From 6697ffd6e213828ff4cd873cd1d104877096a230 Mon Sep 17 00:00:00 2001
From: Jakob Unterwurzacher
Date: Sun, 18 Oct 2020 21:05:44 +0200
Subject: fusefronted: reject GETXATTR "security.capability"

Unless we are mounted with -suid, we can reject
these requests, and gain back some lost speed.

Closes https://github.com/rfjakob/gocryptfs/issues/515
---
 mount.go | 1 +
 1 file changed, 1 insertion(+)

(limited to 'mount.go')

diff --git a/mount.go b/mount.go
index f02bc21..39f3f3c 100644
--- a/mount.go
+++ b/mount.go
@@ -266,6 +266,7 @@ func initFuseFrontend(args *argContainer) (rootNode fs.InodeEmbedder, wipeKeys f
 		Exclude:         args.exclude,
 		ExcludeWildcard: args.excludeWildcard,
 		ExcludeFrom:     args.excludeFrom,
+		Suid:            args.suid,
 	}
 	// confFile is nil when "-zerokey" or "-masterkey" was used
 	if confFile != nil {
-- 
cgit v1.2.3