On Tue, Apr 14, 2015 at 01:44:32PM +0300, Lauri Võsandi wrote:
> This patch forces btrfs receive to issue chroot before
> parsing the btrfs stream to confine the process and
> minimize damage that could be done via malicious
> btrfs stream.
Thanks.
As we've discussed, there are possibly some things to resolve:
* chdir("/") after chroot
* commandline options to enable/disable chroot, choose the default
Receive should work for a non-root user so chroot should be conditional,
but I'm not sure if this should be guessed from the UID or if this would
be better to specify only by the commandline options.
I'll put the patch into a separate branch for now.
--
To unsubscribe from this list: send the line "unsubscribe linux-btrfs" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
