Google Git
Sign in
kernel / pub / scm / linux / kernel / git / kees / linux.git / refs/heads/lsm/mnt-restrict
commit433bf5d912d511c9ae49d6c1a6a473c476cd1788[log] [tgz]
authorKees Cook <keescook@chromium.org>Sat Sep 21 15:52:51 2013 -0700
committerKees Cook <keescook@chromium.org>Sun Oct 02 21:56:37 2016 -0700
tree4e86c7c146800ecef083cd1805ca3e44a8dfa921
parentc8d2bc9bc39ebea8437fd974fdbc21847bb897a3 [diff]
LSM: MntRestrict blocks mounts on symlink targets

On systems where certain filesystem contents cannot be entirely trusted,
it is beneficial to block mounts on symlinks. This makes sure that
malicious filesystem contents cannot trigger the over-mounting of trusted
filesystems. (For example, a bind-mounted subdirectory of /var cannot be
redirected to mount on /etc via a symlink: a daemon cannot elevate privs
to uid-0.)

Signed-off-by: Kees Cook <keescook@chromium.org>
9 files changed
tree: 4e86c7c146800ecef083cd1805ca3e44a8dfa921
  1. arch/
  2. block/
  3. certs/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. firmware/
  8. fs/
  9. include/
  10. init/
  11. ipc/
  12. kernel/
  13. lib/
  14. mm/
  15. net/
  16. samples/
  17. scripts/
  18. security/
  19. sound/
  20. tools/
  21. usr/
  22. virt/
  23. .cocciconfig
  24. .get_maintainer.ignore
  25. .gitignore
  26. .mailmap
  27. COPYING
  28. CREDITS
  29. Kbuild
  30. Kconfig
  31. MAINTAINERS
  32. Makefile
  33. README
  34. REPORTING-BUGS