[RFC PATCH 0/5] ubifs: Support POSIX Access Control Lists (ACLs)
From: Li Zetao
Date: Tue Mar 19 2024 - 12:24:38 EST
Hi,
This patchset is base on [1] and [2], adding implementation of ACLs for
ubifs.
Implement ACLs features based on POSIX to solve some difficulties that
require fine-grained access control. At the same time, it is also to
facilitate cross-file system migration.
In order to simplify the implementation, only v2 version POSIX ACLs are
implemented, eliminating the need for in-memory and on-flash format
conversion. And no need to implement security xattr handler in ubifs.
Some testcases have been tested and passed:
* generic testcases (modified version) for acl group in xfstest[3], they are generic/026/053/077/099/105/237/307/318/319/375/389/444/449/529/697.
* tacl_xattr.sh (modified version) in LTP[4].
[1]: https://lore.kernel.org/linux-mtd/1441962597-13543-1-git-send-email-shengyong1@xxxxxxxxxx/
[2]: https://lore.kernel.org/linux-mtd/1476046382-19185-1-git-send-email-pascal.eberhard@xxxxxxxxx/
[3]: https://kernel.googlesource.com/pub/scm/fs/xfs/xfstests-dev/+/refs/heads/master/tests/generic/
[4]: https://github.com/linux-test-project/ltp/blob/master/testcases/kernel/fs/acl/tacl_xattr.sh
Li Zetao (5):
ubifs: Implement POSIX Access Control Lists (ACLs)
ubifs: Initialize or update ACLs for inode
ubifs: Support accessing ACLs through inode_operations
ubifs: Introduce ACLs mount options
ubifs: Add ACLs config option
fs/ubifs/Kconfig | 14 +++++
fs/ubifs/Makefile | 1 +
fs/ubifs/acl.c | 140 ++++++++++++++++++++++++++++++++++++++++++++++
fs/ubifs/dir.c | 18 ++++++
fs/ubifs/file.c | 6 ++
fs/ubifs/super.c | 40 +++++++++++++
fs/ubifs/ubifs.h | 15 +++++
fs/ubifs/xattr.c | 1 -
8 files changed, 234 insertions(+), 1 deletion(-)
create mode 100644 fs/ubifs/acl.c
--
2.34.1