fs: file_remove_privs_flags()

Kent Overstreet · Kent Overstreet · commit 66a67c860cce · 2024-03-13T21:22:25.000-04:00
Rename and export __file_remove_privs(); for a buffered write path that
doesn't take the inode lock we need to be able to check if the operation
needs to do work first.

Signed-off-by: Kent Overstreet &lt;kent.overstreet@linux.dev&gt;
Cc: Alexander Viro &lt;viro@zeniv.linux.org.uk&gt;
Cc: Christian Brauner &lt;brauner@kernel.org&gt;
diff --git a/fs/inode.c b/fs/inode.c
@@ -2031,7 +2031,7 @@ static int __remove_privs(struct mnt_idmap *idmap,
 	return notify_change(idmap, dentry, &newattrs, NULL);
 }
 
-static int __file_remove_privs(struct file *file, unsigned int flags)
+int file_remove_privs_flags(struct file *file, unsigned int flags)
 {
 	struct dentry *dentry = file_dentry(file);
 	struct inode *inode = file_inode(file);
@@ -2056,6 +2056,7 @@ static int __file_remove_privs(struct file *file, unsigned int flags)
 		inode_has_no_xattr(inode);
 	return error;
 }
+EXPORT_SYMBOL_GPL(file_remove_privs_flags);
 
 /**
  * file_remove_privs - remove special file privileges (suid, capabilities)
@@ -2068,7 +2069,7 @@ static int __file_remove_privs(struct file *file, unsigned int flags)
  */
 int file_remove_privs(struct file *file)
 {
-	return __file_remove_privs(file, 0);
+	return file_remove_privs_flags(file, 0);
 }
 EXPORT_SYMBOL(file_remove_privs);
 
@@ -2161,7 +2162,7 @@ static int file_modified_flags(struct file *file, int flags)
 	 * Clear the security bits if the process is not being run by root.
 	 * This keeps people from modifying setuid and setgid binaries.
 	 */
-	ret = __file_remove_privs(file, flags);
+	ret = file_remove_privs_flags(file, flags);
 	if (ret)
 		return ret;
 
diff --git a/include/linux/fs.h b/include/linux/fs.h
@@ -3004,6 +3004,7 @@ extern struct inode *new_inode_pseudo(struct super_block *sb);
 extern struct inode *new_inode(struct super_block *sb);
 extern void free_inode_nonrcu(struct inode *inode);
 extern int setattr_should_drop_suidgid(struct mnt_idmap *, struct inode *);
+extern int file_remove_privs_flags(struct file *file, unsigned int flags);
 extern int file_remove_privs(struct file *);
 int setattr_should_drop_sgid(struct mnt_idmap *idmap,
 			     const struct inode *inode);

Original file line number	Diff line number	Diff line change
`@@ -2031,7 +2031,7 @@ static int __remove_privs(struct mnt_idmap *idmap,`
`2031`	`2031`	`return notify_change(idmap, dentry, &newattrs, NULL);`
`2032`	`2032`	`}`
`2033`	`2033`
`2034`		`-static int __file_remove_privs(struct file *file, unsigned int flags)`
	`2034`	`+int file_remove_privs_flags(struct file *file, unsigned int flags)`
`2035`	`2035`	`{`
`2036`	`2036`	`struct dentry *dentry = file_dentry(file);`
`2037`	`2037`	`struct inode *inode = file_inode(file);`
`@@ -2056,6 +2056,7 @@ static int __file_remove_privs(struct file *file, unsigned int flags)`
`2056`	`2056`	`inode_has_no_xattr(inode);`
`2057`	`2057`	`return error;`
`2058`	`2058`	`}`
	`2059`	`+EXPORT_SYMBOL_GPL(file_remove_privs_flags);`
`2059`	`2060`
`2060`	`2061`	`/**`
`2061`	`2062`	`* file_remove_privs - remove special file privileges (suid, capabilities)`
`@@ -2068,7 +2069,7 @@ static int __file_remove_privs(struct file *file, unsigned int flags)`
`2068`	`2069`	`*/`
`2069`	`2070`	`int file_remove_privs(struct file *file)`
`2070`	`2071`	`{`
`2071`		`- return __file_remove_privs(file, 0);`
	`2072`	`+ return file_remove_privs_flags(file, 0);`
`2072`	`2073`	`}`
`2073`	`2074`	`EXPORT_SYMBOL(file_remove_privs);`
`2074`	`2075`
`@@ -2161,7 +2162,7 @@ static int file_modified_flags(struct file *file, int flags)`
`2161`	`2162`	`* Clear the security bits if the process is not being run by root.`
`2162`	`2163`	`* This keeps people from modifying setuid and setgid binaries.`
`2163`	`2164`	`*/`
`2164`		`- ret = __file_remove_privs(file, flags);`
	`2165`	`+ ret = file_remove_privs_flags(file, flags);`
`2165`	`2166`	`if (ret)`
`2166`	`2167`	`return ret;`
`2167`	`2168`