diff options
author | Eric Paris <eparis@redhat.com> | 2009-05-11 13:59:22 -0400 |
---|---|---|
committer | James Morris <jmorris@namei.org> | 2009-05-11 21:06:08 -0400 |
commit | 1a62e958fa4aaeeb752311b4f5e16b2a86737b23 (patch) | |
tree | 53d983ebdde45e00ad2079f8035792450b046d56 /security/integrity | |
parent | f06dd16a03f6f7f72fab4db03be36e28c28c6fd6 (diff) |
IMA: open all files O_LARGEFILE
If IMA tried to measure a file which was larger than 4G dentry_open would fail
with -EOVERFLOW since IMA wasn't passing O_LARGEFILE. This patch passes
O_LARGEFILE to all IMA opens to avoid this problem.
Signed-off-by: Eric Paris <eparis@redhat.com>
Acked-by: Mimi Zohar <zohar@us.ibm.com>
Signed-off-by: James Morris <jmorris@namei.org>
Diffstat (limited to 'security/integrity')
-rw-r--r-- | security/integrity/ima/ima_main.c | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/security/integrity/ima/ima_main.c b/security/integrity/ima/ima_main.c index 1987424623c2..c4228c0eb2d0 100644 --- a/security/integrity/ima/ima_main.c +++ b/security/integrity/ima/ima_main.c | |||
@@ -180,7 +180,8 @@ int ima_path_check(struct path *path, int mask) | |||
180 | struct dentry *dentry = dget(path->dentry); | 180 | struct dentry *dentry = dget(path->dentry); |
181 | struct vfsmount *mnt = mntget(path->mnt); | 181 | struct vfsmount *mnt = mntget(path->mnt); |
182 | 182 | ||
183 | file = dentry_open(dentry, mnt, O_RDONLY, current_cred()); | 183 | file = dentry_open(dentry, mnt, O_RDONLY | O_LARGEFILE, |
184 | current_cred()); | ||
184 | if (IS_ERR(file)) { | 185 | if (IS_ERR(file)) { |
185 | pr_info("%s dentry_open failed\n", dentry->d_name.name); | 186 | pr_info("%s dentry_open failed\n", dentry->d_name.name); |
186 | rc = PTR_ERR(file); | 187 | rc = PTR_ERR(file); |