26 Jul, 2011

1 commit

• 4e34e719e   fs: take the ACL checks to common code ... Browse Code »

  Replace the ->check_acl method with a ->get_acl method that simply reads an
  ACL from disk after having a cache miss. This means we can replace the ACL
  checking boilerplate code with a single implementation in namei.c.

  Signed-off-by: Christoph Hellwig
  Signed-off-by: Al Viro

  Christoph Hellwig

  2011-07-26 02:30:23 +0800  

20 Jul, 2011

1 commit

• 7e40145eb   ->permission() sanitizing: don't pass flags to ->check_acl() ... Browse Code »

  not used in the instances anymore.

  Signed-off-by: Al Viro

  Al Viro

  2011-07-20 13:43:21 +0800  

07 Jan, 2011

1 commit

• b74c79e99   fs: provide rcu-walk aware permission i_ops ... Browse Code »

  Signed-off-by: Nick Piggin

  Nick Piggin

  2011-01-07 14:50:29 +0800  

22 May, 2010

1 commit

• bb4354538   fs: xattr_handler table should be const ... Browse Code »

  The entries in xattr handler table should be immutable (ie const)
  like other operation tables.

  Later patches convert common filesystems. Uncoverted filesystems
  will still work, but will generate a compiler warning.

  Signed-off-by: Stephen Hemminger
  Signed-off-by: Al Viro

  Stephen Hemminger

  2010-05-22 06:31:18 +0800  

17 Dec, 2009

1 commit

• 1c7c474c3   make generic_acl slightly more generic ... Browse Code »

  Now that we cache the ACL pointers in the generic inode all the generic_acl
  cruft can go away and generic_acl.c can directly implement xattr handlers
  dealing with the full Posix ACL semantics for in-memory filesystems.

  Signed-off-by: Christoph Hellwig
  Signed-off-by: Al Viro

  Christoph Hellwig

  2009-12-17 01:16:49 +0800  

09 May, 2007

1 commit

• 588626996   fix file specification in comments ... Browse Code »

  Many files include the filename at the beginning, serveral used a wrong one.

  Signed-off-by: Uwe Kleine-König
  Signed-off-by: Adrian Bunk

  Uwe Kleine-König

  2007-05-09 14:58:16 +0800  

30 Sep, 2006

1 commit

• f0c8bd164   [PATCH] Generic infrastructure for acls ... Browse Code »

  The patches solve the following problem: We want to grant access to devices
  based on who is logged in from where, etc. This includes switching back and
  forth between multiple user sessions, etc.

  Using ACLs to define device access for logged-in users gives us all the
  flexibility we need in order to fully solve the problem.

  Device special files nowadays usually live on tmpfs, hence tmpfs ACLs.

  Different distros have come up with solutions that solve the problem to
  different degrees: SUSE uses a resource manager which tracks login sessions
  and sets ACLs on device inodes as appropriate. RedHat uses pam_console, which
  changes the primary file ownership to the logged-in user. Others use a set of
  groups that users must be in in order to be granted the appropriate accesses.

  The freedesktop.org project plans to implement a combination of a
  console-tracker and a HAL-device-list based solution to grant access to
  devices to users, and more distros will likely follow this approach.

  These patches have first been posted here on 2 February 2005, and again
  on 8 January 2006. We have been shipping them in SLES9 and SLES10 with
  no problems reported. The previous submission is archived here:

  http://lkml.org/lkml/2006/1/8/229
  http://lkml.org/lkml/2006/1/8/230
  http://lkml.org/lkml/2006/1/8/231

  This patch:

  Add some infrastructure for access control lists on in-memory
  filesystems such as tmpfs.

  Signed-off-by: Andreas Gruenbacher
  Cc: Hugh Dickins
  Signed-off-by: Andrew Morton
  Signed-off-by: Linus Torvalds

  Andreas Gruenbacher

  2006-09-30 00:18:24 +0800