1 files changed, 61 insertions, 3 deletions
diff --git a/kernel/signal.c b/kernel/signal.c
index bb0efa5705ed..c73c4284160e 100644
--- a/kernel/signal.c
+++ b/kernel/signal.c
@@ -28,6 +28,7 @@
 #include <linux/freezer.h>
 #include <linux/pid_namespace.h>
 #include <linux/nsproxy.h>
+#include <linux/user_namespace.h>
 #define CREATE_TRACE_POINTS
 #include <trace/events/signal.h>
@@ -1019,6 +1020,34 @@ static inline int legacy_queue(struct sigpending *signals, int sig)
        return (sig < SIGRTMIN) && sigismember(&signals->signal, sig);
 }
+/*
+ * map the uid in struct cred into user namespace *ns
+ */
+static inline uid_t map_cred_ns(const struct cred *cred,
+                                struct user_namespace *ns)
+{
+        return user_ns_map_uid(ns, cred, cred->uid);
+}
+#ifdef CONFIG_USER_NS
+static inline void userns_fixup_signal_uid(struct siginfo *info, struct task_struct *t)
+{
+        if (current_user_ns() == task_cred_xxx(t, user_ns))
+                return;
+        if (SI_FROMKERNEL(info))
+                return;
+        info->si_uid = user_ns_map_uid(task_cred_xxx(t, user_ns),
+                                        current_cred(), info->si_uid);
+}
+#else
+static inline void userns_fixup_signal_uid(struct siginfo *info, struct task_struct *t)
+{
+        return;
+}
+#endif
 static int __send_signal(int sig, struct siginfo *info, struct task_struct *t,
                        int group, int from_ancestor_ns)
 {
@@ -1088,6 +1117,9 @@ static int __send_signal(int sig, struct siginfo *info, struct task_struct *t,
                                q->info.si_pid = 0;
                        break;
                }
+                userns_fixup_signal_uid(&q->info, t);
        } else if (!is_si_special(info)) {
                if (sig >= SIGRTMIN && info->si_code != SI_USER) {
                        /*
@@ -1626,7 +1658,8 @@ bool do_notify_parent(struct task_struct *tsk, int sig)
         */
        rcu_read_lock();
        info.si_pid = task_pid_nr_ns(tsk, tsk->parent->nsproxy->pid_ns);
-        info.si_uid = __task_cred(tsk)->uid;
+        info.si_uid = map_cred_ns(__task_cred(tsk),
+                        task_cred_xxx(tsk->parent, user_ns));
        rcu_read_unlock();
        info.si_utime = cputime_to_clock_t(tsk->utime + tsk->signal->utime);
@@ -1709,7 +1742,8 @@ static void do_notify_parent_cldstop(struct task_struct *tsk,
         */
        rcu_read_lock();
        info.si_pid = task_pid_nr_ns(tsk, parent->nsproxy->pid_ns);
-        info.si_uid = __task_cred(tsk)->uid;
+        info.si_uid = map_cred_ns(__task_cred(tsk),
+                        task_cred_xxx(parent, user_ns));
        rcu_read_unlock();
        info.si_utime = cputime_to_clock_t(tsk->utime);
@@ -2125,8 +2159,11 @@ static int ptrace_signal(int signr, siginfo_t *info,
                info->si_signo = signr;
                info->si_errno = 0;
                info->si_code = SI_USER;
+                rcu_read_lock();
                info->si_pid = task_pid_vnr(current->parent);
-                info->si_uid = task_uid(current->parent);
+                info->si_uid = map_cred_ns(__task_cred(current->parent),
+                                current_user_ns());
+                rcu_read_unlock();
        }
        /* If the (new) signal is now blocked, requeue it.  */
@@ -2318,6 +2355,27 @@ relock:
        return signr;
 }
+/**
+ * block_sigmask - add @ka's signal mask to current->blocked
+ * @ka: action for @signr
+ * @signr: signal that has been successfully delivered
+ *
+ * This function should be called when a signal has succesfully been
+ * delivered. It adds the mask of signals for @ka to current->blocked
+ * so that they are blocked during the execution of the signal
+ * handler. In addition, @signr will be blocked unless %SA_NODEFER is
+ * set in @ka->sa.sa_flags.
