linux

mirror of https://github.com/hardkernel/linux.git synced 2026-06-05 18:41:58 +09:00

Go to file

Mickaël Salaün 1524f792e0 fs: Fix file_set_fowner LSM hook inconsistencies

commit 26f204380a3c182e5adf1a798db0724d6111b597 upstream.

The fcntl's F_SETOWN command sets the process that handle SIGIO/SIGURG
for the related file descriptor.  Before this change, the
file_set_fowner LSM hook was always called, ignoring the VFS logic which
may not actually change the process that handles SIGIO (e.g. TUN, TTY,
dnotify), nor update the related UID/EUID.

Moreover, because security_file_set_fowner() was called without lock
(e.g. f_owner.lock), concurrent F_SETOWN commands could result to a race
condition and inconsistent LSM states (e.g. SELinux's fown_sid) compared
to struct fown_struct's UID/EUID.

This change makes sure the LSM states are always in sync with the VFS
state by moving the security_file_set_fowner() call close to the
UID/EUID updates and using the same f_owner.lock .

Rename f_modown() to __f_setown() to simplify code.

Cc: stable@vger.kernel.org
Cc: Al Viro <viro@zeniv.linux.org.uk>
Cc: Casey Schaufler <casey@schaufler-ca.com>
Cc: Christian Brauner <brauner@kernel.org>
Cc: James Morris <jmorris@namei.org>
Cc: Jann Horn <jannh@google.com>
Cc: Ondrej Mosnacek <omosnace@redhat.com>
Cc: Paul Moore <paul@paul-moore.com>
Cc: Serge E. Hallyn <serge@hallyn.com>
Cc: Stephen Smalley <stephen.smalley.work@gmail.com>
Fixes: 1da177e4c3 ("Linux-2.6.12-rc2")
Signed-off-by: Mickaël Salaün <mic@digikod.net>
Signed-off-by: Paul Moore <paul@paul-moore.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

2024-10-17 15:21:23 +02:00

arch

arm64: dts: rockchip: Correct the Pinebook Pro battery design capacity

2024-10-17 15:21:23 +02:00

block

block: fix potential invalid pointer dereference in blk_add_partition

2024-10-17 15:20:45 +02:00

certs

certs: Fix build error when PKCS#11 URI contains semicolon

2023-02-09 11:28:11 +01:00

crypto

KEYS: prevent NULL pointer dereference in find_asymmetric_key()

2024-10-17 15:21:17 +02:00

Documentation

dt-bindings: iio: asahi-kasei,ak8975: drop incorrect AK09116 compatible

2024-10-17 15:21:11 +02:00

drivers

hwrng: cctrng - Add missing clk_disable_unprepare in cctrng_resume

2024-10-17 15:21:23 +02:00

fs: Fix file_set_fowner LSM hook inconsistencies

2024-10-17 15:21:23 +02:00

include

usbnet: fix cyclical race on disconnect with work queue

2024-10-17 15:21:19 +02:00

init

rust: fix the default format for CONFIG_{RUSTC,BINDGEN}_VERSION_TEXT

2024-08-29 17:30:32 +02:00

io_uring

io_uring/sqpoll: do not put cpumask on stack

2024-10-17 15:21:15 +02:00

ipc

sysctl: treewide: drop unused argument ctl_table_root::set_ownership(table)

2024-08-11 12:35:51 +02:00

kernel

bpf: Zero former ARG_PTR_TO_{LONG,INT} args in case of error

2024-10-17 15:21:00 +02:00

lib

debugobjects: Fix conditions in fill_pool()

2024-10-17 15:21:22 +02:00

LICENSES

LICENSES/LGPL-2.1: Add LGPL-2.1-or-later as valid identifiers

2021-12-16 14:33:10 +01:00

mm: avoid leaving partial pfn mappings around in error case

2024-09-18 19:23:04 +02:00

net

netfilter: ctnetlink: compile ctnetlink_label_size with CONFIG_NF_CONNTRACK_EVENTS

2024-10-17 15:21:14 +02:00

rust

rust: kbuild: fix export of bss symbols

2024-09-12 11:10:21 +02:00

samples

bpf: Replace bpf_lpm_trie_key 0-length array with flexible array

2024-08-29 17:30:22 +02:00

scripts

scripts: kconfig: merge_config: config files: add a trailing newline

2024-09-18 19:23:03 +02:00

security

selinux,smack: don't bypass permissions check in inode_setsecctx hook

2024-10-17 15:21:15 +02:00

sound

ASoC: rt5682: Return devm_of_clk_add_hw_provider to transfer the error

2024-10-17 15:21:16 +02:00

tools

perf time-utils: Fix 32-bit nsec parsing

2024-10-17 15:21:01 +02:00

usr

usr/gen_init_cpio.c: remove unnecessary -1 values from int file

2022-10-03 14:21:44 -07:00

virt

KVM: Fix a data race on last_boosted_vcpu in kvm_vcpu_on_spin()

2024-06-27 13:46:21 +02:00

.clang-format

inet: ping: use hlist_nulls rcu iterator during lookup

2022-12-01 12:42:46 +01:00

.cocciconfig

…

.get_maintainer.ignore

get_maintainer: add Alan to .get_maintainer.ignore

2022-08-20 15:17:44 -07:00

.gitattributes

.gitattributes: use 'dts' diff driver for dts files

2019-12-04 19:44:11 -08:00

.gitignore

Remove *.orig pattern from .gitignore

2024-10-17 15:21:15 +02:00

.mailmap

Merge tag 'mm-hotfixes-stable-2022-12-10-1' of git://git.kernel.org/pub/scm/linux/kernel/git/akpm/mm

2022-12-10 17:10:52 -08:00

.rustfmt.toml

rust: add .rustfmt.toml

2022-09-28 09:02:20 +02:00

COPYING

COPYING: state that all contributions really are covered by this file

2020-02-10 13:32:20 -08:00

CREDITS

MAINTAINERS: Remove Michal Marek from Kbuild maintainers

2022-11-16 14:53:00 +09:00

Kbuild

Merge tag 'kbuild-v6.1' of git://git.kernel.org/pub/scm/linux/kernel/git/masahiroy/linux-kbuild

2022-10-10 12:00:45 -07:00

Kconfig

kbuild: ensure full rebuild when the compiler is updated

2020-05-12 13:28:33 +09:00

MAINTAINERS

MAINTAINERS: add leah to 6.1 MAINTAINERS file

2024-05-17 11:56:16 +02:00

Makefile

Linux 6.1.112

2024-09-30 16:23:56 +02:00

README

Drop all 00-INDEX files from Documentation/

2018-09-09 15:08:58 -06:00

README

Linux kernel
============

There are several guides for kernel developers and users. These guides can
be rendered in a number of formats, like HTML and PDF. Please read
Documentation/admin-guide/README.rst first.

In order to build the documentation, use ``make htmldocs`` or
``make pdfdocs``.  The formatted documentation can also be read online at:

    https://www.kernel.org/doc/html/latest/

There are various text files in the Documentation/ subdirectory,
several of them using the Restructured Text markup notation.

Please read the Documentation/process/changes.rst file, as it contains the
requirements for building and running the kernel, and information about
the problems which may result by upgrading your kernel.