Frank Filz wrote: > The problem is that permission checking is skipped if atomic open is > possible, but when exec opens a file, it just opens it O_READONLY which > means EXEC permission will not be checked at that time. > > This problem is observed by the following sequence (executed as root): > > mount -t nfs4 server:/ /mnt4 > echo "ls" >/mnt4/foo > chmod 744 /mnt4/foo > su guest -c "mnt4/foo" > > Signed-off-by: Frank Filz <ffilzlnx at us.ibm.com> Tested-by: Eugene Teo <eugeneteo@xxxxxxxxx> I have tested this on 2.6.29.3, and I can confirm that the patch fixed the problem. Btw, this looks like the same problem that was reported in 2006: http://linux-nfs.org/pipermail/nfsv4/2006-November/005323.html http://linux-nfs.org/pipermail/nfsv4/2006-November/005313.html http://bugzilla.linux-nfs.org/show_bug.cgi?id=131 Thanks, Eugene -- To unsubscribe from this list: send the line "unsubscribe linux-nfs" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
