Commit d310760c authored by John Johansen's avatar John Johansen Committed by Jiri Slaby

apparmor: internal paths should be treated as disconnected

commit bd35db8b upstream.

Internal mounts are not mounted anywhere and as such should be treated
as disconnected paths.
Signed-off-by: default avatarJohn Johansen <john.johansen@canonical.com>
Acked-by: default avatarSeth Arnold <seth.arnold@canonical.com>
Signed-off-by: default avatarJiri Slaby <jslaby@suse.cz>
parent 393776e0
...@@ -25,7 +25,6 @@ ...@@ -25,7 +25,6 @@
#include "include/path.h" #include "include/path.h"
#include "include/policy.h" #include "include/policy.h"
/* modified from dcache.c */ /* modified from dcache.c */
static int prepend(char **buffer, int buflen, const char *str, int namelen) static int prepend(char **buffer, int buflen, const char *str, int namelen)
{ {
...@@ -39,6 +38,38 @@ static int prepend(char **buffer, int buflen, const char *str, int namelen) ...@@ -39,6 +38,38 @@ static int prepend(char **buffer, int buflen, const char *str, int namelen)
#define CHROOT_NSCONNECT (PATH_CHROOT_REL | PATH_CHROOT_NSCONNECT) #define CHROOT_NSCONNECT (PATH_CHROOT_REL | PATH_CHROOT_NSCONNECT)
/* If the path is not connected to the expected root,
* check if it is a sysctl and handle specially else remove any
* leading / that __d_path may have returned.
* Unless
* specifically directed to connect the path,
* OR
* if in a chroot and doing chroot relative paths and the path
* resolves to the namespace root (would be connected outside
* of chroot) and specifically directed to connect paths to
* namespace root.
*/
static int disconnect(const struct path *path, char *buf, char **name,
int flags)
{
int error = 0;
if (!(flags & PATH_CONNECT_PATH) &&
!(((flags & CHROOT_NSCONNECT) == CHROOT_NSCONNECT) &&
our_mnt(path->mnt))) {
/* disconnected path, don't return pathname starting
* with '/'
*/
error = -EACCES;
if (**name == '/')
*name = *name + 1;
} else if (**name != '/')
/* CONNECT_PATH with missing root */
error = prepend(name, *name - buf, "/", 1);
return error;
}
/** /**
* d_namespace_path - lookup a name associated with a given path * d_namespace_path - lookup a name associated with a given path
* @path: path to lookup (NOT NULL) * @path: path to lookup (NOT NULL)
...@@ -74,7 +105,8 @@ static int d_namespace_path(struct path *path, char *buf, int buflen, ...@@ -74,7 +105,8 @@ static int d_namespace_path(struct path *path, char *buf, int buflen,
* control instead of hard coded /proc * control instead of hard coded /proc
*/ */
return prepend(name, *name - buf, "/proc", 5); return prepend(name, *name - buf, "/proc", 5);
} } else
return disconnect(path, buf, name, flags);
return 0; return 0;
} }
...@@ -120,32 +152,8 @@ static int d_namespace_path(struct path *path, char *buf, int buflen, ...@@ -120,32 +152,8 @@ static int d_namespace_path(struct path *path, char *buf, int buflen,
goto out; goto out;
} }
/* If the path is not connected to the expected root, if (!connected)
* check if it is a sysctl and handle specially else remove any error = disconnect(path, buf, name, flags);
* leading / that __d_path may have returned.
* Unless
* specifically directed to connect the path,
* OR
* if in a chroot and doing chroot relative paths and the path
* resolves to the namespace root (would be connected outside
* of chroot) and specifically directed to connect paths to
* namespace root.
*/
if (!connected) {
if (!(flags & PATH_CONNECT_PATH) &&
!(((flags & CHROOT_NSCONNECT) == CHROOT_NSCONNECT) &&
our_mnt(path->mnt))) {
/* disconnected path, don't return pathname starting
* with '/'
*/
error = -EACCES;
if (*res == '/')
*name = res + 1;
} else if (*res != '/')
/* CONNECT_PATH with missing root */
error = prepend(name, *name - buf, "/", 1);
}
out: out:
return error; return error;
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment