Merge commit 'v2.6.39-rc6' into x86/cleanups

Merge reason: move to a (much) newer upstream base. Signed-off-by: Ingo Molnar <[email protected]>
author: Ingo Molnar <[email protected]> 2011-05-07 10:51:38 +0200
committer: Ingo Molnar <[email protected]> 2011-05-07 10:51:48 +0200
commit: 4cb1f43ce8c72ee453c00fcb9f6ee9c4ebd03f98 (patch)
tree: 15e64f192b54ea01fd640d69eed0cabed2baaaa9 /kernel/futex_compat.c
parent: 9de4966a4d218f29c68e96e8e7b4d2840dedec79 (diff)
parent: 0ee5623f9a6e52df90a78bd21179f8ab370e102e (diff)
1 files changed, 10 insertions, 1 deletions
diff --git a/kernel/futex_compat.c b/kernel/futex_compat.c
index a7934ac75e5b..5f9e689dc8f0 100644
--- a/kernel/futex_compat.c
+++ b/kernel/futex_compat.c
@@ -153,10 +153,19 @@ compat_sys_get_robust_list(int pid, compat_uptr_t __user *head_ptr,
 			goto err_unlock;
 		ret = -EPERM;
 		pcred = __task_cred(p);
+		/* If victim is in different user_ns, then uids are not
+		   comparable, so we must have CAP_SYS_PTRACE */
+		if (cred->user->user_ns != pcred->user->user_ns) {
+			if (!ns_capable(pcred->user->user_ns, CAP_SYS_PTRACE))
+				goto err_unlock;
+			goto ok;
+		}
+		/* If victim is in same user_ns, then uids are comparable */
 		if (cred->euid != pcred->euid &&
 		    cred->euid != pcred->uid &&
-		    !capable(CAP_SYS_PTRACE))
+		    !ns_capable(pcred->user->user_ns, CAP_SYS_PTRACE))
 			goto err_unlock;
+ok:
 		head = p->compat_robust_list;
 		rcu_read_unlock();
 	}
author	Ingo Molnar <[email protected]>	2011-05-07 10:51:38 +0200
committer	Ingo Molnar <[email protected]>	2011-05-07 10:51:48 +0200
commit	4cb1f43ce8c72ee453c00fcb9f6ee9c4ebd03f98 (patch)
tree	15e64f192b54ea01fd640d69eed0cabed2baaaa9 /kernel/futex_compat.c
parent	9de4966a4d218f29c68e96e8e7b4d2840dedec79 (diff)
parent	0ee5623f9a6e52df90a78bd21179f8ab370e102e (diff)