docs: proc: add documentation about relaxing visibility restrictionspatchset/proc-revealing/v5

Signed-off-by: Alexey Gladkov <gladkov.alexey@gmail.com>
author: Alexey Gladkov <gladkov.alexey@gmail.com> 2021-03-10 19:14:48 +0100
committer: Alexey Gladkov <gladkov.alexey@gmail.com> 2021-03-12 17:18:28 +0100
commit: 1b7e8b0a8221bf12800303b522db387713e3151a (patch)
tree: 2783506847637932c89c46f8ae4af67ff8bcbb3c
parent: 16afddb2a1beb9e350083446a6c01828f26e376e (diff)
download: linux-patchset/proc-revealing/v5.tar.gz
1 files changed, 2 insertions, 1 deletions
diff --git a/Documentation/filesystems/proc.rst b/Documentation/filesystems/proc.rst
index 5a1bb0e081fdf6..9d993aef7f1cba 100644
--- a/Documentation/filesystems/proc.rst
+++ b/Documentation/filesystems/proc.rst
@@ -2182,7 +2182,8 @@ are not related to tasks.
 If user namespaces are in use, the kernel additionally checks the instances of
 procfs available to the mounter and will not allow procfs to be mounted if:
 
-  1. This mount is not fully visible.
+  1. This mount is not fully visible unless the new procfs is going to be
+     mounted with subset=pid option.
 
      a. It's root directory is not the root directory of the filesystem.
      b. If any file or non-empty procfs directory is hidden by another mount.
author	Alexey Gladkov <gladkov.alexey@gmail.com>	2021-03-10 19:14:48 +0100
committer	Alexey Gladkov <gladkov.alexey@gmail.com>	2021-03-12 17:18:28 +0100
commit	1b7e8b0a8221bf12800303b522db387713e3151a (patch)
tree	2783506847637932c89c46f8ae4af67ff8bcbb3c
parent	16afddb2a1beb9e350083446a6c01828f26e376e (diff)
download	linux-patchset/proc-revealing/v5.tar.gz