Re: [PATCH] tmpfs: clear S_ISGID when setting posix ACLs

From: Al Viro
Date: Tue Jan 10 2017 - 03:12:14 EST

Next message: Chanwoo Choi: "Re: [PATCH v2 0/2] phy: Replace the deprecated extcon API"
Previous message: Yijing Wang: "[PATCH] block: Don't register a registered bdi device"
In reply to: Jan Kara: "Re: [PATCH] tmpfs: clear S_ISGID when setting posix ACLs"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, Jan 10, 2017 at 09:03:01AM +0100, Jan Kara wrote:
> On Mon 09-01-17 09:34:48, Gu Zheng wrote:
> > This change was missed the tmpfs modification in In CVE-2016-7097
> > commit 073931017b49 ("posix_acl: Clear SGID bit when setting
> > file permissions")
> > It can test by xfstest generic/375, which failed to clear
> > setgid bit in the following test case on tmpfs:
> >
> > touch $testfile
> > chown 100:100 $testfile
> > chmod 2755 $testfile
> > _runas -u 100 -g 101 -- setfacl -m u::rwx,g::rwx,o::rwx $testfile
> >
> > Signed-off-by: Gu Zheng <guzheng1@xxxxxxxxxx>
>
> Thanks. The patch looks good. You can add:
>
> Reviewed-by: Jan Kara <jack@xxxxxxx>
>
> Al, will you please merge it? Thanks!

Already applied, actually...

Next message: Chanwoo Choi: "Re: [PATCH v2 0/2] phy: Replace the deprecated extcon API"
Previous message: Yijing Wang: "[PATCH] block: Don't register a registered bdi device"
In reply to: Jan Kara: "Re: [PATCH] tmpfs: clear S_ISGID when setting posix ACLs"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]