1 files changed, 70 insertions, 2 deletions
diff --git a/include/linux/cred.h b/include/linux/cred.h
index 4fa999696310..fb371601a3b4 100644
--- a/include/linux/cred.h
+++ b/include/linux/cred.h
@@ -15,6 +15,7 @@
 #include <linux/capability.h>
 #include <linux/init.h>
 #include <linux/key.h>
+#include <linux/selinux.h>
 #include <asm/atomic.h>
 struct user_struct;
@@ -114,6 +115,13 @@ struct thread_group_cred {
 */
 struct cred {
        atomic_t        usage;
+#ifdef CONFIG_DEBUG_CREDENTIALS
+        atomic_t        subscribers;    /* number of processes subscribed */
+        void            *put_addr;
+        unsigned        magic;
+#define CRED_MAGIC      0x43736564
+#define CRED_MAGIC_DEAD 0x44656144
+#endif
        uid_t           uid;            /* real UID of the task */
        gid_t           gid;            /* real GID of the task */
        uid_t           suid;           /* saved UID of the task */
@@ -143,7 +151,9 @@ struct cred {
 };
 extern void __put_cred(struct cred *);
+extern void exit_creds(struct task_struct *);
 extern int copy_creds(struct task_struct *, unsigned long);
+extern struct cred *cred_alloc_blank(void);
 extern struct cred *prepare_creds(void);
 extern struct cred *prepare_exec_creds(void);
 extern struct cred *prepare_usermodehelper_creds(void);
@@ -158,6 +168,62 @@ extern int set_security_override_from_ctx(struct cred *, const char *);
 extern int set_create_files_as(struct cred *, struct inode *);
 extern void __init cred_init(void);
+/*
+ * check for validity of credentials
+ */
+#ifdef CONFIG_DEBUG_CREDENTIALS
+extern void __invalid_creds(const struct cred *, const char *, unsigned);
+extern void __validate_process_creds(struct task_struct *,
+                                     const char *, unsigned);
+static inline bool creds_are_invalid(const struct cred *cred)
+{
+        if (cred->magic != CRED_MAGIC)
+                return true;
+        if (atomic_read(&cred->usage) < atomic_read(&cred->subscribers))
+                return true;
+#ifdef CONFIG_SECURITY_SELINUX
+        if (selinux_is_enabled()) {
+                if ((unsigned long) cred->security < PAGE_SIZE)
+                        return true;
+                if ((*(u32 *)cred->security & 0xffffff00) ==
+                    (POISON_FREE << 24 | POISON_FREE << 16 | POISON_FREE << 8))
+                        return true;
+        }
+#endif
+        return false;
+}
+static inline void __validate_creds(const struct cred *cred,
+                                    const char *file, unsigned line)
+{
+        if (unlikely(creds_are_invalid(cred)))
+                __invalid_creds(cred, file, line);
+}
+#define validate_creds(cred)                            \
+do {                                                    \
+        __validate_creds((cred), __FILE__, __LINE__);   \
+} while(0)
+#define validate_process_creds()                                \
+do {                                                            \
+        __validate_process_creds(current, __FILE__, __LINE__);  \
+} while(0)
+extern void validate_creds_for_do_exit(struct task_struct *);
+#else
+static inline void validate_creds(const struct cred *cred)
+{
+}
+static inline void validate_creds_for_do_exit(struct task_struct *tsk)
+{
+}
+static inline void validate_process_creds(void)
+{
+}
+#endif
 /**
 * get_new_cred - Get a reference on a new set of credentials
 * @cred: The new credentials to reference
@@ -186,7 +252,9 @@ static inline struct cred *get_new_cred(struct cred *cred)
 */
 static inline const struct cred *get_cred(const struct cred *cred)
 {
-        return get_new_cred((struct cred *) cred);
+        struct cred *nonconst_cred = (struct cred *) cred;
+        validate_creds(cred);
+        return get_new_cred(nonconst_cred);
 }
 /**
@@ -204,7 +272,7 @@ static inline void put_cred(const struct cred *_cred)
 {
        struct cred *cred = (struct cred *) _cred;
-        BUG_ON(atomic_read(&(cred)->usage) <= 0);
+        validate_creds(cred);
        if (atomic_dec_and_test(&(cred)->usage))
                __put_cred(cred);
 }

diff --git a/include/linux/cred.h b/include/linux/cred.h index 4fa999696310..fb371601a3b4 100644 --- a/include/linux/cred.h +++ b/include/linux/cred.h
@@ -15,6 +15,7 @@
15	#include <linux/capability.h>	15	#include <linux/capability.h>
16	#include <linux/init.h>	16	#include <linux/init.h>
17	#include <linux/key.h>	17	#include <linux/key.h>
		18	#include <linux/selinux.h>
18	#include <asm/atomic.h>	19	#include <asm/atomic.h>
19		20
20	struct user_struct;	21	struct user_struct;
@@ -114,6 +115,13 @@ struct thread_group_cred {
114	*/	115	*/
115	struct cred {	116	struct cred {
116	atomic_t usage;	117	atomic_t usage;
		118	#ifdef CONFIG_DEBUG_CREDENTIALS
		119	atomic_t subscribers; /* number of processes subscribed */
		120	void *put_addr;
		121	unsigned magic;
		122	#define CRED_MAGIC 0x43736564
		123	#define CRED_MAGIC_DEAD 0x44656144
		124	#endif
117	uid_t uid; /* real UID of the task */	125	uid_t uid; /* real UID of the task */
118	gid_t gid; /* real GID of the task */	126	gid_t gid; /* real GID of the task */
119	uid_t suid; /* saved UID of the task */	127	uid_t suid; /* saved UID of the task */
@@ -143,7 +151,9 @@ struct cred {
143	};	151	};
144		152
145	extern void __put_cred(struct cred *);	153	extern void __put_cred(struct cred *);
		154	extern void exit_creds(struct task_struct *);
146	extern int copy_creds(struct task_struct *, unsigned long);	155	extern int copy_creds(struct task_struct *, unsigned long);
		156	extern struct cred *cred_alloc_blank(void);
147	extern struct cred *prepare_creds(void);	157	extern struct cred *prepare_creds(void);
148	extern struct cred *prepare_exec_creds(void);	158	extern struct cred *prepare_exec_creds(void);
149	extern struct cred *prepare_usermodehelper_creds(void);	159	extern struct cred *prepare_usermodehelper_creds(void);
@@ -158,6 +168,62 @@ extern int set_security_override_from_ctx(struct cred , const char );
158	extern int set_create_files_as(struct cred , struct inode );	168	extern int set_create_files_as(struct cred , struct inode );
159	extern void __init cred_init(void);	169	extern void __init cred_init(void);
160		170
		171	/*
		172	* check for validity of credentials
		173	*/
		174	#ifdef CONFIG_DEBUG_CREDENTIALS
		175	extern void __invalid_creds(const struct cred , const char , unsigned);
		176	extern void __validate_process_creds(struct task_struct *,
		177	const char *, unsigned);
		178
		179	static inline bool creds_are_invalid(const struct cred *cred)
		180	{
		181	if (cred->magic != CRED_MAGIC)
		182	return true;
		183	if (atomic_read(&cred->usage) < atomic_read(&cred->subscribers))
		184	return true;
		185	#ifdef CONFIG_SECURITY_SELINUX
		186	if (selinux_is_enabled()) {
		187	if ((unsigned long) cred->security < PAGE_SIZE)
		188	return true;
		189	if (((u32 )cred->security & 0xffffff00) ==
		190	(POISON_FREE << 24 \| POISON_FREE << 16 \| POISON_FREE << 8))
		191	return true;
		192	}
		193	#endif
		194	return false;
		195	}
		196
		197	static inline void __validate_creds(const struct cred *cred,
		198	const char *file, unsigned line)
		199	{
		200	if (unlikely(creds_are_invalid(cred)))
		201	__invalid_creds(cred, file, line);
		202	}
		203
		204	#define validate_creds(cred) \
		205	do { \
		206	__validate_creds((cred), __FILE__, __LINE__); \
		207	} while(0)
		208
		209	#define validate_process_creds() \
		210	do { \
		211	__validate_process_creds(current, __FILE__, __LINE__); \
		212	} while(0)
		213
		214	extern void validate_creds_for_do_exit(struct task_struct *);
		215	#else
		216	static inline void validate_creds(const struct cred *cred)
		217	{
		218	}
		219	static inline void validate_creds_for_do_exit(struct task_struct *tsk)
		220	{
		221	}
		222	static inline void validate_process_creds(void)
		223	{
		224	}
		225	#endif
		226
161	/**	227	/**
162	* get_new_cred - Get a reference on a new set of credentials	228	* get_new_cred - Get a reference on a new set of credentials
163	* @cred: The new credentials to reference	229	* @cred: The new credentials to reference
@@ -186,7 +252,9 @@ static inline struct cred get_new_cred(struct cred cred)
186	*/	252	*/
187	static inline const struct cred get_cred(const struct cred cred)	253	static inline const struct cred get_cred(const struct cred cred)
188	{	254	{
189	return get_new_cred((struct cred *) cred);	255	struct cred nonconst_cred = (struct cred ) cred;
		256	validate_creds(cred);
		257	return get_new_cred(nonconst_cred);
190	}	258	}
191		259
192	/**	260	/**
@@ -204,7 +272,7 @@ static inline void put_cred(const struct cred *_cred)
204	{	272	{
205	struct cred cred = (struct cred ) _cred;	273	struct cred cred = (struct cred ) _cred;
206		274
207	BUG_ON(atomic_read(&(cred)->usage) <= 0);	275	validate_creds(cred);
208	if (atomic_dec_and_test(&(cred)->usage))	276	if (atomic_dec_and_test(&(cred)->usage))
209	__put_cred(cred);	277	__put_cred(cred);
210	}	278	}