Merge tag 'v3.12'

Linux 3.12 Conflicts: fs/exec.c
author: Eric Paris <eparis@redhat.com> 2013-11-22 18:57:08 -0500
committer: Eric Paris <eparis@redhat.com> 2013-11-22 18:57:54 -0500
commit: fc582aef7dcc27a7120cf232c1e76c569c7b6eab (patch)
tree: 7d275dd4ceab6067b91e9a25a5f6338b425fbccd /fs/proc/root.c
parent: 9175c9d2aed528800175ef81c90569d00d23f9be (diff)
parent: 5e01dc7b26d9f24f39abace5da98ccbd6a5ceb52 (diff)
1 files changed, 5 insertions, 1 deletions
diff --git a/fs/proc/root.c b/fs/proc/root.c
index e0a790da726d..87dbcbef7fe4 100644
--- a/fs/proc/root.c
+++ b/fs/proc/root.c
@@ -110,7 +110,11 @@ static struct dentry *proc_mount(struct file_system_type *fs_type,
 		ns = task_active_pid_ns(current);
 		options = data;
 
-		if (!current_user_ns()->may_mount_proc)
+		if (!capable(CAP_SYS_ADMIN) && !fs_fully_visible(fs_type))
+			return ERR_PTR(-EPERM);
+
+		/* Does the mounter have privilege over the pid namespace? */
+		if (!ns_capable(ns->user_ns, CAP_SYS_ADMIN))
 			return ERR_PTR(-EPERM);
 	}
author	Eric Paris <eparis@redhat.com>	2013-11-22 18:57:08 -0500
committer	Eric Paris <eparis@redhat.com>	2013-11-22 18:57:54 -0500
commit	fc582aef7dcc27a7120cf232c1e76c569c7b6eab (patch)
tree	7d275dd4ceab6067b91e9a25a5f6338b425fbccd /fs/proc/root.c
parent	9175c9d2aed528800175ef81c90569d00d23f9be (diff)
parent	5e01dc7b26d9f24f39abace5da98ccbd6a5ceb52 (diff)