cred: Reject inodes with invalid ids in set_create_file_as()

Seth Forshee · ebiederm · commit 5f65e5ca2861 · 2016-06-30T18:05:09.000-05:00
Using INVALID_[UG]ID for the LSM file creation context doesn't
make sense, so return an error if the inode passed to
set_create_file_as() has an invalid id.

Signed-off-by: Seth Forshee &lt;seth.forshee@canonical.com&gt;
Acked-by: Serge Hallyn &lt;serge.hallyn@canonical.com&gt;
Signed-off-by: Eric W. Biederman &lt;ebiederm@xmission.com&gt;
diff --git a/kernel/cred.c b/kernel/cred.c
@@ -689,6 +689,8 @@ EXPORT_SYMBOL(set_security_override_from_ctx);
  */
 int set_create_files_as(struct cred *new, struct inode *inode)
 {
+	if (!uid_valid(inode->i_uid) || !gid_valid(inode->i_gid))
+		return -EINVAL;
 	new->fsuid = inode->i_uid;
 	new->fsgid = inode->i_gid;
 	return security_kernel_create_files_as(new, inode);

Original file line number	Diff line number	Diff line change
`@@ -689,6 +689,8 @@ EXPORT_SYMBOL(set_security_override_from_ctx);`
`689`	`689`	`*/`
`690`	`690`	`int set_create_files_as(struct cred new, struct inode inode)`
`691`	`691`	`{`
	`692`	`+ if (!uid_valid(inode->i_uid) \|\| !gid_valid(inode->i_gid))`
	`693`	`+ return -EINVAL;`
`692`	`694`	`new->fsuid = inode->i_uid;`
`693`	`695`	`new->fsgid = inode->i_gid;`
`694`	`696`	`return security_kernel_create_files_as(new, inode);`