620aab90f4c7e9bb002e2f30863a4ea0f915 (patch) | |
| tree | f1171deeea38d62016fe6abf6d85f5632fe93ae9 /fs | |
| parent | 8f211b6ccc01d058fc6c6466c7815f2315130b2e (diff) | |
| parent | 41301ae78a99ead04ea42672a1ab72c6f44cc81d (diff) | |
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebiederm/user-namespace
Pull namespace fixes from Eric Biederman:
"This is a set of 3 regression fixes.
This fixes /proc/mounts when using "ip netns add <netns>" to display
the actual mount point.
This fixes a regression in clone that broke lxc-attach.
This fixes a regression in the permission checks for mounting /proc
that made proc unmountable if binfmt_misc was in use. Oops.
My apologies for sending this pull request so late. Al Viro gave
interesting review comments about the d_path fix that I wanted to
address in detail before I sent this pull request. Unfortunately a
bad round of colds kept from addressing that in detail until today.
The executive summary of the review was:
Al: Is patching d_path really sufficient?
The prepend_path, d_path, d_absolute_path, and __d_path family of
functions is a really mess.
Me: Yes, patching d_path is really sufficient. Yes, the code is mess.
No it is not appropriate to rewrite all of d_path for a regression
that has existed for entirely too long already, when a two line
change will do"
* 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebiederm/user-namespace:
vfs: Fix a regression in mounting proc
fork: Allow CLONE_PARENT after setns(CLONE_NEWPID)
vfs: In d_path don't call d_dname on a mount point
Diffstat (limited to 'fs')
| -rw-r--r-- | fs/dcache.c | 7 | ||||
| -rw-r--r-- | fs/namespace.c | 2 |
2 files changed, 7 insertions, 2 deletions
diff --git a/fs/dcache.c b/fs/dcache.c index 6055d61811d3..cb4a10690868 100644 --- a/fs/dcache.c +++ b/fs/dcache.c | |||
| @@ -3061,8 +3061,13 @@ char *d_path(const struct path *path, char *buf, int buflen) | |||
| 3061 | * thus don't need to be hashed. They also don't need a name until a | 3061 | * thus don't need to be hashed. They also don't need a name until a |
| 3062 | * user wants to identify the object in /proc/pid/fd/. The little hack | 3062 | * user wants to identify the object in /proc/pid/fd/. The little hack |
| 3063 | * below allows us to generate a name for these objects on demand: | 3063 | * below allows us to generate a name for these objects on demand: |
| 3064 | * | ||
| 3065 | * Some pseudo inodes are mountable. When they are mounted | ||
| 3066 | * path->dentry == path->mnt->mnt_root. In that case don't call d_dname | ||
| 3067 | * and instead have d_path return the mounted path. | ||
| 3064 | */ | 3068 | */ |
| 3065 | if (path->dentry->d_op && path->dentry->d_op->d_dname) | 3069 | if (path->dentry->d_op && path->dentry->d_op->d_dname && |
| 3070 | (!IS_ROOT(path->dentry) || path->dentry != path->mnt->mnt_root)) | ||
| 3066 | return path->dentry->d_op->d_dname(path->dentry, buf, buflen); | 3071 | return path->dentry->d_op->d_dname(path->dentry, buf, buflen); |
| 3067 | 3072 | ||
| 3068 | rcu_read_lock(); | 3073 | rcu_read_lock(); |
diff --git a/fs/namespace.c b/fs/namespace.c index ac2ce8a766e1..be32ebccdeb1 100644 --- a/fs/namespace.c +++ b/fs/namespace.c | |||
| @@ -2886,7 +2886,7 @@ bool fs_fully_visible(struct file_system_type *type) | |||
| 2886 | struct inode *inode = child->mnt_mountpoint->d_inode; | 2886 | struct inode *inode = child->mnt_mountpoint->d_inode; |
| 2887 | if (!S_ISDIR(inode->i_mode)) | 2887 | if (!S_ISDIR(inode->i_mode)) |
| 2888 | goto next; | 2888 | goto next; |
| 2889 | if (inode->i_nlink != 2) | 2889 | if (inode->i_nlink > 2) |
| 2890 | goto next; | 2890 | goto next; |
| 2891 | } | 2891 | } |
| 2892 | visible = true; | 2892 | visible = true; |