Displaying 1 result from an estimated 1 matches for "secpolicy_vnode_own".
Did you mean:
secpolicy_vnode_owner
2007 Sep 03
1
Code/comment mismatch in delegated administration code.
...privilege?
IMHO if either of those two (is the owner or can write) is true, we
should allow the mount. Am I right? If I am right, the patch below
implements my thinking.
--- uts/common/fs/zfs/zfs_vfsops.c
+++ uts/common/fs/zfs/zfs_vfsops.c
@@ -608,11 +608,9 @@
goto out;
}
- if (error = secpolicy_vnode_owner(cr, vattr.va_uid)) {
- goto out;
- }
-
- if (error = VOP_ACCESS(mvp, VWRITE, cr, td)) {
+ if (secpolicy_vnode_owner(cr, vattr.va_uid) != 0 &&
+ VOP_ACCESS(mvp, VWRITE, cr, td) != 0) {
+ error = EPERM;
goto out;
}
--
Pawel Jakub Dawidek http...