| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-Id: <20160314175019.605944203@linuxfoundation.org> Date: Mon, 14 Mar 2016 10:51:02 -0700 From: Greg Kroah-Hartman <gregkh@...uxfoundation.org> To: linux-kernel@...r.kernel.org Cc: Greg Kroah-Hartman <gregkh@...uxfoundation.org>, stable@...r.kernel.org, Konstantin Khlebnikov <koct9i@...il.com>, Miklos Szeredi <miklos@...redi.hu> Subject: [PATCH 4.4 44/50] ovl: copy new uid/gid into overlayfs runtime inode 4.4-stable review patch. If anyone has any objections, please let me know. ------------------ From: Konstantin Khlebnikov <koct9i@...il.com> commit b81de061fa59f17d2730aabb1b84419ef3913810 upstream. Overlayfs must update uid/gid after chown, otherwise functions like inode_owner_or_capable() will check user against stale uid. Catched by xfstests generic/087, it chowns file and calls utimes. Signed-off-by: Konstantin Khlebnikov <koct9i@...il.com> Signed-off-by: Miklos Szeredi <miklos@...redi.hu> Signed-off-by: Greg Kroah-Hartman <gregkh@...uxfoundation.org> --- fs/overlayfs/inode.c | 2 ++ 1 file changed, 2 insertions(+) --- a/fs/overlayfs/inode.c +++ b/fs/overlayfs/inode.c @@ -65,6 +65,8 @@ int ovl_setattr(struct dentry *dentry, s mutex_lock(&upperdentry->d_inode->i_mutex); err = notify_change(upperdentry, attr, NULL); + if (!err) + ovl_copyattr(upperdentry->d_inode, dentry->d_inode); mutex_unlock(&upperdentry->d_inode->i_mutex); } ovl_drop_write(dentry);
Powered by blists - more mailing lists