diff options
| author | Mimi Zohar <zohar@linux.vnet.ibm.com> | 2017-01-17 06:45:41 -0500 |
|---|---|---|
| committer | Mimi Zohar <zohar@linux.vnet.ibm.com> | 2017-01-27 14:16:02 -0500 |
| commit | bc15ed663e7e53ee4dc3e60f8d09c93a0528c694 (patch) | |
| tree | 7ab298e6fac6256585436cd3f78b8b1fa36daa02 /security/integrity/ima/ima.h | |
| parent | 710584b9daefe25a2b5dc2c6c10dbb00e1b3b451 (diff) | |
| download | op-kernel-dev-bc15ed663e7e53ee4dc3e60f8d09c93a0528c694.zip op-kernel-dev-bc15ed663e7e53ee4dc3e60f8d09c93a0528c694.tar.gz | |
ima: fix ima_d_path() possible race with rename
On failure to return a pathname from ima_d_path(), a pointer to
dname is returned, which is subsequently used in the IMA measurement
list, the IMA audit records, and other audit logging. Saving the
pointer to dname for later use has the potential to race with rename.
Intead of returning a pointer to dname on failure, this patch returns
a pointer to a copy of the filename.
Reported-by: Al Viro <viro@zeniv.linux.org.uk>
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
Cc: stable@vger.kernel.org
Diffstat (limited to 'security/integrity/ima/ima.h')
| -rw-r--r-- | security/integrity/ima/ima.h | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/security/integrity/ima/ima.h b/security/integrity/ima/ima.h index 5e6180a..b563fbd 100644 --- a/security/integrity/ima/ima.h +++ b/security/integrity/ima/ima.h @@ -204,7 +204,7 @@ int ima_store_template(struct ima_template_entry *entry, int violation, struct inode *inode, const unsigned char *filename, int pcr); void ima_free_template_entry(struct ima_template_entry *entry); -const char *ima_d_path(const struct path *path, char **pathbuf); +const char *ima_d_path(const struct path *path, char **pathbuf, char *filename); /* IMA policy related functions */ int ima_match_policy(struct inode *inode, enum ima_hooks func, int mask, |
