git.baikalelectronics.ru Git - kernel.git/commit

author	Eric W. Biederman <ebiederm@xmission.com>
	Thu, 16 May 2019 03:54:56 +0000 (22:54 -0500)
committer	Eric W. Biederman <ebiederm@xmission.com>
	Wed, 22 May 2019 22:02:16 +0000 (17:02 -0500)
commit	ff42b6d476075ea4dfa3089e9a3af48dc74bdf02
tree	7bf6f9b6aed7c10d437f7de78b49090b72c7e7a4	tree \| snapshot
parent	869b5ba42c471d2d057525adca131cc104f85a9c	commit \| diff

signal: Correct namespace fixups of si_pid and si_uid

The function send_signal was split from __send_signal so that it would
be possible to bypass the namespace logic based upon current[1].  As it
turns out the si_pid and the si_uid fixup are both inappropriate in
the case of kill_pid_usb_asyncio so move that logic into send_signal.

It is difficult to arrange but possible for a signal with an si_code
of SI_TIMER or SI_SIGIO to be sent across namespace boundaries.  In
which case tests for when it is ok to change si_pid and si_uid based
on SI_FROMUSER are incorrect.  Replace the use of SI_FROMUSER with a
new test has_si_pid_and_used based on siginfo_layout.

Now that the uid fixup is no longer present after expanding
SEND_SIG_NOINFO properly calculate the si_uid that the target
task needs to read.

[1] 906276c9b218 ("signals: add from_ancestor_ns parameter to send_signal()")
Cc: stable@vger.kernel.org
Fixes: 713ef40e3aee ("signals: SI_USER: Masquerade si_pid when crossing pid ns boundary")
Fixes: 34326d682029 ("user namespace: make signal.c respect user namespaces")
Signed-off-by: "Eric W. Biederman" <ebiederm@xmission.com>