Received: by 2002:a05:6a10:a0d1:0:0:0:0 with SMTP id j17csp2119483pxa;
        Mon, 24 Aug 2020 05:53:55 -0700 (PDT)
X-Google-Smtp-Source: ABdhPJw+CZWcAfYX+/5BjZezE7FjZj01OS0jVJuXnQlKLybrk6CLKbBeTKWJBOV4Ce/5XGk5g7Qa
X-Received: by 2002:a17:906:14ce:: with SMTP id y14mr5723253ejc.314.1598273635682;
        Mon, 24 Aug 2020 05:53:55 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1598273635; cv=none;
        d=google.com; s=arc-20160816;
        b=K9QdxHcqLpRWqzU9QzoBWTgx3s9elpO4zHqSWlJEdkZj8+7W2uZ/RELqC5y+CantO3
         vpsX4D/2R4ee9vymmZR0DIY9pIPOKNsqCFd79UFm/++XrDxWFbJKNmPyFY0hB5fJyGN9
         3oYe5q5yX+gzBZHGvecq7b5SY1nSs1i1LyoE4xubTFoC5sFd3Qfb0Nm2s8c1N/i7d7Nj
         o64aTgy5qO+nGgFl6TTlT9y5DCi7nIuacCUcyPGWPvdwQbz3NGNGz4y0/YcK5c/hyZ1M
         ax9rEM++HTx2L/XYyvL/YgKGIt+HjdBtkfwWnC3Fo6k2bi8iM1cRYXG1Ro3vCwuMCUq8
         8KPQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:to:content-transfer-encoding:mime-version
         :message-id:date:subject:cc:from;
        bh=gvOrwFdrNoIKZpBYrzMhMigaSOSnkliOa0D4FtRauyo=;
        b=zjTZLdGeXiLlyVvIxrnjRrYva8m7hruQCtOS8GOoxvZTilNK+JBMbX3DRAFZ+/VTG5
         Nd0LGH2r+MPX3+FViuUAJrrSFf5OKQjhMa3wPxpapVFaaojKFbUiK0mMZceCLCGFssla
         K9+Yx6Qp/QZ+NAI8gA4SBEsWclK9Fm4UP4f4QKugx7JnkklNNrPvRU6ph7AdknD8AeSm
         ZRZ5whIBgU9iimNNVdL9Ej/qpKvnOkq0Cx1MHawwUkslI32bregANP4P0RY9rtzZwtDf
         yy5DpIWMYctjKDHuHyjqmh7LLZvrTEjZM5EG6YizuyJ56cLHuWYmNfNtZQ0oVTlGNqOP
         DAXQ==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id yl15si228010ejb.301.2020.08.24.05.53.32;
        Mon, 24 Aug 2020 05:53:55 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1726968AbgHXMuD (ORCPT <rfc822;xiaochao379261131@gmail.com>
        + 99 others); Mon, 24 Aug 2020 08:50:03 -0400
Received: from mail-lj1-f194.google.com ([209.85.208.194]:46443 "EHLO
        mail-lj1-f194.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1726716AbgHXMuC (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Mon, 24 Aug 2020 08:50:02 -0400
Received: by mail-lj1-f194.google.com with SMTP id h19so9461902ljg.13;
        Mon, 24 Aug 2020 05:50:00 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:from:to:cc:subject:date:message-id:mime-version
         :content-transfer-encoding;
        bh=gvOrwFdrNoIKZpBYrzMhMigaSOSnkliOa0D4FtRauyo=;
        b=Fge5OPS2AMd/7JRaeCCe6sNg9HYeHGQKTxnPC8ARiuDdZvQ7TW73hXYvcre9p8R3UB
         NdBMCjY2cAU9P3+osB0inn1HRbqBoc0jaVDNPat7yQJWYT9AFz8Z+iS4hXjKqjiiqU3a
         +zJd+qZmxttoE4Io2QozJRG5XEAxJfh5CciZghoWS87ygNhY2bBHLklHjokga2+NrG69
         hhoKZIQRDmLEPFYmhBdq42alCJi6Rt/94ZJtTYLlbqB4yLkdorn6nti1GLCUoSiao5I5
         B13mdGG6eHVdVrJt8GltfpYn6LjOyBqSwN2r5VWaiIjZHV430RusIsEtz7p3CRWGzB2l
         IePQ==
X-Gm-Message-State: AOAM532VWIYkeZaoNVu+mTk6/ZCCC3HAPCpFUBeW2GVIV2wd1gbfrpqM
        WMumpJ7yFhu5GFObjoFLn77/4ZtgVTw=
X-Received: by 2002:a2e:a316:: with SMTP id l22mr2689012lje.301.1598273399100;
        Mon, 24 Aug 2020 05:49:59 -0700 (PDT)
Received: from localhost.localdomain ([213.87.147.111])
        by smtp.googlemail.com with ESMTPSA id h23sm2166181lji.139.2020.08.24.05.49.56
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Mon, 24 Aug 2020 05:49:58 -0700 (PDT)
From:   Denis Efremov <efremov@linux.com>
Cc:     Denis Efremov <efremov@linux.com>, Serge Hallyn <serge@hallyn.com>,
        James Morris <jmorris@namei.org>,
        linux-security-module@vger.kernel.org, linux-kernel@vger.kernel.org
Subject: [PATCH] security/commoncap: Use current_user_ns()
Date:   Mon, 24 Aug 2020 15:49:39 +0300
Message-Id: <20200824124939.486728-1-efremov@linux.com>
X-Mailer: git-send-email 2.26.2
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
To:     unlisted-recipients:; (no To-header on input)
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

Modify cap_inh_is_capped(), cap_task_prctl() to use current_user_ns().

Signed-off-by: Denis Efremov <efremov@linux.com>
---
 security/commoncap.c | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/security/commoncap.c b/security/commoncap.c
index 59bf3c1674c8..82a61f77c07c 100644
--- a/security/commoncap.c
+++ b/security/commoncap.c
@@ -220,7 +220,7 @@ static inline int cap_inh_is_capped(void)
 	/* they are so limited unless the current task has the CAP_SETPCAP
 	 * capability
 	 */
-	if (cap_capable(current_cred(), current_cred()->user_ns,
+	if (cap_capable(current_cred(), current_user_ns(),
 			CAP_SETPCAP, CAP_OPT_NONE) == 0)
 		return 0;
 	return 1;
@@ -1206,7 +1206,7 @@ int cap_task_prctl(int option, unsigned long arg2, unsigned long arg3,
 		    || ((old->securebits & SECURE_ALL_LOCKS & ~arg2))	/*[2]*/
 		    || (arg2 & ~(SECURE_ALL_LOCKS | SECURE_ALL_BITS))	/*[3]*/
 		    || (cap_capable(current_cred(),
-				    current_cred()->user_ns,
+				    current_user_ns(),
 				    CAP_SETPCAP,
 				    CAP_OPT_NONE) != 0)			/*[4]*/
 			/*
-- 
2.26.2