linux

History

Tyler Hicks ae6e84596e eCryptfs: Copy lower inode attrs before dentry instantiation Copies the lower inode attributes to the upper inode before passing the upper inode to d_instantiate(). This is important for security_d_instantiate(). The problem was discovered by a user seeing SELinux denials like so: type=AVC msg=audit(1236812817.898:47): avc: denied { 0x100000 } for pid=3584 comm="httpd" name="testdir" dev=ecryptfs ino=943872 scontext=root:system_r:httpd_t:s0 tcontext=root:object_r:httpd_sys_content_t:s0 tclass=file Notice target class is file while testdir is really a directory, confusing the permission translation (0x100000) due to the wrong i_mode. Signed-off-by: Tyler Hicks <tyhicks@linux.vnet.ibm.com>		2009-04-22 03:54:12 -05:00
..
crypto.c	eCryptfs: NULL crypt_stat dereference during lookup	2009-03-22 11:20:43 -07:00
debug.c	eCryptfs: update comment and debug statement	2007-10-16 09:43:11 -07:00
dentry.c	constify dentry_operations: ecryptfs	2009-03-27 14:44:01 -04:00
ecryptfs_kernel.h	constify dentry_operations: ecryptfs	2009-03-27 14:44:01 -04:00
file.c	eCryptfs: Fix data types (int/size_t)	2009-01-06 15:59:22 -08:00
inode.c	eCryptfs: NULL crypt_stat dereference during lookup	2009-03-22 11:20:43 -07:00
Kconfig	fs/Kconfig: move ecryptfs out	2009-01-22 13:15:56 +03:00
keystore.c	ecryptfs: use kzfree()	2009-04-01 08:59:23 -07:00
kthread.c	CRED: Pass credentials through dentry_open()	2008-11-14 10:39:22 +11:00
main.c	eCryptfs: Copy lower inode attrs before dentry instantiation	2009-04-22 03:54:12 -05:00
Makefile	eCryptfs: remove netlink transport	2008-10-16 11:21:39 -07:00
messaging.c	ecryptfs: use kzfree()	2009-04-01 08:59:23 -07:00
miscdev.c	ecryptfs: use memdup_user()	2009-04-20 23:02:51 -04:00
mmap.c	fs: symlink write_begin allocation context fix	2009-01-04 13:33:20 -08:00
read_write.c	eCryptfs: remove unnecessary page decrypt call	2008-06-06 11:29:09 -07:00
super.c	ecryptfs: remove debug as mount option, and warn if set via modprobe	2008-02-06 10:41:12 -08:00