1 files changed, 14 insertions, 13 deletions
diff --git a/kernel/signal.c b/kernel/signal.c
index f9a52c721274..91d57f89f5a5 100644
--- a/kernel/signal.c
+++ b/kernel/signal.c
@@ -533,22 +533,23 @@ static int rm_from_queue(unsigned long mask, struct sigpending *s)
 static int check_kill_permission(int sig, struct siginfo *info,
                                 struct task_struct *t)
 {
-        int error = -EINVAL;
+        int error;
        if (!valid_signal(sig))
-                return error;
+                return -EINVAL;
-        if (info == SEND_SIG_NOINFO || (!is_si_special(info) && SI_FROMUSER(info))) {
+        if (info != SEND_SIG_NOINFO && (is_si_special(info) || SI_FROMKERNEL(info)))
-                error = audit_signal_info(sig, t); /* Let audit system see the signal */
+                return 0;
-                if (error)
-                        return error;
+        error = audit_signal_info(sig, t); /* Let audit system see the signal */
-                error = -EPERM;
+        if (error)
-                if (((sig != SIGCONT) ||
-                        (task_session_nr(current) != task_session_nr(t)))
-                    && (current->euid ^ t->suid) && (current->euid ^ t->uid)
-                    && (current->uid ^ t->suid) && (current->uid ^ t->uid)
-                    && !capable(CAP_KILL))
                return error;
-        }
+        if (((sig != SIGCONT) || (task_session_nr(current) != task_session_nr(t)))
+            && (current->euid ^ t->suid) && (current->euid ^ t->uid)
+            && (current->uid ^ t->suid) && (current->uid ^ t->uid)
+            && !capable(CAP_KILL))
+                return -EPERM;
        return security_task_kill(t, info, sig, 0);
 }

diff --git a/kernel/signal.c b/kernel/signal.c index f9a52c721274..91d57f89f5a5 100644 --- a/kernel/signal.c +++ b/kernel/signal.c
@@ -533,22 +533,23 @@ static int rm_from_queue(unsigned long mask, struct sigpending *s)
533	static int check_kill_permission(int sig, struct siginfo *info,	533	static int check_kill_permission(int sig, struct siginfo *info,
534	struct task_struct *t)	534	struct task_struct *t)
535	{	535	{
536	int error = -EINVAL;	536	int error;
		537
537	if (!valid_signal(sig))	538	if (!valid_signal(sig))
538	return error;	539	return -EINVAL;
539		540
540	if (info == SEND_SIG_NOINFO \|\| (!is_si_special(info) && SI_FROMUSER(info))) {	541	if (info != SEND_SIG_NOINFO && (is_si_special(info) \|\| SI_FROMKERNEL(info)))
541	error = audit_signal_info(sig, t); /* Let audit system see the signal */	542	return 0;
542	if (error)	543
543	return error;	544	error = audit_signal_info(sig, t); /* Let audit system see the signal */
544	error = -EPERM;	545	if (error)
545	if (((sig != SIGCONT) \|\|
546	(task_session_nr(current) != task_session_nr(t)))
547	&& (current->euid ^ t->suid) && (current->euid ^ t->uid)
548	&& (current->uid ^ t->suid) && (current->uid ^ t->uid)
549	&& !capable(CAP_KILL))
550	return error;	546	return error;
551	}	547
		548	if (((sig != SIGCONT) \|\| (task_session_nr(current) != task_session_nr(t)))
		549	&& (current->euid ^ t->suid) && (current->euid ^ t->uid)
		550	&& (current->uid ^ t->suid) && (current->uid ^ t->uid)
		551	&& !capable(CAP_KILL))
		552	return -EPERM;
552		553
553	return security_task_kill(t, info, sig, 0);	554	return security_task_kill(t, info, sig, 0);
554	}	555	}