[PATCH v17 4/4] overlayfs: inode_owner_or_capable called during execv

[PATCH v17 0/4] overlayfs override_creds=off & nested get xattr fix · Mark Salyzyn <hidden> · 2020-10-20
[PATCH v17 1/4] Add flags option to get xattr method paired to __vfs_getxattr · Mark Salyzyn <hidden> · 2020-10-20
Re: [PATCH v17 1/4] Add flags option to get xattr method paired to __vfs_getxattr · Paul Moore <paul@paul-moore.com> · 2020-10-21
Re: [PATCH v17 1/4] Add flags option to get xattr method paired to __vfs_getxattr · Mark Salyzyn <hidden> · 2020-10-21
Re: [PATCH v17 1/4] Add flags option to get xattr method paired to __vfs_getxattr · Paul Moore <paul@paul-moore.com> · 2020-10-23
[PATCH v17 2/4] overlayfs: handle XATTR_NOSECURITY flag for get xattr method · Mark Salyzyn <hidden> · 2020-10-20
Re: [PATCH v17 2/4] overlayfs: handle XATTR_NOSECURITY flag for get xattr method · kernel test robot <hidden> · 2020-10-20
Re: [PATCH v17 2/4] overlayfs: handle XATTR_NOSECURITY flag for get xattr method · Mark Salyzyn <hidden> · 2020-10-21
[PATCH v17 3/4] overlayfs: override_creds=off option bypass creator_cred · Mark Salyzyn <hidden> · 2020-10-20
[PATCH v17 4/4] overlayfs: inode_owner_or_capable called during execv · Mark Salyzyn <hidden> · 2020-10-20
Re: [PATCH v17 0/4] overlayfs override_creds=off & nested get xattr fix · Paul Moore <paul@paul-moore.com> · 2020-10-20

STALE2051d

Revisions (6)

2019-10-22 v14 [diff vs current]
2019-11-04 v15 [diff vs current]
2020-10-19 v15 [diff vs current]
2020-10-20 v17 current
2020-10-21 v18 [diff vs current]
2020-10-21 v18 [diff vs current]

From: Mark Salyzyn <hidden>
Date: 2020-10-20 19:18:07
Also in: lkml
Subsystem: filesystems (vfs and infrastructure), overlay filesystem, the rest · Maintainers: Alexander Viro, Christian Brauner, Miklos Szeredi, Amir Goldstein, Linus Torvalds

Using old_creds as an indication that we are not overriding the
credentials, bypass call to inode_owner_or_capable.  This solves
a problem with all execv calls being blocked when using the caller's
credentials.

Signed-off-by: John Stultz <redacted>
Signed-off-by: Mark Salyzyn <redacted>
Fixes: 05acefb4872da ("ovl: check permission to open real file")
To: linux-fsdevel@vger.kernel.org
To: linux-unionfs@vger.kernel.org
Cc: Stephen Smalley <redacted>
Cc: linux-kernel@vger.kernel.org
Cc: linux-security-module@vger.kernel.org
Cc: kernel-team@android.com

v17 - rebase

v16 - introduced fix over rebased series
---
 fs/overlayfs/file.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/fs/overlayfs/file.c b/fs/overlayfs/file.c
index b1357bb067d9..9ab9663b02d8 100644
--- a/fs/overlayfs/file.c
+++ b/fs/overlayfs/file.c

@@ -53,7 +53,7 @@ static struct file *ovl_open_realfile(const struct file *file,
 	err = inode_permission(realinode, MAY_OPEN | acc_mode);
 	if (err) {
 		realfile = ERR_PTR(err);
-	} else if (!inode_owner_or_capable(realinode)) {
+	} else if (old_cred && !inode_owner_or_capable(realinode)) {
 		realfile = ERR_PTR(-EPERM);
 	} else {
 		realfile = open_with_fake_path(&file->f_path, flags, realinode,

-- 
2.29.0.rc1.297.gfa9743e501-goog

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help