aboutsummaryrefslogtreecommitdiff
path: root/internal/fusefrontend/args.go
diff options
context:
space:
mode:
authorJakob Unterwurzacher2020-10-18 21:05:44 +0200
committerJakob Unterwurzacher2020-10-18 21:07:30 +0200
commit6697ffd6e213828ff4cd873cd1d104877096a230 (patch)
treef256f0b720d0472b37c0af08806786d2232e8806 /internal/fusefrontend/args.go
parentc943ed32aaf94a4e60d96c7a513180d29b15a40a (diff)
fusefronted: reject GETXATTR "security.capability"
Unless we are mounted with -suid, we can reject these requests, and gain back some lost speed. Closes https://github.com/rfjakob/gocryptfs/issues/515
Diffstat (limited to 'internal/fusefrontend/args.go')
-rw-r--r--internal/fusefrontend/args.go5
1 files changed, 5 insertions, 0 deletions
diff --git a/internal/fusefrontend/args.go b/internal/fusefrontend/args.go
index 646d6c4..f822650 100644
--- a/internal/fusefrontend/args.go
+++ b/internal/fusefrontend/args.go
@@ -39,4 +39,9 @@ type Args struct {
// ExcludeFrom is a list of files from which to read exclusion patterns
// (with wildcard syntax)
ExcludeFrom []string
+ // Suid is true if the filesystem has been mounted with the "-suid" flag.
+ // If it is false, we can ignore the GETXATTR "security.capability" calls,
+ // which are a performance problem for writes. See
+ // https://github.com/rfjakob/gocryptfs/issues/515 for details.
+ Suid bool
}