Re: [PATCH v2] overlayfs: caller_credentials option bypass creator_cred

From: Mark Salyzyn
Date: Mon Jun 18 2018 - 15:32:19 EST

Next message: kbuild test robot: "Re: [PATCH v4 03/10] PCI: Update xxx_pcie_ep_raise_irq() and pci_epc_raise_irq() signatures"
Previous message: Jason Gunthorpe: "Re: [PATCH 2/2] mm: set PG_dma_pinned on get_user_pages*()"
In reply to: Mark Salyzyn: "[PATCH v2] overlayfs: caller_credentials option bypass creator_cred"
Next in thread: Eric W. Biederman: "Re: [PATCH v2] overlayfs: caller_credentials option bypass creator_cred"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 06/18/2018 12:27 PM, Mark Salyzyn wrote:

All accesses to the lower filesystems reference the creator (mount)
context. This is a security issue as the user context does not
overlay the creator context.

<sigh> been typing overlay far too many times, muscle memory struck!

"overlap the creator context."

-- Mark

Next message: kbuild test robot: "Re: [PATCH v4 03/10] PCI: Update xxx_pcie_ep_raise_irq() and pci_epc_raise_irq() signatures"
Previous message: Jason Gunthorpe: "Re: [PATCH 2/2] mm: set PG_dma_pinned on get_user_pages*()"
In reply to: Mark Salyzyn: "[PATCH v2] overlayfs: caller_credentials option bypass creator_cred"
Next in thread: Eric W. Biederman: "Re: [PATCH v2] overlayfs: caller_credentials option bypass creator_cred"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]