diff options
| author | Andreas Gruenbacher <agruenba@redhat.com> | 2016-11-13 15:23:34 -0500 |
|---|---|---|
| committer | Al Viro <viro@zeniv.linux.org.uk> | 2016-11-17 00:00:23 -0500 |
| commit | 4a59015372840a6fc35d7fd40638a9d5dc3ec958 (patch) | |
| tree | 5116875c49182649c9230d0fee6e9b53c58abf3e /fs | |
| parent | 961b708e95181041f403251f660bc70be3ff6ba3 (diff) | |
xattr: Fix setting security xattrs on sockfs
The IOP_XATTR flag is set on sockfs because sockfs supports getting the
"system.sockprotoname" xattr. Since commit 6c6ef9f2, this flag is checked for
setxattr support as well. This is wrong on sockfs because security xattr
support there is supposed to be provided by security_inode_setsecurity. The
smack security module relies on socket labels (xattrs).
Fix this by adding a security xattr handler on sockfs that returns
-EAGAIN, and by checking for -EAGAIN in setxattr.
We cannot simply check for -EOPNOTSUPP in setxattr because there are
filesystems that neither have direct security xattr support nor support
via security_inode_setsecurity. A more proper fix might be to move the
call to security_inode_setsecurity into sockfs, but it's not clear to me
if that is safe: we would end up calling security_inode_post_setxattr after
that as well.
Signed-off-by: Andreas Gruenbacher <agruenba@redhat.com>
Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>
Diffstat (limited to 'fs')
| -rw-r--r-- | fs/xattr.c | 22 |
1 files changed, 14 insertions, 8 deletions
diff --git a/fs/xattr.c b/fs/xattr.c index 3368659c471e..2d13b4e62fae 100644 --- a/fs/xattr.c +++ b/fs/xattr.c | |||
| @@ -170,7 +170,7 @@ int __vfs_setxattr_noperm(struct dentry *dentry, const char *name, | |||
| 170 | const void *value, size_t size, int flags) | 170 | const void *value, size_t size, int flags) |
| 171 | { | 171 | { |
| 172 | struct inode *inode = dentry->d_inode; | 172 | struct inode *inode = dentry->d_inode; |
| 173 | int error = -EOPNOTSUPP; | 173 | int error = -EAGAIN; |
| 174 | int issec = !strncmp(name, XATTR_SECURITY_PREFIX, | 174 | int issec = !strncmp(name, XATTR_SECURITY_PREFIX, |
| 175 | XATTR_SECURITY_PREFIX_LEN); | 175 | XATTR_SECURITY_PREFIX_LEN); |
| 176 | 176 | ||
| @@ -183,15 +183,21 @@ int __vfs_setxattr_noperm(struct dentry *dentry, const char *name, | |||
| 183 | security_inode_post_setxattr(dentry, name, value, | 183 | security_inode_post_setxattr(dentry, name, value, |
| 184 | size, flags); | 184 | size, flags); |
| 185 | } | 185 | } |
| 186 | } else if (issec) { | 186 | } else { |
| 187 | const char *suffix = name + XATTR_SECURITY_PREFIX_LEN; | ||
| 188 | |||
| 189 | if (unlikely(is_bad_inode(inode))) | 187 | if (unlikely(is_bad_inode(inode))) |
| 190 | return -EIO; | 188 | return -EIO; |
| 191 | error = security_inode_setsecurity(inode, suffix, value, | 189 | } |
| 192 | size, flags); | 190 | if (error == -EAGAIN) { |
| 193 | if (!error) | 191 | error = -EOPNOTSUPP; |
| 194 | fsnotify_xattr(dentry); | 192 | |
| 193 | if (issec) { | ||
| 194 | const char *suffix = name + XATTR_SECURITY_PREFIX_LEN; | ||
| 195 | |||
| 196 | error = security_inode_setsecurity(inode, suffix, value, | ||
| 197 | size, flags); | ||
| 198 | if (!error) | ||
| 199 | fsnotify_xattr(dentry); | ||
| 200 | } | ||
| 195 | } | 201 | } |
| 196 | 202 | ||
| 197 | return error; | 203 | return error; |