Yang Xu 14b9635944 KEYS: reaching the keys quotas correctly ... commit 2e356101e7 upstream. Currently, when we add a new user key, the calltrace as below: add_key() key_create_or_update() key_alloc() __key_instantiate_and_link generic_key_instantiate key_payload_reserve ...... Since commit a08bf91ce2 ("KEYS: allow reaching the keys quotas exactly"), we can reach max bytes/keys in key_alloc, but we forget to remove this limit when we reserver space for payload in key_payload_reserve. So we can only reach max keys but not max bytes when having delta between plen and type->def_datalen. Remove this limit when instantiating the key, so we can keep consistent with key_alloc. Also, fix the similar problem in keyctl_chown_key(). Fixes: 0b77f5bfb4 ("keys: make the keyring quotas controllable through /proc/sys") Fixes: a08bf91ce2 ("KEYS: allow reaching the keys quotas exactly") Cc: stable@vger.kernel.org # 5.0.x Cc: Eric Biggers <ebiggers@google.com> Signed-off-by: Yang Xu <xuyang2018.jy@cn.fujitsu.com> Reviewed-by: Jarkko Sakkinen <jarkko.sakkinen@linux.intel.com> Reviewed-by: Eric Biggers <ebiggers@google.com> Signed-off-by: Jarkko Sakkinen <jarkko.sakkinen@linux.intel.com> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>		2020-04-17 10:48:46 +02:00
..
apparmor	apparmor: don't try to replace stale label in ptrace access check	2020-01-27 14:49:55 +01:00
integrity
keys	KEYS: reaching the keys quotas correctly	2020-04-17 10:48:46 +02:00
loadpin
selinux	selinux: ensure we cleanup the internal AVC counters on error in avc_update()	2020-02-24 08:34:43 +01:00
smack	LSM: generalize flag passing to security_capable	2020-01-23 08:21:29 +01:00
tomoyo	tomoyo: Use atomic_t for statistics counter	2020-02-05 14:43:38 +00:00
yama
commoncap.c	LSM: generalize flag passing to security_capable	2020-01-23 08:21:29 +01:00
device_cgroup.c
inode.c
Kconfig
lsm_audit.c
Makefile
min_addr.c
security.c	LSM: generalize flag passing to security_capable	2020-01-23 08:21:29 +01:00