Merge release-20210309.0-34-g607a1e481 (automated)

author: gVisor bot <gvisor-bot@google.com> 2021-03-16 22:00:36 +0000
committer: gVisor bot <gvisor-bot@google.com> 2021-03-16 22:00:36 +0000
commit: c9a030e8e994b96c62822375b733d4db4e894c17 (patch)
tree: 028a0fe2da376775886a632f87cf49b1c84bf526 /pkg/sentry/fsimpl/overlay/overlay.go
parent: 364e952de54eeef5cc0b92da2bcf3d4993c475de (diff)
parent: 607a1e481c276c8ab0c3e194ed04b38bc07b71b6 (diff)
1 files changed, 21 insertions, 0 deletions
diff --git a/pkg/sentry/fsimpl/overlay/overlay.go b/pkg/sentry/fsimpl/overlay/overlay.go
index 58680bc80..454c20d4f 100644
--- a/pkg/sentry/fsimpl/overlay/overlay.go
+++ b/pkg/sentry/fsimpl/overlay/overlay.go
@@ -749,6 +749,27 @@ func (d *dentry) mayDelete(creds *auth.Credentials, child *dentry) error {
 	)
 }
 
+// newChildOwnerStat returns a Statx for configuring the UID, GID, and mode of
+// children.
+func (d *dentry) newChildOwnerStat(mode linux.FileMode, creds *auth.Credentials) linux.Statx {
+	stat := linux.Statx{
+		Mask: uint32(linux.STATX_UID | linux.STATX_GID),
+		UID:  uint32(creds.EffectiveKUID),
+		GID:  uint32(creds.EffectiveKGID),
+	}
+	// Set GID and possibly the SGID bit if the parent is an SGID directory.
+	d.copyMu.RLock()
+	defer d.copyMu.RUnlock()
+	if atomic.LoadUint32(&d.mode)&linux.ModeSetGID == linux.ModeSetGID {
+		stat.GID = atomic.LoadUint32(&d.gid)
+		if stat.Mode&linux.ModeDirectory == linux.ModeDirectory {
+			stat.Mode = uint16(mode) | linux.ModeSetGID
+			stat.Mask |= linux.STATX_MODE
+		}
+	}
+	return stat
+}
+
 // fileDescription is embedded by overlay implementations of
 // vfs.FileDescriptionImpl.
 //
author	gVisor bot <gvisor-bot@google.com>	2021-03-16 22:00:36 +0000
committer	gVisor bot <gvisor-bot@google.com>	2021-03-16 22:00:36 +0000
commit	c9a030e8e994b96c62822375b733d4db4e894c17 (patch)
tree	028a0fe2da376775886a632f87cf49b1c84bf526 /pkg/sentry/fsimpl/overlay/overlay.go
parent	364e952de54eeef5cc0b92da2bcf3d4993c475de (diff)
parent	607a1e481c276c8ab0c3e194ed04b38bc07b71b6 (diff)