talos-op-linux/fs, branch v4.4.29Talos™ II Linux sources for OpenPOWERhttps://git.raptorcs.com/git/talos-op-linux/atom?h=v4.4.292016-10-31T10:13:58+00:00posix_acl: Clear SGID bit when setting file permissions2016-10-31T10:13:58+00:00Jan Karajack@suse.cz2016-09-19T15:39:09+00:00urn:sha1:57c9cfdb61ea270936fab76da99a742c6ef0b86f
commit 073931017b49d9458aa351605b43a7e34598caef upstream.
When file permissions are modified via chmod(2) and the user is not in
the owning group or capable of CAP_FSETID, the setgid bit is cleared in
inode_change_ok(). Setting a POSIX ACL via setxattr(2) sets the file
permissions as well as the new ACL, but doesn't clear the setgid bit in
a similar way; this allows to bypass the check in chmod(2). Fix that.
References: CVE-2016-7097
Reviewed-by: Christoph Hellwig <hch@lst.de>
Reviewed-by: Jeff Layton <jlayton@redhat.com>
Signed-off-by: Jan Kara <jack@suse.cz>
Signed-off-by: Andreas Gruenbacher <agruenba@redhat.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
ubifs: Fix xattr_names length in exit paths2016-10-28T07:01:35+00:00Richard Weinbergerrichard@nod.at2016-09-20T08:08:30+00:00urn:sha1:d98a0641c0d267ec7b20381885e92d353e5bfc48
commit 843741c5778398ea67055067f4cc65ae6c80ca0e upstream.
When the operation fails we also have to undo the changes
we made to ->xattr_names. Otherwise listxattr() will report
wrong lengths.
Signed-off-by: Richard Weinberger <richard@nod.at>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
jbd2: fix incorrect unlock on j_list_lock2016-10-28T07:01:35+00:00Taesoo Kimtsgatesv@gmail.com2016-10-13T03:19:18+00:00urn:sha1:795422ec43a7888a997c39020a1874258cce79b9
commit 559cce698eaf4ccecb2213b2519ea3a0413e5155 upstream.
When 'jh->b_transaction == transaction' (asserted by below)
J_ASSERT_JH(jh, (jh->b_transaction == transaction || ...
'journal->j_list_lock' will be incorrectly unlocked, since
the the lock is aquired only at the end of if / else-if
statements (missing the else case).
Signed-off-by: Taesoo Kim <tsgatesv@gmail.com>
Signed-off-by: Theodore Ts'o <tytso@mit.edu>
Reviewed-by: Andreas Dilger <adilger@dilger.ca>
Fixes: 6e4862a5bb9d12be87e4ea5d9a60836ebed71d28
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
ext4: do not advertise encryption support when disabled2016-10-28T07:01:35+00:00Eric Biggersebiggers@google.com2016-10-13T03:24:51+00:00urn:sha1:80dbd616eccee0d52ac77d2a2fbd59145a32e2d7
commit c4704a4fbe834eee4109ca064131d440941f6235 upstream.
The sysfs file /sys/fs/ext4/features/encryption was present on kernels
compiled with CONFIG_EXT4_FS_ENCRYPTION=n. This was misleading because
such kernels do not actually support ext4 encryption. Therefore, only
provide this file on kernels compiled with CONFIG_EXT4_FS_ENCRYPTION=y.
Note: since the ext4 feature files are all hardcoded to have a contents
of "supported", it really is the presence or absence of the file that is
significant, not the contents (and this change reflects that).
Signed-off-by: Eric Biggers <ebiggers@google.com>
Signed-off-by: Theodore Ts'o <tytso@mit.edu>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
ceph: fix error handling in ceph_read_iter2016-10-28T07:01:35+00:00Nikolay Borisovkernel@kyup.com2016-10-10T12:38:18+00:00urn:sha1:e382e130d45a9f95c8da77bc8bca1464ae9c6cae
commit 0d7718f666be181fda1ba2d08f137d87c1419347 upstream.
