[PATCH 1/3] LSM: SafeSetID: fix userns bug in selftest

From: Micah Morton
Date: Wed Jun 15 2022 - 18:50:58 EST

Next message: Alvin Šipraga: "[PATCH net-next v3 0/5] net: dsa: realtek: rtl8365mb: improve handling of PHY modes"
Previous message: Christian Marangi: "[PATCH] mailmap: add entry for Christian Marangi"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Not sure how this bug got in here but its been there since the original
merge. I think I tested the code on a system that wouldn't let me
clone() with CLONE_NEWUSER flag set so had to comment out these
test_userns invocations.

Trying to map UID 0 inside the userns to UID 0 outside will never work,
even with CAP_SETUID. The code is supposed to test whether we can map
UID 0 in the userns to the UID of the parent process (the one with
CAP_SETUID that is writing the /proc/[pid]/uid_map file).

Signed-off-by: Micah Morton <mortonm@xxxxxxxxxxxx>
---
tools/testing/selftests/safesetid/safesetid-test.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/tools/testing/selftests/safesetid/safesetid-test.c b/tools/testing/selftests/safesetid/safesetid-test.c
index 4b809c93ba36..111dcbcc0491 100644
--- a/tools/testing/selftests/safesetid/safesetid-test.c
+++ b/tools/testing/selftests/safesetid/safesetid-test.c
@@ -194,7 +194,7 @@ static bool test_userns(bool expect_success)
printf("preparing file name string failed");
return false;
}
- success = write_file(map_file_name, "0 0 1", uid);
+ success = write_file(map_file_name, "0 %d 1", uid);
return success == expect_success;
}

--
2.36.1.476.g0c4daa206d-goog

Next message: Alvin Šipraga: "[PATCH net-next v3 0/5] net: dsa: realtek: rtl8365mb: improve handling of PHY modes"
Previous message: Christian Marangi: "[PATCH] mailmap: add entry for Christian Marangi"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]