6 Commits

Author	SHA1	Message	Date
Alexander Larsson	84e7b19683	revokefs: Fix off-by-one array size in fuse implementation ... The iovec write_vecs[] array on the stack was just 2 element, but we sometimes use 3 elements of it. This was causing random crashes due to corrupting the stack. Closes: #3110 Approved by: alexlarsson	2019-09-18 07:17:43 +00:00
Ryan Gonzalez	2b93928285	revokefs-fuse: Fix some build warnings ... Closes: #2952 Approved by: alexlarsson	2019-06-13 07:16:33 +00:00
Umang Jain	cd53f71f9e	revokefs-fuse: Add --with-exit-fd arg to monitor parent process's exit ... This is necessary so as to not leave the revokefs backend around when the system-helper exits abruptly (e.g. OOM killer). It would be a vulnerability if revokefs backend continues to live even after the system-helper is killed as it might lead to write access to the underlying directory. Closes: #2657 Approved by: alexlarsson	2019-04-09 09:18:15 +00:00
Alexander Larsson	80249b5f4d	revokefs: Add demo to show how to revoke permissions ... The demo starts two instances by the same users so the revoke doesn't really enforce any separation, but it demos how you would do it. Closes: #2657 Approved by: alexlarsson	2019-04-09 09:18:15 +00:00
Alexander Larsson	aeecbb7d2b	revokefs: Split out the writing part from the fuse implementation ... By default we just spawn a writer from the fuse implementation, but you can also do it manually with --backend and --socket, allowing you to start the two in different contexts. Closes: #2657 Approved by: alexlarsson	2019-04-09 09:18:14 +00:00
Alexander Larsson	4716ce8f2e	revokefs: Initial non-revoking version ... This is just a copy of rofiles-fuse with the write limits removed. Closes: #2657 Approved by: alexlarsson	2019-04-09 09:18:14 +00:00