[PATCH 1/1] fs: xattr: Don't display attributes without read access

From: Fabian Frederick
Date: Sun Feb 16 2014 - 15:30:30 EST

Next message: Rafael J. Wysocki: "Re: [PATCH] acpi: Remove Kconfig symbol ACPI_PROCFS"
Previous message: Paul Bolle: "Re: [PATCH] sh: remove SH_ALPHA_BOARD"
Next in thread: Andrew Morton: "Re: [PATCH 1/1] fs: xattr: Don't display attributes without read access"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Any user can display extented attribute names without read
access.

eg: attr -l <filename>

This patch checks inode_permission in listxattr common
function before executing vfs_listxattr.

Signed-off-by: Fabian Frederick <fabf@xxxxxxxxx>
---
fs/xattr.c | 4 ++++
1 file changed, 4 insertions(+)

diff --git a/fs/xattr.c b/fs/xattr.c
index 3377dff..d26b280 100644
--- a/fs/xattr.c
+++ b/fs/xattr.c
@@ -543,6 +543,10 @@ listxattr(struct dentry *d, char __user *list, size_t size)
char *klist = NULL;
char *vlist = NULL; /* If non-NULL, we used vmalloc() */

+ error = inode_permission(d->d_inode, MAY_READ);
+ if (error)
+ return error;
+
if (size) {
if (size > XATTR_LIST_MAX)
size = XATTR_LIST_MAX;
--
1.8.1.4

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Rafael J. Wysocki: "Re: [PATCH] acpi: Remove Kconfig symbol ACPI_PROCFS"
Previous message: Paul Bolle: "Re: [PATCH] sh: remove SH_ALPHA_BOARD"
Next in thread: Andrew Morton: "Re: [PATCH 1/1] fs: xattr: Don't display attributes without read access"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]