1 files changed, 7 insertions, 16 deletions
diff --git a/security/keys/keyctl.c b/security/keys/keyctl.c
index dc0011b3fac9..cedb7326de29 100644
--- a/security/keys/keyctl.c
+++ b/security/keys/keyctl.c
@@ -728,7 +728,6 @@ long keyctl_chown_key(key_serial_t id, uid_t uid, gid_t gid)
        /* make the changes with the locks held to prevent chown/chown races */
        ret = -EACCES;
        down_write(&key->sem);
-        write_lock(&key->lock);
        if (!capable(CAP_SYS_ADMIN)) {
                /* only the sysadmin can chown a key to some other UID */
@@ -755,7 +754,6 @@ long keyctl_chown_key(key_serial_t id, uid_t uid, gid_t gid)
        ret = 0;
 no_access:
-        write_unlock(&key->lock);
        up_write(&key->sem);
        key_put(key);
 error:
@@ -784,26 +782,19 @@ long keyctl_setperm_key(key_serial_t id, key_perm_t perm)
                goto error;
        }
-        /* make the changes with the locks held to prevent chown/chmod
+        /* make the changes with the locks held to prevent chown/chmod races */
-         * races */
        ret = -EACCES;
        down_write(&key->sem);
-        write_lock(&key->lock);
-        /* if we're not the sysadmin, we can only chmod a key that we
+        /* if we're not the sysadmin, we can only change a key that we own */
-         * own */
+        if (capable(CAP_SYS_ADMIN) || key->uid == current->fsuid) {
-        if (!capable(CAP_SYS_ADMIN) && key->uid != current->fsuid)
+                key->perm = perm;
-                goto no_access;
+                ret = 0;
+        }
-        /* changing the permissions mask */
-        key->perm = perm;
-        ret = 0;
- no_access:
-        write_unlock(&key->lock);
        up_write(&key->sem);
        key_put(key);
- error:
+error:
        return ret;
 } /* end keyctl_setperm_key() */

diff --git a/security/keys/keyctl.c b/security/keys/keyctl.c index dc0011b3fac9..cedb7326de29 100644 --- a/security/keys/keyctl.c +++ b/security/keys/keyctl.c
@@ -728,7 +728,6 @@ long keyctl_chown_key(key_serial_t id, uid_t uid, gid_t gid)
728	/* make the changes with the locks held to prevent chown/chown races */	728	/* make the changes with the locks held to prevent chown/chown races */
729	ret = -EACCES;	729	ret = -EACCES;
730	down_write(&key->sem);	730	down_write(&key->sem);
731	write_lock(&key->lock);
732		731
733	if (!capable(CAP_SYS_ADMIN)) {	732	if (!capable(CAP_SYS_ADMIN)) {
734	/* only the sysadmin can chown a key to some other UID */	733	/* only the sysadmin can chown a key to some other UID */
@@ -755,7 +754,6 @@ long keyctl_chown_key(key_serial_t id, uid_t uid, gid_t gid)
755	ret = 0;	754	ret = 0;
756		755
757	no_access:	756	no_access:
758	write_unlock(&key->lock);
759	up_write(&key->sem);	757	up_write(&key->sem);
760	key_put(key);	758	key_put(key);
761	error:	759	error:
@@ -784,26 +782,19 @@ long keyctl_setperm_key(key_serial_t id, key_perm_t perm)
784	goto error;	782	goto error;
785	}	783	}
786		784
787	/* make the changes with the locks held to prevent chown/chmod	785	/* make the changes with the locks held to prevent chown/chmod races */
788	* races */
789	ret = -EACCES;	786	ret = -EACCES;
790	down_write(&key->sem);	787	down_write(&key->sem);
791	write_lock(&key->lock);
792		788
793	/* if we're not the sysadmin, we can only chmod a key that we	789	/* if we're not the sysadmin, we can only change a key that we own */
794	* own */	790	if (capable(CAP_SYS_ADMIN) \|\| key->uid == current->fsuid) {
795	if (!capable(CAP_SYS_ADMIN) && key->uid != current->fsuid)	791	key->perm = perm;
796	goto no_access;	792	ret = 0;
797		793	}
798	/* changing the permissions mask */
799	key->perm = perm;
800	ret = 0;
801		794
802	no_access:
803	write_unlock(&key->lock);
804	up_write(&key->sem);	795	up_write(&key->sem);
805	key_put(key);	796	key_put(key);
806	error:	797	error:
807	return ret;	798	return ret;
808		799
809	} /* end keyctl_setperm_key() */	800	} /* end keyctl_setperm_key() */