diff options
author | Jann Horn <jannh@google.com> | 2019-04-10 19:55:58 +0300 |
---|---|---|
committer | Micah Morton <mortonm@chromium.org> | 2019-07-15 18:07:19 +0300 |
commit | 71a98971b932174e121bc19056475c601598132f (patch) | |
tree | fb3a1ee4a8b7cdec81b2f0671524a25af4b5b016 /fs/ext2/xattr.h | |
parent | 78ae7df96d647627ceae0b65eea9e4f83a0a4b66 (diff) | |
download | linux-71a98971b932174e121bc19056475c601598132f.tar.xz |
LSM: SafeSetID: fix userns handling in securityfs
Looking at current_cred() in write handlers is bad form, stop doing that.
Also, let's just require that the write is coming from the initial user
namespace. Especially SAFESETID_WHITELIST_FLUSH requires privilege over all
namespaces, and SAFESETID_WHITELIST_ADD should probably require it as well.
Signed-off-by: Jann Horn <jannh@google.com>
Signed-off-by: Micah Morton <mortonm@chromium.org>
Diffstat (limited to 'fs/ext2/xattr.h')
0 files changed, 0 insertions, 0 deletions