diff options
| author |   Mike Pagano <mpagano@gentoo.org> | 2022-03-06 12:50:51 -0500 |
|---|---|---|
| committer | Mike Pagano <mpagano@gentoo.org> | 2022-03-06 12:50:51 -0500 |
| commit | 41dc35b2785cc890101781fb03476966ef499337 (patch) | |
| tree | 2c47c2a7b3023c705012e0e7b4bdcf23fb8d0e3f | |
| parent | Select CONFIG_CPU_FREQ_DEFAULT_GOV_SCHEDUTIL=y as default (diff) | |
| download | linux-patches-41dc35b2785cc890101781fb03476966ef499337.tar.gz linux-patches-41dc35b2785cc890101781fb03476966ef499337.tar.bz2 linux-patches-41dc35b2785cc890101781fb03476966ef499337.zip | |
Update default security restrictions
Bug: https://bugs.gentoo.org/834085
Signed-off-by: Mike Pagano <mpagano@gentoo.org>
| -rw-r--r-- | 1510_fs-enable-link-security-restrictions-by-default.patch | 12 |
1 files changed, 8 insertions, 4 deletions
diff --git a/1510_fs-enable-link-security-restrictions-by-default.patch b/1510_fs-enable-link-security-restrictions-by-default.patch index b1f1a88d..e8c30157 100644 --- a/1510_fs-enable-link-security-restrictions-by-default.patch +++ b/1510_fs-enable-link-security-restrictions-by-default.patch @@ -1,13 +1,17 @@ --- a/fs/namei.c 2022-01-23 13:02:27.876558299 -0500 -+++ b/fs/namei.c 2022-01-23 14:01:29.634533326 -0500 -@@ -1020,8 +1020,8 @@ static inline void put_link(struct namei ++++ b/fs/namei.c 2022-03-06 12:47:39.375719693 -0500 +@@ -1020,10 +1020,10 @@ static inline void put_link(struct namei path_put(&last->link); } -static int sysctl_protected_symlinks __read_mostly; -static int sysctl_protected_hardlinks __read_mostly; +-static int sysctl_protected_fifos __read_mostly; +-static int sysctl_protected_regular __read_mostly; +static int sysctl_protected_symlinks __read_mostly = 1; +static int sysctl_protected_hardlinks __read_mostly = 1; - static int sysctl_protected_fifos __read_mostly; - static int sysctl_protected_regular __read_mostly; ++int sysctl_protected_fifos __read_mostly = 1; ++int sysctl_protected_regular __read_mostly = 1; + #ifdef CONFIG_SYSCTL + static struct ctl_table namei_sysctls[] = { |