1. 23 6月, 2008 1 次提交
  2. 17 5月, 2008 1 次提交
    • A
      [PATCH] return to old errno choice in mkdir() et.al. · e9baf6e5
      Al Viro 提交于
      	In case when both EEXIST and EROFS would apply we used to
      return the former in mkdir(2) and friends.  Lest anyone suspects
      us of being consistent, in the same situation knfsd gave clients
      nfs_erofs...
      
      	ro-bind series had switched the syscall side of things to
      returning -EROFS and immediately broke an application - namely,
      mkdir -p.  Patch restores the original behaviour...
      Signed-off-by: NAl Viro <viro@zeniv.linux.org.uk>
      e9baf6e5
  3. 29 4月, 2008 1 次提交
    • S
      cgroups: implement device whitelist · 08ce5f16
      Serge E. Hallyn 提交于
      Implement a cgroup to track and enforce open and mknod restrictions on device
      files.  A device cgroup associates a device access whitelist with each cgroup.
       A whitelist entry has 4 fields.  'type' is a (all), c (char), or b (block).
      'all' means it applies to all types and all major and minor numbers.  Major
      and minor are either an integer or * for all.  Access is a composition of r
      (read), w (write), and m (mknod).
      
      The root device cgroup starts with rwm to 'all'.  A child devcg gets a copy of
      the parent.  Admins can then remove devices from the whitelist or add new
      entries.  A child cgroup can never receive a device access which is denied its
      parent.  However when a device access is removed from a parent it will not
      also be removed from the child(ren).
      
      An entry is added using devices.allow, and removed using
      devices.deny.  For instance
      
      	echo 'c 1:3 mr' > /cgroups/1/devices.allow
      
      allows cgroup 1 to read and mknod the device usually known as
      /dev/null.  Doing
      
      	echo a > /cgroups/1/devices.deny
      
      will remove the default 'a *:* mrw' entry.
      
      CAP_SYS_ADMIN is needed to change permissions or move another task to a new
      cgroup.  A cgroup may not be granted more permissions than the cgroup's parent
      has.  Any task can move itself between cgroups.  This won't be sufficient, but
      we can decide the best way to adequately restrict movement later.
      
      [akpm@linux-foundation.org: coding-style fixes]
      [akpm@linux-foundation.org: fix may-be-used-uninitialized warning]
      Signed-off-by: NSerge E. Hallyn <serue@us.ibm.com>
      Acked-by: NJames Morris <jmorris@namei.org>
      Looks-good-to: Pavel Emelyanov <xemul@openvz.org>
      Cc: Daniel Hokka Zakrisson <daniel@hozac.com>
      Cc: Li Zefan <lizf@cn.fujitsu.com>
      Cc: Paul Menage <menage@google.com>
      Cc: Balbir Singh <balbir@in.ibm.com>
      Cc: KAMEZAWA Hiroyuki <kamezawa.hiroyu@jp.fujitsu.com>
      Signed-off-by: NAndrew Morton <akpm@linux-foundation.org>
      Signed-off-by: NLinus Torvalds <torvalds@linux-foundation.org>
      08ce5f16
  4. 19 4月, 2008 7 次提交
  5. 20 3月, 2008 1 次提交
    • R
      fs: fix kernel-doc notation warnings · a6b91919
      Randy Dunlap 提交于
      Fix kernel-doc notation warnings in fs/.
      
      Warning(mmotm-2008-0314-1449//fs/super.c:560): missing initial short description on line:
       *	mark_files_ro
      Warning(mmotm-2008-0314-1449//fs/locks.c:1277): missing initial short description on line:
       *	lease_get_mtime
      Warning(mmotm-2008-0314-1449//fs/locks.c:1277): missing initial short description on line:
       *	lease_get_mtime
      Warning(mmotm-2008-0314-1449//fs/namei.c:1368): missing initial short description on line:
       * lookup_one_len:  filesystem helper to lookup single pathname component
      Warning(mmotm-2008-0314-1449//fs/buffer.c:3221): missing initial short description on line:
       * bh_uptodate_or_lock: Test whether the buffer is uptodate
      Warning(mmotm-2008-0314-1449//fs/buffer.c:3240): missing initial short description on line:
       * bh_submit_read: Submit a locked buffer for reading
      Warning(mmotm-2008-0314-1449//fs/fs-writeback.c:30): missing initial short description on line:
       * writeback_acquire: attempt to get exclusive writeback access to a device
      Warning(mmotm-2008-0314-1449//fs/fs-writeback.c:47): missing initial short description on line:
       * writeback_in_progress: determine whether there is writeback in progress
      Warning(mmotm-2008-0314-1449//fs/fs-writeback.c:58): missing initial short description on line:
       * writeback_release: relinquish exclusive writeback access against a device.
      Warning(mmotm-2008-0314-1449//include/linux/jbd.h:351): contents before sections
      Warning(mmotm-2008-0314-1449//include/linux/jbd.h:561): contents before sections
      Warning(mmotm-2008-0314-1449//fs/jbd/transaction.c:1935): missing initial short description on line:
       * void journal_invalidatepage()
      Signed-off-by: NRandy Dunlap <randy.dunlap@oracle.com>
      Signed-off-by: NAndrew Morton <akpm@linux-foundation.org>
      Signed-off-by: NLinus Torvalds <torvalds@linux-foundation.org>
      a6b91919
  6. 19 3月, 2008 1 次提交
    • A
      [PATCH] get stack footprint of pathname resolution back to relative sanity · a02f76c3
      Al Viro 提交于
      Somebody had put struct nameidata in stack frame of link_path_walk().
      Unfortunately, there are certain realities to deal with:
      	* It's in the middle of recursion.  Depth is equal to the nesting
      depth of symlinks, i.e. up to 8.
      	* struct namiedata is, even if one discards the intent junk,
      at least 12 pointers + 5 ints.
      	* moreover, adding a stack frame is not free in that situation.
      	* there are fs methods called on top of that, and they also have
      stack footprint.
      	* kernel stack is not infinite.
      
      The thing is, even if one chooses to deal with -ESTALE that way (and it's
      one hell of an overkill), the only thing that needs to be preserved is
      vfsmount + dentry, not the entire struct nameidata.
      Signed-off-by: NAl Viro <viro@zeniv.linux.org.uk>
      a02f76c3
  7. 15 2月, 2008 6 次提交
  8. 09 2月, 2008 1 次提交
  9. 07 2月, 2008 1 次提交
    • J
      inotify: send IN_ATTRIB events when link count changes · ece95912
      Jan Kara 提交于
      Currently, no notification event has been sent when inode's link count
      changed.  This is inconvenient for the application in some cases:
      
      Suppose you have the following directory structure
      
          foo/test
          bar/
      
      and you watch test.  If someone does "mv foo/test bar/", you get event
      IN_MOVE_SELF and you know something has happened with the file "test".
      However if someone does "ln foo/test bar/test" and "rm foo/test" you get no
      inotify event for the file "test" (only directories "foo" and "bar" receive
      events).
      
      Furthermore it could be argued that link count belongs to file's metadata and
      thus IN_ATTRIB should be sent when it changes.
      
      The following patch implements sending of IN_ATTRIB inotify events when link
      count of the inode changes, i.e., when a hardlink to the inode is created or
      when it is removed.  This event is sent in addition to all the events sent so
      far.  In particular, when a last link to a file is removed, IN_ATTRIB event is
      sent in addition to IN_DELETE_SELF event.
      Signed-off-by: NJan Kara <jack@suse.cz>
      Acked-by: NMorten Welinder <mwelinder@gmail.com>
      Cc: Robert Love <rlove@google.com>
      Cc: John McCutchan <ttb@tentacle.dhs.org>
      Cc: Steven French <sfrench@us.ibm.com>
      Cc: Kamalesh Babulal <kamalesh@linux.vnet.ibm.com>
      Signed-off-by: NAndrew Morton <akpm@linux-foundation.org>
      Signed-off-by: NLinus Torvalds <torvalds@linux-foundation.org>
      ece95912
  10. 13 1月, 2008 1 次提交
  11. 21 10月, 2007 1 次提交
  12. 19 10月, 2007 1 次提交
  13. 17 10月, 2007 6 次提交
  14. 20 7月, 2007 3 次提交
  15. 18 7月, 2007 1 次提交
    • S
      Introduce is_owner_or_cap() to wrap CAP_FOWNER use with fsuid check · 3bd858ab
      Satyam Sharma 提交于
      Introduce is_owner_or_cap() macro in fs.h, and convert over relevant
      users to it. This is done because we want to avoid bugs in the future
      where we check for only effective fsuid of the current task against a
      file's owning uid, without simultaneously checking for CAP_FOWNER as
      well, thus violating its semantics.
      [ XFS uses special macros and structures, and in general looked ...
      untouchable, so we leave it alone -- but it has been looked over. ]
      
      The (current->fsuid != inode->i_uid) check in generic_permission() and
      exec_permission_lite() is left alone, because those operations are
      covered by CAP_DAC_OVERRIDE and CAP_DAC_READ_SEARCH. Similarly operations
      falling under the purview of CAP_CHOWN and CAP_LEASE are also left alone.
      Signed-off-by: NSatyam Sharma <ssatyam@cse.iitk.ac.in>
      Cc: Al Viro <viro@ftp.linux.org.uk>
      Acked-by: NSerge E. Hallyn <serge@hallyn.com>
      Signed-off-by: NLinus Torvalds <torvalds@linux-foundation.org>
      3bd858ab
  16. 11 5月, 2007 1 次提交
  17. 10 5月, 2007 2 次提交
  18. 09 5月, 2007 2 次提交
  19. 08 5月, 2007 1 次提交
  20. 28 4月, 2007 1 次提交