]> git.baikalelectronics.ru Git - kernel.git/commit
projects / kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 579f7b6) | patch
ovl: filter trusted xattr for non-admin
authorMiklos Szeredi <mszeredi@redhat.com>
Mon, 29 May 2017 13:15:27 +0000 (15:15 +0200)
committerMiklos Szeredi <mszeredi@redhat.com>
Mon, 29 May 2017 13:15:27 +0000 (15:15 +0200)
commitf83e5b6f8851d20f4ffbfba4afa3101d06170869
tree48a876fd1a7b738f978f5abbfc1e59bcbe288d43tree | snapshot
parent579f7b6077eb1bb969679f52cc1c3d7e8542da58commit | diff
ovl: filter trusted xattr for non-admin

Filesystems filter out extended attributes in the "trusted." domain for
unprivlieged callers.

Overlay calls underlying filesystem's method with elevated privs, so need
to do the filtering in overlayfs too.

Signed-off-by: Miklos Szeredi <mszeredi@redhat.com>
fs/overlayfs/inode.c diff | blob | history
Linux Kernel Source Tree.