diff options
author | Eric W. Biederman <ebiederm@xmission.com> | 2012-04-21 04:09:01 -0700 |
---|---|---|
committer | Eric W. Biederman <ebiederm@xmission.com> | 2012-05-15 14:59:25 -0700 |
commit | e1c972b681bf118fcedb9fe2ed7a73de983aa5ef (patch) | |
tree | f70977f288b70620ebf3ef339c40b79c09095a36 /fs/devpts/inode.c | |
parent | 54ba47edac90091d42e5f97516cad56953576a5a (diff) | |
download | op-kernel-dev-e1c972b681bf118fcedb9fe2ed7a73de983aa5ef.zip op-kernel-dev-e1c972b681bf118fcedb9fe2ed7a73de983aa5ef.tar.gz |
userns: Add negative depends on entries to avoid building code that is userns unsafe
Add a new internal Kconfig option UIDGID_CONVERTED that is true when the selected
Kconfig options have been converted to be user namespace safe, and guard
USER_NS and guard the UIDGID_STRICT_TYPE_CHECK options with it.
This keeps innocent kernel users from having the choice to enable
the user namespace in the cases where it is known not to work.
Most of the rest of the conversions are simple and straight forward but
their sheer number means it is good not to count on having them all done
and reviwed before thinking of merging this code.
Acked-by: Serge Hallyn <serge.hallyn@canonical.com>
Signed-off-by: Eric W. Biederman <ebiederm@xmission.com>
Diffstat (limited to 'fs/devpts/inode.c')
0 files changed, 0 insertions, 0 deletions