fanotify: Taint on use of FANOTIFY_ACCESS_PERMISSIONS
authorBen Hutchings <ben@decadent.org.uk>
Wed, 13 Jul 2016 00:37:22 +0000 (01:37 +0100)
committerSalvatore Bonaccorso <carnil@debian.org>
Wed, 29 Nov 2023 07:45:07 +0000 (08:45 +0100)
commitd40b61ddd56ed16cbafcb5bcd081a18d2900fcf2
tree341ad47806fa770c7a4682d9805ba0a5e0229d13
parente622730aaf7494a16a688b00c4638d583a4ca47c
fanotify: Taint on use of FANOTIFY_ACCESS_PERMISSIONS

Forwarded: not-needed

Various free and proprietary AV products use this feature and users
apparently want it.  But punting access checks to userland seems like
an easy way to deadlock the system, and there will be nothing we can
do about that.  So warn and taint the kernel if this feature is
actually used.

Gbp-Pq: Topic debian
Gbp-Pq: Name fanotify-taint-on-use-of-fanotify_access_permissions.patch
fs/notify/fanotify/fanotify_user.c