> The following program shows a small bug in various Linux
> kernels (2.0.36, 2.2.6-ac3) and also on SunOS 4.x. It has to do
> with setuid root programs accessing an NFS mounted
> filesystem when the server maps root to user "nobody".
>
> The access() function incorrectly thinks after a while
> that the program has no access to a file inside a subdirectory.
> bypass: stat() before the access().
The behaviour is correct and is according to documentation. It is
because we look up the dentry using the real uid rather than the
effective uid. Your bypass should also have been fixed now in 2.2.7
and newer kernels.
Cheers,
Trond
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/