fanotify: Taint on use of FANOTIFY_ACCESS_PERMISSIONS
authorBen Hutchings <ben@decadent.org.uk>
Wed, 13 Jul 2016 00:37:22 +0000 (01:37 +0100)
committerSalvatore Bonaccorso <carnil@debian.org>
Fri, 26 Nov 2021 05:33:39 +0000 (05:33 +0000)
commit58b9f140c362d738e55ce6383402b04344947651
treef3367ca8a0c4c1b7a4f08e7327fbdead0866beda
parent63fd8ba3eb2bc0505e61fbfa903d6e61a6cb9c63
fanotify: Taint on use of FANOTIFY_ACCESS_PERMISSIONS

Forwarded: not-needed

Various free and proprietary AV products use this feature and users
apparently want it.  But punting access checks to userland seems like
an easy way to deadlock the system, and there will be nothing we can
do about that.  So warn and taint the kernel if this feature is
actually used.

Gbp-Pq: Topic debian
Gbp-Pq: Name fanotify-taint-on-use-of-fanotify_access_permissions.patch
fs/notify/fanotify/fanotify_user.c