From: Eric W. Biederman <ebiederm@xmission.com>
Date: Sat, 30 Mar 2013 08:35:18 +0000 (-0700)
Subject: vfs: Don't copy mount bind mounts of /proc/<pid>/ns/mnt between namespaces
X-Git-Tag: v3.12-rc1~106^2~8
X-Git-Url: http://git.openpandora.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=4ce5d2b1a8fde84c0eebe70652cf28b9beda6b4e;p=pandora-kernel.git

vfs: Don't copy mount bind mounts of /proc/<pid>/ns/mnt between namespaces

Don't copy bind mounts of /proc/<pid>/ns/mnt between namespaces.
These files hold references to a mount namespace and copying them
between namespaces could result in a reference counting loop.

The current mnt_ns_loop test prevents loops on the assumption that
mounts don't cross between namespaces.  Unfortunately unsharing a
mount namespace and shared substrees can both cause mounts to
propogate between mount namespaces.

Add two flags CL_COPY_UNBINDABLE and CL_COPY_MNT_NS_FILE are added to
control this behavior, and CL_COPY_ALL is redefined as both of them.

Signed-off-by: "Eric W. Biederman" <ebiederm@xmission.com>
---

Reading git-diff-tree failed