kernel/linux.git/include/linux/cred.h, branch v6.19.11Linux kernel stable tree (mirror)https://git.radix-linux.su/kernel/linux.git/atom?h=v6.19.112025-11-04T11:36:57+00:00cred: add prepare credential guard2025-11-04T11:36:57+00:00Christian Braunerbrauner@kernel.org2025-11-03T14:57:27+00:00urn:sha1:c8ad3098e1272444b6c75910d6196a36f5c8bc17
A lot of code uses the following pattern:
* prepare new credentials
* modify them for their use-case
* drop them
Support that easier with the new guard infrastructure.
Link: https://patch.msgid.link/20251103-work-creds-guards-prepare_creds-v1-1-b447b82f2c9b@kernel.org
Signed-off-by: Christian Brauner <brauner@kernel.org>
cred: add scoped_with_creds() guards2025-11-04T11:36:29+00:00Christian Braunerbrauner@kernel.org2025-11-03T11:26:49+00:00urn:sha1:019e52e8d324d568e71730946beb11e7b275ff08
and implement scoped_with_kernel_creds() on top of it.
Link: https://patch.msgid.link/20251103-work-creds-guards-simple-v1-1-a3e156839e7f@kernel.org
Reviewed-by: Amir Goldstein <amir73il@gmail.com>
Signed-off-by: Christian Brauner <brauner@kernel.org>
cred: add scoped_with_kernel_creds()2025-11-04T11:36:07+00:00Christian Braunerbrauner@kernel.org2025-11-02T23:12:43+00:00urn:sha1:ae40e6c65791f47c76cc14d0cce2707fe6053f72
Add a new cleanup class for override creds. We can make use of this in a
bunch of places going forward.
Based on this scoped_with_kernel_creds() that can be used to temporarily
assume kernel credentials for specific tasks such as firmware loading,
or coredump socket connections. At no point will the caller interact
with the kernel credentials directly.
Link: https://patch.msgid.link/20251103-work-creds-init_cred-v1-4-cb3ec8711a6a@kernel.org
Reviewed-by: Jens Axboe <axboe@kernel.dk>
Signed-off-by: Christian Brauner <brauner@kernel.org>
cred: add kernel_cred() helper2025-11-04T11:35:52+00:00Christian Braunerbrauner@kernel.org2025-11-02T23:12:41+00:00urn:sha1:4c7ceeb62d3330b6fb2b549ae833a92c0f481f3e
Access kernel creds based off of init_task. This will let us avoid any
direct access to init_cred.
Link: https://patch.msgid.link/20251103-work-creds-init_cred-v1-2-cb3ec8711a6a@kernel.org
Reviewed-by: Jens Axboe <axboe@kernel.dk>
Signed-off-by: Christian Brauner <brauner@kernel.org>
copy_process: pass clone_flags as u64 across calltree2025-09-01T13:31:34+00:00Simon Schusterschuster.simon@siemens-energy.com2025-09-01T13:09:51+00:00urn:sha1:edd3cb05c00a040dc72bed20b14b5ba865188bce
With the introduction of clone3 in commit 7f192e3cd316 ("fork: add
clone3") the effective bit width of clone_flags on all architectures was
increased from 32-bit to 64-bit, with a new type of u64 for the flags.
However, for most consumers of clone_flags the interface was not
changed from the previous type of unsigned long.
While this works fine as long as none of the new 64-bit flag bits
(CLONE_CLEAR_SIGHAND and CLONE_INTO_CGROUP) are evaluated, this is still
undesirable in terms of the principle of least surprise.
Thus, this commit fixes all relevant interfaces of callees to
sys_clone3/copy_process (excluding the architecture-specific
copy_thread) to consistently pass clone_flags as u64, so that
no truncation to 32-bit integers occurs on 32-bit architectures.
Signed-off-by: Simon Schuster <schuster.simon@siemens-energy.com>
Link: https://lore.kernel.org/20250901-nios2-implement-clone3-v2-2-53fcf5577d57@siemens-energy.com
Acked-by: David Hildenbrand <david@redhat.com>
Reviewed-by: Lorenzo Stoakes <lorenzo.stoakes@oracle.com>
Reviewed-by: Arnd Bergmann <arnd@arndb.de>
Signed-off-by: Christian Brauner <brauner@kernel.org>
cred: add auto cleanup method2025-07-07T10:24:50+00:00Christian Braunerbrauner@kernel.org2025-06-12T13:25:33+00:00urn:sha1:377d7860c960ac8e672881bc50353d867e2f94a4
Add a simple auto cleanup method for struct cred.
Link: https://lore.kernel.org/20250612-work-coredump-massage-v1-19-315c0c34ba94@kernel.org
Signed-off-by: Christian Brauner <brauner@kernel.org>
cred: Fix RCU warnings in override/revert_creds2025-03-02T11:57:37+00:00Herbert Xuherbert@gondor.apana.org.au2025-03-02T07:18:24+00:00urn:sha1:e04918dc594669068f5d59d567d08db531167188
Fix RCU warnings in override_creds and revert_creds by turning
the RCU pointer into a normal pointer using rcu_replace_pointer.
These warnings were previously private to the cred code, but due
to the move into the header file they are now polluting unrelated
subsystems.
Fixes: 49dffdfde462 ("cred: Add a light version of override/revert_creds()")
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Link: https://lore.kernel.org/r/Z8QGQGW0IaSklKG7@gondor.apana.org.au
Signed-off-by: Christian Brauner <brauner@kernel.org>
cred: fold get_new_cred_many() into get_cred_many()2024-12-02T10:25:15+00:00Christian Braunerbrauner@kernel.org2024-11-26T13:22:16+00:00urn:sha1:a6babf4cbeaaa1c97a205382cdc958571f668ea8
There's no need for this to be a separate helper.
Link: https://lore.kernel.org/r/20241126-zaunpfahl-wovon-c3979b990a63@brauner
Reviewed-by: Jens Axboe <axboe@kernel.dk>
Signed-off-by: Christian Brauner <brauner@kernel.org>
cred: remove unused get_new_cred()2024-12-02T10:25:14+00:00Christian Braunerbrauner@kernel.org2024-11-25T14:10:25+00:00urn:sha1:6efbb80490a545cfd9f87ebd9225879d8cdbed93
This helper is not used anymore so remove it.
Link: https://lore.kernel.org/r/20241125-work-cred-v2-29-68b9d38bb5b2@kernel.org
Reviewed-by: Jeff Layton <jlayton@kernel.org>
Reviewed-by: Jens Axboe <axboe@kernel.dk>
Signed-off-by: Christian Brauner <brauner@kernel.org>
tree-wide: s/revert_creds_light()/revert_creds()/g2024-12-02T10:25:09+00:00Christian Braunerbrauner@kernel.org2024-11-25T14:10:02+00:00urn:sha1:51c0bcf0973a3836adfc46f30f876f412478e376
Rename all calls to revert_creds_light() back to revert_creds().
Link: https://lore.kernel.org/r/20241125-work-cred-v2-6-68b9d38bb5b2@kernel.org
Reviewed-by: Jeff Layton <jlayton@kernel.org>
Reviewed-by: Jens Axboe <axboe@kernel.dk>
Signed-off-by: Christian Brauner <brauner@kernel.org>