Received: by 2002:a05:6a10:9848:0:0:0:0 with SMTP id x8csp1403513pxf;
        Fri, 12 Mar 2021 08:44:28 -0800 (PST)
X-Google-Smtp-Source: ABdhPJx31H7Cz23f3vs3DZPHHC4jY68fZ6L5oYCZBzIcmRrAsxw3nIaWYi9y1i5MkBL5NfPHrXqx
X-Received: by 2002:aa7:c78e:: with SMTP id n14mr15105645eds.31.1615567468276;
        Fri, 12 Mar 2021 08:44:28 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1615567468; cv=none;
        d=google.com; s=arc-20160816;
        b=P0r8rNjkZA7VNkF/bwqks2hkm1adATv6WkL5sqPAIRhgcNHaio1+aUfn31/NZyMigA
         awy6yfY80QiHvsmKFethVL0brdc1qShXwY/ZdjL5k1nAQKNyJ4Os6I18ARo+ih/E/ilw
         Fz+oV8dGemPS4RZo5eicKKAUUM65dHXsMWdO7JsBDo8OgJrocqYUPeVcw9zTKounAiZA
         ZboygQyaVyjGjy4UYgisxIPD6twVhoX5AJMe6umxV1qrAm3z9WIDpHSgqeNh3LBHnba/
         53f02xJQLgq9I93HLEcGsEtb3grdImxWCobpQzRTejjWpIlVd3ZvZpZnQAUh2DGP6OXs
         1oug==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:content-transfer-encoding:mime-version
         :references:in-reply-to:message-id:date:subject:cc:to:from;
        bh=Zl2RwXY9o9ZGLkCGoqURKQAcfGXbYJgYJOhvjMST9OE=;
        b=scYzxPZCGvXqkg3F/CkCe7QsGsD11Nq8jf6jPq1GcIHUBKUXxqd2+uM39+CmVzV6SE
         cnRjcW0e9S/g20B1wGwlBUOa2H+ipSx1vCkJk4RK589jb6H8eTVCH8+uTCyLUlGq4Ifv
         8yDHlQhXH57SPjo2Sfy+Z+I84FfAh2Cw1OOKYk1opK0yt0yscvHmYfEuAuBoEqfUfb5l
         Q9W+xiHPxeH3VVmPaC2S3gJayDRFUkaSIDmNfgTogDmqdkwONFL4YgpKe+oBVbLVOvY3
         4Chgc4SWzBtBN4YBe7+pVOLT0RS3w8zjKUP+CJY73LDDE4SH3TZfWEVoJ8a+syjXxuX+
         eA5Q==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id gy11si4466030ejb.175.2021.03.12.08.44.05;
        Fri, 12 Mar 2021 08:44:28 -0800 (PST)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S233100AbhCLQmu (ORCPT <rfc822;m15259695263@gmail.com>
        + 99 others); Fri, 12 Mar 2021 11:42:50 -0500
Received: from raptor.unsafe.ru ([5.9.43.93]:49834 "EHLO raptor.unsafe.ru"
        rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP
        id S232217AbhCLQmG (ORCPT <rfc822;linux-kernel@vger.kernel.org>);
        Fri, 12 Mar 2021 11:42:06 -0500
Received: from comp-core-i7-2640m-0182e6.redhat.com (ip-94-113-225-162.net.upcbroadband.cz [94.113.225.162])
        by raptor.unsafe.ru (Postfix) with ESMTPSA id 55B8D40CA6;
        Fri, 12 Mar 2021 16:42:03 +0000 (UTC)
From:   Alexey Gladkov <gladkov.alexey@gmail.com>
To:     LKML <linux-kernel@vger.kernel.org>,
        "Eric W . Biederman" <ebiederm@xmission.com>
Cc:     Alexey Gladkov <legion@kernel.org>,
        Alexander Viro <viro@zeniv.linux.org.uk>,
        Kees Cook <keescook@chromium.org>,
        Linux Containers <containers@lists.linux-foundation.org>,
        Linux FS Devel <linux-fsdevel@vger.kernel.org>
Subject: [PATCH v6 5/5] docs: proc: add documentation about relaxing visibility restrictions
Date:   Fri, 12 Mar 2021 17:41:48 +0100
Message-Id: <1b7e8b0a8221bf12800303b522db387713e3151a.1615567183.git.gladkov.alexey@gmail.com>
X-Mailer: git-send-email 2.29.3
In-Reply-To: <cover.1615567183.git.gladkov.alexey@gmail.com>
References: <cover.1615567183.git.gladkov.alexey@gmail.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
X-Greylist: Sender succeeded SMTP AUTH, not delayed by milter-greylist-4.6.4 (raptor.unsafe.ru [0.0.0.0]); Fri, 12 Mar 2021 16:42:03 +0000 (UTC)
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

Signed-off-by: Alexey Gladkov <gladkov.alexey@gmail.com>
---
 Documentation/filesystems/proc.rst | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/Documentation/filesystems/proc.rst b/Documentation/filesystems/proc.rst
index 5a1bb0e081fd..9d993aef7f1c 100644
--- a/Documentation/filesystems/proc.rst
+++ b/Documentation/filesystems/proc.rst
@@ -2182,7 +2182,8 @@ are not related to tasks.
 If user namespaces are in use, the kernel additionally checks the instances of
 procfs available to the mounter and will not allow procfs to be mounted if:
 
-  1. This mount is not fully visible.
+  1. This mount is not fully visible unless the new procfs is going to be
+     mounted with subset=pid option.
 
      a. It's root directory is not the root directory of the filesystem.
      b. If any file or non-empty procfs directory is hidden by another mount.
-- 
2.29.3