git.baikalelectronics.ru Git - kernel.git/commit

Revert "Merge tag 'keys-acl-20190703' of git://git.kernel.org/pub/scm/linux/kernel/git/dhowells/linux-fs"

This reverts merge 4fc0d623bd5eacfa9b8c924229f7467f041d17f8 (and thus
effectively commits

343147661531 ("keys: Provide KEYCTL_GRANT_PERMISSION")
da110e3bd2c4 ("keys: Replace uid/gid/perm permissions checking with an ACL")

that the merge brought in).

It turns out that it breaks booting with an encrypted volume, and Eric
biggers reports that it also breaks the fscrypt tests [1] and loading of
in-kernel X.509 certificates [2].

The root cause of all the breakage is likely the same, but David Howells
is off email so rather than try to work it out it's getting reverted in
order to not impact the rest of the merge window.

[1] https://lore.kernel.org/lkml/20190710011559.GA7973@sol.localdomain/
[2] https://lore.kernel.org/lkml/20190710013225.GB7973@sol.localdomain/

Link: https://lore.kernel.org/lkml/CAHk-=wjxoeMJfeBahnWH=9zShKp2bsVy527vo3_y8HfOdhwAAw@mail.gmail.com/
Reported-by: Eric Biggers <ebiggers@kernel.org>
Cc: David Howells <dhowells@redhat.com>
Cc: James Morris <jmorris@namei.org>
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>

author	Linus Torvalds <torvalds@linux-foundation.org>
	Thu, 11 Jul 2019 01:43:43 +0000 (18:43 -0700)
committer	Linus Torvalds <torvalds@linux-foundation.org>
	Thu, 11 Jul 2019 01:43:43 +0000 (18:43 -0700)
commit	5f26a96fce365e48499bc5928b2e324c649f3ec7
tree	7497244a90100f2464403063f88f83a555da03b3	tree \| snapshot
parent	345a002c85bedba656de7fd8439a78d4dfb8c21e	commit \| diff

Documentation/security/keys/core.rst		diff \| blob \| history
Documentation/security/keys/request-key.rst		diff \| blob \| history
certs/blacklist.c		diff \| blob \| history
certs/system_keyring.c		diff \| blob \| history
drivers/md/dm-crypt.c		diff \| blob \| history
drivers/nvdimm/security.c		diff \| blob \| history
fs/afs/security.c		diff \| blob \| history
fs/cifs/cifs_spnego.c		diff \| blob \| history
fs/cifs/cifsacl.c		diff \| blob \| history
fs/cifs/connect.c		diff \| blob \| history
fs/crypto/keyinfo.c		diff \| blob \| history
fs/ecryptfs/ecryptfs_kernel.h		diff \| blob \| history
fs/ecryptfs/keystore.c		diff \| blob \| history
fs/fscache/object-list.c		diff \| blob \| history
fs/nfs/nfs4idmap.c		diff \| blob \| history
fs/ubifs/auth.c		diff \| blob \| history
include/linux/key.h		diff \| blob \| history
include/uapi/linux/keyctl.h		diff \| blob \| history
lib/digsig.c		diff \| blob \| history
net/ceph/ceph_common.c		diff \| blob \| history
net/dns_resolver/dns_key.c		diff \| blob \| history
net/dns_resolver/dns_query.c		diff \| blob \| history
net/rxrpc/key.c		diff \| blob \| history
net/wireless/reg.c		diff \| blob \| history
security/integrity/digsig.c		diff \| blob \| history
security/integrity/digsig_asymmetric.c		diff \| blob \| history
security/integrity/evm/evm_crypto.c		diff \| blob \| history
security/integrity/ima/ima_mok.c		diff \| blob \| history
security/integrity/integrity.h		diff \| blob \| history
security/integrity/platform_certs/platform_keyring.c		diff \| blob \| history
security/keys/compat.c		diff \| blob \| history
security/keys/encrypted-keys/encrypted.c		diff \| blob \| history
security/keys/encrypted-keys/masterkey_trusted.c		diff \| blob \| history
security/keys/gc.c		diff \| blob \| history
security/keys/internal.h		diff \| blob \| history
security/keys/key.c		diff \| blob \| history
security/keys/keyctl.c		diff \| blob \| history
security/keys/keyring.c		diff \| blob \| history
security/keys/permission.c		diff \| blob \| history
security/keys/persistent.c		diff \| blob \| history
security/keys/proc.c		diff \| blob \| history
security/keys/process_keys.c		diff \| blob \| history
security/keys/request_key.c		diff \| blob \| history
security/keys/request_key_auth.c		diff \| blob \| history
security/selinux/hooks.c		diff \| blob \| history
security/smack/smack_lsm.c		diff \| blob \| history