提交 df2c2afb 编写于 作者: M Mimi Zohar 提交者: James Morris

ima: eliminate passing d_name.name to process_measurement()

Passing a pointer to the dentry name, as a parameter to
process_measurement(), causes a race condition with rename() and
is unnecessary, as the dentry name is already accessible via the
file parameter.

In the normal case, we use the full pathname as provided by
brpm->filename, bprm->interp, or ima_d_path().  Only on ima_d_path()
failure, do we fallback to using the d_name.name, which points
either to external memory or d_iname.
Reported-by: NAl Viro <viro@ZenIV.linux.org.uk>
Signed-off-by: NMimi Zohar <zohar@linux.vnet.ibm.com>
Signed-off-by: NJames Morris <james.l.morris@oracle.com>
上级 958d2c2f
...@@ -189,11 +189,9 @@ static int process_measurement(struct file *file, const char *filename, ...@@ -189,11 +189,9 @@ static int process_measurement(struct file *file, const char *filename,
if (rc != 0) if (rc != 0)
goto out_digsig; goto out_digsig;
if (function != BPRM_CHECK) pathname = !filename ? ima_d_path(&file->f_path, &pathbuf) : filename;
pathname = ima_d_path(&file->f_path, &pathbuf);
if (!pathname) if (!pathname)
pathname = filename; pathname = (const char *)file->f_dentry->d_name.name;
if (action & IMA_MEASURE) if (action & IMA_MEASURE)
ima_store_measurement(iint, file, pathname); ima_store_measurement(iint, file, pathname);
...@@ -226,8 +224,7 @@ static int process_measurement(struct file *file, const char *filename, ...@@ -226,8 +224,7 @@ static int process_measurement(struct file *file, const char *filename,
int ima_file_mmap(struct file *file, unsigned long prot) int ima_file_mmap(struct file *file, unsigned long prot)
{ {
if (file && (prot & PROT_EXEC)) if (file && (prot & PROT_EXEC))
return process_measurement(file, file->f_dentry->d_name.name, return process_measurement(file, NULL, MAY_EXEC, MMAP_CHECK);
MAY_EXEC, MMAP_CHECK);
return 0; return 0;
} }
...@@ -265,7 +262,7 @@ int ima_bprm_check(struct linux_binprm *bprm) ...@@ -265,7 +262,7 @@ int ima_bprm_check(struct linux_binprm *bprm)
int ima_file_check(struct file *file, int mask) int ima_file_check(struct file *file, int mask)
{ {
ima_rdwr_violation_check(file); ima_rdwr_violation_check(file);
return process_measurement(file, file->f_dentry->d_name.name, return process_measurement(file, NULL,
mask & (MAY_READ | MAY_WRITE | MAY_EXEC), mask & (MAY_READ | MAY_WRITE | MAY_EXEC),
FILE_CHECK); FILE_CHECK);
} }
...@@ -290,8 +287,7 @@ int ima_module_check(struct file *file) ...@@ -290,8 +287,7 @@ int ima_module_check(struct file *file)
#endif #endif
return 0; /* We rely on module signature checking */ return 0; /* We rely on module signature checking */
} }
return process_measurement(file, file->f_dentry->d_name.name, return process_measurement(file, NULL, MAY_EXEC, MODULE_CHECK);
MAY_EXEC, MODULE_CHECK);
} }
static int __init init_ima(void) static int __init init_ima(void)
......
Markdown is supported
0% .
You are about to add 0 people to the discussion. Proceed with caution.
先完成此消息的编辑!
想要评论请 注册