In case __ceph_do_getattr returns an error and the retry_op in
ceph_read_iter is not READ_INLINE, then it's possible to invoke
__free_page on a page which is NULL, this naturally leads to a crash.
This can happen when, for example, a process waiting on a MDS reply
receives sigterm.
Fix this by explicitly checking whether the page is set or not.
Signed-off-by: Nikolay Borisov <kernel@kyup.com>
Reviewed-by: Yan, Zheng <zyan@redhat.com>
Signed-off-by: Ilya Dryomov <idryomov@gmail.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
isofs: Do not return EACCES for unknown filesystems2016-10-28T07:01:34+00:00Jan Karajack@suse.cz2016-10-04T11:44:06+00:00urn:sha1:74005674c821250b16fd2ed291588fffbdfee262
commit a2ed0b391dd9c3ef1d64c7c3e370f4a5ffcd324a upstream.
When isofs_mount() is called to mount a device read-write, it returns
EACCES even before it checks that the device actually contains an isofs
filesystem. This may confuse mount(8) which then tries to mount all
subsequent filesystem types in read-only mode.
Fix the problem by returning EACCES only once we verify that the device
indeed contains an iso9660 filesystem.
Fixes: 17b7f7cf58926844e1dd40f5eb5348d481deca6a
Reported-by: Kent Overstreet <kent.overstreet@gmail.com>
Reported-by: Karel Zak <kzak@redhat.com>
Signed-off-by: Jan Kara <jack@suse.cz>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Fix regression which breaks DFS mounting2016-10-28T07:01:33+00:00Sachin Prabhusprabhu@redhat.com2016-09-06T12:22:34+00:00urn:sha1:e6222f00a3aebb2d03302c09aa58b52d87d6f784
commit d171356ff11ab1825e456dfb979755e01b3c54a1 upstream.
Patch a6b5058 results in -EREMOTE returned by is_path_accessible() in
cifs_mount() to be ignored which breaks DFS mounting.
Signed-off-by: Sachin Prabhu <sprabhu@redhat.com>
Reviewed-by: Aurelien Aptel <aaptel@suse.com>
Signed-off-by: Steve French <smfrench@gmail.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Cleanup missing frees on some ioctls2016-10-28T07:01:33+00:00Steve Frenchsmfrench@gmail.com2016-09-29T09:20:23+00:00urn:sha1:d8f4633d765f1c9b6e11d4f56e0567f5553fd901
commit 24df1483c272c99ed88b0cba135d0e1dfdee3930 upstream.
Cleanup some missing mem frees on some cifs ioctls, and
clarify others to make more obvious that no data is returned.
Signed-off-by: Steve French <smfrench@gmail.com>
Acked-by: Sachin Prabhu <sprabhu@redhat.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Do not send SMB3 SET_INFO request if nothing is changing2016-10-28T07:01:33+00:00Steve Frenchsmfrench@gmail.com2016-09-26T19:23:08+00:00urn:sha1:588e5ed80f8ca9f709613d1dbd127cc87487e548
commit 18dd8e1a65ddae2351d0f0d6dd4a334f441fc5fa upstream.
[CIFS] We had cases where we sent a SMB2/SMB3 setinfo request with all
timestamp (and DOS attribute) fields marked as 0 (ie do not change)
e.g. on chmod or chown.
Signed-off-by: Steve French <steve.french@primarydata.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
SMB3: GUIDs should be constructed as random but valid uuids2016-10-28T07:01:32+00:00Steve Frenchsmfrench@gmail.com2016-09-22T05:39:34+00:00urn:sha1:a8c240c8d22dc00f15cfaf21f9e176521b4acfcd
commit fa70b87cc6641978b20e12cc5d517e9ffc0086d4 upstream.
GUIDs although random, and 16 bytes, need to be generated as
proper uuids.
Signed-off-by: Steve French <steve.french@primarydata.com>
Reviewed-by: Aurelien Aptel <aaptel@suse.com>
Reported-by: David Goebels <davidgoe@microsoft.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>