Commit 8c567a7f authored Aug 15, 2013 by Dwight Engen Committed by Ben Myers Aug 15, 2013

xfs: add capability check to free eofblocks ioctl



Check for CAP_SYS_ADMIN since the caller can truncate preallocated
blocks from files they do not own nor have write access to. A more
fine grained access check was considered: require the caller to
specify their own uid/gid and to use inode_permission to check for
write, but this would not catch the case of an inode not reachable
via path traversal from the callers mount namespace.

Add check for read-only filesystem to free eofblocks ioctl.

Reviewed-by: Brian Foster <bfoster@redhat.com>
Reviewed-by: Dave Chinner <dchinner@redhat.com>
Reviewed-by: Gao feng <gaofeng@cn.fujitsu.com>
Signed-off-by: Dwight Engen <dwight.engen@oracle.com>
Signed-off-by: Ben Myers <bpm@sgi.com>

parent b9fe5052

fs/xfs/xfs_ioctl.c

+6 −0

Original line number	Diff line number	Diff line
		@@ -1723,6 +1723,12 @@ xfs_file_ioctl(
		struct xfs_fs_eofblocks eofb;
		struct xfs_eofblocks keofb;

		if (!capable(CAP_SYS_ADMIN))
		return -EPERM;

		if (mp->m_flags & XFS_MOUNT_RDONLY)
		return -XFS_ERROR(EROFS);

		if (copy_from_user(&eofb, arg, sizeof(eofb)))
		return -XFS_ERROR(EFAULT);

Admin message