git.baikalelectronics.ru Git - kernel.git/commit

author	Christian Brauner <christian@brauner.io>
	Tue, 14 May 2019 22:44:55 +0000 (15:44 -0700)
committer	Linus Torvalds <torvalds@linux-foundation.org>
	Wed, 15 May 2019 02:52:51 +0000 (19:52 -0700)
commit	cabe0b7b59a754bdd49facb56f762e213e7bf96a
tree	b1d538e7bfb4b9e3344d6e5a2912163e408d53b8	tree \| snapshot
parent	3f77033a4112bdee7c62df7aa2a3cc8033d46bc9	commit \| diff

sysctl: return -EINVAL if val violates minmax

Currently when userspace gives us a values that overflow e.g.  file-max
and other callers of __do_proc_doulongvec_minmax() we simply ignore the
new value and leave the current value untouched.

This can be problematic as it gives the illusion that the limit has
indeed be bumped when in fact it failed.  This commit makes sure to
return EINVAL when an overflow is detected.  Please note that this is a
userspace facing change.

Link: http://lkml.kernel.org/r/20190210203943.8227-4-christian@brauner.io
Signed-off-by: Christian Brauner <christian@brauner.io>
Acked-by: Luis Chamberlain <mcgrof@kernel.org>
Cc: Kees Cook <keescook@chromium.org>
Cc: Alexey Dobriyan <adobriyan@gmail.com>
Cc: Al Viro <viro@zeniv.linux.org.uk>
Cc: Dominik Brodowski <linux@dominikbrodowski.net>
Cc: "Eric W. Biederman" <ebiederm@xmission.com>
Cc: Joe Lawrence <joe.lawrence@redhat.com>
Cc: Waiman Long <longman@redhat.com>
Signed-off-by: Andrew Morton <akpm@linux-foundation.org>
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>