[PATCH 1/5] compat_ioctl call seems to miss a security hook

From: Michael S. Tsirkin
Date: Tue Jan 18 2005 - 05:46:41 EST

Next message: Michael S. Tsirkin: "[PATCH 2/5] socket ioctl fix (from Andi)"
Previous message: Michael S. Tsirkin: "Re: [PATCH] Some fixes for compat ioctl"
In reply to: Michael S. Tsirkin: "Re: [PATCH] Some fixes for compat ioctl"
Next in thread: Chris Wright: "Re: [PATCH 1/5] compat_ioctl call seems to miss a security hook"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Attached patch is against 2.6.11-rc1-bk5

Signed-off-by: Michael S. Tsirkin <mst@xxxxxxxxxxxxxx>

Add a missing security hook for compatibility ioctl.

diff -rup linux-2.6.10-orig/fs/compat.c linux-2.6.10-ioctl-sym/fs/compat.c
--- linux-2.6.10-orig/fs/compat.c 2005-01-18 10:58:33.609880024 +0200
+++ linux-2.6.10-ioctl-sym/fs/compat.c 2005-01-18 10:54:26.289478440 +0200
@@ -437,6 +437,11 @@ asmlinkage long compat_sys_ioctl(unsigne
if (!filp)
goto out;

+ /* RED-PEN how should LSM module know it's handling 32bit? */
+ error = security_file_ioctl(filp, cmd, arg);
+ if (error)
+ goto out_fput;
+
if (filp->f_op && filp->f_op->compat_ioctl) {
error = filp->f_op->compat_ioctl(filp, cmd, arg);
if (error != -ENOIOCTLCMD)

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Michael S. Tsirkin: "[PATCH 2/5] socket ioctl fix (from Andi)"
Previous message: Michael S. Tsirkin: "Re: [PATCH] Some fixes for compat ioctl"
In reply to: Michael S. Tsirkin: "Re: [PATCH] Some fixes for compat ioctl"
Next in thread: Chris Wright: "Re: [PATCH 1/5] compat_ioctl call seems to miss a security hook"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]