Linux kernel development work - see feature branches https://git.zx2c4.com/linux-dev/atom/tools/testing/selftests/openat2/Makefile?h=master 2022-01-27T23:30:55Z 2022-01-27T23:30:55Z Cristian Marussi cristian.marussi@arm.com 2022-01-26T10:27:22Z urn:sha1:ea3396725aa143dd42fe388cb67e44c90d2fb719 Add a dependency on header helpers.h to the main target; while at that add to helpers.h also a missing include for bool types. Cc: Aleksa Sarai <cyphar@cyphar.com> Signed-off-by: Cristian Marussi <cristian.marussi@arm.com> Signed-off-by: Shuah Khan <skhan@linuxfoundation.org> 2020-01-18T14:19:18Z Aleksa Sarai cyphar@cyphar.com 2020-01-18T12:08:00Z urn:sha1:b28a10aedcd4d175470171a32f4f20b0a60a612b Test all of the various openat2(2) flags. A small stress-test of a symlink-rename attack is included to show that the protections against ".."-based attacks are sufficient. The main things these self-tests are enforcing are: * The struct+usize ABI for openat2(2) and copy_struct_from_user() to ensure that upgrades will be handled gracefully (in addition, ensuring that misaligned structures are also handled correctly). * The -EINVAL checks for openat2(2) are all correctly handled to avoid userspace passing unknown or conflicting flag sets (most importantly, ensuring that invalid flag combinations are checked). * All of the RESOLVE_* semantics (including errno values) are correctly handled with various combinations of paths and flags. * RESOLVE_IN_ROOT correctly protects against the symlink rename(2) attack that has been responsible for several CVEs (and likely will be responsible for several more). Cc: Shuah Khan <shuah@kernel.org> Signed-off-by: Aleksa Sarai <cyphar@cyphar.com> Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>