diff options
author | Oleg Nesterov <oleg@redhat.com> | 2009-12-15 19:47:22 -0500 |
---|---|---|
committer | Linus Torvalds <torvalds@linux-foundation.org> | 2009-12-16 10:20:08 -0500 |
commit | 614c517d7c00af1b26ded20646b329397d6f51a1 (patch) | |
tree | ddd7a82b3479c9fabe141b4c82a1794650a82b4f | |
parent | d51965037325e51f6cd68583413243c3573e47b0 (diff) |
signals: SEND_SIG_NOINFO should be considered as SI_FROMUSER()
No changes in compiled code. The patch adds the new helper, si_fromuser()
and changes check_kill_permission() to use this helper.
The real effect of this patch is that from now we "officially" consider
SEND_SIG_NOINFO signal as "from user-space" signals. This is already true
if we look at the code which uses SEND_SIG_NOINFO, except __send_signal()
has another opinion - see the next patch.
The naming of these special SEND_SIG_XXX siginfo's is really bad
imho. From __send_signal()'s pov they mean
SEND_SIG_NOINFO from user
SEND_SIG_PRIV from kernel
SEND_SIG_FORCED no info
Signed-off-by: Oleg Nesterov <oleg@redhat.com>
Cc: Roland McGrath <roland@redhat.com>
Reviewed-by: Sukadev Bhattiprolu <sukadev@us.ibm.com>
Signed-off-by: Andrew Morton <akpm@linux-foundation.org>
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>
-rw-r--r-- | include/linux/sched.h | 5 | ||||
-rw-r--r-- | kernel/signal.c | 16 |
2 files changed, 13 insertions, 8 deletions
diff --git a/include/linux/sched.h b/include/linux/sched.h index f4c145410a8d..57b3516f055b 100644 --- a/include/linux/sched.h +++ b/include/linux/sched.h | |||
@@ -2102,11 +2102,6 @@ static inline int kill_cad_pid(int sig, int priv) | |||
2102 | #define SEND_SIG_PRIV ((struct siginfo *) 1) | 2102 | #define SEND_SIG_PRIV ((struct siginfo *) 1) |
2103 | #define SEND_SIG_FORCED ((struct siginfo *) 2) | 2103 | #define SEND_SIG_FORCED ((struct siginfo *) 2) |
2104 | 2104 | ||
2105 | static inline int is_si_special(const struct siginfo *info) | ||
2106 | { | ||
2107 | return info <= SEND_SIG_FORCED; | ||
2108 | } | ||
2109 | |||
2110 | /* | 2105 | /* |
2111 | * True if we are on the alternate signal stack. | 2106 | * True if we are on the alternate signal stack. |
2112 | */ | 2107 | */ |
diff --git a/kernel/signal.c b/kernel/signal.c index 6b982f2cf524..a0ba428954b6 100644 --- a/kernel/signal.c +++ b/kernel/signal.c | |||
@@ -607,6 +607,17 @@ static int rm_from_queue(unsigned long mask, struct sigpending *s) | |||
607 | return 1; | 607 | return 1; |
608 | } | 608 | } |
609 | 609 | ||
610 | static inline int is_si_special(const struct siginfo *info) | ||
611 | { | ||
612 | return info <= SEND_SIG_FORCED; | ||
613 | } | ||
614 | |||
615 | static inline bool si_fromuser(const struct siginfo *info) | ||
616 | { | ||
617 | return info == SEND_SIG_NOINFO || | ||
618 | (!is_si_special(info) && SI_FROMUSER(info)); | ||
619 | } | ||
620 | |||
610 | /* | 621 | /* |
611 | * Bad permissions for sending the signal | 622 | * Bad permissions for sending the signal |
612 | * - the caller must hold at least the RCU read lock | 623 | * - the caller must hold at least the RCU read lock |
@@ -621,7 +632,7 @@ static int check_kill_permission(int sig, struct siginfo *info, | |||
621 | if (!valid_signal(sig)) | 632 | if (!valid_signal(sig)) |
622 | return -EINVAL; | 633 | return -EINVAL; |
623 | 634 | ||
624 | if (info != SEND_SIG_NOINFO && (is_si_special(info) || SI_FROMKERNEL(info))) | 635 | if (!si_fromuser(info)) |
625 | return 0; | 636 | return 0; |
626 | 637 | ||
627 | error = audit_signal_info(sig, t); /* Let audit system see the signal */ | 638 | error = audit_signal_info(sig, t); /* Let audit system see the signal */ |
@@ -1186,8 +1197,7 @@ int kill_pid_info_as_uid(int sig, struct siginfo *info, struct pid *pid, | |||
1186 | goto out_unlock; | 1197 | goto out_unlock; |
1187 | } | 1198 | } |
1188 | pcred = __task_cred(p); | 1199 | pcred = __task_cred(p); |
1189 | if ((info == SEND_SIG_NOINFO || | 1200 | if (si_fromuser(info) && |
1190 | (!is_si_special(info) && SI_FROMUSER(info))) && | ||
1191 | euid != pcred->suid && euid != pcred->uid && | 1201 | euid != pcred->suid && euid != pcred->uid && |
1192 | uid != pcred->suid && uid != pcred->uid) { | 1202 | uid != pcred->suid && uid != pcred->uid) { |
1193 | ret = -EPERM; | 1203 | ret = -EPERM; |