[PATCH] FUSE: tighten check for processes allowed access

This patch tightens the check for allowing processes to access non-privileged mounts. The rational is that the filesystem implementation can control the behavior or get otherwise unavailable information of the filesystem user. If the filesystem user process has the same uid, gid, and is not suid or sgid application, then access is safe. Otherwise access is not allowed unless the "allow_other" mount option is given (for which policy is controlled by the userspace mount utility). Thanks to everyone linux-fsdevel, especially Martin Mares who helped uncover problems with the previous approach. Signed-off-by: Miklos Szeredi <miklos@szeredi.hu> Signed-off-by: Andrew Morton <akpm@osdl.org> Signed-off-by: Linus Torvalds <torvalds@osdl.org>
author: Miklos Szeredi <miklos@szeredi.hu> 2005-09-09 13:10:34 -0700
committer: Linus Torvalds <torvalds@g5.osdl.org> 2005-09-09 14:03:46 -0700
commit: 87729a5514e855ce2c71e3e33833a106b8caf2ae (patch)
tree: dd2e7a9fd96b2dd3ebc3951fef2d682e83aa6bb4 /fs/fuse/fuse_i.h
parent: db50b96c0f28a21c5a4a19ecaba12d0972aab06a (diff)
1 files changed, 3 insertions, 0 deletions
diff --git a/fs/fuse/fuse_i.h b/fs/fuse/fuse_i.h
index aff3a01ea02..3ec2aff3fdb 100644
--- a/fs/fuse/fuse_i.h
+++ b/fs/fuse/fuse_i.h
@@ -198,6 +198,9 @@ struct fuse_conn {
 	/** The user id for this mount */
 	uid_t user_id;
 
+	/** The group id for this mount */
+	gid_t group_id;
+
 	/** The fuse mount flags for this mount */
 	unsigned flags;
author	Miklos Szeredi <miklos@szeredi.hu>	2005-09-09 13:10:34 -0700
committer	Linus Torvalds <torvalds@g5.osdl.org>	2005-09-09 14:03:46 -0700
commit	87729a5514e855ce2c71e3e33833a106b8caf2ae (patch)
tree	dd2e7a9fd96b2dd3ebc3951fef2d682e83aa6bb4 /fs/fuse/fuse_i.h
parent	db50b96c0f28a21c5a4a19ecaba12d0972aab06a (diff)