Re: [PATCH v5 7/7] proc: add option to mount only a pids subset

Alexey Gladkov writes: > On Fri, May 11, 2018 at 03:58:39PM +0200, Jann Horn wrote: >> On Fri, May 11, 2018 at 11:37 AM, Alexey Gladkov >> wrote: >> > This allows to hide all files and directories in the procfs that are not >> > related to tasks. >> >> /proc/$pid/net and /proc/$pid/task/$tid/ne

Re: [PATCH v5 7/7] proc: add option to mount only a pids subset

On Fri, May 11, 2018 at 03:58:39PM +0200, Jann Horn wrote: > On Fri, May 11, 2018 at 11:37 AM, Alexey Gladkov > wrote: > > This allows to hide all files and directories in the procfs that are not > > related to tasks. > > /proc/$pid/net and /proc/$pid/task/$tid/net aren't in scope for this > prot

Re: [PATCH v5 7/7] proc: add option to mount only a pids subset

On Fri, May 11, 2018 at 11:37 AM, Alexey Gladkov wrote: > This allows to hide all files and directories in the procfs that are not > related to tasks. /proc/$pid/net and /proc/$pid/task/$tid/net aren't in scope for this protection, even though they contain information about the whole network name

[PATCH v5 7/7] proc: add option to mount only a pids subset

This allows to hide all files and directories in the procfs that are not related to tasks. Signed-off-by: Alexey Gladkov --- fs/proc/generic.c | 20 fs/proc/inode.c | 7 +++ fs/proc/root.c | 12 ++-- include/linux/proc_fs.h | 21 ++