proc: Convert proc_mount to use mount_ns.

Move the call of get_pid_ns, the call of proc_parse_options, and the setting of s_iflags into proc_fill_super so that mount_ns can be used. Convert proc_mount to call mount_ns and remove the now unnecessary code. Acked-by: Seth Forshee <seth.forshee@canonical.com> Reviewed-by: Djalal Harouni <tixxdz@gmail.com> Signed-off-by: "Eric W. Biederman" <ebiederm@xmission.com>
author: Eric W. Biederman 2016-06-09 15:32:10 -0500
committer: Eric W. Biederman 2016-06-23 15:41:54 -0500
commit: e94591d0d90c13166cb6eb54ce5f96ed13d81b55 (patch)
tree: a52df89fe96d5ed24657c3fed1552ffc1d474b3a /fs/proc/inode.c
parent: d91ee87d8d85a0808c01787e8b4a6b48f2ba487b (diff)
1 files changed, 7 insertions, 2 deletions
diff --git a/fs/proc/inode.c b/fs/proc/inode.c
index 78fa452d65ed..f4817efb25a6 100644
--- a/fs/proc/inode.c
+++ b/fs/proc/inode.c
@@ -457,12 +457,17 @@ struct inode *proc_get_inode(struct super_block *sb, struct proc_dir_entry *de)
 	return inode;
 }
 
-int proc_fill_super(struct super_block *s)
+int proc_fill_super(struct super_block *s, void *data, int silent)
 {
+	struct pid_namespace *ns = get_pid_ns(s->s_fs_info);
 	struct inode *root_inode;
 	int ret;
 
-	s->s_iflags |= SB_I_USERNS_VISIBLE;
+	if (!proc_parse_options(data, ns))
+		return -EINVAL;
+
+	/* User space would break if executables appear on proc */
+	s->s_iflags |= SB_I_USERNS_VISIBLE | SB_I_NOEXEC;
 	s->s_flags |= MS_NODIRATIME | MS_NOSUID | MS_NOEXEC;
 	s->s_blocksize = 1024;
 	s->s_blocksize_bits = 10;
author	Eric W. Biederman	2016-06-09 15:32:10 -0500
committer	Eric W. Biederman	2016-06-23 15:41:54 -0500
commit	e94591d0d90c13166cb6eb54ce5f96ed13d81b55 (patch)
tree	a52df89fe96d5ed24657c3fed1552ffc1d474b3a /fs/proc/inode.c
parent	d91ee87d8d85a0808c01787e8b4a6b48f2ba487b (diff)