[Bug 237052] [FUSEFS] fusefs allows non-owner access beneath mountpoint even without -o allow_other
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Fri Apr 5 17:21:51 UTC 2019
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=237052
--- Comment #1 from commit-hook at freebsd.org ---
A commit references this bug:
Author: asomers
Date: Fri Apr 5 17:21:24 UTC 2019
New revision: 345958
URL: https://svnweb.freebsd.org/changeset/base/345958
Log:
fusefs: enforce -onoallow_other even beneath the mountpoint
When -o allow_other is not in use, fusefs is supposed to prevent access to
the filesystem by any user other than the one who owns the daemon. Our
fusefs implementation was only enforcing that restriction at the mountpoint
itself. That was usually good enough because lookup usually descends from
the mountpoint. However, there are cases when it doesn't, such as when
using openat relative to a file beneath the mountpoint.
PR: 237052
Sponsored by: The FreeBSD Foundation
Changes:
projects/fuse2/sys/fs/fuse/fuse_internal.c
projects/fuse2/tests/sys/fs/fusefs/allow_other.cc
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-bugs
mailing list