Discussion:
[Bug 220712] Extended attributes within a jail cant be set
Add Reply
b***@freebsd.org
2017-07-14 05:54:48 UTC
Reply
Permalink
Raw Message
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=220712

Mark Linimon <***@FreeBSD.org> changed:

What |Removed |Added
----------------------------------------------------------------------------
Assignee|freebsd-***@FreeBSD.org |freebsd-***@FreeBSD.org
--
You are receiving this mail because:
You are the assignee for the bug.
b***@freebsd.org
2017-07-14 08:32:05 UTC
Reply
Permalink
Raw Message
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=220712

Mark Millard <***@dsl-only.net> changed:

What |Removed |Added
----------------------------------------------------------------------------
CC| |***@dsl-only.net

--- Comment #1 from Mark Millard <***@dsl-only.net> ---
For reference, quoting Konstantin Belousov from:

https://lists.freebsd.org/pipermail/freebsd-stable/2017-July/087398.html . . .

"System namespace access is not allowed for jailed processes by design.
See sys/kern/vfs_subr.c:extattr_check_cred() and a comment there
explicitely mentioning the behaviour. The behaviour predates ~ year
2002, where extended attributes were introduced, and it makes sense."
--
You are receiving this mail because:
You are the assignee for the bug.
Loading...