mirror of
https://github.com/checkpoint-restore/criu
synced 2025-09-03 15:55:53 +00:00
v2 security: set suid flag on crtools and check real uid on dump/restore
v2: remove redundant functions and variables. Signed-off-by: Ruslan Kuprieiev <kupruser@gmail.com> Signed-off-by: Pavel Emelyanov <xemul@parallels.com>
This commit is contained in:
Ruslan Kuprieiev
committed by
Pavel Emelyanov
Pavel Emelyanov
parent
398705d4cb
commit
547d9bf959
@@ -1957,6 +1957,9 @@ static int prepare_creds(int pid, struct task_restore_core_args *args)
|
||||
return -1;
|
||||
}
|
||||
|
||||
if (!may_restore_uid(ce->uid))
|
||||
return -1;
|
||||
|
||||
args->creds = *ce;
|
||||
args->creds.cap_inh = args->cap_inh;
|
||||
memcpy(args->cap_inh, ce->cap_inh, sizeof(args->cap_inh));
|
||||
|
||||
@@ -72,6 +72,7 @@ int main(int argc, char *argv[])
|
||||
BUILD_BUG_ON(PAGE_SIZE != PAGE_IMAGE_SIZE);
|
||||
|
||||
cr_pb_init();
|
||||
restrict_uid(getuid());
|
||||
|
||||
if (argc < 2)
|
||||
goto usage;
|
||||
|
||||
@@ -210,5 +210,6 @@ static inline bool pid_rst_prio(unsigned pid_a, unsigned pid_b)
|
||||
|
||||
void restrict_uid(unsigned int uid);
|
||||
bool may_dump_uid(unsigned int uid);
|
||||
bool may_restore_uid(unsigned int uid);
|
||||
|
||||
#endif /* __CR_CRTOOLS_H__ */
|
||||
|
||||
29
security.c
29
security.c
@@ -2,7 +2,7 @@
|
||||
#include "crtools.h"
|
||||
#include "log.h"
|
||||
|
||||
static unsigned int dumper_uid = 0;
|
||||
static unsigned int cr_uid; /* UID which user can C/R */
|
||||
|
||||
/*
|
||||
* Setup what user is requesting for dump (via rpc or using
|
||||
@@ -14,16 +14,33 @@ static unsigned int dumper_uid = 0;
|
||||
void restrict_uid(unsigned int uid)
|
||||
{
|
||||
pr_info("Restrict C/R with %u uid\n", uid);
|
||||
dumper_uid = uid;
|
||||
cr_uid = uid;
|
||||
}
|
||||
|
||||
static bool check_uid(unsigned int uid)
|
||||
{
|
||||
if (cr_uid == 0)
|
||||
return true;
|
||||
if (cr_uid == uid)
|
||||
return true;
|
||||
|
||||
return false;
|
||||
}
|
||||
|
||||
bool may_dump_uid(unsigned int uid)
|
||||
{
|
||||
if (dumper_uid == 0)
|
||||
return true;
|
||||
if (dumper_uid == uid)
|
||||
if (check_uid(uid))
|
||||
return true;
|
||||
|
||||
pr_err("UID (%u) != dumper's UID(%u)\n", uid, dumper_uid);
|
||||
pr_err("UID (%u) != dumper's UID(%u)\n", uid, cr_uid);
|
||||
return false;
|
||||
}
|
||||
|
||||
bool may_restore_uid(unsigned int uid)
|
||||
{
|
||||
if (check_uid(uid))
|
||||
return true;
|
||||
|
||||
pr_err("UID (%u) != restorer's UID(%u)\n", uid, cr_uid);
|
||||
return false;
|
||||
}
|
||||
|
||||
Reference in New Issue
Block a user