Merge release-20200608.0-90-g408f3d2cd (automated)

author: gVisor bot <gvisor-bot@google.com> 2020-06-19 05:04:30 +0000
committer: gVisor bot <gvisor-bot@google.com> 2020-06-19 05:04:30 +0000
commit: 7e5a606e0fafa2acab15ffecc9763a4d23273611 (patch)
tree: 15c633e1bc35fd3a7ed5eb244d687ac37495f681 /pkg/sentry/fsimpl/tmpfs/filesystem.go
parent: 3fb567945c1c03955a5da39869fd853cc28985c9 (diff)
parent: 408f3d2cd64cae6b2f76a940c76236e9841c095f (diff)
1 files changed, 10 insertions, 6 deletions
diff --git a/pkg/sentry/fsimpl/tmpfs/filesystem.go b/pkg/sentry/fsimpl/tmpfs/filesystem.go
index 72399b321..ac359cf7b 100644
--- a/pkg/sentry/fsimpl/tmpfs/filesystem.go
+++ b/pkg/sentry/fsimpl/tmpfs/filesystem.go
@@ -237,18 +237,22 @@ func (fs *filesystem) LinkAt(ctx context.Context, rp *vfs.ResolvingPath, vd vfs.
 			return syserror.EXDEV
 		}
 		d := vd.Dentry().Impl().(*dentry)
-		if d.inode.isDir() {
+		i := d.inode
+		if i.isDir() {
 			return syserror.EPERM
 		}
-		if d.inode.nlink == 0 {
+		if err := vfs.MayLink(auth.CredentialsFromContext(ctx), linux.FileMode(atomic.LoadUint32(&i.mode)), auth.KUID(atomic.LoadUint32(&i.uid)), auth.KGID(atomic.LoadUint32(&i.gid))); err != nil {
+			return err
+		}
+		if i.nlink == 0 {
 			return syserror.ENOENT
 		}
-		if d.inode.nlink == maxLinks {
+		if i.nlink == maxLinks {
 			return syserror.EMLINK
 		}
-		d.inode.incLinksLocked()
-		d.inode.watches.Notify("", linux.IN_ATTRIB, 0, vfs.InodeEvent)
-		parentDir.insertChildLocked(fs.newDentry(d.inode), name)
+		i.incLinksLocked()
+		i.watches.Notify("", linux.IN_ATTRIB, 0, vfs.InodeEvent)
+		parentDir.insertChildLocked(fs.newDentry(i), name)
 		return nil
 	})
 }
author	gVisor bot <gvisor-bot@google.com>	2020-06-19 05:04:30 +0000
committer	gVisor bot <gvisor-bot@google.com>	2020-06-19 05:04:30 +0000
commit	7e5a606e0fafa2acab15ffecc9763a4d23273611 (patch)
tree	15c633e1bc35fd3a7ed5eb244d687ac37495f681 /pkg/sentry/fsimpl/tmpfs/filesystem.go
parent	3fb567945c1c03955a5da39869fd853cc28985c9 (diff)
parent	408f3d2cd64cae6b2f76a940c76236e9841c095f (diff)