Re: [patch 2/2] fs, proc: Introduce the /proc/<pid>/map_files/directory v12

From: Vasiliy Kulikov
Date: Fri Sep 16 2011 - 14:12:58 EST

Next message: Josh Boyer: "[no subject]"
Previous message: Samuel Thibault: "Re: [REGRESSION] i915 KMS dual head broken on DELL latitude E6420 in3.1-rc*"
In reply to: Cyrill Gorcunov: "Re: [patch 2/2] fs, proc: Introduce the /proc/<pid>/map_files/directory v12"
Next in thread: Cyrill Gorcunov: "Re: [patch 2/2] fs, proc: Introduce the /proc/<pid>/map_files/directory v12"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, Sep 16, 2011 at 22:07 +0400, Cyrill Gorcunov wrote:
> > BTW, not a big deal, but probably you should return -EACCES on
> > !capable() as file presence is not an issue in this case.
> >
> > if (!ptrace_may_access(task, PTRACE_MODE_READ))
> > goto out_notask;
> >
> > status = -EACCES;
> > if (!capable(CAP_SYS_ADMIN))
> > goto out_notask;
> >
> > status = 0;
> >
> >
>
> That's not a proble to fix it actually. So can I fix it and
> put some tage here (Reviewed or something?).

Yep, with CAP_SYS_ADMIN check there should be no issues here.

Reviewed-by: Vasiliy Kulikov <segoon@xxxxxxxxxxxx>

Thanks,

--
Vasiliy Kulikov
http://www.openwall.com - bringing security into open computing environments
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Josh Boyer: "[no subject]"
Previous message: Samuel Thibault: "Re: [REGRESSION] i915 KMS dual head broken on DELL latitude E6420 in3.1-rc*"
In reply to: Cyrill Gorcunov: "Re: [patch 2/2] fs, proc: Introduce the /proc/<pid>/map_files/directory v12"
Next in thread: Cyrill Gorcunov: "Re: [patch 2/2] fs, proc: Introduce the /proc/<pid>/map_files/directory v12"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]