• Eric Paris's avatar
    NFS: use new LSM interfaces to explicitly set mount options · f9c3a380
    Eric Paris authored
    NFS and SELinux worked together previously because SELinux had NFS
    specific knowledge built in.  This design was approved by both groups
    back in 2004 but the recent NFS changes to use nfs_parsed_mount_data and
    the usage of nfs_clone_mount_data showed this to be a poor fragile
    solution.  This patch fixes the NFS functionality regression by making
    use of the new LSM interfaces to allow an FS to explicitly set its own
    mount options.
    
    The explicit setting of mount options is done in the nfs get_sb
    functions which are called before the generic vfs hooks try to set mount
    options for filesystems which use text mount data.
    
    This does not currently support NFSv4 as that functionality did not
    exist in previous kernels and thus there is no regression.  I will be
    adding the needed code, which I believe to be the exact same as the v3
    code, in nfs4_get_sb for 2.6.26.
    Signed-off-by: default avatarEric Paris <eparis@redhat.com>
    Acked-by: default avatarTrond Myklebust <Trond.Myklebust@netapp.com>
    Signed-off-by: default avatarJames Morris <jmorris@namei.org>
    f9c3a380
internal.h 7.01 KB