git.ipfire.org Git - thirdparty/linux.git/commit

author	Andrey Albershteyn <aalbersh@kernel.org>
	Mon, 26 Jan 2026 11:56:57 +0000 (12:56 +0100)
committer	Christian Brauner <brauner@kernel.org>
	Thu, 29 Jan 2026 15:00:57 +0000 (16:00 +0100)
commit	0e6b7eae1fded85f94a357d6132f07d64c614cfa
tree	35df86a6c9cfb181de95e2da604215e89b268f42	tree
parent	40210c2b11a873ff64a812c2d2600f529f01a83e	commit \| diff

fs: add FS_XFLAG_VERITY for fs-verity files

fs-verity introduced inode flag for inodes with enabled fs-verity on
them. This patch adds FS_XFLAG_VERITY file attribute which can be
retrieved with FS_IOC_FSGETXATTR ioctl() and file_getattr() syscall.

This flag is read-only and can not be set with corresponding set ioctl()
and file_setattr(). The FS_IOC_SETFLAGS requires file to be opened for
writing which is not allowed for verity files. The FS_IOC_FSSETXATTR and
file_setattr() clears this flag from the user input.

As this is now common flag for both flag interfaces (flags/xflags) add
it to overlapping flags list to exclude it from overwrite.

Signed-off-by: Andrey Albershteyn <aalbersh@kernel.org>
Link: https://patch.msgid.link/20260126115658.27656-2-aalbersh@kernel.org
Reviewed-by: Darrick J. Wong <djwong@kernel.org>
Signed-off-by: Christian Brauner <brauner@kernel.org>

Documentation/filesystems/fsverity.rst		diff \| blob \| blame \| history
fs/file_attr.c		diff \| blob \| blame \| history
include/linux/fileattr.h		diff \| blob \| blame \| history
include/uapi/linux/fs.h		diff \| blob \| blame \| history