korg/linux
0
0
Fork 0
mirror of https://mirrors.bfsu.edu.cn/git/linux.git synced 2024-11-24 20:54:10 +08:00
Code Issues Packages Projects Releases Wiki Activity
438c84c2f0
linux/fs/overlayfs
History
Miklos Szeredi 438c84c2f0 ovl: don't follow redirects if redirect_dir=off 
Overlayfs is following redirects even when redirects are disabled. If this
is unintentional (probably the majority of cases) then this can be a
problem.  E.g. upper layer comes from untrusted USB drive, and attacker
crafts a redirect to enable read access to otherwise unreadable
directories.

If "redirect_dir=off", then turn off following as well as creation of
redirects.  If "redirect_dir=follow", then turn on following, but turn off
creation of redirects (which is what "redirect_dir=off" does now).

This is a backward incompatible change, so make it dependent on a config
option.

Reported-by: David Howells <dhowells@redhat.com>
Signed-off-by: Miklos Szeredi <mszeredi@redhat.com>
2017-12-11 11:28:10 +01:00
..
copy_up.c ovl: move include of ovl_entry.h into overlayfs.h 2017-11-09 10:23:27 +01:00
dir.c ovl: update cache version of impure parent on rename 2017-11-09 10:23:27 +01:00
inode.c ovl: relax same fs constraint for constant st_ino 2017-11-09 10:23:27 +01:00
Kconfig ovl: don't follow redirects if redirect_dir=off 2017-12-11 11:28:10 +01:00
Makefile ovl: split super.c 2016-12-16 11:02:56 +01:00
namei.c ovl: don't follow redirects if redirect_dir=off 2017-12-11 11:28:10 +01:00
overlayfs.h ovl: remove unneeded arg from ovl_verify_origin() 2017-11-10 09:39:16 +01:00
ovl_entry.h ovl: don't follow redirects if redirect_dir=off 2017-12-11 11:28:10 +01:00
readdir.c Merge branch 'overlayfs-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/mszeredi/vfs 2017-11-17 13:36:59 -08:00
super.c ovl: don't follow redirects if redirect_dir=off 2017-12-11 11:28:10 +01:00
util.c ovl: re-structure overlay lower layers in-memory 2017-11-09 10:23:27 +01:00