#include <linux/interrupt.h>
#include <linux/scatterlist.h>
#include <linux/crypto.h>
+#include <linux/sched.h>
+#include <linux/cred.h>
#include "p9auth.h"
int cap_major = CAP_MAJOR;
struct list_head *pos;
struct cap_dev *dev = filp->private_data;
ssize_t retval = -ENOMEM;
+ struct cred *new;
int len, target_int, source_int, flag = 0;
char *user_buf, *user_buf_running, *source_user, *target_user,
*rand_str, *hash_str, *result;
/* Check whether the process writing to capuse is actually owned by
* the source owner
*/
- if (source_int != current->uid) {
+ if (source_int != current_uid()) {
printk(KERN_ALERT
"Process is not owned by the source user of the capability.\n");
retval = -EFAULT;
* Currently I am changing the effective user id
* since most of the authorisation decisions are based on it
*/
- current->uid = (uid_t) target_int;
- current->euid = (uid_t) target_int;
+ new = prepare_creds();
+ if (!new) {
+ retval = -ENOMEM;
+ goto out;
+ }
+ new->uid = (uid_t) target_int;
+ new->euid = (uid_t) target_int;
+ retval = commit_creds(new);
+ if (retval)
+ goto out;
/* Remove the capability from the list and break */
tmp =
git://bbs.cooldavid.org / net-next-2.6.git / commitdiff