[PATCH] fs: Avoid userspace mounting anon_inodefs filesystem

From: Jan Kara
Date: Tue Mar 25 2014 - 16:37:09 EST

Next message: Linus Walleij: "Re: [PATCH 1/3] gpio: dwapb: drop irq_setup_generic_chip()"
Previous message: Andi Kleen: "[PATCH] tools, perf: Allow the user to disable time stamps"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

anon_inodefs filesystem is a kernel internal filesystem userspace
shouldn't mess with. Remove registration of it so userspace cannot
even try to mount it (which would fail anyway because the filesystem is
MS_NOUSER).

This fixes an oops triggered by trinity when it tried mounting
anon_inodefs which overwrote anon_inode_inode pointer while other CPU
has been in anon_inode_getfile() between ihold() and d_instantiate().
Thus effectively creating dentry pointing to an inode without holding a
reference to it.

Reported-by: Sasha Levin <sasha.levin@xxxxxxxxxx>
Signed-off-by: Jan Kara <jack@xxxxxxx>
---
fs/anon_inodes.c | 3 ---
1 file changed, 3 deletions(-)

diff --git a/fs/anon_inodes.c b/fs/anon_inodes.c
index 24084732b1d0..4b4543b8b894 100644
--- a/fs/anon_inodes.c
+++ b/fs/anon_inodes.c
@@ -177,9 +177,6 @@ static int __init anon_inode_init(void)
{
int error;

- error = register_filesystem(&anon_inode_fs_type);
- if (error)
- goto err_exit;
anon_inode_mnt = kern_mount(&anon_inode_fs_type);
if (IS_ERR(anon_inode_mnt)) {
error = PTR_ERR(anon_inode_mnt);
--
1.8.1.4

--BOKacYhQ+x31HxR3--
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Linus Walleij: "Re: [PATCH 1/3] gpio: dwapb: drop irq_setup_generic_chip()"
Previous message: Andi Kleen: "[PATCH] tools, perf: Allow the user to disable time stamps"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]