git.ipfire.org Git - thirdparty/kernel/linux.git/commit

author	Gil Portnoy <dddhkts1@gmail.com>
	Thu, 11 Jun 2026 13:59:51 +0000 (22:59 +0900)
committer	Steve French <stfrench@microsoft.com>
	Tue, 16 Jun 2026 23:57:22 +0000 (18:57 -0500)
commit	20c8442dc1003f9f7bb522d3dcd81d09ea59a79e
tree	339885ee4fadbc798a1c540dffb2aa9bebcb0a4b	tree \| snapshot
parent	609ca17d869d04ba249e32cdcbf13c0b1c66f43c	commit \| diff

ksmbd: enforce FILE_READ_ATTRIBUTES on SMB_FIND_FILE_POSIX_INFORMATION

find_file_posix_info() in smb2_query_info() returns file metadata (owner
uid, group gid, mode, inode, size, allocation size, hard-link count and all
four timestamps) but performs no per-handle access check. Every sibling
query handler gates on the handle's granted access first --
get_file_basic_info(), get_file_all_info(), get_file_network_open_info()
and get_file_attribute_tag_info() all reject a handle lacking
FILE_READ_ATTRIBUTES_LE with -EACCES. The POSIX handler is gated only by
the connection-scoped tcon->posix_extensions flag, which is not a
per-handle authorization, so a handle opened with only FILE_WRITE_DATA is
correctly denied FileBasicInformation yet is allowed the strict-superset
POSIX info. Mirror the FILE_READ_ATTRIBUTES_LE gate the sibling info
handlers already use.

Fixes: e2f34481b24d ("cifsd: add server-side procedures for SMB3")
Cc: stable@vger.kernel.org
Signed-off-by: Gil Portnoy <dddhkts1@gmail.com>
Acked-by: Namjae Jeon <linkinjeon@kernel.org>
Signed-off-by: Steve French <stfrench@microsoft.com>