/* SPDX-License-Identifier: GPL-2.0-only */12/**3* DOC: erratum_34*5* Erratum 3: Disconnected directory handling6* ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~7*8* This fix addresses an issue with disconnected directories that occur when a9* directory is moved outside the scope of a bind mount. The change ensures10* that evaluated access rights include both those from the disconnected file11* hierarchy down to its filesystem root and those from the related mount point12* hierarchy. This prevents access right widening through rename or link13* actions.14*15* Impact:16*17* Without this fix, it was possible to widen access rights through rename or18* link actions involving disconnected directories, potentially bypassing19* ``LANDLOCK_ACCESS_FS_REFER`` restrictions. This could allow privilege20* escalation in complex mount scenarios where directories become disconnected21* from their original mount points.22*/23LANDLOCK_ERRATUM(3)242526