proc: block mounting on top of /proc/<pid>/map_files/*

brauner · brauner · commit 3836b31c3e71 · 2024-08-30T08:22:12.000+02:00
Entries under /proc/<pid>/map_files/* are ephemeral and may go away before the process dies. As such allowing them to be used as mount points creates the ability to leak mounts that linger until the process dies with no ability to unmount them until then. Don't allow using them as mountpoints. Link: https://lore.kernel.org/r/20240806-work-procfs-v1-4-fb04e1d09f0c@kernel.org Reviewed-by: Josef Bacik <josef@toxicpanda.com> Signed-off-by: Christian Brauner <brauner@kernel.org>
diff --git a/fs/proc/base.c b/fs/proc/base.c
@@ -2276,8 +2276,8 @@ proc_map_files_instantiate(struct dentry *dentry,
 	inode->i_op = &proc_map_files_link_inode_operations;
 	inode->i_size = 64;
 
-	d_set_d_op(dentry, &tid_map_files_dentry_operations);
-	return d_splice_alias(inode, dentry);
+	return proc_splice_unmountable(inode, dentry,
+				       &tid_map_files_dentry_operations);
 }
 
 static struct dentry *proc_map_files_lookup(struct inode *dir,

Original file line number	Diff line number	Diff line change
`@@ -2276,8 +2276,8 @@ proc_map_files_instantiate(struct dentry *dentry,`
`2276`	`2276`	`inode->i_op = &proc_map_files_link_inode_operations;`
`2277`	`2277`	`inode->i_size = 64;`
`2278`	`2278`
`2279`		`- d_set_d_op(dentry, &tid_map_files_dentry_operations);`
`2280`		`- return d_splice_alias(inode, dentry);`
	`2279`	`+ return proc_splice_unmountable(inode, dentry,`
	`2280`	`+ &tid_map_files_dentry_operations);`
`2281`	`2281`	`}`
`2282`	`2282`
`2283`	`2283`	`static struct dentry proc_map_files_lookup(struct inode dir,`