diff options
| author |   Mike Pagano <mpagano@gentoo.org> | 2015-06-23 08:54:37 -0400 |
|---|---|---|
| committer | Mike Pagano <mpagano@gentoo.org> | 2015-06-23 08:54:37 -0400 |
| commit | 3b05debcd4dd78810c90dc8e2a07b7843275df2c (patch) | |
| tree | 4db220e4fbf853eb9935e997794348745836d200 /1500_XATTR_USER_PREFIX.patch | |
| parent | Add check to saved_root_name for supported filesystem path naming. (diff) | |
| download | linux-patches-3b05debcd4dd78810c90dc8e2a07b7843275df2c.tar.gz linux-patches-3b05debcd4dd78810c90dc8e2a07b7843275df2c.tar.bz2 linux-patches-3b05debcd4dd78810c90dc8e2a07b7843275df2c.zip | |
Clean up master
Diffstat (limited to '1500_XATTR_USER_PREFIX.patch')
| -rw-r--r-- | 1500_XATTR_USER_PREFIX.patch | 54 |
1 files changed, 0 insertions, 54 deletions
diff --git a/1500_XATTR_USER_PREFIX.patch b/1500_XATTR_USER_PREFIX.patch deleted file mode 100644 index cc15cd51..00000000 --- a/1500_XATTR_USER_PREFIX.patch +++ /dev/null @@ -1,54 +0,0 @@ -From: Anthony G. Basile <blueness@gentoo.org> - -This patch adds support for a restricted user-controlled namespace on -tmpfs filesystem used to house PaX flags. The namespace must be of the -form user.pax.* and its value cannot exceed a size of 8 bytes. - -This is needed even on all Gentoo systems so that XATTR_PAX flags -are preserved for users who might build packages using portage on -a tmpfs system with a non-hardened kernel and then switch to a -hardened kernel with XATTR_PAX enabled. - -The namespace is added to any user with Extended Attribute support -enabled for tmpfs. Users who do not enable xattrs will not have -the XATTR_PAX flags preserved. - -diff --git a/include/uapi/linux/xattr.h b/include/uapi/linux/xattr.h -index e4629b9..6958086 100644 ---- a/include/uapi/linux/xattr.h -+++ b/include/uapi/linux/xattr.h -@@ -63,5 +63,9 @@ - #define XATTR_POSIX_ACL_DEFAULT "posix_acl_default" - #define XATTR_NAME_POSIX_ACL_DEFAULT XATTR_SYSTEM_PREFIX XATTR_POSIX_ACL_DEFAULT - -+/* User namespace */ -+#define XATTR_PAX_PREFIX XATTR_USER_PREFIX "pax." -+#define XATTR_PAX_FLAGS_SUFFIX "flags" -+#define XATTR_NAME_PAX_FLAGS XATTR_PAX_PREFIX XATTR_PAX_FLAGS_SUFFIX - - #endif /* _UAPI_LINUX_XATTR_H */ -diff --git a/mm/shmem.c b/mm/shmem.c -index 1c44af7..f23bb1b 100644 ---- a/mm/shmem.c -+++ b/mm/shmem.c -@@ -2201,6 +2201,7 @@ static const struct xattr_handler *shmem_xattr_handlers[] = { - static int shmem_xattr_validate(const char *name) - { - struct { const char *prefix; size_t len; } arr[] = { -+ { XATTR_USER_PREFIX, XATTR_USER_PREFIX_LEN}, - { XATTR_SECURITY_PREFIX, XATTR_SECURITY_PREFIX_LEN }, - { XATTR_TRUSTED_PREFIX, XATTR_TRUSTED_PREFIX_LEN } - }; -@@ -2256,6 +2257,12 @@ static int shmem_setxattr(struct dentry *dentry, const char *name, - if (err) - return err; - -+ if (!strncmp(name, XATTR_USER_PREFIX, XATTR_USER_PREFIX_LEN)) { -+ if (strcmp(name, XATTR_NAME_PAX_FLAGS)) -+ return -EOPNOTSUPP; -+ if (size > 8) -+ return -EINVAL; -+ } - return simple_xattr_set(&info->xattrs, name, value, size, flags); - } - |