Received: by 2002:a05:6a11:4021:0:0:0:0 with SMTP id ky33csp2060088pxb; Fri, 17 Sep 2021 00:52:35 -0700 (PDT) X-Google-Smtp-Source: ABdhPJxp0BEp1RDxWyiq10NfrvcenTOOqHI5BJ18+E8ufb0NgMRRwUc5pQndZilSvEIyeWJsKPOG X-Received: by 2002:a92:d382:: with SMTP id o2mr6973808ilo.67.1631865155046; Fri, 17 Sep 2021 00:52:35 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1631865155; cv=none; d=google.com; s=arc-20160816; b=0eHhmcYAtubAMNTPrxV7ajnJK1iH/JH1YfFGDnZzIw5vzmK4+OW+YU2h5R1kiCFuQX 2BKw4luTgaGedeSzWQ/JVdn9OyUGtjUH0apCsfSuxXOSpxWwMm9VK2yA+n0P8wAPnffA XcB7+NDf+nB1e/aPM7VhnM3GcOu0a1H+763GINpYUFNLBV9Q33OMb7CkVlRQ429J8clK QPvucq+yTut4zNLGjcJ75SWuEvPiovgniCS+W3aALZt4n4omr6XUWHzG3hR4eObrCiuq 74dVt92OFL5Xunpk3kW9pSyfYW+SVEaOoKS7s2NIB3QqRtKgCuZUIAa289wj3znWjekn WOsA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:cc:to:from:subject:mime-version:message-id:date :dkim-signature; bh=sBm/kHNsJOwk5GfFSoVxh83u5s0/i8ma9jvWkgSwVDk=; b=zcd4MktrFnbBxLmd+5urjZFA8zknH6/Y5qhfsUoaUQsmjBJfKG408Ukk0FEWlK6SiW 7cK5W3aeJmC7eptZG7YhMq/C+Z9IwmUyU1HD42gYQ/cex2oN912MgyWXhlPbt1/Co3rl sn7u76PHlsqoYNeXXvFWaTkV5twAMMBc1AJq9ywo44/70/KsNychmpgAoHv6vr8R+Zfx rvUp1qbJui08RTLheTN/77NnDruFc6N2HyGZyB8gG2zj0ovx5moUq195X2+H5gvdCF2o d1aDPLn/jUefumiabkAsgiwV6JZhb6G0ZnWztdNLvF/bC2IRkPthD1y+1fnLAYdA9d1i t0aQ== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@google.com header.s=20210112 header.b=q7TdV5nq; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id t10si5064298iof.42.2021.09.17.00.52.21; Fri, 17 Sep 2021 00:52:35 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=pass header.i=@google.com header.s=20210112 header.b=q7TdV5nq; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1345402AbhIPSIP (ORCPT + 99 others); Thu, 16 Sep 2021 14:08:15 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:40452 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1351505AbhIPSGV (ORCPT ); Thu, 16 Sep 2021 14:06:21 -0400 Received: from mail-qv1-xf49.google.com (mail-qv1-xf49.google.com [IPv6:2607:f8b0:4864:20::f49]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id E8621C061D6C for ; Thu, 16 Sep 2021 09:37:29 -0700 (PDT) Received: by mail-qv1-xf49.google.com with SMTP id r3-20020a0cc403000000b00377a3318261so59374628qvi.11 for ; Thu, 16 Sep 2021 09:37:29 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20210112; h=date:message-id:mime-version:subject:from:to:cc; bh=sBm/kHNsJOwk5GfFSoVxh83u5s0/i8ma9jvWkgSwVDk=; b=q7TdV5nqyczGXKbDqK5IDRxzCdI5uOWbNjmqKEblwGVPIUd7/rLYzYGuoU9+4UMuXM TfOY5CKLh+FugU5A/lRxwJDyvdOgGMzc5jIDKFcYdx6wBhkn6JWKMbKcua31Pe9ESdoh Q05R0T3MrLUJGPe07AuurLURngQSxJHl6+fOXiAlH259Zm6f+nCrCPpj0KeHoIIE6vUN hhuo7b1wnzJCfdCKhP5JJf6cAhBlJPV/EW5oO0UOIX+/GDgQVXj8M0JzU9+gdTpr4HNG eWFdo1dTzisoRAqPlaTABMbsDwqjHcuSFMxS4OJQrSmS4RdS5qnTZE2joweuoD1EjhRP 4yJQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:date:message-id:mime-version:subject:from:to:cc; bh=sBm/kHNsJOwk5GfFSoVxh83u5s0/i8ma9jvWkgSwVDk=; b=yK8jfjY+kpOKrvFANB8Ic+fuK//c+h9OGSOtEEByG1Cu+Wy3lzuVP4ClbNvFerNEM9 6w8cjEjylYyqwRMjWskQDHhbOM3awhJo/Jwpp7H07GgGS562KGCyWn7wH1eKwcpBvXgx Oay3qefFv/Nndz9xFZkT4rxnVpQQowLtGblt50S3VNfsiRELMJVt5Rev7Ar/s2BXA13v rfrmiwLi1nTOt352TiVlOjhcJLwOVU3BoTAAODqIs7yi+1lRjYf56sbiv0pqL9dkQaPe /KDeEulVGpMtpLCJ94mLrP983QTy3h5/NOlQjC8dmH1VzgWaNNJdOY8rndz4oHyIL3Nw ycmw== X-Gm-Message-State: AOAM530Ud+AopmYgsHrsWm1GIUPjICK2K5ehwM7hmGEUGWVyIrAGzA3i yH0/PcGPxNfjKmwLFd4oGS2uIMVGJhYpA3oh X-Received: from