git.ipfire.org Git - thirdparty/kernel/stable.git/commit

]> git.ipfire.org Git - thirdparty/kernel/stable.git/commit

projects / thirdparty / kernel / stable.git / commit

author	Miklos Szeredi <mszeredi@redhat.com>
	Mon, 29 May 2017 13:15:27 +0000 (15:15 +0200)
committer	Sasha Levin <alexander.levin@microsoft.com>
	Wed, 23 May 2018 01:36:26 +0000 (21:36 -0400)
commit	208325ef13eb870650640cb2df4a8f3cd990ff9c
tree	5852be34ac67490802a0708e00de55efbd9d2f56	tree
parent	8347159bc5bbe6d5ff71499b0775d8416be7cb8b	commit \| diff

ovl: filter trusted xattr for non-admin

[ Upstream commit a082c6f680da298cf075886ff032f32ccb7c5e1a ]

Filesystems filter out extended attributes in the "trusted." domain for
unprivlieged callers.

Overlay calls underlying filesystem's method with elevated privs, so need
to do the filtering in overlayfs too.

Signed-off-by: Miklos Szeredi <mszeredi@redhat.com>
Signed-off-by: Sasha Levin <alexander.levin@microsoft.com>

fs/overlayfs/inode.c

diff | blob | blame | history

Mirror https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

RSS Atom