diff options
author | Eric Paris <eparis@redhat.com> | 2009-05-11 13:59:22 -0400 |
---|---|---|
committer | James Morris <jmorris@namei.org> | 2009-05-12 11:06:08 +1000 |
commit | 1a62e958fa4aaeeb752311b4f5e16b2a86737b23 (patch) | |
tree | 53d983ebdde45e00ad2079f8035792450b046d56 | |
parent | f06dd16a03f6f7f72fab4db03be36e28c28c6fd6 (diff) | |
download | op-kernel-dev-1a62e958fa4aaeeb752311b4f5e16b2a86737b23.zip op-kernel-dev-1a62e958fa4aaeeb752311b4f5e16b2a86737b23.tar.gz |
IMA: open all files O_LARGEFILE
If IMA tried to measure a file which was larger than 4G dentry_open would fail
with -EOVERFLOW since IMA wasn't passing O_LARGEFILE. This patch passes
O_LARGEFILE to all IMA opens to avoid this problem.
Signed-off-by: Eric Paris <eparis@redhat.com>
Acked-by: Mimi Zohar <zohar@us.ibm.com>
Signed-off-by: James Morris <jmorris@namei.org>
-rw-r--r-- | security/integrity/ima/ima_main.c | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/security/integrity/ima/ima_main.c b/security/integrity/ima/ima_main.c index 1987424..c4228c0 100644 --- a/security/integrity/ima/ima_main.c +++ b/security/integrity/ima/ima_main.c @@ -180,7 +180,8 @@ int ima_path_check(struct path *path, int mask) struct dentry *dentry = dget(path->dentry); struct vfsmount *mnt = mntget(path->mnt); - file = dentry_open(dentry, mnt, O_RDONLY, current_cred()); + file = dentry_open(dentry, mnt, O_RDONLY | O_LARGEFILE, + current_cred()); if (IS_ERR(file)) { pr_info("%s dentry_open failed\n", dentry->d_name.name); rc = PTR_ERR(file); |