clapinski.waw.corp.google.com ([2a00:79e0:2:11:1fc6:3621:21bf:1e5a]) (user=mclapinski job=sendgmr) by 2002:ad4:4a93:: with SMTP id h19mr6265953qvx.41.1631810249185; Thu, 16 Sep 2021 09:37:29 -0700 (PDT) Date: Thu, 16 Sep 2021 18:37:17 +0200 Message-Id: <20210916163717.3179496-1-mclapinski@google.com> Mime-Version: 1.0 X-Mailer: git-send-email 2.33.0.309.g3052b89438-goog Subject: [PATCH] ipc: check checkpoint_restore_ns_capable() to modify C/R proc files From: Michal Clapinski To: Andrew Morton Cc: linux-kernel@vger.kernel.org, Michal Clapinski Content-Type: text/plain; charset="UTF-8" Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org This commit removes the requirement to be root to modify sem_next_id, msg_next_id and shm_next_id and checks checkpoint_restore_ns_capable instead. Since those files are specific to the IPC namespace, there is no reason they should require root privileges. This is similar to ns_last_pid, which also only checks checkpoint_restore_ns_capable. Signed-off-by: Michal Clapinski --- ipc/ipc_sysctl.c | 28 ++++++++++++++++++++++------ 1 file changed, 22 insertions(+), 6 deletions(-) diff --git a/ipc/ipc_sysctl.c b/ipc/ipc_sysctl.c index 3f312bf2b116..f8e27203ca49 100644 --- a/ipc/ipc_sysctl.c +++ b/ipc/ipc_sysctl.c @@ -104,6 +104,19 @@ static int proc_ipc_sem_dointvec(struct ctl_table *table, int write, return ret; } +#ifdef CONFIG_CHECKPOINT_RESTORE +static int proc_ipc_dointvec_minmax_checkpoint_restore(struct ctl_table *table, + int write, void *buffer, size_t *lenp, loff_t *ppos) +{ + struct user_namespace *user_ns = current->nsproxy->ipc_ns->user_ns; + + if (write && !checkpoint_restore_ns_capable(user_ns)) + return -EPERM; + + return proc_ipc_dointvec_minmax(table, write, buffer, lenp, ppos); +} +#endif + #else #define proc_ipc_doulongvec_minmax NULL #define proc_ipc_dointvec NULL @@ -111,6 +124,9 @@ static int proc_ipc_sem_dointvec(struct ctl_table *table, int write, #define proc_ipc_dointvec_minmax_orphans NULL #define proc_ipc_auto_msgmni NULL #define proc_ipc_sem_dointvec NULL +#ifdef CONFIG_CHECKPOINT_RESTORE +#define proc_ipc_dointvec_minmax_checkpoint_restore NULL +#endif /* CONFIG_CHECKPOINT_RESTORE */ #endif int ipc_mni = IPCMNI; @@ -198,8 +214,8 @@ static struct ctl_table ipc_kern_table[] = { .procname = "sem_next_id", .data = &init_ipc_ns.ids[IPC_SEM_IDS].next_id, .maxlen = sizeof(init_ipc_ns.ids[IPC_SEM_IDS].next_id), - .mode = 0644, - .proc_handler = proc_ipc_dointvec_minmax, + .mode = 0666, + .proc_handler = proc_ipc_dointvec_minmax_checkpoint_restore, .extra1 = SYSCTL_ZERO, .extra2 = SYSCTL_INT_MAX, }, @@ -207,8 +223,8 @@ static struct ctl_table ipc_kern_table[] = { .procname = "msg_next_id", .data = &init_ipc_ns.ids[IPC_MSG_IDS].next_id, .maxlen = sizeof(init_ipc_ns.ids[IPC_MSG_IDS].next_id), - .mode = 0644, - .proc_handler = proc_ipc_dointvec_minmax, + .mode = 0666, + .proc_handler = proc_ipc_dointvec_minmax_checkpoint_restore, .extra1 = SYSCTL_ZERO, .extra2 = SYSCTL_INT_MAX, }, @@ -216,8 +232,8 @@ static struct ctl_table ipc_kern_table[] = { .procname = "shm_next_id", .data = &init_ipc_ns.ids[IPC_SHM_IDS].next_id, .maxlen = sizeof(init_ipc_ns.ids[IPC_SHM_IDS].next_id), - .mode = 0644, - .proc_handler = proc_ipc_dointvec_minmax, + .mode = 0666, + .proc_handler = proc_ipc_dointvec_minmax_checkpoint_restore, .extra1 = SYSCTL_ZERO, .extra2 = SYSCTL_INT_MAX, }, -- 2.33.0.309.g3052b89438-goog