Re: [PATCH] ovl: Fix info leak in ovl_lookup_temp()

From: Miklos Szeredi
Date: Wed Sep 21 2016 - 10:39:48 EST

On Fri, Sep 16, 2016 at 10:36 PM, Kees Cook <keescook@xxxxxxxxxxxx> wrote:
> On Fri, Sep 16, 2016 at 2:45 AM, Richard Weinberger <richard@xxxxxx> wrote:
>> The function uses the memory address of a struct dentry as unique id.
>> While the address-based directory entry is only visible to root
>> it is IMHO still worth fixing since the temporary name does not have
>> to be a kernel address. It can be any unique number. Replace it by an
>> atomic integer which is allowed to wrap around.
>> Signed-off-by: Richard Weinberger <richard@xxxxxx>

Thanks, applied and pushed to #overlayfs-next.