linux-toradex.git/security/apparmor/path.c, branch v4.12-rc4 Linux kernel for Apalis and Colibri modules apparmor: internal paths should be treated as disconnected 2016-07-12T15:43:10+00:00 John Johansen john.johansen@canonical.com 2014-07-25T11:02:10+00:00 bd35db8b8ca6e27fc17a9057ef78e1ddfc0de351 Internal mounts are not mounted anywhere and as such should be treated as disconnected paths. Signed-off-by: John Johansen <john.johansen@canonical.com> Acked-by: Seth Arnold <seth.arnold@canonical.com> 
Internal mounts are not mounted anywhere and as such should be treated
as disconnected paths.

Signed-off-by: John Johansen <john.johansen@canonical.com>
Acked-by: Seth Arnold <seth.arnold@canonical.com>
apparmor: fix disconnected bind mnts reconnection 2016-07-12T15:43:10+00:00 John Johansen john.johansen@canonical.com 2014-07-25T11:02:08+00:00 f2e561d190da7ff5ee265fa460e2d7f753dddfda Bind mounts can fail to be properly reconnected when PATH_CONNECT is specified. Ensure that when PATH_CONNECT is specified the path has a root. BugLink: http://bugs.launchpad.net/bugs/1319984 Signed-off-by: John Johansen <john.johansen@canonical.com> Acked-by: Seth Arnold <seth.arnold@canonical.com> 
Bind mounts can fail to be properly reconnected when PATH_CONNECT is
specified. Ensure that when PATH_CONNECT is specified the path has
a root.

BugLink: http://bugs.launchpad.net/bugs/1319984

Signed-off-by: John Johansen <john.johansen@canonical.com>
Acked-by: Seth Arnold <seth.arnold@canonical.com>
[apparmor] constify struct path * in a bunch of helpers 2016-03-28T03:48:14+00:00 Al Viro viro@zeniv.linux.org.uk 2016-03-25T18:18:14+00:00 2c7661ff419580f5c06ea409e31407e0ff52cb95 Signed-off-by: Al Viro <viro@zeniv.linux.org.uk> 
Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>
Apparmor: Use d_is_positive/negative() rather than testing dentry->d_inode 2015-02-22T16:38:39+00:00 David Howells dhowells@redhat.com 2015-01-29T12:02:31+00:00 729b8a3dee2bc873e4647e9384de9111548e599e Use d_is_positive(dentry) or d_is_negative(dentry) rather than testing dentry->d_inode as the dentry may cover another layer that has an inode when the top layer doesn't or may hold a 0,0 chardev that's actually a whiteout. Signed-off-by: David Howells <dhowells@redhat.com> Signed-off-by: Al Viro <viro@zeniv.linux.org.uk> 
Use d_is_positive(dentry) or d_is_negative(dentry) rather than testing
dentry->d_inode as the dentry may cover another layer that has an inode when
the top layer doesn't or may hold a 0,0 chardev that's actually a whiteout.

Signed-off-by: David Howells <dhowells@redhat.com>
Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>
apparmor: fix error code to failure message mapping for name lookup 2013-04-28T07:35:40+00:00 John Johansen john.johansen@canonical.com 2013-02-19T00:02:34+00:00 e573cc30bb36df23fb49a29d96e6c6333d17f59c -ESTALE used to be incorrectly used to indicate a disconnected path, when name lookup failed. This was fixed in commit e1b0e444 to correctly return -EACCESS, but the error to failure message mapping was not correctly updated to reflect this change. Signed-off-by: John Johansen <john.johansen@canonical.com> Acked-by: Steve Beattie <sbeattie@ubuntu.com> 
-ESTALE used to be incorrectly used to indicate a disconnected path, when
name lookup failed.  This was fixed in commit e1b0e444 to correctly return
-EACCESS, but the error to failure message mapping was not correctly updated
to reflect this change.

