upstream/opnsense-src
1
0
Fork 0
mirror of https://github.com/opnsense/src.git synced 2026-03-14 14:42:40 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions
opnsense-src/sys
History
Alan Somers bfcb817bcd Fix issues with FUSE_ACCESS when default_permissions is disabled 
This patch fixes two issues relating to FUSE_ACCESS when the
default_permissions mount option is disabled:

* VOP_ACCESS() calls with VADMIN set should never be sent to a fuse server
  in the form of FUSE_ACCESS operations. The FUSE protocol has no equivalent
  of VADMIN, so we must evaluate such things kernel-side, regardless of the
  default_permissions setting.

* The FUSE protocol only requires FUSE_ACCESS to be sent for two purposes:
  for the access(2) syscall and to check directory permissions for
  searchability during lookup. FreeBSD sends it much more frequently, due to
  differences between our VFS and Linux's, for which FUSE was designed. But
  this patch does eliminate several cases not required by the FUSE protocol:

  * for any FUSE_*XATTR operation
  * when creating a new file
  * when deleting a file
  * when setting timestamps, such as by utimensat(2).

* Additionally, when default_permissions is disabled, this patch removes one
  FUSE_GETATTR operation when deleting a file.

PR:		245689
Reported by:	MooseFS FreeBSD Team <freebsd@moosefs.pro>
Reviewed by:	cem
MFC after:	2 weeks
Differential Revision:	https://reviews.freebsd.org/D24777
2020-05-22 18:11:17 +00:00
..
amd64 Fix the build after r361033 when ACPI is disabled. 2020-05-22 01:18:55 +00:00
arm Bring in support for single core Zynq devices. Turns out that real 2020-05-21 06:40:51 +00:00
arm64 Stop performing a full icache sync when the DIC and IDC flags are set 2020-05-19 16:04:27 +00:00
bsm bsm: add AUE_CLOSERANGE 2020-04-24 01:27:25 +00:00
cam cam: ANSIfy 0-argument function definitions 2020-05-16 14:33:08 +00:00
cddl Don't block on the range lock in zfs_getpages(). 2020-05-20 18:29:23 +00:00
compat linuxkpi: Add rcu_work functions 2020-05-21 20:18:38 +00:00
conf pkgbase: use -dev,-dbg instead of -development,-debug 2020-05-20 19:45:22 +00:00
contrib [ath_hal_ar9300] Ensure AH_BYTE_ORDER is defined before used. 2020-05-12 02:23:11 +00:00
crypto Improve support for stream ciphers in the software encryption interface. 2020-05-22 16:29:09 +00:00
ddb kernel: provide panicky version of __unreachable 2020-05-13 18:07:37 +00:00
dev Do not try to fill socket send buffer to the last byte. 2020-05-22 18:10:46 +00:00
dts allwinner: aw_thermal: Cope with DTS changes 2020-04-14 19:05:17 +00:00
fs Fix issues with FUSE_ACCESS when default_permissions is disabled 2020-05-22 18:11:17 +00:00
gdb Mark more nodes as CTLFLAG_MPSAFE or CTLFLAG_NEEDGIANT (17 of many) 2020-02-26 14:26:36 +00:00
geom Reimplement aliases in geom 2020-05-13 19:17:28 +00:00
gnu dts: Import DTS from Linux 5.6 2020-04-14 18:57:00 +00:00
i386 Fix the build after r361033 when ACPI is disabled. 2020-05-22 01:18:55 +00:00
isa sc(4) md bits: stop setting sc->kbd entirely 2019-12-30 02:07:55 +00:00
kern Deduplicate fsid comparisons 2020-05-21 01:55:35 +00:00
kgssapi Remove support for Kernel GSS algorithms deprecated in r348875. 2020-04-10 23:08:41 +00:00
libkern Mark more nodes as CTLFLAG_MPSAFE or CTLFLAG_NEEDGIANT (17 of many) 2020-02-26 14:26:36 +00:00
mips Print CPU informtion later in boot. 2020-05-20 21:16:54 +00:00
modules HyperV socket implementation for FreeBSD 2020-05-20 11:03:59 +00:00
net sysctl: fix setting net.isr.dispatch during early boot 2020-05-16 17:05:44 +00:00
net80211 net80211: post RTM_IFINFO notification after toggling IFF_DRV_RUNNING 2020-05-22 11:25:45 +00:00
netgraph Fix Typo in ng_hci_le_connection_complete_ep struct. 2020-05-19 13:58:52 +00:00
netinet DCTCP: update alpha only once after loss recovery. 2020-05-21 21:42:49 +00:00
netinet6 Allow TCP to reuse local port with different destinations 2020-05-18 22:53:12 +00:00
netipsec Don't pass bogus keys down for NULL algorithms. 2020-05-02 01:00:29 +00:00
netpfil pf: Add a new zone for per-table entry counters. 2020-05-16 00:28:12 +00:00
netsmb Mark more nodes as CTLFLAG_MPSAFE or CTLFLAG_NEEDGIANT (17 of many) 2020-02-26 14:26:36 +00:00
nfs Remove rtable dumping code from bootp. 2020-04-28 07:23:41 +00:00
nfsclient
nfsserver
nlm Make nfslockd depend on xdr. 2020-04-23 09:37:22 +00:00
ofed Convert OFED rtable interactions to the new routing KPI. 2020-04-15 13:06:55 +00:00
opencrypto Correct the minimum key length for Camellia to 16 bytes (128 bits). 2020-05-22 17:21:22 +00:00
powerpc [PowerPC] Fix kernel boot on powerpc 2020-05-21 15:53:16 +00:00
riscv riscv: Fix pmap_protect for superpages 2020-05-13 17:20:51 +00:00
rpc Split XDR into separate kernel module. Make krpc depend on xdr. 2020-04-17 06:04:20 +00:00
security Deduplicate fsid comparisons 2020-05-21 01:55:35 +00:00
sys Implement Solaris-like link_map l_refname member. 2020-05-22 17:52:09 +00:00
teken Adjust teken to allow build as part of loader 2019-09-05 18:07:40 +00:00
tests Mark more nodes as CTLFLAG_MPSAFE or CTLFLAG_NEEDGIANT (17 of many) 2020-02-26 14:26:36 +00:00
tools vfs: stop null checking routines in vop wrappers 2020-01-26 00:41:38 +00:00
ufs Update name of description of vfs.ffs.setsize in comment. 2020-05-22 17:23:43 +00:00
vm Allocate UMA per-CPU counters earlier. 2020-05-14 16:06:54 +00:00
x86 amd64: Add a knob to flush RSB on context switches if machine has SMEP. 2020-05-20 22:00:31 +00:00
xdr Split XDR into separate kernel module. Make krpc depend on xdr. 2020-04-17 06:04:20 +00:00
xen Mark more nodes as CTLFLAG_MPSAFE or CTLFLAG_NEEDGIANT (16 of many) 2020-02-25 19:04:39 +00:00
Makefile Remove sparc64 kernel support 2020-02-03 17:35:11 +00:00