block: silently forbid sending any ioctl to a partition (0478fe68) · Commits · 戴 / test

After the first few months, the message has not led to many bug reports. It's been almost five years now, and in practice the main source of it seems to be MTIOCGET that someone is using to detect tape devices. While we could whitelist it just like CDROM_GET_CAPABILITY, this patch just removes the message altogether. The patch also removes the "safe but not very useful" ioctl whitelist, as suggested by Christoph. I doubt anything is using most of those ioctls _in general_, let alone on a partition. Reviewed-by:

Christoph Hellwig <hch@lst.de> Signed-off-by:

Paolo Bonzini <pbonzini@redhat.com> Signed-off-by:

Jens Axboe <axboe@kernel.dk>

block/scsi_ioctl.c

+0 −29

Original line number	Diff line number	Diff line
		@@ -693,38 +693,9 @@ int scsi_verify_blk_ioctl(struct block_device *bd, unsigned int cmd)
		if (bd && bd == bd->bd_contains)
		return 0;

		/* Actually none of these is particularly useful on a partition,
		* but they are safe.
		*/
		switch (cmd) {
		case SCSI_IOCTL_GET_IDLUN:
		case SCSI_IOCTL_GET_BUS_NUMBER:
		case SCSI_IOCTL_GET_PCI:
		case SCSI_IOCTL_PROBE_HOST:
		case SG_GET_VERSION_NUM:
		case SG_SET_TIMEOUT:
		case SG_GET_TIMEOUT:
		case SG_GET_RESERVED_SIZE:
		case SG_SET_RESERVED_SIZE:
		case SG_EMULATED_HOST:
		return 0;
		case CDROM_GET_CAPABILITY:
		/* Keep this until we remove the printk below. udev sends it
		* and we do not want to spam dmesg about it. CD-ROMs do
		* not have partitions, so we get here only for disks.
		*/
		return -ENOIOCTLCMD;
		default:
		break;
		}

		if (capable(CAP_SYS_RAWIO))
		return 0;

		/* In particular, rule out all resets and host-specific ioctls. */
		printk_ratelimited(KERN_WARNING
		"%s: sending ioctl %x to a partition!\n", current->comm, cmd);

		return -ENOIOCTLCMD;
		}
		EXPORT_SYMBOL(scsi_verify_blk_ioctl);

Admin message