• Darrick J. Wong's avatar
    xfs: only return detailed fsmap info if the caller has CAP_SYS_ADMIN · ea9a46e1
    Darrick J. Wong authored
    There were a number of handwaving complaints that one could "possibly"
    use inode numbers and extent maps to fingerprint a filesystem hosting
    multiple containers and somehow use the information to guess at the
    contents of other containers and attack them.  Despite the total lack of
    any demonstration that this is actually possible, it's easier to
    restrict access now and broaden it later, so use the rmapbt fsmap
    backends only if the caller has CAP_SYS_ADMIN.  Unprivileged users will
    just have to make do with only getting the free space and static
    metadata placement information.
    Signed-off-by: default avatarDarrick J. Wong <darrick.wong@oracle.com>
    Reviewed-by: default avatarCarlos Maiolino <cmaiolino@redhat.com>
    ea9a46e1
xfs_fsmap.c 25.6 KB