| author | Eric W. Biederman <ebiederm@xmission.com> | 2016-05-20 20:42:21 (GMT) |
|---|---|---|
| committer | Eric W. Biederman <ebiederm@xmission.com> | 2016-06-23 20:41:56 (GMT) |
| commit | 3ee690143c3c99f6c0e83f08ff17556890bc6027 (patch) | |
| tree | 6d2d85666a62c90af50e1c7a765fc3315464fce3 | |
| parent | 29a517c232d21a717aecea29838aeb07131f6196 (diff) | |
| download | common-3ee690143c3c99f6c0e83f08ff17556890bc6027.zip common-3ee690143c3c99f6c0e83f08ff17556890bc6027.tar.gz common-3ee690143c3c99f6c0e83f08ff17556890bc6027.tar.bz2 | |
ipc/mqueue: The mqueue filesystem should never contain executables
Set SB_I_NOEXEC on mqueuefs to ensure small implementation mistakes
do not result in executable on mqueuefs by accident.
Acked-by: Seth Forshee <seth.forshee@canonical.com>
Signed-off-by: "Eric W. Biederman" <ebiederm@xmission.com>
| -rw-r--r-- | ipc/mqueue.c | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/ipc/mqueue.c b/ipc/mqueue.c index 60d9708..5bdd50d 100644 --- a/ipc/mqueue.c +++ b/ipc/mqueue.c @@ -307,6 +307,7 @@ static int mqueue_fill_super(struct super_block *sb, void *data, int silent) struct inode *inode; struct ipc_namespace *ns = sb->s_fs_info; + sb->s_iflags |= SB_I_NOEXEC; sb->s_blocksize = PAGE_SIZE; sb->s_blocksize_bits = PAGE_SHIFT; sb->s_magic = MQUEUE_MAGIC; |