pidfs: raise SB_I_NODEV and SB_I_NOEXEC

[ Upstream commit 1a1ad73aa1a66787f05f7f10f686b74bab77be72 ] Similar to commit 1ed95281c0c7 ("anon_inode: raise SB_I_NODEV and SB_I_NOEXEC"): it shouldn't be possible to execute pidfds via execveat(fd_anon_inode, "", NULL, NULL, AT_EMPTY_PATH) so raise SB_I_NOEXEC so that no one gets any creative ideas. Also raise SB_I_NODEV as we don't expect or support any devices on pidfs. Link: https://lore.kernel.org/20250618-work-pidfs-persistent-v2-1-98f3456fd552@kernel.org Reviewed-by: Alexander Mikhalitsyn <aleksandr.mikhalitsyn@canonical.com> Signed-off-by: Christian Brauner <brauner@kernel.org> Signed-off-by: Sasha Levin <sashal@kernel.org>
author: Christian Brauner <brauner@kernel.org> 2025-06-18 22:53:35 +0200
committer: Greg Kroah-Hartman <gregkh@linuxfoundation.org> 2025-08-20 18:40:55 +0200
commit: ecf5f561d9e8fe643e423860422117b442c918c1 (patch)
tree: de839108594f76b593b9d0b341c327bb6f581200
parent: b408abe51238c6a3a9df7fb25b6f9c95d51b2808 (diff)
1 files changed, 2 insertions, 0 deletions
diff --git a/fs/pidfs.c b/fs/pidfs.c
index 4625e097e3a0..4c551bfa8927 100644
--- a/fs/pidfs.c
+++ b/fs/pidfs.c
@@ -891,6 +891,8 @@ static int pidfs_init_fs_context(struct fs_context *fc)
 	if (!ctx)
 		return -ENOMEM;
 
+	fc->s_iflags |= SB_I_NOEXEC;
+	fc->s_iflags |= SB_I_NODEV;
 	ctx->ops = &pidfs_sops;
 	ctx->eops = &pidfs_export_operations;
 	ctx->dops = &pidfs_dentry_operations;
author	Christian Brauner <brauner@kernel.org>	2025-06-18 22:53:35 +0200
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>	2025-08-20 18:40:55 +0200
commit	ecf5f561d9e8fe643e423860422117b442c918c1 (patch)
tree	de839108594f76b593b9d0b341c327bb6f581200
parent	b408abe51238c6a3a9df7fb25b6f9c95d51b2808 (diff)