userns: Don't let unprivileged users trick privileged users into setting the id_map - linux

diff options

author	Eric W. Biederman <ebiederm@xmission.com>	2013-04-14 22:47:02 +0200
committer	Andy Lutomirski <luto@amacapital.net>	2013-04-15 03:11:14 +0200
commit	6708075f104c3c9b04b23336bb0366ca30c3931b (patch)
tree	4e99cf865cea3d809bfadda9eec45dcf29454bee /kernel/watchdog.c
parent	Merge branch 'x86-urgent-for-linus' of git://git.kernel.org/pub/scm/linux/ker... (diff)
download	linux-6708075f104c3c9b04b23336bb0366ca30c3931b.tar.xz linux-6708075f104c3c9b04b23336bb0366ca30c3931b.zip

userns: Don't let unprivileged users trick privileged users into setting the id_map

When we require privilege for setting /proc/<pid>/uid_map or /proc/<pid>/gid_map no longer allow an unprivileged user to open the file and pass it to a privileged program to write to the file. Instead when privilege is required require both the opener and the writer to have the necessary capabilities. I have tested this code and verified that setting /proc/<pid>/uid_map fails when an unprivileged user opens the file and a privielged user attempts to set the mapping, that unprivileged users can still map their own id, and that a privileged users can still setup an arbitrary mapping. Reported-by: Andy Lutomirski <luto@amacapital.net> Signed-off-by: "Eric W. Biederman" <ebiederm@xmission.com> Signed-off-by: Andy Lutomirski <luto@amacapital.net>

Diffstat (limited to 'kernel/watchdog.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: