proc: subset=pid: Show /proc/self/net only for CAP_NET_ADMIN

Cache the mounters credentials and allow access to the net directories contingent of the permissions of the mounter of proc. Do not show /proc/self/net when proc is mounted with subset=pid option and the mounter does not have CAP_NET_ADMIN. To avoid inadvertently allowing access to /proc/<pid>/net, updating mounter credentials is not supported. Signed-off-by: Alexey Gladkov <legion@kernel.org> Link: https://patch.msgid.link/d2466fe9085367f1e24693c437ecb8cff2789660.1777278334.git.legion@kernel.org Reviewed-by: Aleksa Sarai <aleksa@amutable.com> Signed-off-by: Christian Brauner <brauner@kernel.org>
author: Alexey Gladkov <legion@kernel.org> 2026-04-27 10:26:05 +0200
committer: Christian Brauner <brauner@kernel.org> 2026-05-11 23:13:01 +0200
commit: a2a5eb6323a7b1987fd8048d94b9ffc7f87e3064 (patch)
tree: 209894096a4d15e4889299fe2406febca8c364a2 /include/linux
parent: 78d797520f6a74ed402cb98c6bf74d96b4937965 (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/include/linux/proc_fs.h b/include/linux/proc_fs.h
index d2860c18dca9..47d7deaeed8f 100644
--- a/include/linux/proc_fs.h
+++ b/include/linux/proc_fs.h
@@ -67,6 +67,7 @@ enum proc_pidonly {
 struct proc_fs_info {
 	struct pid_namespace *pid_ns;
 	kgid_t pid_gid;
+	const struct cred *mounter_cred;
 	enum proc_hidepid hide_pid;
 	enum proc_pidonly pidonly;
 	struct rcu_head rcu;
author	Alexey Gladkov <legion@kernel.org>	2026-04-27 10:26:05 +0200
committer	Christian Brauner <brauner@kernel.org>	2026-05-11 23:13:01 +0200
commit	a2a5eb6323a7b1987fd8048d94b9ffc7f87e3064 (patch)
tree	209894096a4d15e4889299fe2406febca8c364a2 /include/linux
parent	78d797520f6a74ed402cb98c6bf74d96b4937965 (diff)