From: Eric W. Biederman <ebiederm@xmission.com>
Date: Thu, 31 Jan 2013 02:50:54 +0000 (-0800)
Subject: coda: Restrict coda messages to the initial pid namespace
X-Git-Tag: v3.9-rc1~85^2~68
X-Git-Url: http://git.openpandora.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=9fd973e085f7759f710603422b2e11ad5f2e000d;p=pandora-kernel.git

coda: Restrict coda messages to the initial pid namespace

Remove the slight chance that pids in coda messages will be
interpreted in the wrong pid namespace.

- Explicitly send all pids in coda messages in the initial pid
  namespace.
- Only allow mounts from processes in the initial pid namespace.
- Only allow processes in the initial pid namespace to open the coda
  character device to communicate with coda.

Cc: Jan Harkes <jaharkes@cs.cmu.edu>
Signed-off-by: "Eric W. Biederman" <ebiederm@xmission.com>
---

Reading git-diff-tree failed