+ */
+void block_sigmask(struct k_sigaction *ka, int signr)
+{
+        sigset_t blocked;
+        sigorsets(&blocked, &current->blocked, &ka->sa.sa_mask);
+        if (!(ka->sa.sa_flags & SA_NODEFER))
+                sigaddset(&blocked, signr);
+        set_current_blocked(&blocked);
+}
 /*
 * It could be that complete_signal() picked us to notify about the
 * group-wide signal. Other threads should be notified now to take

diff --git a/kernel/signal.c b/kernel/signal.c index bb0efa5705ed..c73c4284160e 100644 --- a/kernel/signal.c +++ b/kernel/signal.c
@@ -28,6 +28,7 @@
28	#include <linux/freezer.h>	28	#include <linux/freezer.h>
29	#include <linux/pid_namespace.h>	29	#include <linux/pid_namespace.h>
30	#include <linux/nsproxy.h>	30	#include <linux/nsproxy.h>
		31	#include <linux/user_namespace.h>
31	#define CREATE_TRACE_POINTS	32	#define CREATE_TRACE_POINTS
32	#include <trace/events/signal.h>	33	#include <trace/events/signal.h>
33		34
@@ -1019,6 +1020,34 @@ static inline int legacy_queue(struct sigpending *signals, int sig)
1019	return (sig < SIGRTMIN) && sigismember(&signals->signal, sig);	1020	return (sig < SIGRTMIN) && sigismember(&signals->signal, sig);
1020	}	1021	}
1021		1022
		1023	/*
		1024	* map the uid in struct cred into user namespace *ns
		1025	*/
		1026	static inline uid_t map_cred_ns(const struct cred *cred,
		1027	struct user_namespace *ns)
		1028	{
		1029	return user_ns_map_uid(ns, cred, cred->uid);
		1030	}
		1031
		1032	#ifdef CONFIG_USER_NS
		1033	static inline void userns_fixup_signal_uid(struct siginfo info, struct task_struct t)
		1034	{
		1035	if (current_user_ns() == task_cred_xxx(t, user_ns))
		1036	return;
		1037
		1038	if (SI_FROMKERNEL(info))
		1039	return;
		1040
		1041	info->si_uid = user_ns_map_uid(task_cred_xxx(t, user_ns),
		1042	current_cred(), info->si_uid);
		1043	}
		1044	#else
		1045	static inline void userns_fixup_signal_uid(struct siginfo info, struct task_struct t)
		1046	{
		1047	return;
		1048	}
		1049	#endif
		1050
1022	static int __send_signal(int sig, struct siginfo info, struct task_struct t,	1051	static int __send_signal(int sig, struct siginfo info, struct task_struct t,
1023	int group, int from_ancestor_ns)	1052	int group, int from_ancestor_ns)
1024	{	1053	{
@@ -1088,6 +1117,9 @@ static int __send_signal(int sig, struct siginfo info, struct task_struct t,
1088	q->info.si_pid = 0;	1117	q->info.si_pid = 0;
1089	break;	1118	break;
1090	}	1119	}
		1120
		1121	userns_fixup_signal_uid(&q->info, t);
		1122
1091	} else if (!is_si_special(info)) {	1123	} else if (!is_si_special(info)) {
1092	if (sig >= SIGRTMIN && info->si_code != SI_USER) {	1124	if (sig >= SIGRTMIN && info->si_code != SI_USER) {
1093	/*	1125	/*
@@ -1626,7 +1658,8 @@ bool do_notify_parent(struct task_struct *tsk, int sig)
1626	*/	1658	*/
1627	rcu_read_lock();	1659	rcu_read_lock();
1628	info.si_pid = task_pid_nr_ns(tsk, tsk->parent->nsproxy->pid_ns);	1660	info.si_pid = task_pid_nr_ns(tsk, tsk->parent->nsproxy->pid_ns);
1629	info.si_uid = __task_cred(tsk)->uid;	1661	info.si_uid = map_cred_ns(__task_cred(tsk),
		1662	task_cred_xxx(tsk->parent, user_ns));
1630	rcu_read_unlock();	1663	rcu_read_unlock();
1631		1664
1632	info.si_utime = cputime_to_clock_t(tsk->utime + tsk->signal->utime);	1665	info.si_utime = cputime_to_clock_t(tsk->utime + tsk->signal->utime);
@@ -1709,7 +1742,8 @@ static void do_notify_parent_cldstop(struct task_struct *tsk,
1709	*/	1742	*/
1710	rcu_read_lock();	1743	rcu_read_lock();
1711	info.si_pid = task_pid_nr_ns(tsk, parent->nsproxy->pid_ns);	1744	info.si_pid = task_pid_nr_ns(tsk, parent->nsproxy->pid_ns);
1712	info.si_uid = __task_cred(tsk)->uid;	1745	info.si_uid = map_cred_ns(__task_cred(tsk),
		1746	task_cred_xxx(parent, user_ns));
1713	rcu_read_unlock();	1747	rcu_read_unlock();
1714		1748
1715	info.si_utime = cputime_to_clock_t(tsk->utime);	1749	info.si_utime = cputime_to_clock_t(tsk->utime);
@@ -2125,8 +2159,11 @@ static int ptrace_signal(int signr, siginfo_t *info,
2125	info->si_signo = signr;	2159	info->si_signo = signr;
2126	info->si_errno = 0;	2160	info->si_errno = 0;
2127	info->si_code = SI_USER;	2161	info->si_code = SI_USER;
		2162	rcu_read_lock();
2128	info->si_pid = task_pid_vnr(current->parent);	2163	info->si_pid = task_pid_vnr(current->parent);
2129	info->si_uid = task_uid(current->parent);	2164	info->si_uid = map_cred_ns(__task_cred(current->parent),
		2165	current_user_ns());
		2166	rcu_read_unlock();
2130	}	2167	}
2131		2168
2132	/* If the (new) signal is now blocked, requeue it. */	2169	/* If the (new) signal is now blocked, requeue it. */
@@ -2318,6 +2355,27 @@ relock:
2318	return signr;	2355	return signr;
2319	}	2356	}
2320		2357
		2358	/**
		2359	* block_sigmask - add @ka's signal mask to current->blocked
		2360	* @ka: action for @signr
		2361	* @signr: signal that has been successfully delivered
		2362	*
		2363	* This function should be called when a signal has succesfully been
		2364	* delivered. It adds the mask of signals for @ka to current->blocked
		2365	* so that they are blocked during the execution of the signal
		2366	* handler. In addition, @signr will be blocked unless %SA_NODEFER is
		2367	* set in @ka->sa.sa_flags.
		2368	*/
		2369	void block_sigmask(struct k_sigaction *ka, int signr)
		2370	{
		2371	sigset_t blocked;
		2372
		2373	sigorsets(&blocked, &current->blocked, &ka->sa.sa_mask);
		2374	if (!(ka->sa.sa_flags & SA_NODEFER))
		2375	sigaddset(&blocked, signr);
		2376	set_current_blocked(&blocked);
		2377	}
		2378
2321	/*	2379	/*
2322	* It could be that complete_signal() picked us to notify about the	2380	* It could be that complete_signal() picked us to notify about the
2323	* group-wide signal. Other threads should be notified now to take	2381	* group-wide signal. Other threads should be notified now to take