linux

mirror of https://github.com/torvalds/linux.git synced 2026-06-08 06:25:52 +02:00

History

Jann Horn b7befd11e0 fork: don't copy inconsistent signal handler state to child [ Upstream commit `06e62a46bb` ] Before this change, if a multithreaded process forks while one of its threads is changing a signal handler using sigaction(), the memcpy() in copy_sighand() can race with the struct assignment in do_sigaction(). It isn't clear whether this can cause corruption of the userspace signal handler pointer, but it definitely can cause inconsistency between different fields of struct sigaction. Take the appropriate spinlock to avoid this. I have tested that this patch prevents inconsistency between sa_sigaction and sa_flags, which is possible before this patch. Link: http://lkml.kernel.org/r/20180702145108.73189-1-jannh@google.com Signed-off-by: Jann Horn <jannh@google.com> Acked-by: Michal Hocko <mhocko@suse.com> Reviewed-by: Andrew Morton <akpm@linux-foundation.org> Cc: Rik van Riel <riel@redhat.com> Cc: "Peter Zijlstra (Intel)" <peterz@infradead.org> Cc: Kees Cook <keescook@chromium.org> Cc: Oleg Nesterov <oleg@redhat.com> Signed-off-by: Andrew Morton <akpm@linux-foundation.org> Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org> Signed-off-by: Sasha Levin <alexander.levin@microsoft.com> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>		2018-09-15 09:40:38 +02:00
..
bpf	bpf: fix references to free_bpf_prog_info() in comments	2018-08-06 16:24:37 +02:00
configs
debug	kdb: make "mdr" command repeat	2018-05-30 07:49:17 +02:00
events	perf/core: Fix perf_output_read_group()	2018-05-30 07:49:12 +02:00
gcov	gcov: disable for COMPILE_TEST	2018-01-23 19:50:10 +01:00
irq	genirq: Make force irq threading setup more robust	2018-08-09 12:19:27 +02:00
livepatch
locking	locking/lockdep: Do not record IRQ state within lockdep code	2018-08-24 13:26:55 +02:00
power	PM / sleep: wakeup: Fix build error caused by missing SRCU support	2018-09-09 20:04:34 +02:00
printk	braille-console: Fix value returned by _braille_console_setup	2018-03-22 09:23:23 +01:00
rcu	rcu: Allow for page faults in NMI handlers	2017-10-18 09:20:41 +02:00
sched	sched/rt: Fix rq->clock_update_flags < RQCF_ACT_SKIP warning	2018-05-30 07:49:08 +02:00
time	nohz: Fix local_timer_softirq_pending()	2018-08-09 12:19:27 +02:00
trace	uprobes: Use synchronize_rcu() not synchronize_sched()	2018-09-09 20:04:34 +02:00
.gitignore
acct.c	kernel/acct.c: fix the acct->needcheck check in check_free_space()	2018-01-10 09:27:08 +01:00
async.c	kernel/async.c: revert "async: simplify lowest_in_progress()"	2018-02-16 20:09:45 +01:00
audit_fsnotify.c
audit_tree.c
audit_watch.c	audit: Fix use after free in audit_remove_watch_rule()	2017-08-24 17:02:35 -07:00
audit.c	audit: return on memory error to avoid null pointer dereference	2018-05-30 07:49:16 +02:00
audit.h
auditfilter.c	audit: allow not equal op for audit by executable	2018-08-06 16:24:38 +02:00
auditsc.c	audit: allow not equal op for audit by executable	2018-08-06 16:24:38 +02:00
backtracetest.c
bounds.c
capability.c
cgroup_freezer.c
cgroup_pids.c
cgroup.c
compat.c
configs.c
context_tracking.c
cpu_pm.c
cpu.c
cpuset.c	sched/cpuset/pm: Fix cpuset vs. suspend-resume bugs	2017-10-12 11:27:35 +02:00
crash_dump.c
cred.c
delayacct.c
dma.c
elfcore.c
exec_domain.c
exit.c	kernel/exit.c: avoid undefined behaviour when calling wait4()	2018-05-26 08:48:51 +02:00
extable.c	kernel/extable.c: mark core_kernel_text notrace	2017-07-21 07:44:56 +02:00
fork.c	fork: don't copy inconsistent signal handler state to child	2018-09-15 09:40:38 +02:00
freezer.c
futex_compat.c
futex.c	futex: futex_wake_op, fix sign_extend32 sign bits	2018-05-26 08:48:51 +02:00
groups.c	kernel: make groups_sort calling a responsibility group_info allocators	2018-01-10 09:27:10 +01:00
hung_task.c
irq_work.c
jump_label.c	jump_label: Invoke jump_label_test() via early_initcall()	2017-12-16 10:33:55 +01:00
kallsyms.c
kcmp.c
Kconfig.freezer
Kconfig.hz
Kconfig.locks
Kconfig.preempt
kexec_core.c
kexec_file.c
kexec_internal.h
kexec.c
kmod.c
kprobes.c	kprobes: Make list and blacklist root user read only	2018-09-05 09:18:40 +02:00
ksysfs.c
kthread.c	kthread, tracing: Don't expose half-written comm when creating kthreads	2018-09-09 20:04:34 +02:00
latencytop.c
Makefile
membarrier.c
memremap.c
module_signing.c
module-internal.h
module.c	module/retpoline: Warn about missing retpoline in module	2018-02-25 11:03:52 +01:00
notifier.c
nsproxy.c
padata.c
panic.c	kernel/panic.c: add missing \n	2017-07-05 14:37:19 +02:00
params.c
pid_namespace.c
pid.c	pidns: disable pid allocation if pid_ns_prepare_proc() is failed in alloc_pid()	2018-04-13 19:50:03 +02:00
profile.c	profile: hide unused functions when !CONFIG_PROC_FS	2018-02-25 11:03:44 +01:00
ptrace.c
range.c
reboot.c
relay.c	kernel/relay.c: limit kmalloc size to KMALLOC_MAX_SIZE	2018-05-30 07:49:00 +02:00
resource.c	resource: fix integer overflow at reallocation	2018-04-24 09:32:05 +02:00
seccomp.c	seccomp: Move speculation migitation control to arch code	2018-07-25 10:18:27 +02:00
signal.c	kernel/signal.c: avoid undefined behaviour in kill_something_info	2018-05-30 07:48:52 +02:00
smp.c
smpboot.c
smpboot.h
softirq.c
stacktrace.c
stop_machine.c
sys_ni.c
sys.c	sys: don't hold uts_sem while accessing userspace memory	2018-09-09 20:04:35 +02:00
sysctl_binary.c
sysctl.c	sched/sysctl: Check user input value of sysctl_sched_time_avg	2018-09-05 09:18:33 +02:00
task_work.c
taskstats.c
test_kprobes.c
torture.c
tracepoint.c	tracepoint: Do not warn on ENOMEM	2018-05-16 10:06:47 +02:00
tsacct.c
uid16.c	kernel: make groups_sort calling a responsibility group_info allocators	2018-01-10 09:27:10 +01:00
up.c
user_namespace.c	userns: move user access out of the mutex	2018-09-09 20:04:35 +02:00
user-return-notifier.c
user.c
utsname_sysctl.c	sys: don't hold uts_sem while accessing userspace memory	2018-09-09 20:04:35 +02:00
utsname.c
watchdog.c
workqueue_internal.h	workqueue: Fix NULL pointer dereference	2017-11-15 17:13:11 +01:00
workqueue.c	workqueue: use put_device() instead of kfree()	2018-05-30 07:49:04 +02:00