Re: [PATCH] ovl: Fix info leak in ovl_lookup_temp()

From: Miklos Szeredi
Date: Wed Sep 21 2016 - 10:39:48 EST

Next message: Boris Brezillon: "Re: [PATCH v2 02/46] mtd: nand: Provide nand_cleanup() function to free NAND related resources"
Previous message: Jon Hunter: "Re: [RFC PATCH 2/3] PM / Domains: Add support for devices with multiple domains"
In reply to: Kees Cook: "Re: [PATCH] ovl: Fix info leak in ovl_lookup_temp()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, Sep 16, 2016 at 10:36 PM, Kees Cook <keescook@xxxxxxxxxxxx> wrote:
> On Fri, Sep 16, 2016 at 2:45 AM, Richard Weinberger <richard@xxxxxx> wrote:
>> The function uses the memory address of a struct dentry as unique id.
>> While the address-based directory entry is only visible to root
>> it is IMHO still worth fixing since the temporary name does not have
>> to be a kernel address. It can be any unique number. Replace it by an
>> atomic integer which is allowed to wrap around.
>>
>> Signed-off-by: Richard Weinberger <richard@xxxxxx>

Thanks, applied and pushed to #overlayfs-next.

Thanks,
Miklos

Next message: Boris Brezillon: "Re: [PATCH v2 02/46] mtd: nand: Provide nand_cleanup() function to free NAND related resources"
Previous message: Jon Hunter: "Re: [RFC PATCH 2/3] PM / Domains: Add support for devices with multiple domains"
In reply to: Kees Cook: "Re: [PATCH] ovl: Fix info leak in ovl_lookup_temp()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]