diff options
Diffstat (limited to 'kernel/futex.c')
| -rw-r--r-- | kernel/futex.c | 11 |
1 files changed, 10 insertions, 1 deletions
diff --git a/kernel/futex.c b/kernel/futex.c index 823aae3e2a96..dfb924ffe65b 100644 --- a/kernel/futex.c +++ b/kernel/futex.c | |||
| @@ -2418,10 +2418,19 @@ SYSCALL_DEFINE3(get_robust_list, int, pid, | |||
| 2418 | goto err_unlock; | 2418 | goto err_unlock; |
| 2419 | ret = -EPERM; | 2419 | ret = -EPERM; |
| 2420 | pcred = __task_cred(p); | 2420 | pcred = __task_cred(p); |
| 2421 | /* If victim is in different user_ns, then uids are not | ||
| 2422 | comparable, so we must have CAP_SYS_PTRACE */ | ||
| 2423 | if (cred->user->user_ns != pcred->user->user_ns) { | ||
| 2424 | if (!ns_capable(pcred->user->user_ns, CAP_SYS_PTRACE)) | ||
| 2425 | goto err_unlock; | ||
| 2426 | goto ok; | ||
| 2427 | } | ||
| 2428 | /* If victim is in same user_ns, then uids are comparable */ | ||
| 2421 | if (cred->euid != pcred->euid && | 2429 | if (cred->euid != pcred->euid && |
| 2422 | cred->euid != pcred->uid && | 2430 | cred->euid != pcred->uid && |
| 2423 | !capable(CAP_SYS_PTRACE)) | 2431 | !ns_capable(pcred->user->user_ns, CAP_SYS_PTRACE)) |
| 2424 | goto err_unlock; | 2432 | goto err_unlock; |
| 2433 | ok: | ||
| 2425 | head = p->robust_list; | 2434 | head = p->robust_list; |
| 2426 | rcu_read_unlock(); | 2435 | rcu_read_unlock(); |
| 2427 | } | 2436 | } |