Signed-off-by: John Johansen <john.johansen@canonical.com>
Acked-by: Steve Beattie <sbeattie@ubuntu.com>
apparmor: fix long path failure due to disconnected path 2012-05-18T18:09:52+00:00 John Johansen john.johansen@canonical.com 2012-05-16T18:01:05+00:00 cffee16e8b997ab947de661e8820e486b0830c94 BugLink: http://bugs.launchpad.net/bugs/955892 All failures from __d_path where being treated as disconnected paths, however __d_path can also fail when the generated pathname is too long. The initial ENAMETOOLONG error was being lost, and ENAMETOOLONG was only returned if the subsequent dentry_path call resulted in that error. Other wise if the path was split across a mount point such that the dentry_path fit within the buffer when the __d_path did not the failure was treated as a disconnected path. Signed-off-by: John Johansen <john.johansen@canonical.com> 
BugLink: http://bugs.launchpad.net/bugs/955892

All failures from __d_path where being treated as disconnected paths,
however __d_path can also fail when the generated pathname is too long.

The initial ENAMETOOLONG error was being lost, and ENAMETOOLONG was only
returned if the subsequent dentry_path call resulted in that error.  Other
wise if the path was split across a mount point such that the dentry_path
fit within the buffer when the __d_path did not the failure was treated
as a disconnected path.

Signed-off-by: John Johansen <john.johansen@canonical.com>
AppArmor: Move path failure information into aa_get_name and rename 2012-03-14T13:15:25+00:00 John Johansen john.johansen@canonical.com 2012-02-16T14:20:33+00:00 57fa1e18091e66b7e1002816523cb218196a882e Move the path name lookup failure messages into the main path name lookup routine, as the information is useful in more than just aa_path_perm. Also rename aa_get_name to aa_path_name as it is not getting a reference counted object with a corresponding put fn. Signed-off-by: John Johansen <john.johansen@canonical.com> Acked-by: Kees Cook <kees@ubuntu.com> 
Move the path name lookup failure messages into the main path name lookup
routine, as the information is useful in more than just aa_path_perm.

Also rename aa_get_name to aa_path_name as it is not getting a reference
counted object with a corresponding put fn.

Signed-off-by: John Johansen <john.johansen@canonical.com>
Acked-by: Kees Cook <kees@ubuntu.com>
AppArmor: Minor cleanup of d_namespace_path to consolidate error handling 2012-03-14T13:15:23+00:00 John Johansen john.johansen@canonical.com 2012-02-16T14:32:47+00:00 3372b68a3c982611dcc30b3c872f8bbdee019e5e Signed-off-by: John Johansen <john.johansen@canonical.com> Acked-by: Kees Cook <kees@ubuntu.com> 
Signed-off-by: John Johansen <john.johansen@canonical.com>
Acked-by: Kees Cook <kees@ubuntu.com>
AppArmor: Retrieve the dentry_path for error reporting when path lookup fails 2012-03-14T13:15:22+00:00 John Johansen john.johansen@canonical.com 2012-02-16T14:28:50+00:00 fbba8d89acea5d628d1d076b1d8962db438ff832 When __d_path and d_absolute_path fail due to the name being outside of the current namespace no name is reported. Use dentry_path to provide some hint as to which file was being accessed. Signed-off-by: John Johansen <john.johansen@canonical.com> Acked-by: Kees Cook <kees@ubuntu.com> 
When __d_path and d_absolute_path fail due to the name being outside of
the current namespace no name is reported.  Use dentry_path to provide
some hint as to which file was being accessed.

Signed-off-by: John Johansen <john.johansen@canonical.com>
Acked-by: Kees Cook <kees@ubuntu.com>
AppArmor: Fix error returned when a path lookup is disconnected 2012-03-14T13:14:52+00:00 John Johansen john.johansen@canonical.com 2012-03-10T19:19:51+00:00 ef9a762279c9ce98c592fb144b31898411feb94d The returning of -ESATLE when a path lookup fails as disconnected is wrong. Since AppArmor is rejecting the access return -EACCES instead. This also fixes a bug in complain (learning) mode where disconnected paths are denied because -ESTALE errors are not ignored causing failures that can change application behavior. Signed-off-by: John Johansen <john.johansen@canonical.com> 
The returning of -ESATLE when a path lookup fails as disconnected is wrong.
Since AppArmor is rejecting the access return -EACCES instead.

This also fixes a bug in complain (learning) mode where disconnected paths
are denied because -ESTALE errors are not ignored causing failures that
can change application behavior.

Signed-off-by: John Johansen <john.johansen@canonical.com>