On 04/07/2013 07:01 PM, Tom Wijsman wrote:
On Sun, 07 Apr 2013 18:08:41 -0400
"Anthony G. Basile" <bluen...@gentoo.org> wrote:
I can try to get the user.pax on tmpfs patch into the Linux tree. At
the very least, we can get it into gentoo-sources.
What does this patch do? I haven't been following this discussion;
also, please CC ker...@gentoo.org when you report this so we can track.
On a side note, stabilization in the 3.8 branch is not far away; I am
expecting this to happen somewhere in the second half of this month. If
you want the patch to be present in the stabilized 3.8 branch kernel, it
would be nice to have the patch before then.
Currently tmpfs only supports XATTR_SECURITY and XATTR_TRUSTED
namespaces. Take a look at mm/shmem.c, particularly
shmem_xattr_validate() around line 2112. But we're putting XATTR_PAX
markings in the user namespace, actually a subspace of it, "user.pax".
Since we need to preserve XATTR_PAX flags as portage moves stuff around,
we need to expand the allowed xattr namespace for tmpfs. That's what
this patch does.
I originally wanted in gentoo-sources, but there was concern --- I
forget who. Pushing it upstream may be hard because upstream doesn't
respect PaX. I can still try.
--
Anthony G. Basile, Ph.D.
Gentoo Linux Developer [Hardened]
E-Mail : bluen...@gentoo.org
GnuPG FP : 1FED FAD9 D82C 52A5 3BAB DC79 9384 FA6E F52D 4BBA
GnuPG ID : F52D4BBA
