diff options
author | Linus Torvalds <torvalds@linux-foundation.org> | 2022-12-13 07:29:45 +0300 |
---|---|---|
committer | Linus Torvalds <torvalds@linux-foundation.org> | 2022-12-13 07:29:45 +0300 |
commit | 07d7a4d6961a221af7023d08c89da8ed12fa7dda (patch) | |
tree | 4af640e6201ee6bc30c84148dc287a4d10ffe891 /MAINTAINERS | |
parent | 6e8948a0630f9ee46cf03dbf65949c1f4b6f6dd2 (diff) | |
parent | e7eda157c4071cd1e69f4b1687b0fbe1ae5e6f46 (diff) | |
download | linux-07d7a4d6961a221af7023d08c89da8ed12fa7dda.tar.xz |
Merge tag 'fs.xattr.simple.noaudit.v6.2' of git://git.kernel.org/pub/scm/linux/kernel/git/vfs/idmapping
Pull xattr audit fix from Seth Forshee:
"This is a single patch to remove auditing of the capability check in
simple_xattr_list().
This check is done to check whether trusted xattrs should be included
by listxattr(2). SELinux will normally log a denial when capable() is
called and the task's SELinux context doesn't have the corresponding
capability permission allowed, which can end up spamming the log.
Since a failed check here cannot be used to infer malicious intent,
auditing is of no real value, and it makes sense to stop auditing the
capability check"
* tag 'fs.xattr.simple.noaudit.v6.2' of git://git.kernel.org/pub/scm/linux/kernel/git/vfs/idmapping:
fs: don't audit the capability check in simple_xattr_list()
Diffstat (limited to 'MAINTAINERS')
0 files changed, 0 insertions, 0 deletions