[PATCH v3 15/21] fs: Don't remove suid for CAP_FSETID in s_user_ns

[PATCH v3 00/21] Support fuse mounts in user namespaces · Seth Forshee <hidden> · 2016-04-22
[PATCH v3 02/21] fs: Remove check of s_user_ns for existing mounts in fs_fully_visible() · Seth Forshee <hidden> · 2016-04-22
[PATCH v3 03/21] fs: Allow sysfs and cgroupfs to share super blocks between user namespaces · Seth Forshee <hidden> · 2016-04-22
Re: [PATCH v3 03/21] fs: Allow sysfs and cgroupfs to share super blocks between user namespaces · "Serge E. Hallyn" <serge@hallyn.com> · 2016-04-25
[PATCH v3 04/21] block_dev: Support checking inode permissions in lookup_bdev() · Seth Forshee <hidden> · 2016-04-22
[PATCH v3 08/21] userns: Replace in_userns with current_in_userns · Seth Forshee <hidden> · 2016-04-22
[PATCH v3 12/21] fs: Refuse uid/gid changes which don't map into s_user_ns · Seth Forshee <hidden> · 2016-04-22
[PATCH v3 17/21] capabilities: Allow privileged user in s_user_ns to set security.* xattrs · Seth Forshee <hidden> · 2016-04-22
[PATCH v3 18/21] fuse: Add support for pid namespaces · Seth Forshee <hidden> · 2016-04-22
[PATCH v3 19/21] fuse: Support fuse filesystems outside of init_user_ns · Seth Forshee <hidden> · 2016-04-22
[PATCH v3 20/21] fuse: Restrict allow_other to the superblock's namespace or a descendant · Seth Forshee <hidden> · 2016-04-22
[PATCH v3 21/21] fuse: Allow user namespace mounts · Seth Forshee <hidden> · 2016-04-22
[PATCH v3 01/21] fs: fix a posible leak of allocated superblock · Seth Forshee <hidden> · 2016-04-22
[PATCH v3 05/21] block_dev: Check permissions towards block device inode when mounting · Seth Forshee <hidden> · 2016-04-22
[PATCH v3 06/21] fs: Treat foreign mounts as nosuid · Seth Forshee <hidden> · 2016-04-22
[PATCH v3 07/21] selinux: Add support for unprivileged mounts from user namespaces · Seth Forshee <hidden> · 2016-04-22
[PATCH v3 09/21] Smack: Handle labels consistently in untrusted mounts · Seth Forshee <hidden> · 2016-04-22
[PATCH v3 10/21] fs: Check for invalid i_uid in may_follow_link() · Seth Forshee <hidden> · 2016-04-22
[PATCH v3 11/21] cred: Reject inodes with invalid ids in set_create_file_as() · Seth Forshee <hidden> · 2016-04-22
[PATCH v3 14/21] fs: Allow superblock owner to change ownership of inodes with unmappable ids · Seth Forshee <hidden> · 2016-04-22
Re: [PATCH v3 14/21] fs: Allow superblock owner to change ownership of inodes with unmappable ids · "Serge E. Hallyn" <serge@hallyn.com> · 2016-04-25
Re: [PATCH v3 14/21] fs: Allow superblock owner to change ownership of inodes with unmappable ids · Seth Forshee <hidden> · 2016-04-26
[PATCH v3 15/21] fs: Don't remove suid for CAP_FSETID in s_user_ns · Seth Forshee <hidden> · 2016-04-22
[PATCH v3 13/21] fs: Update posix_acl support to handle user namespace mounts · Seth Forshee <hidden> · 2016-04-22
[PATCH v3 16/21] fs: Allow superblock owner to access do_remount_sb() · Seth Forshee <hidden> · 2016-04-22

STALE3686d REVIEWED: 1 (0M)

Revisions (5)

2015-12-02 v1 [diff vs current]
2015-12-07 v2 [diff vs current]
2016-01-04 v2 [diff vs current]
2016-04-22 v3 current
2016-04-26 v4 [diff vs current]

From: Seth Forshee <hidden>
Date: 2016-04-22 15:39:24
Also in: dm-devel, linux-bcache, linux-fsdevel, linux-raid, lkml
Subsystem: filesystems (vfs and infrastructure), the rest · Maintainers: Alexander Viro, Christian Brauner, Linus Torvalds

Expand the check in should_remove_suid() to keep privileges for
CAP_FSETID in s_user_ns rather than init_user_ns.

Signed-off-by: Seth Forshee <redacted>
Acked-by: Serge Hallyn <redacted>
---
 fs/inode.c | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/fs/inode.c b/fs/inode.c
index 69b8b526c194..cd52170f9117 100644
--- a/fs/inode.c
+++ b/fs/inode.c

@@ -1690,7 +1690,8 @@ int should_remove_suid(struct dentry *dentry)
 	if (unlikely((mode & S_ISGID) && (mode & S_IXGRP)))
 		kill |= ATTR_KILL_SGID;
 
-	if (unlikely(kill && !capable(CAP_FSETID) && S_ISREG(mode)))
+	if (unlikely(kill && !ns_capable(dentry->d_sb->s_user_ns, CAP_FSETID) &&
+		     S_ISREG(mode)))
 		return kill;
 
 	return 0;

-- 
1.9.1


------------------------------------------------------------------------------
Find and fix application performance issues faster with Applications Manager
Applications Manager provides deep performance insights into multiple tiers of
your business applications. It resolves application problems quickly and
reduces your MTTR. Get your free trial!
https://ad.doubleclick.net/ddm/clk/302982198;130105516;z
-- 
fuse-devel mailing list
To unsubscribe or subscribe, visit https://lists.sourceforge.net/lists/listinfo/fuse-devel

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help