ovl: perform vfs_getxattr() with mounter creds

Miklos Szeredi · Miklos Szeredi · commit 554677b97257 · 2021-01-28T10:22:48.000+01:00
The vfs_getxattr() in ovl_xattr_set() is used to check whether an xattr
exist on a lower layer file that is to be removed.  If the xattr does not
exist, then no need to copy up the file.

This call of vfs_getxattr() wasn't wrapped in credential override, and this
is probably okay.  But for consitency wrap this instance as well.

Reported-by: "Eric W. Biederman" &lt;ebiederm@xmission.com&gt;
Signed-off-by: Miklos Szeredi &lt;mszeredi@redhat.com&gt;
diff --git a/fs/overlayfs/inode.c b/fs/overlayfs/inode.c
@@ -352,7 +352,9 @@ int ovl_xattr_set(struct dentry *dentry, struct inode *inode, const char *name,
 		goto out;
 
 	if (!value && !upperdentry) {
+		old_cred = ovl_override_creds(dentry->d_sb);
 		err = vfs_getxattr(realdentry, name, NULL, 0);
+		revert_creds(old_cred);
 		if (err < 0)
 			goto out_drop_write;
 	}

Original file line number	Diff line number	Diff line change
`@@ -352,7 +352,9 @@ int ovl_xattr_set(struct dentry dentry, struct inode inode, const char *name,`
`352`	`352`	`goto out;`
`353`	`353`
`354`	`354`	`if (!value && !upperdentry) {`
	`355`	`+ old_cred = ovl_override_creds(dentry->d_sb);`
`355`	`356`	`err = vfs_getxattr(realdentry, name, NULL, 0);`
	`357`	`+ revert_creds(old_cred);`
`356`	`358`	`if (err < 0)`
`357`	`359`	`goto out_drop_write;`
`358`	`360`	`}`