summaryrefslogtreecommitdiffstats
path: root/sys-kernel/boest-v4.4.198/0010-4.4-1510_fs-enable-link-security-restrictions-by-def.patch
diff options
context:
space:
mode:
Diffstat (limited to 'sys-kernel/boest-v4.4.198/0010-4.4-1510_fs-enable-link-security-restrictions-by-def.patch')
-rw-r--r--sys-kernel/boest-v4.4.198/0010-4.4-1510_fs-enable-link-security-restrictions-by-def.patch25
1 files changed, 25 insertions, 0 deletions
diff --git a/sys-kernel/boest-v4.4.198/0010-4.4-1510_fs-enable-link-security-restrictions-by-def.patch b/sys-kernel/boest-v4.4.198/0010-4.4-1510_fs-enable-link-security-restrictions-by-def.patch
new file mode 100644
index 00000000..e5cd3658
--- /dev/null
+++ b/sys-kernel/boest-v4.4.198/0010-4.4-1510_fs-enable-link-security-restrictions-by-def.patch
@@ -0,0 +1,25 @@
+From eb37b356a065017c9dd5371d6791f446d5c67f03 Mon Sep 17 00:00:00 2001
+From: Mike Pagano <mpagano@gentoo.org>
+Date: Sat, 1 Dec 2018 13:33:33 -0500
+Subject: [PATCH 10/20]
+ 4.4:1510_fs-enable-link-security-restrictions-by-default.patch
+
+---
+ fs/namei.c | 4 ++--
+ 1 file changed, 2 insertions(+), 2 deletions(-)
+
+diff --git a/fs/namei.c b/fs/namei.c
+index 40049d61ef37..c246ab75e9bb 100644
+--- a/fs/namei.c
++++ b/fs/namei.c
+@@ -867,8 +867,8 @@ static inline void put_link(struct nameidata *nd)
+ path_put(&last->link);
+ }
+
+-int sysctl_protected_symlinks __read_mostly = 0;
+-int sysctl_protected_hardlinks __read_mostly = 0;
++int sysctl_protected_symlinks __read_mostly = 1;
++int sysctl_protected_hardlinks __read_mostly = 1;
+ int sysctl_protected_fifos __read_mostly;
+ int sysctl_protected_regular __read_mostly;
+