Commit e86cac0a authored by Konstantin Andreev's avatar Konstantin Andreev Committed by Casey Schaufler

smack: unix sockets: fix accept()ed socket label

When a process accept()s connection from a unix socket
(either stream or seqpacket)
it gets the socket with the label of the connecting process.

For example, if a connecting process has a label 'foo',
the accept()ed socket will also have 'in' and 'out' labels 'foo',
regardless of the label of the listener process.

This is because kernel creates unix child sockets
in the context of the connecting process.

I do not see any obvious way for the listener to abuse
alien labels coming with the new socket, but,
to be on the safe side, it's better fix new socket labels.
Signed-off-by: default avatarKonstantin Andreev <andreev@swemel.ru>
Signed-off-by: default avatarCasey Schaufler <casey@schaufler-ca.com>
parent 2fe209d0
...@@ -3846,12 +3846,18 @@ static int smack_unix_stream_connect(struct sock *sock, ...@@ -3846,12 +3846,18 @@ static int smack_unix_stream_connect(struct sock *sock,
} }
} }
/*
* Cross reference the peer labels for SO_PEERSEC.
*/
if (rc == 0) { if (rc == 0) {
/*
* Cross reference the peer labels for SO_PEERSEC.
*/
nsp->smk_packet = ssp->smk_out; nsp->smk_packet = ssp->smk_out;
ssp->smk_packet = osp->smk_out; ssp->smk_packet = osp->smk_out;
/*
* new/child/established socket must inherit listening socket labels
*/
nsp->smk_out = osp->smk_out;
nsp->smk_in = osp->smk_in;
} }
return rc; return rc;
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment