SELinux testsuite failure in overlayfs with v4.20-rc kernels
Paul Moore
paul at paul-moore.com
Wed Dec 12 22:24:06 UTC 2018
On Wed, Dec 12, 2018 at 5:19 PM James Morris <jmorris at namei.org> wrote:
> The SELinux testsuite is failing in the overlayfs tests in current -rc
> kernels. I bisected the issue to
>
> commit 007ea44892e6fa963a0876a979e34890325c64eb
> Author: Miklos Szeredi <mszeredi at redhat.com>
> Date: Fri Oct 26 23:34:39 2018 +0200
>
> ovl: relax permission checking on underlying layers
>
> Make permission checking more consistent:
>
> - special files don't need any access check on underling fs
>
> - exec permission check doesn't need to be performed on underlying fs
>
> Reported-by: "J. Bruce Fields" <bfields at fieldses.org>
> Signed-off-by: Miklos Szeredi <mszeredi at redhat.com>
>
> Reverting this commit fixes the testsuite failure.
>
> Is there any more information on the rationale for the change?
This is a known problem, see the archive link below, with Miklos
promising to send a revert to Linus for v4.20. I just pinged him
earlier this week to remind him, but I haven't heard back yet and I
don't see anything in Linus' tree.
I would much prefer if Miklos sent the revert, but if he doesn't send
the revert by the end of the week, I'm going to send one next week.
https://lore.kernel.org/selinux/CAJfpeguJoEOEjQs4ZpJQaJXF-xCnevUApzNobwmqNX27KQ4vHQ@mail.gmail.com
--
paul moore
www.paul-moore.com
More information about the Linux-security-module-archive
mailing list