]> git.baikalelectronics.ru Git - kernel.git/commit
projects / kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e1c58dc) | patch
signal: Always deliver the kernel's SIGKILL and SIGSTOP to a pid namespace init
authorEric W. Biederman <ebiederm@xmission.com>
Mon, 3 Sep 2018 18:02:46 +0000 (20:02 +0200)
committerEric W. Biederman <ebiederm@xmission.com>
Tue, 11 Sep 2018 19:19:00 +0000 (21:19 +0200)
commit9cf69baa8b6c4e2259c3182a974f583f0900168b
tree465cc2b9a6c266df70b5c3f3ab12a08521eb02ddtree | snapshot
parente1c58dc230c5b7ccc57f95a0e42ec22fe33993e2commit | diff
signal: Always deliver the kernel's SIGKILL and SIGSTOP to a pid namespace init

Instead of playing whack-a-mole and changing SEND_SIG_PRIV to
SEND_SIG_FORCED throughout the kernel to ensure a pid namespace init
gets signals sent by the kernel, stop allowing a pid namespace init to
ignore SIGKILL or SIGSTOP sent by the kernel.  A pid namespace init is
only supposed to be able to ignore signals sent from itself and
children with SIG_DFL.

Fixes: f313ede5ef7d ("signals: protect cinit from unblocked SIG_DFL signals")
Reviewed-by: Thomas Gleixner <tglx@linutronix.de>
Signed-off-by: "Eric W. Biederman" <ebiederm@xmission.com>
kernel/signal.c diff | blob | history
Linux Kernel Source Tree.