CAP_DAC_OVERRIDE

From: Andries.Brouwer
Date: Mon Jun 21 2004 - 20:37:57 EST

Next message: Peter Chubb: "Re: [PATCH 0/2] kbuild updates"
Previous message: Maurizio Monge: "Bugs in PREEMPT with FIREWIRE+DEVMAPPER+REISER3"
Next in thread: Chris Wright: "Re: CAP_DAC_OVERRIDE"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

It seems that CAP_DAC_OVERRIDE is treated inconsistently.
In fs/namei.c:vfs_permission() it allows one to search in
a directory with zero permissions:

if (!(mask & MAY_EXEC) ||
(inode->i_mode & S_IXUGO) || S_ISDIR(inode->i_mode))
if (capable(CAP_DAC_OVERRIDE))
return 0;

while in fs/namei.c:exec_permission_lite() it does not.
Maybe the patch below would be appropriate.

Andries

--- /linux/2.6/linux-2.6.6/linux/fs/namei.c 2004-05-28 20:53
+++ ./namei.c 2004-06-22 03:33
@@ -316,7 +316,7 @@
{
umode_t mode = inode->i_mode;

- if ((inode->i_op && inode->i_op->permission))
+ if (inode->i_op && inode->i_op->permission)
return -EAGAIN;

if (current->fsuid == inode->i_uid)
@@ -330,6 +330,9 @@
if ((inode->i_mode & S_IXUGO) && capable(CAP_DAC_OVERRIDE))
goto ok;

+ if (S_ISDIR(inode->i_mode) && capable(CAP_DAC_OVERRIDE))
+ goto ok;
+
if (S_ISDIR(inode->i_mode) && capable(CAP_DAC_READ_SEARCH))
goto ok;

[not compiled, not tested, whitespace damaged]
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Peter Chubb: "Re: [PATCH 0/2] kbuild updates"
Previous message: Maurizio Monge: "Bugs in PREEMPT with FIREWIRE+DEVMAPPER+REISER3"
Next in thread: Chris Wright: "Re: CAP_DAC_OVERRIDE"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]