On Sat 12-03-22 11:22:29, Srinivas wrote:
> If a process calls fanotify_mark(fd, FAN_MARK_ADD | FAN_MARK_MOUNT,
> FAN_OPEN_PERM, 0, "/mountpoint") no other directory exclusions can be
> applied.
>
> However a path (file) exclusion can still be applied using
>
> fanotify_mark(fd, FAN_MARK_ADD | FAN_MARK_IGNORED_MASK |
> FAN_MARK_IGNORED_SURV_MODIFY, FAN_OPEN_PERM | FAN_CLOSE_WRITE, AT_FDCWD,
> "/tmp/fio/abc"); ===> path exclusion that works.
>
> I think the directory exclusion not working is a bug as otherwise AV
> solutions cant exclude directories when using FAN_MARK_MOUNT.
>
> I believe the change should be simple since we are already supporting
> path exclusions. So we should be able to add the same for the directory
> inode.
>
> 215676 – fanotify Ignoring/Excluding a Directory not working with
> FAN_MARK_MOUNT (kernel.org)
Thanks for report! So I believe this should be fixed by commit 4f0b903ded
("fsnotify: fix merge with parent's ignored mask") which is currently
sitting in my tree and will go to Linus during the merge (opening in a
week).
Honza
--
Jan Kara <jack@xxxxxxxx>
SUSE Labs, CR
